$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft File: mHokA1wVORcCC2UduY8JHwqqMic.mft (raw, json) Hash identifier: 1ajv7QPhP/QPzy3uhs3gbi6rwLkzkIzWDxynPKs4hmU= Subject key identifier: CC:DA:BD:70:E2:31:78:99:A7:3E:49:3C:B4:68:13:7B:B8:12:6F:E3 Authority key identifier: 98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 Certificate issuer: /CN=A91A31F5/serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft Manifest number: 93 Signing time: Mon 03 Nov 2025 06:28:25 +0000 Manifest this update: Mon 03 Nov 2025 06:28:24 +0000 Manifest next update: Mon 10 Nov 2025 06:28:24 +0000 Files and hashes: 1: mHokA1wVORcCC2UduY8JHwqqMic.crl (hash: JIOHwFrNsWZ20zd45dY1Sj7JJr5w5OZ3tuXHqEai9Pg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Validity Not Before: Nov 3 06:28:24 2025 GMT Not After : Nov 10 06:28:24 2025 GMT Subject: CN=69084b88-45b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:cd:0a:db:d1:fa:af:1e:2b:dc:23:54:ed:f6: 3f:42:3a:5b:5c:f1:8b:a6:81:84:1a:e0:bb:63:d3: e2:0e:66:bc:b1:4d:05:48:e4:15:54:45:26:d3:50: 57:6f:8d:5c:86:c6:4e:67:f7:f7:06:ce:5c:85:0a: 23:96:81:be:45:78:9c:40:f5:b1:b3:0d:ca:54:75: f1:8d:92:56:82:95:ff:d5:32:0e:c0:7f:e3:ff:da: 97:74:b8:cf:46:b0:cf:2a:68:76:26:f2:79:3d:08: 14:2a:75:f7:cf:3b:5f:c9:52:c2:55:53:3c:bc:57: a7:17:56:d7:39:ff:11:5b:3e:fd:af:d9:12:e5:72: cc:ad:93:22:3c:b8:2c:75:7d:74:1b:71:ed:a2:1a: 56:9e:6a:68:69:1e:ee:61:e8:9c:1b:ec:c4:5f:66: 84:df:55:28:f2:60:21:58:2f:96:27:d5:ad:f9:db: f9:4f:ab:da:a8:4b:49:b7:35:0f:44:f6:8b:4c:b9: 9f:17:ae:ef:4a:3b:70:db:1f:5b:c3:25:2f:53:66: 29:43:2a:b0:f4:49:aa:75:78:8f:9b:57:c1:97:66: a7:3e:b9:8d:c3:dc:85:fb:10:3e:ea:0c:68:f7:48: 95:dd:02:d2:83:ec:20:ff:58:7b:e8:43:ca:50:85: c1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:DA:BD:70:E2:31:78:99:A7:3E:49:3C:B4:68:13:7B:B8:12:6F:E3 X509v3 Authority Key Identifier: keyid:98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:77:b7:db:a1:78:96:9d:d8:18:50:f5:19:8b:8d:4e:9f:39: 9e:00:01:3e:6c:f3:1a:75:ee:26:d6:ae:6e:c1:ed:5d:19:a0: 18:c3:1b:57:00:3e:02:33:21:aa:a6:56:63:bd:e9:0e:3c:a3: 37:80:63:09:d2:1f:41:5f:18:95:23:10:7b:5e:71:44:5a:ae: e5:29:93:d2:cb:f5:ec:b3:3c:64:f1:fe:cc:a0:7c:3f:ae:c3: 48:71:13:8b:cc:ce:2d:c3:4c:de:cb:54:87:e7:1e:8a:a7:62: ba:67:b3:2c:22:cf:93:19:71:88:79:97:9f:51:dc:5f:27:8f: 9a:0a:02:77:f2:97:af:5d:4b:30:79:f7:fd:c5:a0:c1:20:c7: 76:99:45:3a:8b:6f:39:ae:93:75:df:fa:cb:f0:d2:41:7c:dc: b2:d2:6a:a2:22:5d:82:35:74:61:6e:3f:a9:f0:4f:32:0b:df: 49:05:d5:f6:d2:ad:f3:53:91:72:af:d1:53:ce:9d:91:57:e7: 5e:bc:7d:d9:07:d9:44:d1:54:ba:44:8e:3c:b6:8c:6c:d1:f7: 45:ce:25:a2:42:09:ec:bd:ae:76:27:2c:c2:b0:c6:14:d2:9f: 0e:00:57:62:c7:1f:62:f9:80:46:50:ef:16:f5:8f:ce:37:1a: cc:b3:9a:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMxRjUxMTAvBgNVBAUTKDk4N0EyNDAzNUMxNTM5MTcwMjBCNjUxREI5OEYwOTFG MEFBQTMyMjcwHhcNMjUxMTAzMDYyODI0WhcNMjUxMTEwMDYyODI0WjAYMRYwFAYD VQQDEw02OTA4NGI4OC00NWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAls0K29H6rx4r3CNU7fY/QjpbXPGLpoGEGuC7Y9PiDma8sU0FSOQVVEUm01BX b41chsZOZ/f3Bs5chQojloG+RXicQPWxsw3KVHXxjZJWgpX/1TIOwH/j/9qXdLjP RrDPKmh2JvJ5PQgUKnX3zztfyVLCVVM8vFenF1bXOf8RWz79r9kS5XLMrZMiPLgs dX10G3HtohpWnmpoaR7uYeicG+zEX2aE31Uo8mAhWC+WJ9Wt+dv5T6vaqEtJtzUP RPaLTLmfF67vSjtw2x9bwyUvU2YpQyqw9EmqdXiPm1fBl2anPrmNw9yF+xA+6gxo 90iV3QLSg+wg/1h76EPKUIXBfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzavXDi MXiZpz5JPLRoE3u4Em/jMB8GA1UdIwQYMBaAFJh6JANcFTkXAgtlHbmPCR8KqjIn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzFGNS9BRkRFRkU1NEQ2 RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9tSG9rQTF3Vk9SY0NDMlVkdVk4Skh3cXFN aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21Ib2tBMXdWT1JjQ0MyVWR1WThKSHdxcU1pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzFGNS9BRkRFRkU1NEQ2RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9tSG9rQTF3Vk9S Y0NDMlVkdVk4Skh3cXFNaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAud7fboXiWndgYUPUZi41OnzmeAAE+bPMade4m1q5uwe1dGaAYwxtX AD4CMyGqplZjvekOPKM3gGMJ0h9BXxiVIxB7XnFEWq7lKZPSy/Xsszxk8f7MoHw/ rsNIcROLzM4tw0zey1SH5x6Kp2K6Z7MsIs+TGXGIeZefUdxfJ4+aCgJ38pevXUsw eff9xaDBIMd2mUU6i285rpN13/rL8NJBfNyy0mqiIl2CNXRhbj+p8E8yC99JBdX2 0q3zU5Fyr9FTzp2RV+devH3ZB9lE0VS6RI48toxs0fdFziWiQgnsva52JyzCsMYU 0p8OAFdixx9i+YBGUO8W9Y/ONxrMs5ox -----END CERTIFICATE-----Generated at Wed Nov 5 05:23:42 2025 by rpki-client