$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft File: hIP9VFfRHgUTVSER9bovNxLphfc.mft (raw, json) Hash identifier: vPwXkbG74Re22qzNtR8OsVRBeXNgNbrkaR1lY5kL1gk= Subject key identifier: 0E:FC:5A:48:02:CD:9E:A2:AA:92:F3:2F:B2:4F:12:27:3B:96:9C:21 Authority key identifier: 84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 Certificate issuer: /CN=A91DC9C4/serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Certificate serial: 0242 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft Manifest number: 0239 Signing time: Thu 23 Oct 2025 03:19:37 +0000 Manifest this update: Thu 23 Oct 2025 03:19:37 +0000 Manifest next update: Thu 30 Oct 2025 03:19:37 +0000 Files and hashes: 1: hIP9VFfRHgUTVSER9bovNxLphfc.crl (hash: g8eX4LYy7u/mHgNFvmmmCoiYhG4sC4Zh7WO+a6R8g18=) 2: 153EBE3ADEF711EF84C57421C4F9AE02.roa (hash: d2fZwjk/kReWJf7o+GQOO5RAjKTwIQ1B0ld4lPrAcBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 03:19:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC9C4, serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Validity Not Before: Oct 23 03:19:37 2025 GMT Not After : Oct 30 03:19:37 2025 GMT Subject: CN=68f99ec9-1f08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ca:80:e0:ef:b5:73:e5:62:45:b7:46:e9:ca: 45:9a:67:f3:2d:79:08:ba:53:d4:ea:28:88:76:98: 48:e4:78:8f:5c:0b:10:8e:c7:6e:39:81:1b:6a:33: 44:16:8c:b8:8f:cc:0f:5d:e5:1d:52:b4:5d:a9:ac: f9:c9:50:1e:ac:71:be:e1:17:7a:85:00:1a:44:ca: a1:4e:b4:50:da:21:8e:a0:7c:99:37:ab:93:7f:d6: c2:b8:21:0c:95:b6:ff:c5:2b:47:e9:50:f7:19:2e: a5:98:92:8e:6b:11:7e:94:3a:9d:a4:1b:d4:b0:82: 74:94:77:08:3d:bc:0d:c0:9c:bc:4d:7d:98:ce:9e: 28:52:ad:4c:27:91:41:00:21:92:15:4e:7b:11:4b: 9d:6d:67:15:26:16:b8:85:e4:90:0a:e9:17:28:01: 03:d2:d3:05:8b:75:97:68:bb:17:81:0a:92:68:28: 23:7c:ab:38:21:54:e7:6b:4c:06:67:d1:49:9c:3e: ad:2b:1a:0a:f1:5b:f3:26:5b:5b:a6:62:94:d8:a9: df:4d:6b:ea:dd:6c:58:81:26:e9:78:60:0d:55:2d: d2:71:74:21:d8:b8:68:47:c3:75:51:18:5b:d4:9b: 89:44:c0:19:01:97:cc:2e:c9:4d:a3:ab:cf:4a:07: 0a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:FC:5A:48:02:CD:9E:A2:AA:92:F3:2F:B2:4F:12:27:3B:96:9C:21 X509v3 Authority Key Identifier: keyid:84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:71:4d:c6:49:b1:d5:2e:4b:8b:13:b0:88:3b:79:80:ec:b0: 54:68:2e:e3:40:f7:5a:27:97:ab:7d:9e:3b:c5:c7:77:bb:50: 49:21:ff:e3:da:1c:dc:d2:76:92:00:f0:6f:a2:09:1d:6b:4d: a4:29:7a:15:f9:da:22:c8:67:33:d3:9e:88:98:18:8e:ed:b9: 25:44:e3:0a:42:68:e1:c5:ad:fa:df:df:7f:8c:c2:0b:33:9e: a2:17:01:03:85:4c:95:b4:23:42:f0:51:e3:0a:a2:bf:ca:76: 46:22:1e:ee:ed:08:eb:77:e2:11:11:49:6c:9a:c7:d3:8a:70: 9c:0c:02:ec:ee:e9:85:79:80:fd:09:68:89:c3:85:77:cd:10: d3:b4:2a:51:21:44:cb:c4:da:0a:c0:e0:24:ab:44:d2:bf:49: 3a:91:e9:b0:6a:94:5c:ce:f3:be:75:67:e9:cb:75:bb:06:31: f4:f7:ab:83:26:3e:d5:79:2b:d8:e8:d1:7a:6a:12:aa:5a:1c: 0d:33:3a:e7:37:38:b1:d8:85:d7:b0:7d:f2:11:9f:83:db:a1: 8c:72:f1:b7:cd:20:02:e6:29:84:67:76:ca:b7:0c:60:ca:bd: 06:45:48:5c:40:19:76:1c:88:c6:1c:b0:84:8f:3e:3d:b2:64: b7:0e:b7:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5QzQxMTAvBgNVBAUTKDg0ODNGRDU0NTdEMTFFMDUxMzU1MjExMUY1QkEyRjM3 MTJFOTg1RjcwHhcNMjUxMDIzMDMxOTM3WhcNMjUxMDMwMDMxOTM3WjAYMRYwFAYD VQQDEw02OGY5OWVjOS0xZjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMqA4O+1c+ViRbdG6cpFmmfzLXkIulPU6iiIdphI5HiPXAsQjsduOYEbajNE Foy4j8wPXeUdUrRdqaz5yVAerHG+4Rd6hQAaRMqhTrRQ2iGOoHyZN6uTf9bCuCEM lbb/xStH6VD3GS6lmJKOaxF+lDqdpBvUsIJ0lHcIPbwNwJy8TX2Yzp4oUq1MJ5FB ACGSFU57EUudbWcVJha4heSQCukXKAED0tMFi3WXaLsXgQqSaCgjfKs4IVTna0wG Z9FJnD6tKxoK8VvzJltbpmKU2KnfTWvq3WxYgSbpeGANVS3ScXQh2LhoR8N1URhb 1JuJRMAZAZfMLslNo6vPSgcKgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA78WkgC zZ6iqpLzL7JPEic7lpwhMB8GA1UdIwQYMBaAFISD/VRX0R4FE1UhEfW6LzcS6YX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzlDNC8xQTcwREM4NjRF OTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhnVVRWU0VSOWJvdk54THBo ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJUDlWRmZSSGdVVFZTRVI5Ym92TnhMcGhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzlDNC8xQTcwREM4NjRFOTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhn VVRWU0VSOWJvdk54THBoZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADcU3GSbHVLkuLE7CIO3mA7LBUaC7jQPdaJ5erfZ47xcd3u1BJIf/j 2hzc0naSAPBvogkda02kKXoV+doiyGcz056ImBiO7bklROMKQmjhxa36399/jMIL M56iFwEDhUyVtCNC8FHjCqK/ynZGIh7u7Qjrd+IREUlsmsfTinCcDALs7umFeYD9 CWiJw4V3zRDTtCpRIUTLxNoKwOAkq0TSv0k6kemwapRczvO+dWfpy3W7BjH096uD Jj7VeSvY6NF6ahKqWhwNMzrnNzix2IXXsH3yEZ+D26GMcvG3zSAC5imEZ3bKtwxg yr0GRUhcQBl2HIjGHLCEjz49smS3Drde -----END CERTIFICATE-----Generated at Thu Oct 23 21:19:06 2025 by rpki-client