$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft File: votHM7Guikc2t-kTJzPWVAkePSs.mft (raw, json) Hash identifier: UFYKGdtKxJmgqMW89pbl1P/0RZTegdXx4DT7Kz3BCww= Subject key identifier: 20:B1:F4:49:D8:66:FB:15:15:EB:22:57:4A:D3:18:2F:AE:AF:17:B0 Authority key identifier: BE:8B:47:33:B1:AE:8A:47:36:B7:E9:13:27:33:D6:54:09:1E:3D:2B Certificate issuer: /CN=A91B23D9/serialNumber=BE8B4733B1AE8A4736B7E9132733D654091E3D2B Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft Manifest number: 9D Signing time: Wed 05 Nov 2025 06:31:21 +0000 Manifest this update: Wed 05 Nov 2025 06:31:20 +0000 Manifest next update: Wed 12 Nov 2025 06:31:20 +0000 Files and hashes: 1: votHM7Guikc2t-kTJzPWVAkePSs.crl (hash: LvMEJnci2QLwxt+RFqAFka0hbRixNaT1b5JezYg4z6Q=) 2: A3815188C9D211EFB961F44DC4F9AE02.roa (hash: q3EE6bhQvO1jqMvzi5TnaMDMrsSHuVeWmQU0kCxzZeQ=) 3: 63817B3AC9D211EFBC6F934DC4F9AE02.roa (hash: +20O4NUWPTxqKeXepVeDCO/g+GXNSbJwYfdmkDR6B2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.crl rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:31:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23D9, serialNumber=BE8B4733B1AE8A4736B7E9132733D654091E3D2B Validity Not Before: Nov 5 06:31:20 2025 GMT Not After : Nov 12 06:31:20 2025 GMT Subject: CN=690aef38-1c1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:57:c4:64:da:b3:68:16:09:47:70:e8:b5:4a: 44:32:51:df:9a:dd:67:eb:ff:48:8f:d4:c2:b2:95: fd:4b:0d:70:b4:09:11:7a:3a:82:11:5d:a1:08:2b: 2d:80:a8:e6:f2:d5:4b:19:5e:85:0d:0d:de:e5:af: ca:f7:0c:d2:fd:5d:8c:a6:99:a7:92:39:70:0a:04: 49:b6:1e:19:61:38:8c:57:13:d6:c6:d9:3d:ff:a2: ce:a5:b4:52:ad:d7:10:68:83:ec:f2:77:66:45:f5: d5:99:85:aa:b9:1d:21:2b:28:2f:c8:ca:95:2d:1e: cd:8a:0c:10:88:a2:33:8c:02:da:81:26:04:ac:89: e1:b8:8a:e0:8a:1b:8e:bb:fe:10:40:de:38:1d:e1: 1b:50:49:05:ef:c7:c9:84:a6:f5:19:64:36:a2:7a: 62:01:8a:d0:72:68:ee:3a:e1:62:75:5b:00:58:2d: bb:2f:80:aa:a9:56:33:5c:c9:d1:38:be:9a:3c:61: 55:3b:e9:ec:cc:3c:34:3f:af:66:bd:26:4a:14:6b: 13:d8:2c:c6:8e:60:9f:d5:79:5d:2b:8c:9f:e1:d3: 2e:5f:10:b5:b8:a0:dd:ef:68:1f:ea:ae:f4:a1:2b: 52:ad:e6:49:58:c0:80:e8:92:8d:da:e9:de:d1:a1: 78:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:B1:F4:49:D8:66:FB:15:15:EB:22:57:4A:D3:18:2F:AE:AF:17:B0 X509v3 Authority Key Identifier: keyid:BE:8B:47:33:B1:AE:8A:47:36:B7:E9:13:27:33:D6:54:09:1E:3D:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:23:1f:8f:f0:02:19:8d:75:e2:af:15:41:1c:02:32:23:f7: ad:58:a3:26:e2:e3:8d:13:80:57:9d:9d:88:64:9c:9d:c0:5c: 12:09:f8:3d:20:5a:e3:42:bf:a2:c7:42:29:20:18:6c:3d:b4: 91:d0:43:fe:66:b4:54:58:93:22:73:6c:57:25:f0:d1:68:e0: 1d:96:19:f1:aa:c6:93:07:bc:23:87:2a:43:3c:5d:48:27:2e: 1e:39:86:c7:ef:50:d2:6f:97:aa:8f:06:39:6d:d6:ae:94:17: 71:f4:d2:7b:3c:db:a1:8e:a3:0a:fb:19:99:5f:26:7f:9d:03: af:5b:39:71:fc:1e:b3:64:50:e0:89:17:9f:ea:d1:02:83:93: 0d:8f:be:cf:b5:17:ca:b7:b9:b4:c6:8f:17:1f:3a:99:2e:27: 1e:06:ff:30:86:a1:ee:de:0c:60:26:ee:85:d9:d5:d9:80:a8: 1f:4c:14:39:63:0f:0f:47:d0:61:b4:23:57:74:7a:1c:3f:ee: 47:5c:48:ad:ff:1e:54:2f:32:dd:5e:bc:f3:d6:e1:47:d5:8e: 18:2f:a8:b0:5b:35:9c:a4:e6:1b:97:11:56:83:15:4b:22:54: 96:b4:03:f2:b6:b3:d9:26:38:39:05:3e:6b:77:09:84:e3:ea: 0d:36:46:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzRDkxMTAvBgNVBAUTKEJFOEI0NzMzQjFBRThBNDczNkI3RTkxMzI3MzNENjU0 MDkxRTNEMkIwHhcNMjUxMTA1MDYzMTIwWhcNMjUxMTEyMDYzMTIwWjAYMRYwFAYD VQQDEw02OTBhZWYzOC0xYzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVfEZNqzaBYJR3DotUpEMlHfmt1n6/9Ij9TCspX9Sw1wtAkRejqCEV2hCCst gKjm8tVLGV6FDQ3e5a/K9wzS/V2MppmnkjlwCgRJth4ZYTiMVxPWxtk9/6LOpbRS rdcQaIPs8ndmRfXVmYWquR0hKygvyMqVLR7NigwQiKIzjALagSYErInhuIrgihuO u/4QQN44HeEbUEkF78fJhKb1GWQ2onpiAYrQcmjuOuFidVsAWC27L4CqqVYzXMnR OL6aPGFVO+nszDw0P69mvSZKFGsT2CzGjmCf1XldK4yf4dMuXxC1uKDd72gf6q70 oStSreZJWMCA6JKN2une0aF4kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCx9EnY ZvsVFesiV0rTGC+urxewMB8GA1UdIwQYMBaAFL6LRzOxropHNrfpEycz1lQJHj0r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNEOS83QjhCRDZDQ0M5 RDExMUVGOTc1QkRDNEJDNEY5QUUwMi92b3RITTdHdWlrYzJ0LWtUSnpQV1ZBa2VQ U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZvdEhNN0d1aWtjMnQta1RKelBXVkFrZVBTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNEOS83QjhCRDZDQ0M5RDExMUVGOTc1QkRDNEJDNEY5QUUwMi92b3RITTdHdWlr YzJ0LWtUSnpQV1ZBa2VQU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXIx+P8AIZjXXirxVBHAIyI/etWKMm4uONE4BXnZ2IZJydwFwSCfg9 IFrjQr+ix0IpIBhsPbSR0EP+ZrRUWJMic2xXJfDRaOAdlhnxqsaTB7wjhypDPF1I Jy4eOYbH71DSb5eqjwY5bdaulBdx9NJ7PNuhjqMK+xmZXyZ/nQOvWzlx/B6zZFDg iRef6tECg5MNj77PtRfKt7m0xo8XHzqZLiceBv8whqHu3gxgJu6F2dXZgKgfTBQ5 Yw8PR9BhtCNXdHocP+5HXEit/x5ULzLdXrzz1uFH1Y4YL6iwWzWcpOYblxFWgxVL IlSWtAPytrPZJjg5BT5rdwmE4+oNNkYm -----END CERTIFICATE-----Generated at Thu Nov 6 02:43:29 2025 by rpki-client