$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft File: HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft (raw, json) Hash identifier: Mj4Ua4yq5m5ncIbeHe0pG5SXL+fQWPSy2BPSdTSBhoY= Subject key identifier: 52:6C:59:2B:E9:72:28:EB:C9:A4:AD:47:70:A0:08:A0:32:5B:62:D9 Authority key identifier: 1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66 Certificate issuer: /CN=A91F2CA8/serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866 Certificate serial: 34E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft Manifest number: 34DD Signing time: Sat 18 Oct 2025 15:02:40 +0000 Manifest this update: Sat 18 Oct 2025 15:02:39 +0000 Manifest next update: Sat 25 Oct 2025 15:02:39 +0000 Files and hashes: 1: HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl (hash: dj5fOdff/ozskU/yY7Rwe4EjYwHy/+YSrqawwiYEDow=) 2: 08FA1EC60C0911EDBDF8C44FC4F9AE02.roa (hash: alhBAf8jvRhFefsbDXOa8VjrZGUtci5WGYLgfA9nSPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:02:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13544 (0x34e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CA8, serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866 Validity Not Before: Oct 18 15:02:39 2025 GMT Not After : Oct 25 15:02:39 2025 GMT Subject: CN=68f3ac0f-092e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:be:8d:c3:57:c5:f3:12:9e:58:6d:43:81:77: 97:b1:40:dc:34:da:29:5c:f3:68:8a:5f:a3:88:37: 16:3a:e1:a4:dc:3c:5e:38:cf:fd:59:13:f5:12:ac: a0:cc:2d:ab:27:bc:37:3c:f7:7d:b0:91:25:8e:34: 8e:35:04:e6:54:8b:3f:0d:75:e2:92:15:2c:77:e0: 3e:f8:3e:9e:94:bd:85:fe:f9:97:df:4d:35:7a:cb: 74:04:41:97:0e:78:cb:3d:c3:39:0e:63:ac:1b:48: 36:fe:79:74:c1:86:82:0f:f6:1a:b2:2d:77:aa:d4: 70:f1:bd:cd:0d:d9:da:c6:e6:ba:2f:2d:4f:07:98: d1:df:45:16:bc:72:66:b0:24:20:a3:88:b3:53:9d: 51:35:f0:8e:bb:34:fa:4a:04:a6:23:f6:65:f3:64: 4f:90:2c:43:06:91:92:8e:12:ac:eb:3b:57:19:5f: a3:85:0d:3f:be:37:53:a3:bf:47:17:63:a3:9d:a8: 93:69:4b:e4:30:b9:96:58:96:55:e4:fd:09:0c:0a: 77:19:19:cd:ef:97:7f:53:fb:ab:bf:e8:27:aa:d7: 38:67:66:0b:ed:03:28:6f:80:c4:cd:71:5c:5d:a4: b1:b3:9d:04:68:c2:51:4c:75:f6:8d:8b:26:aa:b7: 6b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:6C:59:2B:E9:72:28:EB:C9:A4:AD:47:70:A0:08:A0:32:5B:62:D9 X509v3 Authority Key Identifier: keyid:1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:82:75:fe:ac:1d:83:6c:f5:3e:35:4b:87:3a:c6:5e:cb:9c: 9b:14:77:71:d4:6c:a5:19:b3:73:cb:5a:3b:43:ce:83:f7:05: 5e:c2:6c:15:32:21:2c:a6:a3:4f:b0:c7:10:fe:41:64:2f:c1: ee:b6:ae:98:cb:97:62:e7:21:b7:86:be:07:9d:a0:26:2f:48: 3d:88:cc:f5:05:0f:cc:b9:27:92:79:44:c2:cf:3b:e4:28:ee: 68:f0:c0:30:f6:62:d0:47:9d:d9:76:16:29:c6:6f:62:86:78: a9:57:ee:5c:75:a1:fb:71:52:96:bf:2a:59:3d:6d:c0:a4:72: 0a:68:54:b5:2f:a5:a5:6d:0f:a7:1f:ee:48:21:3a:6c:d9:c3: 4c:8e:ed:68:5f:93:2f:06:e3:8a:e5:ce:3b:fa:b8:d2:a9:30: 91:2f:88:70:00:9b:fc:fa:cd:ae:00:dd:8a:54:2d:ae:06:6b: c1:01:ce:2f:1e:97:69:a1:08:03:7b:a4:99:9c:d1:c5:a7:23: f0:df:0d:f5:2e:d1:b9:44:f5:b4:7b:fb:a8:6c:f5:26:a2:8c: 3f:82:53:b6:ad:eb:e5:e5:80:87:f3:55:18:3e:ac:cf:a1:fc: eb:be:d7:31:1b:92:31:26:5f:b9:07:44:ee:0f:86:e7:43:69: b1:13:b4:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDQTgxMTAvBgNVBAUTKDFFNzUyQzNEMTYwNDhDM0YzRjYzMjNEMkI5MTA3MEJG MjQ3RDY4NjYwHhcNMjUxMDE4MTUwMjM5WhcNMjUxMDI1MTUwMjM5WjAYMRYwFAYD VQQDEw02OGYzYWMwZi0wOTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsb6Nw1fF8xKeWG1DgXeXsUDcNNopXPNoil+jiDcWOuGk3DxeOM/9WRP1Eqyg zC2rJ7w3PPd9sJEljjSONQTmVIs/DXXikhUsd+A++D6elL2F/vmX3001est0BEGX DnjLPcM5DmOsG0g2/nl0wYaCD/Yasi13qtRw8b3NDdnaxua6Ly1PB5jR30UWvHJm sCQgo4izU51RNfCOuzT6SgSmI/Zl82RPkCxDBpGSjhKs6ztXGV+jhQ0/vjdTo79H F2OjnaiTaUvkMLmWWJZV5P0JDAp3GRnN75d/U/urv+gnqtc4Z2YL7QMob4DEzXFc XaSxs50EaMJRTHX2jYsmqrdrIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJsWSvp cijryaStR3CgCKAyW2LZMB8GA1UdIwQYMBaAFB51LD0WBIw/P2Mj0rkQcL8kfWhm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNBOC84NzAzMjI1ODFE OUExMUUyQUE4NkMyODcwOEIwMkNEMi9IblVzUFJZRWpEOF9ZeVBTdVJCd3Z5Ujlh R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huVXNQUllFakQ4X1l5UFN1UkJ3dnlSOWFHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNBOC84NzAzMjI1ODFEOUExMUUyQUE4NkMyODcwOEIwMkNEMi9IblVzUFJZRWpE OF9ZeVBTdVJCd3Z5UjlhR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhgnX+rB2DbPU+NUuHOsZey5ybFHdx1GylGbNzy1o7Q86D9wVewmwV MiEspqNPsMcQ/kFkL8Hutq6Yy5di5yG3hr4HnaAmL0g9iMz1BQ/MuSeSeUTCzzvk KO5o8MAw9mLQR53ZdhYpxm9ihnipV+5cdaH7cVKWvypZPW3ApHIKaFS1L6WlbQ+n H+5IITps2cNMju1oX5MvBuOK5c47+rjSqTCRL4hwAJv8+s2uAN2KVC2uBmvBAc4v HpdpoQgDe6SZnNHFpyPw3w31LtG5RPW0e/uobPUmoow/glO2revl5YCH81UYPqzP ofzrvtcxG5IxJl+5B0TuD4bnQ2mxE7SI -----END CERTIFICATE-----Generated at Mon Oct 20 05:32:11 2025 by rpki-client