$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft File: hsI8F7xNIO4W8JLTWiz2VU_scRk.mft (raw, json) Hash identifier: HyVzntmPQgaiPosl6XLVOhNEniF2DamtrSsu6aM8pKA= Subject key identifier: 99:AF:D6:6F:32:65:F1:18:BC:6F:CB:0E:30:5D:B1:0D:F7:88:05:48 Authority key identifier: 86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 Certificate issuer: /CN=A91E1D77/serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Certificate serial: 0948 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft Manifest number: 093F Signing time: Tue 04 Nov 2025 20:17:48 +0000 Manifest this update: Tue 04 Nov 2025 20:17:47 +0000 Manifest next update: Tue 11 Nov 2025 20:17:47 +0000 Files and hashes: 1: hsI8F7xNIO4W8JLTWiz2VU_scRk.crl (hash: uik3yvF6zRBOUqrCYS0QpEvFgYb7MQ6Y+aKCKssRT/k=) 2: E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa (hash: Do71l71FTiixHCCIPeakkaaBf4R9F2qJdYWGM64Ufb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2376 (0x948) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1D77, serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Validity Not Before: Nov 4 20:17:47 2025 GMT Not After : Nov 11 20:17:47 2025 GMT Subject: CN=690a5f6b-9b62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:80:d7:65:dc:f9:73:83:08:8d:ee:f6:58:74: 64:0e:52:d1:52:3d:4d:cf:96:86:54:81:d5:eb:9d: 20:8b:b6:c6:f4:47:b1:3e:d7:30:64:ff:e5:a5:62: a1:a2:38:f5:d7:8f:01:a9:11:b8:50:3a:18:4f:a0: 48:74:9c:78:b1:b9:3c:53:c1:f0:43:55:8e:4c:a9: 38:10:b4:c6:da:ae:9d:98:3b:af:83:98:f1:b0:99: f9:5c:f6:af:88:e1:1c:9d:58:6f:86:13:76:e0:3d: db:05:e7:d9:44:31:57:29:73:74:a5:ba:67:94:7a: a9:d0:0e:c2:26:44:6c:14:75:15:34:f2:c1:b0:a3: 4a:55:3c:6b:64:46:77:e8:a6:8f:69:cb:64:1d:2b: 1d:7c:fc:02:ae:63:2f:d8:7c:04:e6:6f:c2:01:ce: ae:d9:48:f2:aa:5e:12:9b:d5:1b:e1:37:94:e0:6d: 27:87:3c:fb:43:4a:49:55:84:a8:f5:f6:94:ca:57: 17:25:1a:cc:b2:e9:27:0d:8f:70:7e:d6:af:8b:60: df:a7:47:8a:06:07:d6:56:94:8a:5f:8f:c5:4c:cc: 08:ca:9a:9b:c2:d7:42:64:30:d9:54:3c:ec:32:18: ee:66:7a:fe:f6:0a:e4:89:af:07:bb:78:fe:c6:a3: 09:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:AF:D6:6F:32:65:F1:18:BC:6F:CB:0E:30:5D:B1:0D:F7:88:05:48 X509v3 Authority Key Identifier: keyid:86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:84:e6:58:7a:14:eb:76:ce:45:15:64:49:88:75:a7:54:cb: 2b:50:68:05:a7:28:6a:38:31:ca:a3:76:7b:a7:c2:c9:b5:5f: e1:88:60:e3:05:32:a4:f1:f1:3c:08:88:47:53:29:ed:6a:ef: 06:85:3c:d8:0a:38:ea:f3:45:7b:bc:6a:98:ec:5d:66:89:7a: ef:b3:b1:47:2e:b5:7f:7a:0a:4f:75:dd:d7:23:e4:38:80:8b: 34:55:56:82:11:66:0e:c6:5f:6b:fe:45:f7:6e:7b:96:07:ce: d7:97:70:a7:4d:a9:70:1d:15:e2:9d:5f:d6:8a:f1:ed:3e:93: e5:3a:d0:58:67:8e:91:71:f4:31:6c:f6:d9:e8:2f:1e:27:cf: ed:76:07:e1:4c:63:d9:30:9e:15:ba:a3:78:83:11:e1:19:a5: 9f:87:20:a3:17:66:f2:41:b7:cf:2b:ce:37:c3:11:31:36:d8: e4:c6:2d:4b:21:53:f0:95:68:9b:c4:89:12:83:ad:8f:a8:db: 6f:28:ee:d8:d1:ab:16:68:30:ce:3c:6d:c4:4d:23:89:c4:74: 9f:b3:fb:91:bc:eb:b5:d0:c3:f0:9a:ac:73:26:3b:93:08:61: 63:8f:d4:2d:d8:2a:01:b7:f0:cf:76:4e:01:75:70:75:b6:3b: d6:b3:33:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFENzcxMTAvBgNVBAUTKDg2QzIzQzE3QkM0RDIwRUUxNkYwOTJEMzVBMkNGNjU1 NEZFQzcxMTkwHhcNMjUxMTA0MjAxNzQ3WhcNMjUxMTExMjAxNzQ3WjAYMRYwFAYD VQQDEw02OTBhNWY2Yi05YjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIDXZdz5c4MIje72WHRkDlLRUj1Nz5aGVIHV650gi7bG9EexPtcwZP/lpWKh ojj1148BqRG4UDoYT6BIdJx4sbk8U8HwQ1WOTKk4ELTG2q6dmDuvg5jxsJn5XPav iOEcnVhvhhN24D3bBefZRDFXKXN0pbpnlHqp0A7CJkRsFHUVNPLBsKNKVTxrZEZ3 6KaPactkHSsdfPwCrmMv2HwE5m/CAc6u2Ujyql4Sm9Ub4TeU4G0nhzz7Q0pJVYSo 9faUylcXJRrMsuknDY9wftavi2Dfp0eKBgfWVpSKX4/FTMwIypqbwtdCZDDZVDzs MhjuZnr+9grkia8Hu3j+xqMJnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJmv1m8y ZfEYvG/LDjBdsQ33iAVIMB8GA1UdIwQYMBaAFIbCPBe8TSDuFvCS01os9lVP7HEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUQ3Ny80QjY0MjdFMkFC RjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklPNFc4SkxUV2l6MlZVX3Nj UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzSThGN3hOSU80VzhKTFRXaXoyVlVfc2NSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUQ3Ny80QjY0MjdFMkFCRjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklP NFc4SkxUV2l6MlZVX3NjUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDhOZYehTrds5FFWRJiHWnVMsrUGgFpyhqODHKo3Z7p8LJtV/hiGDj BTKk8fE8CIhHUyntau8GhTzYCjjq80V7vGqY7F1miXrvs7FHLrV/egpPdd3XI+Q4 gIs0VVaCEWYOxl9r/kX3bnuWB87Xl3CnTalwHRXinV/WivHtPpPlOtBYZ46RcfQx bPbZ6C8eJ8/tdgfhTGPZMJ4VuqN4gxHhGaWfhyCjF2byQbfPK843wxExNtjkxi1L IVPwlWibxIkSg62PqNtvKO7Y0asWaDDOPG3ETSOJxHSfs/uRvOu10MPwmqxzJjuT CGFjj9Qt2CoBt/DPdk4BdXB1tjvWszOm -----END CERTIFICATE-----Generated at Wed Nov 5 05:23:37 2025 by rpki-client