$ rpki-client -vvf rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft File: HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft (raw, json) Hash identifier: /Bzbvh0KEKhcDq+pKSnfaNcP8/JykvnklsgMAtCtEe4= Subject key identifier: 31:85:CD:05:4A:24:5B:60:8C:9D:38:C0:0D:3E:15:95:5B:6E:DD:88 Authority key identifier: 1E:D4:A5:04:49:F8:62:00:A0:C2:66:80:69:A2:83:24:F9:F6:A9:3E Certificate issuer: /CN=A91D19ED/serialNumber=1ED4A50449F86200A0C2668069A28324F9F6A93E Certificate serial: 06C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft Manifest number: 06B3 Signing time: Sun 02 Nov 2025 22:18:06 +0000 Manifest this update: Sun 02 Nov 2025 22:18:05 +0000 Manifest next update: Sun 09 Nov 2025 22:18:05 +0000 Files and hashes: 1: HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl (hash: sCq3Ha0yJOz4jqVuh5sYOSnKf+eSrxbcKphIKkki8Gc=) 2: FF7ABE2C3AE611F083D6AD7FC4F9AE02.roa (hash: MoBNAkuLRzgHxyy+fW6QOq2yoTFvvvMiEPMzpFN2XIU=) 3: 996F44A8AED211F0B837C970C4F9AE02.roa (hash: tCXZU+KGwsujyN/RYr6hZD1s2TH5XkVS8kG4GiK7hzU=) 4: 7CDC37C03AE611F089DABB7EC4F9AE02.roa (hash: XCoMjj/a7K84fKvxm+f/Sa+whPmY6o7sv3EG/EHcW4Q=) 5: C28841A201DB11EDA4B7F257C4F9AE02.roa (hash: xP9Z5oul8hfvI4Bg3vDxNFPmRZDWzmgh7aXnheGSSko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:18:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1734 (0x6c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D19ED, serialNumber=1ED4A50449F86200A0C2668069A28324F9F6A93E Validity Not Before: Nov 2 22:18:05 2025 GMT Not After : Nov 9 22:18:05 2025 GMT Subject: CN=6907d89d-8aed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c0:1f:32:be:2e:ce:04:eb:5c:c6:68:2b:ed: 55:58:4a:df:dd:31:cb:57:e8:ac:49:14:f0:0a:a8: d8:56:97:f0:fc:4c:8e:80:63:7c:43:61:d2:83:46: 27:d8:2c:09:b2:c3:f4:fa:e2:16:80:75:35:3a:ea: 51:b3:c4:4d:21:90:e6:e5:a9:14:93:bb:5a:f9:fc: b7:52:51:e4:62:0c:07:c6:b5:60:ca:88:a1:6d:7d: 66:81:45:f8:28:3a:6f:49:83:ae:b7:c0:ad:ed:ad: 96:f2:85:ff:71:c4:7d:3e:ea:08:b4:57:d7:b2:6b: b3:6a:5d:a6:37:70:8f:eb:9e:7e:57:42:73:92:bf: 23:ae:b6:26:da:92:3f:fa:d1:24:1c:08:04:3e:54: e7:14:85:1b:1b:8f:c5:ab:1b:5a:b5:35:49:6b:e2: 33:d1:b2:85:99:06:5a:59:1e:57:21:33:b5:40:ff: 6c:6f:79:a1:5e:74:29:cc:f2:8c:0b:ac:08:bf:48: 19:f6:fa:3b:0d:f2:be:85:25:2a:6e:35:c7:4f:55: e0:e6:82:c0:5d:fe:c2:2d:25:56:c1:51:f2:15:83: cc:89:0c:37:51:53:6a:17:ae:59:7b:32:28:1f:6d: 6a:96:4e:fd:a4:e2:3a:ba:19:ec:dc:a5:1e:98:2b: 97:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:85:CD:05:4A:24:5B:60:8C:9D:38:C0:0D:3E:15:95:5B:6E:DD:88 X509v3 Authority Key Identifier: keyid:1E:D4:A5:04:49:F8:62:00:A0:C2:66:80:69:A2:83:24:F9:F6:A9:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:5a:2a:aa:49:0c:22:00:38:78:18:e7:5b:3e:4f:45:8e:e1: 0d:87:a8:55:41:2c:bd:79:71:1b:4c:85:8a:d5:3c:ca:26:25: 36:03:48:ec:4a:26:01:94:43:c3:b0:99:81:2a:dc:2c:9b:1b: 54:0f:23:f0:79:77:0d:ca:99:77:59:7f:78:c4:29:9c:f4:bd: f1:b0:a3:72:67:3f:da:9f:fe:80:24:64:67:71:9d:4a:8d:1f: c9:44:18:8f:12:d7:f2:47:a7:8b:91:06:53:da:32:a0:55:77: b6:fd:42:aa:19:ac:eb:0e:fe:f8:b6:3f:9c:c5:ed:8b:c9:0c: 97:34:24:48:ee:28:b9:32:de:4d:ba:1c:e0:8b:fb:9d:1f:0a: 24:95:56:be:32:64:df:3c:bb:bf:9e:00:df:64:0d:2d:f6:6d: dc:c0:36:90:4f:bf:cf:e8:8c:c1:03:60:51:1a:1c:c7:82:93: 32:26:16:c9:86:7e:6c:33:1f:55:0f:a5:66:67:9b:73:a5:ec: 79:fb:90:1a:0f:ea:ae:6a:12:f8:8d:17:fc:f2:68:f9:74:fd: 18:69:e8:fb:1e:6a:1e:b5:c9:ea:1c:21:a9:71:81:5d:eb:66: 38:41:da:4f:3c:b8:93:59:00:94:9d:fd:10:ee:43:f4:b9:03: a6:f1:eb:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE5RUQxMTAvBgNVBAUTKDFFRDRBNTA0NDlGODYyMDBBMEMyNjY4MDY5QTI4MzI0 RjlGNkE5M0UwHhcNMjUxMTAyMjIxODA1WhcNMjUxMTA5MjIxODA1WjAYMRYwFAYD VQQDEw02OTA3ZDg5ZC04YWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcAfMr4uzgTrXMZoK+1VWErf3THLV+isSRTwCqjYVpfw/EyOgGN8Q2HSg0Yn 2CwJssP0+uIWgHU1OupRs8RNIZDm5akUk7ta+fy3UlHkYgwHxrVgyoihbX1mgUX4 KDpvSYOut8Ct7a2W8oX/ccR9PuoItFfXsmuzal2mN3CP655+V0Jzkr8jrrYm2pI/ +tEkHAgEPlTnFIUbG4/FqxtatTVJa+Iz0bKFmQZaWR5XITO1QP9sb3mhXnQpzPKM C6wIv0gZ9vo7DfK+hSUqbjXHT1Xg5oLAXf7CLSVWwVHyFYPMiQw3UVNqF65ZezIo H21qlk79pOI6uhns3KUemCuXzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGFzQVK JFtgjJ04wA0+FZVbbt2IMB8GA1UdIwQYMBaAFB7UpQRJ+GIAoMJmgGmigyT59qk+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTlFRC81NEI5N0EyNjhB QjYxMUVCODMyRjAzMTRDNEY5QUUwMi9IdFNsQkVuNFlnQ2d3bWFBYWFLREpQbjJx VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0U2xCRW40WWdDZ3dtYUFhYUtESlBuMnFUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTlFRC81NEI5N0EyNjhBQjYxMUVCODMyRjAzMTRDNEY5QUUwMi9IdFNsQkVuNFln Q2d3bWFBYWFLREpQbjJxVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABWiqqSQwiADh4GOdbPk9FjuENh6hVQSy9eXEbTIWK1TzKJiU2A0js SiYBlEPDsJmBKtwsmxtUDyPweXcNypl3WX94xCmc9L3xsKNyZz/an/6AJGRncZ1K jR/JRBiPEtfyR6eLkQZT2jKgVXe2/UKqGazrDv74tj+cxe2LyQyXNCRI7ii5Mt5N uhzgi/udHwoklVa+MmTfPLu/ngDfZA0t9m3cwDaQT7/P6IzBA2BRGhzHgpMyJhbJ hn5sMx9VD6VmZ5tzpex5+5AaD+quahL4jRf88mj5dP0Yaej7HmoetcnqHCGpcYFd 62Y4QdpPPLiTWQCUnf0Q7kP0uQOm8ets -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:24 2025 by rpki-client