$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft File: Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft (raw, json) Hash identifier: vIW5TcmjT7vB4HjvXmVY6QZafWBej4ZdQ9TkcK5ETrk= Subject key identifier: 60:47:30:63:19:40:00:2D:A2:BF:8D:D9:8E:04:5C:F6:BB:05:DF:A5 Authority key identifier: 1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE Certificate issuer: /CN=A91E3C9A/serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Certificate serial: 08A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft Manifest number: 089C Signing time: Sun 02 Nov 2025 20:28:35 +0000 Manifest this update: Sun 02 Nov 2025 20:28:34 +0000 Manifest next update: Sun 09 Nov 2025 20:28:34 +0000 Files and hashes: 1: Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl (hash: v9hvwn3SNkero5dA+crjv3BKkLZv8zSvkdnTc2ux1CA=) 2: 3A5B01A0CA8F11EAA35BF958C4F9AE02.roa (hash: 1N0QMhN8bev3U7bduyRkYXLSMRn8SE8/x15vjryS7dU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2210 (0x8a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C9A, serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Validity Not Before: Nov 2 20:28:34 2025 GMT Not After : Nov 9 20:28:34 2025 GMT Subject: CN=6907bef3-0889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cf:e8:32:98:66:06:1f:61:c7:f3:e3:be:d4: a1:cd:3e:3b:81:a1:a7:bc:41:09:a4:93:a4:81:4d: 32:27:7c:e6:05:98:73:a1:d7:8b:ca:2c:3d:5e:49: 16:53:ff:8d:cb:44:1f:7d:09:57:91:79:2e:88:2a: 08:49:3e:5e:2b:62:f7:af:7a:c1:78:09:74:3f:a6: bf:e3:33:3d:e5:fc:4b:aa:82:01:33:aa:2c:24:2f: 16:fa:46:38:6b:aa:1a:8d:e6:8a:b4:a4:fc:02:d3: 00:65:ce:f1:d6:96:fb:c0:09:7b:84:52:77:d5:d4: 11:64:47:e6:11:5c:83:c9:70:d2:fc:31:d3:e0:86: da:8a:73:32:bb:36:de:df:2b:5a:f2:89:2f:45:9c: 20:2a:4f:c8:47:6a:0d:f5:61:1e:15:b1:18:16:0c: 5c:60:fb:be:d5:1b:a2:e3:ea:82:20:df:6c:8e:1b: 82:a9:6e:7c:32:63:f0:52:52:79:89:34:8c:8e:7f: 05:9c:d3:a5:9a:fc:08:ad:d3:22:1d:01:2b:a6:87: af:d7:17:c9:ae:78:c1:34:73:48:06:c2:3e:64:77: 04:e9:53:36:19:e2:64:12:1e:2f:a4:93:5c:a4:a6: 6f:1a:d5:9e:be:6c:b5:9e:5c:b1:66:5b:17:af:46: 9d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:47:30:63:19:40:00:2D:A2:BF:8D:D9:8E:04:5C:F6:BB:05:DF:A5 X509v3 Authority Key Identifier: keyid:1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:cf:8b:17:b9:04:20:6c:1b:7f:3b:4e:2f:49:8c:13:92:af: 1a:e7:c7:d5:be:f5:93:e3:89:df:bc:69:3d:6b:62:46:4c:62: 93:2c:99:75:c3:1f:99:65:d7:57:3c:e0:e0:e0:d1:14:19:35: 17:aa:cc:34:af:1d:c2:c3:0c:cc:b4:23:07:b4:37:b8:77:31: 79:9a:a6:18:e7:f8:80:9a:98:01:fa:7a:ca:2d:5f:82:9e:ac: 59:ae:ba:c5:da:25:f1:18:0d:8d:1c:4d:84:61:b4:6b:8b:bf: 80:c2:5f:8b:00:d9:41:f1:fc:12:7e:64:1d:00:a1:36:89:3a: f2:b9:77:71:f7:b8:e5:06:e4:4d:15:c7:2f:e2:c0:94:f8:db: 1b:df:70:8d:f7:39:43:34:bc:2e:02:22:56:9a:fc:e3:99:8c: 11:5c:26:73:c1:17:7b:f9:2d:39:75:b3:fa:aa:c9:c5:1c:79: 33:26:8a:2d:f1:7f:34:48:df:e1:74:ab:94:03:40:11:85:dd: 44:f8:c4:cb:17:8a:98:a9:09:cb:f7:4d:f1:a5:f1:61:32:29: 0d:fc:15:5f:be:19:b4:48:52:4a:ec:22:c5:59:52:20:51:05: b7:b3:b4:b9:4b:50:05:5a:6d:c6:90:00:96:ca:c8:ca:bc:30: 0e:85:b1:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDOUExMTAvBgNVBAUTKDFFN0UwRDg5NDZCQzQ4RDA3NTRCMDNFOTg3MkFEMzg4 MEM1NEU0QkUwHhcNMjUxMTAyMjAyODM0WhcNMjUxMTA5MjAyODM0WjAYMRYwFAYD VQQDEw02OTA3YmVmMy0wODg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvM/oMphmBh9hx/PjvtShzT47gaGnvEEJpJOkgU0yJ3zmBZhzodeLyiw9XkkW U/+Ny0QffQlXkXkuiCoIST5eK2L3r3rBeAl0P6a/4zM95fxLqoIBM6osJC8W+kY4 a6oajeaKtKT8AtMAZc7x1pb7wAl7hFJ31dQRZEfmEVyDyXDS/DHT4IbainMyuzbe 3yta8okvRZwgKk/IR2oN9WEeFbEYFgxcYPu+1Rui4+qCIN9sjhuCqW58MmPwUlJ5 iTSMjn8FnNOlmvwIrdMiHQErpoev1xfJrnjBNHNIBsI+ZHcE6VM2GeJkEh4vpJNc pKZvGtWevmy1nlyxZlsXr0adXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBHMGMZ QAAtor+N2Y4EXPa7Bd+lMB8GA1UdIwQYMBaAFB5+DYlGvEjQdUsD6Ycq04gMVOS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M5QS9BMUQ2MUQzQUNB OEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNOQjFTd1BwaHlyVGlBeFU1 TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huNE5pVWE4U05CMVN3UHBoeXJUaUF4VTVMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0M5QS9BMUQ2MUQzQUNBOEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNO QjFTd1BwaHlyVGlBeFU1TDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3z4sXuQQgbBt/O04vSYwTkq8a58fVvvWT44nfvGk9a2JGTGKTLJl1 wx+ZZddXPODg4NEUGTUXqsw0rx3CwwzMtCMHtDe4dzF5mqYY5/iAmpgB+nrKLV+C nqxZrrrF2iXxGA2NHE2EYbRri7+Awl+LANlB8fwSfmQdAKE2iTryuXdx97jlBuRN Fccv4sCU+Nsb33CN9zlDNLwuAiJWmvzjmYwRXCZzwRd7+S05dbP6qsnFHHkzJoot 8X80SN/hdKuUA0ARhd1E+MTLF4qYqQnL903xpfFhMikN/BVfvhm0SFJK7CLFWVIg UQW3s7S5S1AFWm3GkACWysjKvDAOhbFD -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:14 2025 by rpki-client