$ rpki-client -vvf rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft File: HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft (raw, json) Hash identifier: BHCX8RBGziCG1yaP2uNgj3tWOkoIEgWnnEQeWx9+8aA= Subject key identifier: 3F:1A:55:33:1E:75:2E:BC:29:0C:46:87:02:7C:93:A0:55:44:40:45 Authority key identifier: 1E:D4:A5:04:49:F8:62:00:A0:C2:66:80:69:A2:83:24:F9:F6:A9:3E Certificate issuer: /CN=A91D19ED/serialNumber=1ED4A50449F86200A0C2668069A28324F9F6A93E Certificate serial: 06A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft Manifest number: 0698 Signing time: Thu 18 Sep 2025 22:40:06 +0000 Manifest this update: Thu 18 Sep 2025 22:40:05 +0000 Manifest next update: Thu 25 Sep 2025 22:40:05 +0000 Files and hashes: 1: HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl (hash: Xiu/tL4ybUTYQehAuHaPYCZWiS9WnfvWvbwDM9o2Rig=) 2: FF7ABE2C3AE611F083D6AD7FC4F9AE02.roa (hash: MoBNAkuLRzgHxyy+fW6QOq2yoTFvvvMiEPMzpFN2XIU=) 3: 1DDB4F803AE711F09B94E47FC4F9AE02.roa (hash: jKGh7qYB9/mjUAeo3pLPwOPzfnYdxhoTS9Mo108a0Ok=) 4: 7CDC37C03AE611F089DABB7EC4F9AE02.roa (hash: XCoMjj/a7K84fKvxm+f/Sa+whPmY6o7sv3EG/EHcW4Q=) 5: C28841A201DB11EDA4B7F257C4F9AE02.roa (hash: SRwuKl9iZ5F1PmABZLmK117SIfLF/ZW+yQgLNckgk2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:40:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D19ED, serialNumber=1ED4A50449F86200A0C2668069A28324F9F6A93E Validity Not Before: Sep 18 22:40:05 2025 GMT Not After : Sep 25 22:40:05 2025 GMT Subject: CN=68cc8a46-0fcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:75:1b:dc:33:9c:9c:0d:99:02:8e:00:9c:2a: a8:a6:74:61:62:4a:21:0d:6e:87:51:74:c2:cf:96: 22:1b:26:0f:09:a6:d1:a7:1f:9d:c9:ff:9d:71:7b: c9:d8:d2:0a:a9:c7:14:7e:d0:88:63:1a:66:cf:f2: 98:bd:5f:d0:d0:34:89:70:96:83:3e:68:7c:27:ac: 0c:16:0c:e1:19:4a:36:a1:45:08:f5:bd:0a:65:7e: 72:01:62:77:3f:06:94:f9:13:a1:c4:b0:cc:86:fb: cb:70:4c:0c:e2:4d:36:45:cf:46:1d:f7:d3:a6:55: ae:c8:92:48:87:87:f3:8d:07:66:85:c0:7d:d8:92: d3:36:a8:38:9c:b3:18:12:8d:eb:fa:35:4e:4e:6e: fe:61:74:6e:dc:0e:0a:f4:9d:bc:88:61:05:f4:70: ae:3b:8c:3c:a9:cc:c6:27:5f:80:11:fa:74:da:83: 9d:4b:86:ef:8b:fa:36:a7:d3:57:50:42:cc:ef:df: 0f:8e:cc:ae:e3:ec:c5:77:5e:63:6d:d3:44:06:08: 76:ff:1e:6e:43:b3:e7:6d:6a:b7:98:f7:4b:fc:7f: e3:2b:21:66:11:9b:4e:bc:ed:37:99:48:8a:dc:0f: 38:40:65:6b:a7:3c:4a:9a:9d:e4:83:33:99:98:5f: b4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:1A:55:33:1E:75:2E:BC:29:0C:46:87:02:7C:93:A0:55:44:40:45 X509v3 Authority Key Identifier: keyid:1E:D4:A5:04:49:F8:62:00:A0:C2:66:80:69:A2:83:24:F9:F6:A9:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:e7:89:c9:84:80:11:57:15:df:66:ba:e1:a9:5f:b0:5b:b1: cb:95:d1:d9:77:65:36:cf:df:89:04:85:59:18:11:0d:b8:c0: 53:c8:7d:36:e7:3d:9f:e1:81:74:b0:75:c1:11:2a:d8:fe:12: 26:a1:96:99:89:9a:aa:37:34:23:01:79:3c:76:77:98:8e:27: a1:6d:3f:22:83:4d:0d:d7:1f:71:b9:f7:4f:06:0b:43:56:59: 22:9b:af:d0:7b:ea:14:c7:9d:35:bc:58:f5:44:24:14:a6:4d: 2c:25:38:d3:e7:b8:85:73:ed:b9:18:97:58:0b:27:d3:86:ca: 2f:67:4d:e3:b3:e5:c5:36:98:14:3b:dc:f7:8b:75:0c:b5:6e: b4:ea:dd:b2:68:33:5d:ed:d2:d5:77:28:95:04:53:82:28:88: 9b:05:fc:7c:d9:f3:f8:a3:a8:a9:68:32:c8:c3:3b:b6:94:a5: 48:ec:d0:5c:85:f3:f1:70:34:fa:31:3c:c3:20:89:84:15:89: 1a:67:17:8a:57:44:d9:20:7b:68:91:bb:7d:6a:dd:b3:bc:56: bd:01:4f:ea:6e:04:da:6d:1f:d2:0f:76:bf:26:41:e1:c2:99: 9c:58:06:ea:f4:ef:9e:01:c3:8e:2b:ad:ef:7f:c2:b5:90:2c: 90:03:fa:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE5RUQxMTAvBgNVBAUTKDFFRDRBNTA0NDlGODYyMDBBMEMyNjY4MDY5QTI4MzI0 RjlGNkE5M0UwHhcNMjUwOTE4MjI0MDA1WhcNMjUwOTI1MjI0MDA1WjAYMRYwFAYD VQQDEw02OGNjOGE0Ni0wZmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7HUb3DOcnA2ZAo4AnCqopnRhYkohDW6HUXTCz5YiGyYPCabRpx+dyf+dcXvJ 2NIKqccUftCIYxpmz/KYvV/Q0DSJcJaDPmh8J6wMFgzhGUo2oUUI9b0KZX5yAWJ3 PwaU+ROhxLDMhvvLcEwM4k02Rc9GHffTplWuyJJIh4fzjQdmhcB92JLTNqg4nLMY Eo3r+jVOTm7+YXRu3A4K9J28iGEF9HCuO4w8qczGJ1+AEfp02oOdS4bvi/o2p9NX UELM798Pjsyu4+zFd15jbdNEBgh2/x5uQ7PnbWq3mPdL/H/jKyFmEZtOvO03mUiK 3A84QGVrpzxKmp3kgzOZmF+0eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8aVTMe dS68KQxGhwJ8k6BVREBFMB8GA1UdIwQYMBaAFB7UpQRJ+GIAoMJmgGmigyT59qk+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTlFRC81NEI5N0EyNjhB QjYxMUVCODMyRjAzMTRDNEY5QUUwMi9IdFNsQkVuNFlnQ2d3bWFBYWFLREpQbjJx VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0U2xCRW40WWdDZ3dtYUFhYUtESlBuMnFUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTlFRC81NEI5N0EyNjhBQjYxMUVCODMyRjAzMTRDNEY5QUUwMi9IdFNsQkVuNFln Q2d3bWFBYWFLREpQbjJxVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA754nJhIARVxXfZrrhqV+wW7HLldHZd2U2z9+JBIVZGBENuMBTyH02 5z2f4YF0sHXBESrY/hImoZaZiZqqNzQjAXk8dneYjiehbT8ig00N1x9xufdPBgtD Vlkim6/Qe+oUx501vFj1RCQUpk0sJTjT57iFc+25GJdYCyfThsovZ03js+XFNpgU O9z3i3UMtW606t2yaDNd7dLVdyiVBFOCKIibBfx82fP4o6ipaDLIwzu2lKVI7NBc hfPxcDT6MTzDIImEFYkaZxeKV0TZIHtokbt9at2zvFa9AU/qbgTabR/SD3a/JkHh wpmcWAbq9O+eAcOOK63vf8K1kCyQA/qo -----END CERTIFICATE-----Generated at Fri Sep 19 05:27:16 2025 by rpki-client