$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: 139rzVM+k0PAdWpaOwlqmrA1epMKWj8W1TGGHDKA/PY= Subject key identifier: 2C:C9:37:43:95:B9:AE:A6:31:64:64:F8:54:D0:B5:32:3C:F9:C4:6E Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 0835 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 081A Signing time: Sat 18 Oct 2025 22:17:04 +0000 Manifest this update: Sat 18 Oct 2025 22:17:04 +0000 Manifest next update: Sat 25 Oct 2025 22:17:04 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: UYnSHOJlMMCpPg2kvuDt2dgyhNX2CFJsijfoQw2eYlM=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: bp4jWdbgFBJj7qXPWgiCGUliXYnrbIsNlkes3iQSxxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:17:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2101 (0x835) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F, serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Oct 18 22:17:04 2025 GMT Not After : Oct 25 22:17:04 2025 GMT Subject: CN=68f411e0-3eeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:46:45:4a:74:50:5f:bd:a0:f3:fd:1b:6b:62: 22:66:56:ca:2a:d8:49:74:fa:4e:c5:38:75:1c:8a: af:df:d2:2f:69:a2:49:42:e6:ce:b7:76:5f:f9:ad: b9:ce:df:62:88:4f:47:c2:34:f0:55:fd:83:99:54: cb:c3:4a:d6:39:21:f5:de:ef:5d:c9:ae:ce:b3:78: 87:1c:a5:04:9c:5d:4a:cf:b5:05:8a:a1:f1:96:00: 12:04:ed:80:6b:b9:a8:e6:d1:fc:b9:09:ce:60:76: c0:a1:0f:4b:82:79:d9:c0:4c:3c:5f:9e:2b:dd:f4: e6:cb:75:43:c1:d1:2f:55:05:1a:a2:2b:ba:01:fb: fd:95:65:8b:35:29:69:21:dd:97:d4:d4:5d:56:10: fa:04:52:90:1b:c0:7c:33:8e:87:00:c0:9b:6c:0e: b1:1f:66:3a:84:71:02:94:5e:58:8e:58:0e:e6:3e: b0:e6:7f:3f:1b:74:51:fa:ad:16:8f:b2:ae:e1:29: 45:dd:a9:9c:c4:cc:45:f3:01:46:1e:d4:29:8f:e3: 4f:69:b6:d7:45:d7:7a:3a:44:ad:c6:a5:04:53:9b: ba:73:a0:d8:db:7b:2a:8e:52:36:c6:b1:9a:56:ce: ac:16:ca:39:bd:43:3c:f9:64:4c:a6:50:7c:ff:be: fb:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C9:37:43:95:B9:AE:A6:31:64:64:F8:54:D0:B5:32:3C:F9:C4:6E X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:0d:e6:6c:ec:2c:a8:ba:4b:c1:8f:58:1a:d3:22:6d:3a:e4: f0:df:9a:20:3d:41:aa:9c:2a:7c:5e:85:a7:f9:86:2a:89:1b: 47:b1:29:9d:5e:71:cb:62:63:d4:a8:e2:25:6c:86:52:0c:95: 97:50:86:db:68:cf:01:bd:6f:ab:10:f4:36:25:89:f4:bc:66: 74:2e:6c:f8:ab:8c:47:b6:f7:d8:10:f7:e3:59:80:21:0b:dc: e0:70:3c:f5:36:63:18:e8:6f:95:53:12:4b:86:fc:27:67:5d: 7d:72:01:70:9d:0b:d7:72:c6:c1:25:fa:71:09:c2:f2:bf:44: 17:1f:19:d0:63:61:38:8b:be:ec:9e:b4:7a:03:0b:86:d4:80: 12:ed:60:00:93:d7:6a:ab:67:81:7c:8b:d6:cf:ca:17:56:61: 2f:6d:02:33:e2:ad:27:99:ab:da:7c:cf:f3:91:c4:85:c5:d3: 05:af:59:d1:f0:46:68:a7:1a:56:c7:34:77:3d:91:ad:b8:99: cb:d7:9a:2d:ac:d2:63:0e:d9:fe:61:df:07:0a:75:a2:7d:75: b3:41:f1:a6:7c:db:1b:41:75:78:dc:71:2a:c3:8d:63:7f:6a: 85:81:95:da:18:03:e9:bd:42:41:4c:60:23:71:b6:96:e5:ed: 13:75:d5:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjUxMDE4MjIxNzA0WhcNMjUxMDI1MjIxNzA0WjAYMRYwFAYD VQQDEw02OGY0MTFlMC0zZWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA90ZFSnRQX72g8/0ba2IiZlbKKthJdPpOxTh1HIqv39IvaaJJQubOt3Zf+a25 zt9iiE9HwjTwVf2DmVTLw0rWOSH13u9dya7Os3iHHKUEnF1Kz7UFiqHxlgASBO2A a7mo5tH8uQnOYHbAoQ9LgnnZwEw8X54r3fTmy3VDwdEvVQUaoiu6Afv9lWWLNSlp Id2X1NRdVhD6BFKQG8B8M46HAMCbbA6xH2Y6hHEClF5YjlgO5j6w5n8/G3RR+q0W j7Ku4SlF3amcxMxF8wFGHtQpj+NPabbXRdd6OkStxqUEU5u6c6DY23sqjlI2xrGa Vs6sFso5vUM8+WRMplB8/777wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCzJN0OV ua6mMWRk+FTQtTI8+cRuMB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiDeZs7CyoukvBj1ga0yJtOuTw35ogPUGqnCp8XoWn+YYqiRtHsSmd XnHLYmPUqOIlbIZSDJWXUIbbaM8BvW+rEPQ2JYn0vGZ0Lmz4q4xHtvfYEPfjWYAh C9zgcDz1NmMY6G+VUxJLhvwnZ119cgFwnQvXcsbBJfpxCcLyv0QXHxnQY2E4i77s nrR6AwuG1IAS7WAAk9dqq2eBfIvWz8oXVmEvbQIz4q0nmavafM/zkcSFxdMFr1nR 8EZopxpWxzR3PZGtuJnL15otrNJjDtn+Yd8HCnWifXWzQfGmfNsbQXV43HEqw41j f2qFgZXaGAPpvUJBTGAjcbaW5e0TddVR -----END CERTIFICATE-----Generated at Mon Oct 20 00:21:30 2025 by rpki-client