$ rpki-client -vvf rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft File: HmHgACzkS79ZVTyASgrJEub-vzs.mft (raw, json) Hash identifier: 7fid2LhoCZdCCTFsIRtSNwEZIc/cD+jnmq0SfvAL2EU= Subject key identifier: 30:ED:61:B1:17:6C:04:56:3F:5D:E9:42:3C:1B:2C:4D:71:2D:B9:19 Authority key identifier: 1E:61:E0:00:2C:E4:4B:BF:59:55:3C:80:4A:0A:C9:12:E6:FE:BF:3B Certificate issuer: /CN=A91EACB9/serialNumber=1E61E0002CE44BBF59553C804A0AC912E6FEBF3B Certificate serial: 028D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft Manifest number: 0288 Signing time: Wed 05 Nov 2025 01:41:47 +0000 Manifest this update: Wed 05 Nov 2025 01:41:47 +0000 Manifest next update: Wed 12 Nov 2025 01:41:47 +0000 Files and hashes: 1: HmHgACzkS79ZVTyASgrJEub-vzs.crl (hash: ywpCa5fSxuhTuCq0ZqBj+IWfVUwEz0RPDYlHey7c3yU=) 2: 654307DC26CC11EDB395A078C4F9AE02.roa (hash: hGQixG8nIJXVA0JQORYC8z0pOj4UbTutn+kvPqmH25s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.crl rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:41:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 653 (0x28d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EACB9, serialNumber=1E61E0002CE44BBF59553C804A0AC912E6FEBF3B Validity Not Before: Nov 5 01:41:47 2025 GMT Not After : Nov 12 01:41:47 2025 GMT Subject: CN=690aab5b-e8a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:97:6a:c2:1a:f4:1e:56:c8:32:ad:80:3d:dd: 54:dd:6a:d7:fa:21:3e:28:6e:a3:82:5f:94:64:a5: 92:0b:b2:c1:4f:c0:10:83:88:a4:1e:41:1e:ea:e7: bd:f9:00:37:b0:62:5a:6e:3c:c9:00:5a:30:58:2f: 80:b6:15:bc:6c:f0:84:de:ca:1f:fe:69:18:bf:b3: 2a:63:22:3c:80:af:d7:b1:5b:09:11:71:64:bd:7a: dc:3c:59:35:ba:1a:b6:5d:af:5f:ed:ef:6d:b3:8a: c7:19:05:00:3c:20:3b:d6:01:2a:cc:d7:28:02:05: fb:10:30:5a:6a:ef:eb:74:13:79:7c:0d:e7:31:0e: 8c:09:11:c7:f0:62:c6:10:5b:75:32:33:68:8a:e2: 3f:96:dc:ce:3c:ab:bb:82:c8:3b:52:ae:d1:44:20: 52:4f:3f:5c:75:83:d0:12:6d:3a:c5:02:85:e3:70: 94:20:55:f6:17:8a:bc:61:da:53:21:3c:1e:17:4e: 78:15:49:ab:14:4f:b1:8a:c3:10:8a:4d:05:73:3a: ce:a0:df:35:47:bc:f9:41:c9:38:46:88:69:d2:be: 1c:a0:3a:c9:b1:61:a5:bf:34:12:71:a9:ed:5a:87: fd:21:4b:f9:d6:45:10:c0:bf:f9:a5:c1:5f:8a:d7: 25:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:ED:61:B1:17:6C:04:56:3F:5D:E9:42:3C:1B:2C:4D:71:2D:B9:19 X509v3 Authority Key Identifier: keyid:1E:61:E0:00:2C:E4:4B:BF:59:55:3C:80:4A:0A:C9:12:E6:FE:BF:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:32:25:43:3f:c5:f7:34:3e:4d:7a:18:30:bc:e6:2b:28:a4: 8f:45:68:96:68:e0:6c:eb:28:41:42:b9:53:31:ff:be:3c:ee: 67:40:54:19:b1:f9:32:2a:16:3f:ea:ec:66:2a:c9:19:75:ee: ac:7c:29:00:ea:ef:38:fb:7c:8f:28:ec:4d:ad:a1:51:ae:13: 1d:0a:e1:89:f3:34:8e:fd:d2:eb:fc:12:7f:8e:06:24:be:96: 4b:88:8b:e4:9e:e9:a2:9d:85:dd:9a:ac:69:ee:28:f8:a2:4b: 28:d5:43:e0:dd:27:59:f8:d5:bd:a0:1c:fc:41:51:27:97:48: eb:b1:15:9d:1f:fe:f6:84:39:e3:63:e1:3b:43:89:9a:be:d4: 14:2a:d4:0f:0b:5a:e5:62:dd:17:1c:6c:6f:0d:c4:51:d1:d7: 5a:6a:b4:72:54:de:94:5d:5d:89:e2:5b:8e:bd:42:e8:b9:f2: 0c:86:39:80:79:14:b9:38:df:82:b2:ff:31:4d:16:1a:46:e7: ab:06:ac:49:6e:92:ae:4d:ac:6f:74:57:9f:ca:f9:c1:6b:0f: 7d:08:75:c4:95:d3:ff:88:b3:7d:c9:b2:8c:66:49:c2:21:ae: 27:51:88:a4:fd:f2:1f:21:c8:79:f0:75:c3:3a:3c:bb:f5:55: 6d:9b:6b:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFDQjkxMTAvBgNVBAUTKDFFNjFFMDAwMkNFNDRCQkY1OTU1M0M4MDRBMEFDOTEy RTZGRUJGM0IwHhcNMjUxMTA1MDE0MTQ3WhcNMjUxMTEyMDE0MTQ3WjAYMRYwFAYD VQQDEw02OTBhYWI1Yi1lOGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Jdqwhr0HlbIMq2APd1U3WrX+iE+KG6jgl+UZKWSC7LBT8AQg4ikHkEe6ue9 +QA3sGJabjzJAFowWC+AthW8bPCE3sof/mkYv7MqYyI8gK/XsVsJEXFkvXrcPFk1 uhq2Xa9f7e9ts4rHGQUAPCA71gEqzNcoAgX7EDBaau/rdBN5fA3nMQ6MCRHH8GLG EFt1MjNoiuI/ltzOPKu7gsg7Uq7RRCBSTz9cdYPQEm06xQKF43CUIFX2F4q8YdpT ITweF054FUmrFE+xisMQik0FczrOoN81R7z5Qck4Rohp0r4coDrJsWGlvzQScant Wof9IUv51kUQwL/5pcFfitclIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDtYbEX bARWP13pQjwbLE1xLbkZMB8GA1UdIwQYMBaAFB5h4AAs5Eu/WVU8gEoKyRLm/r87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUNCOS8wQzAwMjBFMDI2 OUMxMUVEQkIxNDUyNzdDNEY5QUUwMi9IbUhnQUN6a1M3OVpWVHlBU2dySkV1Yi12 enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htSGdBQ3prUzc5WlZUeUFTZ3JKRXViLXZ6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUNCOS8wQzAwMjBFMDI2OUMxMUVEQkIxNDUyNzdDNEY5QUUwMi9IbUhnQUN6a1M3 OVpWVHlBU2dySkV1Yi12enMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGMiVDP8X3ND5NehgwvOYrKKSPRWiWaOBs6yhBQrlTMf++PO5nQFQZ sfkyKhY/6uxmKskZde6sfCkA6u84+3yPKOxNraFRrhMdCuGJ8zSO/dLr/BJ/jgYk vpZLiIvknuminYXdmqxp7ij4okso1UPg3SdZ+NW9oBz8QVEnl0jrsRWdH/72hDnj Y+E7Q4mavtQUKtQPC1rlYt0XHGxvDcRR0ddaarRyVN6UXV2J4luOvULoufIMhjmA eRS5ON+Csv8xTRYaRuerBqxJbpKuTaxvdFefyvnBaw99CHXEldP/iLN9ybKMZknC Ia4nUYik/fIfIch58HXDOjy79VVtm2ug -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:25 2025 by rpki-client