$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft File: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft (raw, json) Hash identifier: jKP/PI1ypCWibRjTG5OdS3Qk8y63Yl7O5MIyalCPBnA= Subject key identifier: 1C:6E:7F:B1:39:FE:BB:59:99:89:CA:0E:79:F8:64:A0:18:07:E3:CB Authority key identifier: 85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 Certificate issuer: /CN=A91AAC4B/serialNumber=852046915185F855E09EB344788139430E740F07 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft Manifest number: 99 Signing time: Mon 03 Nov 2025 06:22:48 +0000 Manifest this update: Mon 03 Nov 2025 06:22:47 +0000 Manifest next update: Mon 10 Nov 2025 06:22:47 +0000 Files and hashes: 1: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl (hash: WgziKK0kbVE0nCYQ7jQtBFzugM4WpVXYiH5wvX2JmLE=) 2: B710956ACD7E11EFBBAE2137C4F9AE02.roa (hash: JjAbZf5k619HY4BxA5a3XYqwkE4mZ8Dpr0cRyMIFTZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:22:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=852046915185F855E09EB344788139430E740F07 Validity Not Before: Nov 3 06:22:47 2025 GMT Not After : Nov 10 06:22:47 2025 GMT Subject: CN=69084a38-0656 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9d:c3:30:92:cd:dd:82:7f:60:66:48:ee:b6: e2:a9:dd:15:47:6f:cf:7f:7a:90:05:47:f1:22:42: 68:55:38:ee:97:a9:97:37:ce:1a:e2:d5:ad:5f:66: 97:3d:2d:d2:37:8b:9a:19:cd:19:d0:45:6d:dc:ea: 62:8d:5f:71:0a:e7:be:2d:a2:77:15:2b:82:8b:0e: cf:2e:20:51:60:74:df:7e:43:e8:e1:1f:5a:48:fc: 89:23:5b:be:7f:c8:f8:63:79:fb:6a:92:63:3e:91: a6:ba:09:51:c2:db:ab:9b:b5:e2:00:be:81:38:94: d9:05:2b:5c:3b:21:46:e1:fd:c3:39:b3:c9:36:9c: df:3e:50:b6:49:df:b4:b7:d6:13:91:3b:2d:e0:35: 58:05:76:b7:15:9b:39:fc:f5:62:0a:87:db:93:a7: 0c:79:92:82:a8:02:b2:07:93:c7:80:0e:10:73:3e: 0f:0a:ea:70:5d:ca:8d:cf:b1:7e:64:87:2f:01:86: e3:20:07:22:70:a8:2b:43:25:7e:a3:00:e8:42:b3: c6:f5:4d:2b:b3:a8:e6:34:93:08:70:44:26:45:1e: 01:79:bc:3c:db:50:05:11:d1:33:2c:55:3f:e1:e7: 49:6a:ab:1c:ef:53:d0:56:f9:21:c4:87:a4:8c:85: cf:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:6E:7F:B1:39:FE:BB:59:99:89:CA:0E:79:F8:64:A0:18:07:E3:CB X509v3 Authority Key Identifier: keyid:85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:24:88:21:1d:b3:ff:4f:2b:5e:71:1d:f5:5b:b1:e5:36:da: bd:ed:4a:75:e5:a1:af:3e:d0:43:71:9d:d9:e7:fb:1c:b5:3b: bb:05:41:d7:68:0d:a5:e3:a3:64:da:9d:dd:b2:00:2b:6d:7f: 60:eb:4f:78:00:52:15:bf:33:c0:58:89:90:80:a9:5b:fd:40: 5f:03:70:71:77:c3:f1:02:97:00:ad:76:eb:2c:42:6c:7b:94: c9:d5:3f:85:c1:54:24:ae:ee:a7:2a:f7:e3:45:57:14:00:93: d4:e9:9f:ce:d7:ca:eb:4e:bc:71:d9:83:05:34:12:06:0e:de: 0e:5f:89:b8:8a:87:d8:64:49:d1:82:a8:30:39:bd:79:4c:96: 30:9e:58:dd:aa:91:e4:1c:6d:03:7b:9a:c6:b3:0d:30:ac:6b: a7:de:4d:99:ab:29:28:f9:70:d6:97:50:02:10:54:85:50:f7: 9a:ad:62:c0:37:eb:ad:ee:5e:4c:d1:15:a7:9e:fd:25:5d:c4: d3:a1:4f:25:d6:5a:d7:c2:f7:3f:20:08:94:5f:9f:6b:8c:cb: 64:14:f0:fa:5e:e5:f7:c8:f6:2f:d1:ab:59:ef:1e:58:90:ec: 29:ad:40:3c:16:9d:ec:c9:5e:53:f6:f8:47:c3:c9:86:0b:b7: 29:1f:d2:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDNEIxMTAvBgNVBAUTKDg1MjA0NjkxNTE4NUY4NTVFMDlFQjM0NDc4ODEzOTQz MEU3NDBGMDcwHhcNMjUxMTAzMDYyMjQ3WhcNMjUxMTEwMDYyMjQ3WjAYMRYwFAYD VQQDEw02OTA4NGEzOC0wNjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm53DMJLN3YJ/YGZI7rbiqd0VR2/Pf3qQBUfxIkJoVTjul6mXN84a4tWtX2aX PS3SN4uaGc0Z0EVt3OpijV9xCue+LaJ3FSuCiw7PLiBRYHTffkPo4R9aSPyJI1u+ f8j4Y3n7apJjPpGmuglRwturm7XiAL6BOJTZBStcOyFG4f3DObPJNpzfPlC2Sd+0 t9YTkTst4DVYBXa3FZs5/PViCofbk6cMeZKCqAKyB5PHgA4Qcz4PCupwXcqNz7F+ ZIcvAYbjIAcicKgrQyV+owDoQrPG9U0rs6jmNJMIcEQmRR4Bebw821AFEdEzLFU/ 4edJaqsc71PQVvkhxIekjIXP7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxuf7E5 /rtZmYnKDnn4ZKAYB+PLMB8GA1UdIwQYMBaAFIUgRpFRhfhV4J6zRHiBOUMOdA8H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUM0Qi9FNjM1Rjc5NkNE N0QxMUVGQUEwNzIzMEFDNEY5QUUwMi9oU0JHa1ZHRi1GWGduck5FZUlFNVF3NTBE d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hTQkdrVkdGLUZYZ25yTkVlSUU1UXc1MER3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUM0Qi9FNjM1Rjc5NkNEN0QxMUVGQUEwNzIzMEFDNEY5QUUwMi9oU0JHa1ZHRi1G WGduck5FZUlFNVF3NTBEd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkJIghHbP/TytecR31W7HlNtq97Up15aGvPtBDcZ3Z5/sctTu7BUHX aA2l46Nk2p3dsgArbX9g6094AFIVvzPAWImQgKlb/UBfA3Bxd8PxApcArXbrLEJs e5TJ1T+FwVQkru6nKvfjRVcUAJPU6Z/O18rrTrxx2YMFNBIGDt4OX4m4iofYZEnR gqgwOb15TJYwnljdqpHkHG0De5rGsw0wrGun3k2Zqyko+XDWl1ACEFSFUPearWLA N+ut7l5M0RWnnv0lXcTToU8l1lrXwvc/IAiUX59rjMtkFPD6XuX3yPYv0atZ7x5Y kOwprUA8Fp3syV5T9vhHw8mGC7cpH9LP -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:12 2025 by rpki-client