$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft File: HlpjIbEaoIRvqJvxObzs2604vjc.mft (raw, json) Hash identifier: exoVOUXsCg/lO0+IsCKN3jSuxZTCB12rMZRNN3g5RMg= Subject key identifier: 0E:B1:EA:B9:D3:61:75:E6:20:69:F6:FC:46:9A:B9:17:36:BB:0C:08 Authority key identifier: 1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 Certificate issuer: /CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Certificate serial: 3587 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft Manifest number: 353A Signing time: Sun 02 Nov 2025 14:15:59 +0000 Manifest this update: Sun 02 Nov 2025 14:15:59 +0000 Manifest next update: Sun 09 Nov 2025 14:15:59 +0000 Files and hashes: 1: HlpjIbEaoIRvqJvxObzs2604vjc.crl (hash: HkxEU0amrfOtD15nl9oQIssUCG0emLzK6tfVQmm/cZg=) 2: 0997A5828A1511F09F6EBD2BC4F9AE02.roa (hash: OnxDy/55jjMCiBnkBT8Gsibkcizt1adU0FH5L5R2Oyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:15:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13703 (0x3587) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9D76, serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Validity Not Before: Nov 2 14:15:59 2025 GMT Not After : Nov 9 14:15:59 2025 GMT Subject: CN=6907679f-5366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d1:1e:18:8a:90:87:ee:26:95:9c:d0:f9:e4: a0:54:40:de:00:fc:1f:9b:82:65:98:b7:55:f0:16: a5:df:3f:b4:66:6a:fb:51:bf:67:a1:27:5c:45:4b: d0:72:32:94:77:1a:90:2b:d6:07:2b:0a:54:65:2f: 59:a0:53:17:e1:f9:3a:71:ab:96:da:2e:86:14:d9: 2e:77:af:eb:42:b2:48:71:42:2a:74:99:5b:76:cf: 39:1d:4e:13:b8:04:0c:a6:68:e1:81:aa:ea:91:86: 4c:c7:2b:2e:16:86:cf:53:91:a3:35:0f:74:6b:38: 0e:aa:7a:b9:1c:34:db:50:6b:84:1b:16:e8:27:38: db:f2:da:b7:1c:48:88:78:0d:bc:19:bc:26:97:94: 6a:d9:ca:b1:03:e6:ea:f3:97:96:06:de:5d:dc:26: c8:13:87:33:01:6a:f3:56:82:a2:b1:15:32:39:9b: a8:46:1f:07:0c:07:18:3c:f9:5b:36:b6:eb:ed:c8: 80:f4:cd:54:8d:7e:8d:92:c6:e0:e7:0d:ac:24:6f: 17:7c:21:ad:e3:ce:44:82:49:c7:3c:a8:18:5a:01: 93:cb:aa:ab:40:8e:b6:9b:91:5a:6d:64:c2:8d:cc: 49:ad:29:31:3b:35:21:12:ae:bf:aa:e6:fe:7c:c3: 17:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B1:EA:B9:D3:61:75:E6:20:69:F6:FC:46:9A:B9:17:36:BB:0C:08 X509v3 Authority Key Identifier: keyid:1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:ad:1c:d4:9e:09:eb:9a:b7:3f:89:07:4d:50:15:e6:c7:d0: de:6f:d9:c0:b4:68:2c:63:f7:69:cf:f2:b3:6a:85:4e:80:b6: 74:23:a6:f2:aa:95:86:f1:95:5a:3c:fb:62:1c:3a:72:68:67: fc:52:37:44:82:02:0d:e8:1f:89:84:0e:a9:98:43:04:a4:0f: 58:64:6e:6f:d7:74:00:cf:a5:88:6d:15:0a:81:45:c9:40:43: 98:b9:10:0a:ce:32:d1:97:ab:b5:89:fd:0c:19:4b:d7:be:f2: 4e:c8:9e:6d:0d:66:fa:5d:cd:93:fb:5c:c3:56:80:d8:8b:d5: 1d:83:6f:ca:a5:c0:c3:7e:f0:02:78:e1:2d:68:30:f9:f6:70: 76:a0:7f:4d:74:41:be:01:b3:ae:58:d9:82:73:37:a8:7e:b1: 01:51:54:78:aa:7a:06:7a:b7:33:92:e7:b2:8b:9d:54:55:0e: 39:10:e3:d3:87:db:34:94:8f:db:a0:50:50:36:fb:35:e2:1a: 2c:01:db:8c:2e:8e:25:dd:b3:a9:f7:c4:f3:b4:1f:32:59:a4: 6b:5e:87:fa:af:40:be:1c:44:33:21:a7:dc:12:16:b8:ad:b1: c2:0c:9d:60:3c:e0:dc:e3:da:f0:6c:31:56:6a:d7:1e:78:f0: 61:32:f3:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlENzYxMTAvBgNVBAUTKDFFNUE2MzIxQjExQUEwODQ2RkE4OUJGMTM5QkNFQ0RC QUQzOEJFMzcwHhcNMjUxMTAyMTQxNTU5WhcNMjUxMTA5MTQxNTU5WjAYMRYwFAYD VQQDEw02OTA3Njc5Zi01MzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNEeGIqQh+4mlZzQ+eSgVEDeAPwfm4JlmLdV8Bal3z+0Zmr7Ub9noSdcRUvQ cjKUdxqQK9YHKwpUZS9ZoFMX4fk6cauW2i6GFNkud6/rQrJIcUIqdJlbds85HU4T uAQMpmjhgarqkYZMxysuFobPU5GjNQ90azgOqnq5HDTbUGuEGxboJzjb8tq3HEiI eA28Gbwml5Rq2cqxA+bq85eWBt5d3CbIE4czAWrzVoKisRUyOZuoRh8HDAcYPPlb Nrbr7ciA9M1UjX6Nksbg5w2sJG8XfCGt485EgknHPKgYWgGTy6qrQI62m5FabWTC jcxJrSkxOzUhEq6/qub+fMMXlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA6x6rnT YXXmIGn2/EaauRc2uwwIMB8GA1UdIwQYMBaAFB5aYyGxGqCEb6ib8Tm87NutOL43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUQ3Ni82Mjg3QTExNDFE NjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9JUnZxSnZ4T2J6czI2MDR2 amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hscGpJYkVhb0lSdnFKdnhPYnpzMjYwNHZqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUQ3Ni82Mjg3QTExNDFENjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9J UnZxSnZ4T2J6czI2MDR2amMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdrRzUngnrmrc/iQdNUBXmx9Deb9nAtGgsY/dpz/KzaoVOgLZ0I6by qpWG8ZVaPPtiHDpyaGf8UjdEggIN6B+JhA6pmEMEpA9YZG5v13QAz6WIbRUKgUXJ QEOYuRAKzjLRl6u1if0MGUvXvvJOyJ5tDWb6Xc2T+1zDVoDYi9Udg2/KpcDDfvAC eOEtaDD59nB2oH9NdEG+AbOuWNmCczeofrEBUVR4qnoGerczkueyi51UVQ45EOPT h9s0lI/boFBQNvs14hosAduMLo4l3bOp98TztB8yWaRrXof6r0C+HEQzIafcEha4 rbHCDJ1gPODc49rwbDFWatceePBhMvNw -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:17 2025 by rpki-client