$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: saUO/+qTBho3X6wuT7zfqLiEDmTjz5OOxmIbKFGuRWU= Subject key identifier: 9D:56:60:AA:2D:0D:76:79:0E:D0:5A:47:42:EF:F7:69:8F:EE:75:9A Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0C08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0BFA Signing time: Tue 04 Nov 2025 18:56:32 +0000 Manifest this update: Tue 04 Nov 2025 18:56:31 +0000 Manifest next update: Tue 11 Nov 2025 18:56:31 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: otiQrmEXycd9ubBEnOAIw3NHI5r2IF97EFazuzNUfA8=) 2: C41D0390EA9611EEA68A3A1DC4F9AE02.roa (hash: 3twihJRxf/bNpMtScuSs5yi/6xZ2K4Wt4M95Ev7NChA=) 3: BF21F788EC5811EEB4293455C4F9AE02.roa (hash: 7cjb7VG94QioiNIQi5PeFGoVktUYbXdUPAEpMIjHRYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:56:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3080 (0xc08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: Nov 4 18:56:31 2025 GMT Not After : Nov 11 18:56:31 2025 GMT Subject: CN=690a4c60-79c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e7:84:54:4b:84:81:9c:83:19:e0:87:97:09: 72:b1:a8:d9:30:01:0e:8a:0e:4e:7a:b5:b9:da:cd: 70:3c:ed:c4:02:eb:b4:88:d1:45:03:27:ab:3d:b8: 8a:3a:49:0e:3b:69:7c:d3:e1:8c:43:69:af:d0:0c: 28:a6:53:19:cd:f6:94:69:d0:18:54:9d:50:f1:a2: d3:fd:a4:81:79:8d:1a:73:3c:cb:ce:5b:f6:6a:81: 48:2c:15:21:7e:32:fb:da:29:da:67:df:d5:fe:48: ae:41:b5:30:af:39:08:33:48:bc:4e:2c:30:be:15: 97:ec:9f:6e:43:9d:ad:32:eb:2c:aa:5e:ef:9f:65: fa:d3:e5:73:5f:bb:90:39:12:e6:5c:1f:6a:96:d2: 39:a1:78:64:96:01:e5:64:b8:5a:ec:47:e2:be:39: 9e:13:bc:a5:70:24:28:1c:db:5a:3a:75:c5:ba:45: 5e:84:00:32:c3:c3:cc:bb:37:36:c8:0d:7a:1c:a5: e1:bf:d0:eb:bf:e8:a7:bc:7d:ec:e3:e8:da:27:6e: 73:41:d8:1e:47:e2:cb:e3:66:b4:9a:1f:15:82:7b: f9:14:ae:6e:87:7a:1f:88:11:92:74:86:9a:89:8c: 80:24:af:3a:57:0b:a1:15:3a:32:15:b5:3d:f5:52: 9e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:56:60:AA:2D:0D:76:79:0E:D0:5A:47:42:EF:F7:69:8F:EE:75:9A X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:a8:c8:33:22:e0:4c:06:d8:8d:1e:8c:89:90:4d:0b:cf:53: 2c:d3:02:e1:d8:33:b7:8a:1e:15:ba:09:62:21:13:7c:32:20: 18:2f:c1:59:9a:09:f7:26:43:af:4b:5c:81:d4:d9:1f:41:e2: 7f:7a:c1:7e:34:ee:dd:c1:8c:1b:36:ca:d1:8e:24:9d:8c:cf: 9f:43:37:41:58:69:4a:58:55:c3:59:76:74:49:7a:aa:93:12: e0:5c:da:1b:b1:cb:13:ca:20:a8:72:b3:54:22:1f:f9:c4:df: bc:ac:7e:ce:e4:84:25:4c:7d:5a:56:dd:9a:72:a0:5b:44:18: 60:78:10:c6:31:d5:95:10:5d:ab:82:15:38:42:6b:6f:c9:05: 52:eb:ce:70:90:a0:85:55:91:2a:ba:0d:3c:1e:f9:8a:54:90: c8:c9:38:4a:e3:60:c7:2d:3d:0f:96:03:ff:dc:a4:7a:f9:ae: 23:06:8a:89:74:72:48:aa:24:fd:a9:56:ec:ae:5c:4e:11:96: 26:d3:dc:d9:8a:b7:73:65:0d:17:39:e7:91:3c:3d:f5:6f:11: 35:0d:69:a9:9e:bd:8f:97:00:bc:45:17:e8:85:b2:7d:cb:b8: 78:bb:62:32:c7:b5:a0:a8:a1:33:24:2f:2b:80:03:97:3a:5b: 45:8d:59:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjUxMTA0MTg1NjMxWhcNMjUxMTExMTg1NjMxWjAYMRYwFAYD VQQDEw02OTBhNGM2MC03OWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmOeEVEuEgZyDGeCHlwlysajZMAEOig5OerW52s1wPO3EAuu0iNFFAyerPbiK OkkOO2l80+GMQ2mv0AwoplMZzfaUadAYVJ1Q8aLT/aSBeY0aczzLzlv2aoFILBUh fjL72inaZ9/V/kiuQbUwrzkIM0i8TiwwvhWX7J9uQ52tMussql7vn2X60+VzX7uQ ORLmXB9qltI5oXhklgHlZLha7EfivjmeE7ylcCQoHNtaOnXFukVehAAyw8PMuzc2 yA16HKXhv9Drv+invH3s4+jaJ25zQdgeR+LL42a0mh8Vgnv5FK5uh3ofiBGSdIaa iYyAJK86VwuhFToyFbU99VKeUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1WYKot DXZ5DtBaR0Lv92mP7nWaMB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyqMgzIuBMBtiNHoyJkE0Lz1Ms0wLh2DO3ih4VugliIRN8MiAYL8FZ mgn3JkOvS1yB1NkfQeJ/esF+NO7dwYwbNsrRjiSdjM+fQzdBWGlKWFXDWXZ0SXqq kxLgXNobscsTyiCocrNUIh/5xN+8rH7O5IQlTH1aVt2acqBbRBhgeBDGMdWVEF2r ghU4QmtvyQVS685wkKCFVZEqug08HvmKVJDIyThK42DHLT0PlgP/3KR6+a4jBoqJ dHJIqiT9qVbsrlxOEZYm09zZirdzZQ0XOeeRPD31bxE1DWmpnr2PlwC8RRfohbJ9 y7h4u2Iyx7WgqKEzJC8rgAOXOltFjVky -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:40 2025 by rpki-client