$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft File: hemZwivuAcMmTT0iZ1ghCS__0Cw.mft (raw, json) Hash identifier: GpBsbbyG0tOWICRZYfC62GoHTXD5rAlEmcjcTzsfU9w= Subject key identifier: 15:3D:34:2F:2D:EE:10:FB:C9:93:C1:D2:A0:93:D8:D1:8C:0D:F7:1F Authority key identifier: 85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C Certificate issuer: /CN=A91AC132/serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft Manifest number: A8 Signing time: Mon 03 Nov 2025 06:15:24 +0000 Manifest this update: Mon 03 Nov 2025 06:15:24 +0000 Manifest next update: Mon 10 Nov 2025 06:15:23 +0000 Files and hashes: 1: hemZwivuAcMmTT0iZ1ghCS__0Cw.crl (hash: eULcclgeSUroA8L2ifcPwY5A2d1NAY1q4vrfpkqqOsA=) 2: 8B91AD8CD6B811EF86FC5149C4F9AE02.roa (hash: nKrpei7NHXS/yvzIer9NaLALl/Q2sUCsHstVjHOpR2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC132, serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Validity Not Before: Nov 3 06:15:24 2025 GMT Not After : Nov 10 06:15:23 2025 GMT Subject: CN=6908487c-d6a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d7:01:7b:f6:e1:c3:b3:d9:9a:62:77:1a:d2: a6:21:d6:c0:49:ff:cb:26:4b:8b:ca:61:b2:8d:ae: e4:85:34:5c:44:c5:5d:f0:fb:f2:02:36:4e:4d:e9: 69:36:1d:ba:2c:45:6d:f9:84:36:02:de:46:de:d8: 3b:3c:ec:59:49:a4:a9:d4:10:46:7c:66:c3:6f:61: 39:06:9e:54:de:58:a2:10:c7:d0:ad:e6:a7:84:7d: ac:e7:82:6f:31:c2:4d:59:40:8e:34:16:3b:1a:a0: cb:ae:09:6d:a8:80:80:15:f3:34:10:3a:e4:8c:26: da:44:af:6d:02:0b:4b:6c:d9:f1:93:9a:c6:57:c9: 6a:9c:9f:6f:11:5b:a0:0a:c3:81:02:d4:65:75:31: 5b:05:73:2c:09:05:ef:be:a2:b2:2b:05:39:40:c8: 62:32:51:b1:bc:82:af:18:dd:ff:3c:07:02:8a:08: 16:08:4d:17:44:93:13:21:4a:7d:32:d4:e2:46:21: 96:94:d5:ea:54:df:3e:58:8e:c5:b0:5c:92:6f:ed: 28:de:bc:2e:f3:fd:d2:1f:ce:dd:44:e1:a9:90:01: 58:6e:ba:19:ce:f6:a5:9b:d7:a3:f4:81:a6:98:a4: 1f:96:ed:41:7a:b2:30:3d:6f:ce:46:99:78:37:d7: f7:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:3D:34:2F:2D:EE:10:FB:C9:93:C1:D2:A0:93:D8:D1:8C:0D:F7:1F X509v3 Authority Key Identifier: keyid:85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:84:20:88:a4:11:32:96:da:c1:7f:5e:e9:91:20:27:e4:83: 58:09:9c:fc:14:62:45:ce:d5:9c:5c:82:c0:dd:ef:a7:9c:83: 17:f1:1f:d3:29:3e:f8:f0:47:f3:15:e8:8f:03:37:69:34:39: bc:29:2e:1c:af:f8:42:49:c0:78:4b:c0:9f:e0:cf:20:11:f6: 04:9e:6b:0d:52:ef:a8:3c:7f:ba:48:6a:0d:e5:98:ff:ab:27: 25:f4:49:c1:ad:50:99:fb:50:eb:03:b7:74:9f:94:dd:a9:7b: c5:14:f0:8e:2c:79:99:45:70:b9:c2:9f:b3:93:6d:ed:a0:d7: 21:a7:21:79:5b:fe:e7:7f:5f:cc:09:6f:87:f8:0f:b9:33:59: 8c:d1:d6:0c:60:70:0f:7d:d3:8e:ce:89:00:fc:87:f8:93:49: c2:4d:41:52:5c:c1:44:ab:bf:4f:0d:6f:ad:ca:ad:ab:a3:5b: 14:fa:71:84:40:3b:4c:4f:81:16:d8:3b:29:2f:5a:10:33:8f: 79:ee:77:1b:0a:4f:95:7d:97:6a:78:f4:77:f2:00:ae:1e:25: d8:ff:5d:e0:66:e1:60:76:c7:dc:9a:92:52:9f:4d:2a:9f:95: 8d:3f:6a:17:8a:cf:75:58:2d:ca:22:a8:89:3b:2a:5d:6e:a4: fb:00:17:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUMxMzIxMTAvBgNVBAUTKDg1RTk5OUMyMkJFRTAxQzMyNjREM0QyMjY3NTgyMTA5 MkZGRkQwMkMwHhcNMjUxMTAzMDYxNTI0WhcNMjUxMTEwMDYxNTIzWjAYMRYwFAYD VQQDEw02OTA4NDg3Yy1kNmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tcBe/bhw7PZmmJ3GtKmIdbASf/LJkuLymGyja7khTRcRMVd8PvyAjZOTelp Nh26LEVt+YQ2At5G3tg7POxZSaSp1BBGfGbDb2E5Bp5U3liiEMfQreanhH2s54Jv McJNWUCONBY7GqDLrgltqICAFfM0EDrkjCbaRK9tAgtLbNnxk5rGV8lqnJ9vEVug CsOBAtRldTFbBXMsCQXvvqKyKwU5QMhiMlGxvIKvGN3/PAcCiggWCE0XRJMTIUp9 MtTiRiGWlNXqVN8+WI7FsFySb+0o3rwu8/3SH87dROGpkAFYbroZzvalm9ej9IGm mKQflu1BerIwPW/ORpl4N9f3IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBU9NC8t 7hD7yZPB0qCT2NGMDfcfMB8GA1UdIwQYMBaAFIXpmcIr7gHDJk09ImdYIQkv/9As MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzEzMi9DNEZBMTRGOEI4 MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFjTW1UVDBpWjFnaENTX18w Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlbVp3aXZ1QWNNbVRUMGlaMWdoQ1NfXzBDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzEzMi9DNEZBMTRGOEI4MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFj TW1UVDBpWjFnaENTX18wQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQhCCIpBEyltrBf17pkSAn5INYCZz8FGJFztWcXILA3e+nnIMX8R/T KT748EfzFeiPAzdpNDm8KS4cr/hCScB4S8Cf4M8gEfYEnmsNUu+oPH+6SGoN5Zj/ qycl9EnBrVCZ+1DrA7d0n5TdqXvFFPCOLHmZRXC5wp+zk23toNchpyF5W/7nf1/M CW+H+A+5M1mM0dYMYHAPfdOOzokA/If4k0nCTUFSXMFEq79PDW+tyq2ro1sU+nGE QDtMT4EW2DspL1oQM4957ncbCk+VfZdqePR38gCuHiXY/13gZuFgdsfcmpJSn00q n5WNP2oXis91WC3KIqiJOypdbqT7ABcy -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:06 2025 by rpki-client