$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft File: hs2LQhipuaG84vrF7m3HhbAKkx0.mft (raw, json) Hash identifier: c0bNUCVfxamm31PWiqtGEPV+Nu7I1SF/YfqGtGluQ1A= Subject key identifier: 6C:D1:25:A5:0C:D2:BD:0C:B5:BF:E9:9C:DD:06:FE:C2:67:6C:AA:14 Authority key identifier: 86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D Certificate issuer: /CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Certificate serial: 0281 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft Manifest number: 025F Signing time: Mon 03 Nov 2025 01:49:57 +0000 Manifest this update: Mon 03 Nov 2025 01:49:57 +0000 Manifest next update: Mon 10 Nov 2025 01:49:57 +0000 Files and hashes: 1: hs2LQhipuaG84vrF7m3HhbAKkx0.crl (hash: RYpJLYgqIGY2wtBTZzLP9D9bnYQd+zvqcPETtRKMJTI=) 2: FB9DB0B8778011EFA197A558C4F9AE02.roa (hash: bOpqrbhh4Bh4AWp/OZ52rop88bWyVMsrGceDfsrfghM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 641 (0x281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF28F, serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Validity Not Before: Nov 3 01:49:57 2025 GMT Not After : Nov 10 01:49:57 2025 GMT Subject: CN=69080a45-7fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:25:05:96:56:d6:fc:8f:59:3a:5f:17:4b:62: d4:3c:f7:89:fa:86:4b:1e:04:33:bf:47:8d:f9:34: 09:ad:80:92:a5:17:18:67:21:b4:86:ac:6a:20:8a: 85:ca:19:eb:22:07:2f:5e:6e:e0:c2:c5:28:47:a4: 2b:ac:00:af:1e:98:c8:be:90:ba:64:c6:be:b9:2c: 01:fd:46:10:96:74:41:48:b1:d1:3e:86:e0:76:2d: 23:e0:6b:ee:97:dc:d3:f8:63:9f:64:14:5f:1a:5b: 80:be:ef:03:e3:4b:da:d4:4a:db:3f:28:62:06:d3: 11:a1:6a:14:3c:ec:91:83:e7:ea:da:d9:4a:30:9f: a1:41:a9:30:ae:2a:9b:42:74:25:37:ae:47:d4:ef: 61:83:e8:07:6b:8e:3f:0e:43:96:c2:97:15:60:76: 67:fb:df:62:be:b8:73:8e:14:68:f4:bd:f1:5f:c3: 88:3c:c2:c1:10:74:0b:a9:7a:31:59:48:18:93:64: 0b:65:36:89:73:00:b9:8e:94:56:41:8b:95:79:4a: 60:ea:23:2d:d1:d4:87:b2:77:73:38:db:ef:8f:18: 3f:27:33:48:28:f4:27:83:fb:f3:24:77:9b:40:0b: 74:57:a4:fb:f8:02:5c:e6:57:d2:31:92:6b:58:a8: 75:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D1:25:A5:0C:D2:BD:0C:B5:BF:E9:9C:DD:06:FE:C2:67:6C:AA:14 X509v3 Authority Key Identifier: keyid:86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:26:e3:90:36:77:6e:79:c4:59:cd:2f:1e:0c:39:cc:06:cc: 4b:e3:3d:52:88:09:0e:86:67:13:d2:d2:c8:8f:8e:6f:58:5a: fa:fc:56:7c:bd:04:b9:0b:8c:86:2e:69:a1:30:9f:05:d5:1f: fe:4c:e7:99:0f:93:59:38:ce:94:36:97:11:5c:9f:ab:5b:35: 4b:3a:61:86:76:86:a7:18:73:2d:a6:30:bc:1c:8c:bd:bd:a7: 0b:f5:df:73:71:3c:00:12:67:de:40:7a:d4:3f:c6:cd:ea:05: 66:65:4f:43:1c:94:7b:88:93:cf:76:bd:b6:0e:1d:e7:d5:69: de:65:a2:c3:a3:f8:71:53:7a:b5:fe:b8:8b:52:bb:a5:64:b7: f3:99:55:2b:f5:4f:91:d8:c7:10:57:c1:9e:ea:07:92:ec:25: 30:2d:3f:95:ef:f2:41:3a:fe:65:6a:a4:54:8b:65:b0:18:92: 12:cd:88:03:b8:23:c3:ba:10:42:8d:35:52:4c:6d:9e:83:a8: 3b:a7:f8:a8:e6:3e:6d:87:ee:10:8d:ba:ba:e5:82:14:53:4f: b4:29:72:53:7e:6d:04:15:05:c8:fd:55:96:a2:b6:c6:84:d2: 61:c0:69:4c:18:e8:e5:2a:9c:26:af:99:1a:82:44:76:30:b3: b0:90:39:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyOEYxMTAvBgNVBAUTKDg2Q0Q4QjQyMThBOUI5QTFCQ0UyRkFDNUVFNkRDNzg1 QjAwQTkzMUQwHhcNMjUxMTAzMDE0OTU3WhcNMjUxMTEwMDE0OTU3WjAYMRYwFAYD VQQDEw02OTA4MGE0NS03ZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6CUFllbW/I9ZOl8XS2LUPPeJ+oZLHgQzv0eN+TQJrYCSpRcYZyG0hqxqIIqF yhnrIgcvXm7gwsUoR6QrrACvHpjIvpC6ZMa+uSwB/UYQlnRBSLHRPobgdi0j4Gvu l9zT+GOfZBRfGluAvu8D40va1ErbPyhiBtMRoWoUPOyRg+fq2tlKMJ+hQakwriqb QnQlN65H1O9hg+gHa44/DkOWwpcVYHZn+99ivrhzjhRo9L3xX8OIPMLBEHQLqXox WUgYk2QLZTaJcwC5jpRWQYuVeUpg6iMt0dSHsndzONvvjxg/JzNIKPQng/vzJHeb QAt0V6T7+AJc5lfSMZJrWKh1rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzRJaUM 0r0Mtb/pnN0G/sJnbKoUMB8GA1UdIwQYMBaAFIbNi0IYqbmhvOL6xe5tx4WwCpMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI4Ri83RERDNUEyRTU1 NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVhRzg0dnJGN20zSGhiQUtr eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzMkxRaGlwdWFHODR2ckY3bTNIaGJBS2t4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI4Ri83RERDNUEyRTU1NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVh Rzg0dnJGN20zSGhiQUtreDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVJuOQNnduecRZzS8eDDnMBsxL4z1SiAkOhmcT0tLIj45vWFr6/FZ8 vQS5C4yGLmmhMJ8F1R/+TOeZD5NZOM6UNpcRXJ+rWzVLOmGGdoanGHMtpjC8HIy9 vacL9d9zcTwAEmfeQHrUP8bN6gVmZU9DHJR7iJPPdr22Dh3n1WneZaLDo/hxU3q1 /riLUrulZLfzmVUr9U+R2McQV8Ge6geS7CUwLT+V7/JBOv5laqRUi2WwGJISzYgD uCPDuhBCjTVSTG2eg6g7p/io5j5th+4Qjbq65YIUU0+0KXJTfm0EFQXI/VWWorbG hNJhwGlMGOjlKpwmr5kagkR2MLOwkDkf -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:19 2025 by rpki-client