$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft File: HaAa_AiIyqYXHgoOdBz8kE7S328.mft (raw, json) Hash identifier: yvEcBZ7t3n5lctLfzQA3DZ3KXvZPT+PQ04EoEU9Mx9Q= Subject key identifier: FF:2A:E8:57:4D:82:87:29:66:CB:D3:E2:37:D5:92:A5:E5:9E:B4:9E Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 0922 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft Manifest number: 091C Signing time: Tue 04 Nov 2025 20:21:37 +0000 Manifest this update: Tue 04 Nov 2025 20:21:37 +0000 Manifest next update: Tue 11 Nov 2025 20:21:37 +0000 Files and hashes: 1: HaAa_AiIyqYXHgoOdBz8kE7S328.crl (hash: nLRXtq3E/kq/y19TnAiT1vpXfbX+89i1Fyz8oX5JxZg=) 2: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (hash: KFIHw6tMuHLxcRTo8fAv1CEG7OYhkgzMk8UZPi5UKvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2338 (0x922) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Nov 4 20:21:37 2025 GMT Not After : Nov 11 20:21:37 2025 GMT Subject: CN=690a6051-1929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8f:73:1b:37:fe:f5:43:38:a9:d8:a3:50:65: df:77:64:5e:29:73:72:94:24:ee:4f:43:7c:17:84: f4:ae:ee:11:ab:7a:05:11:d8:86:1f:54:30:5b:83: 97:fb:bd:99:98:68:ce:5f:f4:74:51:f5:a9:c3:ae: cc:db:9e:ca:aa:50:89:8b:73:a1:80:cc:e5:f6:ac: 81:ce:40:6e:7b:0e:ba:e6:2a:04:a0:ea:f6:31:e9: 11:28:5f:1b:76:cb:6d:d1:2d:43:bb:03:e2:72:a7: 82:2e:49:a4:ff:15:21:3d:42:c2:89:de:22:7a:a3: c8:8d:03:7f:54:d7:70:4c:87:86:79:43:bf:a4:84: c2:52:96:db:57:69:5f:6e:9f:11:ff:56:fe:f8:dd: 8a:9d:cc:41:a9:13:ed:15:a6:6b:7c:8d:67:a3:f1: 07:c3:ab:dc:a4:0c:d0:74:52:f6:4d:4f:58:12:26: 28:e3:76:f5:76:27:5a:31:bc:f9:73:b0:f8:1f:59: 20:3b:d5:3d:18:1b:ff:c2:15:ef:22:af:f1:41:a0: 5e:2e:b6:e6:c7:c3:3d:2a:99:ec:da:d2:cd:03:24: d2:34:57:21:67:bc:96:a9:d8:a8:93:71:ac:49:33: f3:c2:b6:bd:1e:47:fb:bf:b1:5f:5b:45:fc:49:78: 8f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:2A:E8:57:4D:82:87:29:66:CB:D3:E2:37:D5:92:A5:E5:9E:B4:9E X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:88:d8:3a:45:5a:b2:f9:a5:78:e8:22:35:3d:38:5e:10:fb: 50:15:91:70:60:7e:e1:5a:54:15:b9:5a:34:50:70:22:d9:94: bb:3a:3d:f5:ef:4d:45:1d:e9:d0:58:db:34:47:cc:e8:b4:51: 29:86:95:a9:ac:a9:ac:e5:92:5d:76:85:d8:45:fa:a1:a4:45: bc:8e:72:05:f3:8e:94:62:9b:ba:52:35:61:d8:86:8e:7e:7c: 51:c4:9f:ad:1b:27:45:4d:22:80:cf:c8:50:cd:4f:9f:69:68: ed:ef:85:e7:d4:95:14:b9:d5:9a:f1:df:66:c1:da:1f:4b:4c: e4:a0:c3:47:53:b1:7e:c8:26:59:ca:16:27:cc:e5:ec:08:24: 12:16:09:c9:cd:0c:13:51:9f:63:1d:21:91:af:87:67:16:ff: 24:9b:76:ac:e8:9f:a0:18:96:3e:66:7f:af:f7:eb:1c:9a:11: b7:de:e4:e7:7f:f5:a1:15:37:96:46:bd:3d:82:d5:fb:30:e2: 1d:3d:f6:59:a3:3b:67:5d:39:7a:85:53:31:4c:96:96:6e:d9: e5:c8:af:77:68:b7:b3:98:6f:7f:40:f2:ac:3f:28:d9:a0:6a: 49:71:13:9a:56:5c:7c:d1:45:1a:47:4b:18:e6:8a:9e:3b:0e: 58:de:50:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjUxMTA0MjAyMTM3WhcNMjUxMTExMjAyMTM3WjAYMRYwFAYD VQQDEw02OTBhNjA1MS0xOTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr49zGzf+9UM4qdijUGXfd2ReKXNylCTuT0N8F4T0ru4Rq3oFEdiGH1QwW4OX +72ZmGjOX/R0UfWpw67M257KqlCJi3OhgMzl9qyBzkBuew665ioEoOr2MekRKF8b dstt0S1DuwPicqeCLkmk/xUhPULCid4ieqPIjQN/VNdwTIeGeUO/pITCUpbbV2lf bp8R/1b++N2KncxBqRPtFaZrfI1no/EHw6vcpAzQdFL2TU9YEiYo43b1didaMbz5 c7D4H1kgO9U9GBv/whXvIq/xQaBeLrbmx8M9Kpns2tLNAyTSNFchZ7yWqdiok3Gs STPzwra9Hkf7v7FfW0X8SXiP7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP8q6FdN gocpZsvT4jfVkqXlnrSeMB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlx WVhIZ29PZEJ6OGtFN1MzMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAliNg6RVqy+aV46CI1PTheEPtQFZFwYH7hWlQVuVo0UHAi2ZS7Oj31 701FHenQWNs0R8zotFEphpWprKms5ZJddoXYRfqhpEW8jnIF846UYpu6UjVh2IaO fnxRxJ+tGydFTSKAz8hQzU+faWjt74Xn1JUUudWa8d9mwdofS0zkoMNHU7F+yCZZ yhYnzOXsCCQSFgnJzQwTUZ9jHSGRr4dnFv8km3as6J+gGJY+Zn+v9+scmhG33uTn f/WhFTeWRr09gtX7MOIdPfZZoztnXTl6hVMxTJaWbtnlyK93aLezmG9/QPKsPyjZ oGpJcROaVlx80UUaR0sY5oqeOw5Y3lAO -----END CERTIFICATE-----Generated at Wed Nov 5 05:27:20 2025 by rpki-client