$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: MMkNhjT0GH1dXN27RyuilaRodjaaJfFJAi4hmmZLb2U= Subject key identifier: 1F:61:9F:37:9A:BE:27:80:52:8E:ED:EC:EE:79:E9:F1:EE:01:90:AA Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: BF Signing time: Mon 03 Nov 2025 05:55:38 +0000 Manifest this update: Mon 03 Nov 2025 05:55:38 +0000 Manifest next update: Mon 10 Nov 2025 05:55:38 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: qwJbKuVdc80hbjGdWODkL7Q0PEk3kNEHcAxOtHAAsEk=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: Z1yPOrOVBAA0wAoiECPiJ9d5WH/bmXdgM8w0h3GaBUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:55:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Nov 3 05:55:38 2025 GMT Not After : Nov 10 05:55:38 2025 GMT Subject: CN=690843da-3606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:15:97:e6:20:6b:7f:0b:f5:e0:7a:b1:cc:7c: 87:82:45:d9:c2:94:75:d9:ef:4b:e2:ca:a5:0b:b8: dd:5a:03:cf:20:7e:27:25:5d:ba:56:ad:ec:e1:4d: 8e:a6:a4:1c:89:b5:33:b9:91:c2:7e:b6:86:54:fe: 83:18:86:6d:48:95:da:de:7d:d7:83:45:9f:ce:34: 91:88:9c:e7:c6:ab:2c:6c:07:5a:8c:2c:3d:7a:4a: d4:f5:67:f1:7a:76:af:8b:24:ef:5c:5f:cb:8b:55: ff:a6:32:d0:66:2e:a4:d5:f0:c2:db:7f:0d:7b:22: 92:8b:26:de:8e:04:6c:f4:76:83:b2:ef:f1:8b:aa: c1:d7:02:05:ff:ec:93:1d:14:15:93:70:55:67:84: 59:6c:23:21:2c:b7:5f:ab:8d:49:a3:68:15:19:cf: 26:5c:f0:14:5d:f5:a0:18:8c:85:4f:17:9b:87:9f: 36:b8:7d:66:4b:1d:65:e3:71:8f:c7:32:7d:5f:0e: e3:53:90:fa:99:74:af:c1:39:38:93:57:75:3f:06: 64:8c:49:17:3c:cf:97:e2:87:a2:81:04:1b:7f:75: 51:ff:c4:02:ee:30:37:9c:4d:8c:83:07:7e:aa:8e: 4e:21:9e:03:3c:81:a8:b3:ca:34:d1:5b:a9:f7:2e: cf:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:61:9F:37:9A:BE:27:80:52:8E:ED:EC:EE:79:E9:F1:EE:01:90:AA X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:f0:17:ed:b6:e2:3d:47:93:15:5d:21:d7:3a:ab:05:e8:a3: d8:d1:10:81:ed:0d:1e:b4:2e:44:13:1e:71:d0:ac:e0:a8:1d: 0b:b6:b1:7e:c2:cf:04:1a:d4:b1:4f:20:73:47:7c:5e:e5:ff: 1d:43:75:75:f8:26:6e:de:14:36:ea:c1:74:bc:9e:44:eb:d4: 78:dd:04:ec:17:24:1d:1b:d8:ee:93:76:3e:e9:2a:4f:5a:8f: 40:79:3e:e8:95:32:9f:5a:a5:6f:fa:d3:58:99:31:88:1e:60: a3:6f:93:32:3e:b6:12:66:fd:b8:d4:78:ea:da:fb:11:cb:ff: 7b:14:86:df:d3:b3:44:53:a1:d3:16:54:12:6f:2c:10:05:d8: f8:88:64:e7:cc:05:cc:17:e7:ed:c6:69:e2:a8:e4:43:80:2b: be:79:ab:40:c4:ca:eb:ee:36:09:a5:17:ea:9a:7e:71:48:97: 95:84:84:a1:5c:d6:24:be:d6:75:5f:ff:63:9c:0e:bf:c3:0f: 94:9e:cc:4d:5f:fd:04:5a:27:79:99:4e:f5:43:11:7f:07:cd: 97:84:af:e6:36:cf:f3:42:29:f0:55:33:d2:85:aa:db:ea:6c: 26:fc:5c:5c:47:13:93:4c:81:c7:13:80:89:9b:2d:d5:67:97: 9c:24:cf:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFNzAxMTAvBgNVBAUTKDFFNjU2RERFQzdFOThEMjRBMTg2RkZEQjZGNTk3NzEw QUFGRjJBOEQwHhcNMjUxMTAzMDU1NTM4WhcNMjUxMTEwMDU1NTM4WjAYMRYwFAYD VQQDEw02OTA4NDNkYS0zNjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9xWX5iBrfwv14HqxzHyHgkXZwpR12e9L4sqlC7jdWgPPIH4nJV26Vq3s4U2O pqQcibUzuZHCfraGVP6DGIZtSJXa3n3Xg0WfzjSRiJznxqssbAdajCw9ekrU9Wfx enaviyTvXF/Li1X/pjLQZi6k1fDC238NeyKSiybejgRs9HaDsu/xi6rB1wIF/+yT HRQVk3BVZ4RZbCMhLLdfq41Jo2gVGc8mXPAUXfWgGIyFTxebh582uH1mSx1l43GP xzJ9Xw7jU5D6mXSvwTk4k1d1PwZkjEkXPM+X4oeigQQbf3VR/8QC7jA3nE2Mgwd+ qo5OIZ4DPIGos8o00Vup9y7PbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9hnzea vieAUo7t7O556fHuAZCqMB8GA1UdIwQYMBaAFB5lbd7H6Y0koYb/229ZdxCq/yqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEU3MC8zNUM3NkM3RTk1 NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpTU2hodl9iYjFsM0VLcl9L bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEU3MC8zNUM3NkM3RTk1NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpT U2hodl9iYjFsM0VLcl9LbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV8BfttuI9R5MVXSHXOqsF6KPY0RCB7Q0etC5EEx5x0KzgqB0LtrF+ ws8EGtSxTyBzR3xe5f8dQ3V1+CZu3hQ26sF0vJ5E69R43QTsFyQdG9juk3Y+6SpP Wo9AeT7olTKfWqVv+tNYmTGIHmCjb5MyPrYSZv241Hjq2vsRy/97FIbf07NEU6HT FlQSbywQBdj4iGTnzAXMF+ftxmniqORDgCu+eatAxMrr7jYJpRfqmn5xSJeVhISh XNYkvtZ1X/9jnA6/ww+UnsxNX/0EWid5mU71QxF/B82XhK/mNs/zQinwVTPSharb 6mwm/FxcRxOTTIHHE4CJmy3VZ5ecJM+Q -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:10 2025 by rpki-client