$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft File: Hv520ajcbNAkyzz0B5Cl8UosITg.mft (raw, json) Hash identifier: Dl3qha5bO8zjo0iFk8EBtCW4QqtULQFlmOngiz51mTs= Subject key identifier: A3:7A:3C:0C:4F:87:02:27:AB:F2:7A:5C:17:86:B0:49:3D:23:C2:1E Authority key identifier: 1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 Certificate issuer: /CN=A91DB7B3/serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Certificate serial: 04FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft Manifest number: 04F7 Signing time: Mon 27 Oct 2025 00:42:19 +0000 Manifest this update: Mon 27 Oct 2025 00:42:19 +0000 Manifest next update: Mon 03 Nov 2025 00:42:19 +0000 Files and hashes: 1: Hv520ajcbNAkyzz0B5Cl8UosITg.crl (hash: jmgtopx0RoznzxkjFoTRC30nJcR2rmf5dmwlhJnF8+w=) 2: E52DE77630B611EC981BBF1CC4F9AE02.roa (hash: mphoj0oAxZzkXNiDjzgy+jQGtIB0RRer8k5eq/mlzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 00:42:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1276 (0x4fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7B3, serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Validity Not Before: Oct 27 00:42:19 2025 GMT Not After : Nov 3 00:42:19 2025 GMT Subject: CN=68febfeb-d564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:66:45:b8:e5:2b:22:d9:0b:75:4c:f0:b5:4a: 1b:73:ec:a0:79:61:6c:f5:19:d6:32:a0:2c:e2:b7: bc:da:36:31:ff:eb:35:ce:21:de:a5:33:87:22:fa: b3:72:ad:5e:43:f1:b1:c9:29:3e:31:29:f1:42:25: ed:a6:43:83:98:de:30:99:d5:2c:01:9d:f4:dc:37: a1:c2:5a:7e:97:cd:9a:99:c4:9e:72:bb:19:30:3b: 6a:f0:e2:84:a6:64:18:42:c4:9e:81:d2:3c:7f:5e: 89:49:b2:a0:9f:77:17:da:d5:cc:3b:78:7a:89:50: e9:b3:5b:f9:f8:3b:08:05:da:17:47:58:1d:c2:8a: 73:e2:72:6b:96:98:5c:95:c6:a2:ac:99:83:e4:54: 16:09:df:d4:d7:a1:6c:3b:5a:ac:a1:18:16:bc:fc: 05:bb:82:db:80:c4:f2:21:d7:14:34:ed:c6:b1:39: 26:77:87:26:32:d6:68:24:05:8d:d8:d4:8e:97:b2: 25:f8:8a:90:75:2e:91:1b:91:7b:7d:58:ff:d0:22: 14:b1:dc:3b:88:31:81:15:14:f4:d5:c9:a8:33:9d: c8:a9:b3:54:eb:27:cf:18:2d:93:fa:ef:e0:1e:83: 03:cc:fc:21:62:29:8b:94:ce:33:7b:44:a1:7d:e2: 02:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:7A:3C:0C:4F:87:02:27:AB:F2:7A:5C:17:86:B0:49:3D:23:C2:1E X509v3 Authority Key Identifier: keyid:1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:c3:00:20:0d:05:a3:17:4c:e4:26:32:c0:09:00:5c:fc:25: ad:07:1f:ab:1f:b3:3d:32:6f:02:87:c3:0b:2c:ec:ed:01:48: b3:db:c8:4d:93:40:d0:a6:54:58:00:ee:e7:d0:69:e0:01:6a: 88:c4:9d:79:b7:8b:c9:0c:db:ce:6a:7a:67:00:56:87:38:8a: e7:97:f1:ea:3e:4b:6f:84:80:5d:10:52:1d:83:58:af:88:1e: f1:3e:49:b6:ae:a0:2a:a0:95:79:6d:80:ef:f3:2a:52:3b:2e: 34:ec:f9:f5:f3:8d:df:8a:88:f6:42:a4:79:71:a2:da:e4:d4: f3:a6:57:89:d2:98:91:54:d6:a0:a2:64:e1:5b:65:fb:67:cc: 5d:1a:6e:d6:b2:09:ee:6e:29:01:01:17:47:b2:12:28:a3:d7: f9:1b:4c:cd:51:80:24:d4:7f:b2:cd:eb:8c:90:17:f0:29:d0: 90:b6:9d:8b:d8:6f:15:30:f2:2b:ec:2f:72:a5:b1:bd:a0:84: 5c:bd:2c:ad:cd:c0:25:db:03:79:db:66:79:46:45:bb:18:eb: a8:6a:37:db:a2:10:22:48:17:04:6d:23:d5:d3:65:53:4d:ab: b6:a8:b1:91:e6:f0:57:4a:20:7c:cb:c3:16:c7:4c:dc:32:a5: 4c:9b:51:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3QjMxMTAvBgNVBAUTKDFFRkU3NkQxQThEQzZDRDAyNENCM0NGNDA3OTBBNUYx NEEyQzIxMzgwHhcNMjUxMDI3MDA0MjE5WhcNMjUxMTAzMDA0MjE5WjAYMRYwFAYD VQQDEw02OGZlYmZlYi1kNTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomZFuOUrItkLdUzwtUobc+ygeWFs9RnWMqAs4re82jYx/+s1ziHepTOHIvqz cq1eQ/GxySk+MSnxQiXtpkODmN4wmdUsAZ303Dehwlp+l82amcSecrsZMDtq8OKE pmQYQsSegdI8f16JSbKgn3cX2tXMO3h6iVDps1v5+DsIBdoXR1gdwopz4nJrlphc lcairJmD5FQWCd/U16FsO1qsoRgWvPwFu4LbgMTyIdcUNO3GsTkmd4cmMtZoJAWN 2NSOl7Il+IqQdS6RG5F7fVj/0CIUsdw7iDGBFRT01cmoM53IqbNU6yfPGC2T+u/g HoMDzPwhYimLlM4ze0ShfeICFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKN6PAxP hwInq/J6XBeGsEk9I8IeMB8GA1UdIwQYMBaAFB7+dtGo3GzQJMs89AeQpfFKLCE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdCMy8yRkQ4MTVFQzMw QjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JOQWt5enowQjVDbDhVb3NJ VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2NTIwYWpjYk5Ba3l6ejBCNUNsOFVvc0lUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdCMy8yRkQ4MTVFQzMwQjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JO QWt5enowQjVDbDhVb3NJVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLwwAgDQWjF0zkJjLACQBc/CWtBx+rH7M9Mm8Ch8MLLOztAUiz28hN k0DQplRYAO7n0GngAWqIxJ15t4vJDNvOanpnAFaHOIrnl/HqPktvhIBdEFIdg1iv iB7xPkm2rqAqoJV5bYDv8ypSOy407Pn1843fioj2QqR5caLa5NTzpleJ0piRVNag omThW2X7Z8xdGm7WsgnubikBARdHshIoo9f5G0zNUYAk1H+yzeuMkBfwKdCQtp2L 2G8VMPIr7C9ypbG9oIRcvSytzcAl2wN522Z5RkW7GOuoajfbohAiSBcEbSPV02VT Tau2qLGR5vBXSiB8y8MWx0zcMqVMm1En -----END CERTIFICATE-----Generated at Tue Oct 28 12:45:10 2025 by rpki-client