$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft File: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft (raw, json) Hash identifier: bItD8hunQ2+rFPqvSPSJfBLlR4A4KMK9cpuk28Xs/u4= Subject key identifier: AA:1D:6C:26:C6:9C:2C:9F:93:DD:9B:42:58:4B:06:A4:F5:0B:11:57 Authority key identifier: 1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 Certificate issuer: /CN=A91F5BCC/serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft Manifest number: 9A Signing time: Wed 05 Nov 2025 06:34:29 +0000 Manifest this update: Wed 05 Nov 2025 06:34:28 +0000 Manifest next update: Wed 12 Nov 2025 06:34:28 +0000 Files and hashes: 1: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl (hash: aqz5N4RxWm9TKpR2xz8XcK3NMSob2UykQSIIB8g4yYA=) 2: 7A092C88E9E211EFAD188675C4F9AE02.roa (hash: Ih+3aaDaOz/d8dCkRSwBGnuzOxqfvTbU/QJJ8s8nf54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:34:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5BCC, serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Validity Not Before: Nov 5 06:34:28 2025 GMT Not After : Nov 12 06:34:28 2025 GMT Subject: CN=690aeff4-6dcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:32:4f:67:ab:19:08:46:58:f6:d7:ed:6b:0f: 93:f5:4b:bb:59:a5:f9:cf:20:b3:dc:88:fa:5e:56: 18:bd:9b:0e:9d:3d:2e:5c:d6:ee:5c:ae:ec:13:11: 5d:aa:71:c0:19:dc:90:be:eb:c4:46:42:f6:b4:85: 35:d8:ab:39:29:96:71:b4:34:0e:1f:0c:c3:ee:c3: 74:18:9b:1d:1f:63:4e:c5:3f:f1:24:90:f0:14:36: 21:2a:a8:e7:39:ee:f5:70:27:45:4f:01:b2:15:aa: 29:ea:25:fc:e3:0a:36:3f:ae:45:0c:d0:8d:f1:c0: fd:d6:45:0b:7b:59:a7:96:cf:d5:eb:03:af:ba:42: 11:51:10:02:d1:3d:ea:d3:f8:43:c4:46:89:50:a2: 71:61:7b:74:27:5f:1b:75:1e:24:92:24:53:d8:84: 99:35:33:a2:9a:bf:94:9a:c3:6e:2b:45:87:dd:0b: c6:22:86:b4:b8:00:d6:cd:04:e3:63:15:7e:67:48: a1:88:83:d0:a7:8c:3b:a2:82:3c:ac:7d:71:f7:bd: 6c:51:00:6c:67:87:08:5f:4b:02:0b:67:a2:31:bd: f2:50:56:cf:d9:9c:46:24:7c:59:1f:fe:d9:df:d7: 5f:c1:35:5f:b3:e5:8d:16:c5:dd:a7:2e:6a:90:fa: 18:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:1D:6C:26:C6:9C:2C:9F:93:DD:9B:42:58:4B:06:A4:F5:0B:11:57 X509v3 Authority Key Identifier: keyid:1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:40:32:d3:81:a2:ff:28:3e:89:bb:f2:1b:ba:48:97:fb:a4: a6:85:45:81:25:3e:ee:38:6c:7c:80:bb:82:39:a2:98:6b:1d: 2e:e5:dd:29:0b:b0:6c:8d:b2:4a:a1:79:de:7c:1e:d1:17:cd: 61:3d:cb:ef:17:a2:69:04:a1:80:0b:3a:12:10:0a:e7:9b:75: 75:0c:49:34:3f:d9:83:7e:8b:17:15:33:d8:e7:b9:08:c5:2c: 4c:c2:0c:45:8b:99:5d:ff:7c:cf:e1:ce:51:14:a5:28:ee:d7: b0:17:4d:45:d7:dd:f9:f1:9b:e8:88:62:c8:e6:a0:ad:11:39: 42:1e:0c:f9:76:dd:f1:de:c2:ff:1f:e2:9b:83:f5:e6:2d:ea: 66:da:94:69:98:a9:de:f3:86:25:29:2d:48:47:b3:92:d0:6b: 8f:64:f5:f6:97:e2:8b:ca:3c:d4:c2:c2:1a:91:74:e9:bd:b5: 87:89:b2:71:2c:18:f7:dc:cc:3f:61:d2:0f:67:bc:eb:64:00: f4:73:72:dc:bc:31:9f:24:43:91:12:69:6e:54:20:b6:ea:9a: df:49:38:fd:e1:d6:7a:5d:ee:95:36:b4:80:17:49:44:4c:27: 83:c6:06:2f:5a:c3:e1:77:6d:37:ca:dd:aa:ed:89:fd:4b:47: 7a:28:9e:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVCQ0MxMTAvBgNVBAUTKDFFNDhFRkU1M0U2MkVEMjA0QkE3QTY5NDM4NENCQUM5 MjQ2Nzk0QTcwHhcNMjUxMTA1MDYzNDI4WhcNMjUxMTEyMDYzNDI4WjAYMRYwFAYD VQQDEw02OTBhZWZmNC02ZGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zJPZ6sZCEZY9tftaw+T9Uu7WaX5zyCz3Ij6XlYYvZsOnT0uXNbuXK7sExFd qnHAGdyQvuvERkL2tIU12Ks5KZZxtDQOHwzD7sN0GJsdH2NOxT/xJJDwFDYhKqjn Oe71cCdFTwGyFaop6iX84wo2P65FDNCN8cD91kULe1mnls/V6wOvukIRURAC0T3q 0/hDxEaJUKJxYXt0J18bdR4kkiRT2ISZNTOimr+UmsNuK0WH3QvGIoa0uADWzQTj YxV+Z0ihiIPQp4w7ooI8rH1x971sUQBsZ4cIX0sCC2eiMb3yUFbP2ZxGJHxZH/7Z 39dfwTVfs+WNFsXdpy5qkPoYCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKodbCbG nCyfk92bQlhLBqT1CxFXMB8GA1UdIwQYMBaAFB5I7+U+Yu0gS6emlDhMuskkZ5Sn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUJDQy9COTU4OEJBQ0NF NzgxMUVGODBFRjRENDRDNEY5QUUwMi9Ia2p2NVQ1aTdTQkxwNmFVT0V5NnlTUm5s S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hranY1VDVpN1NCTHA2YVVPRXk2eVNSbmxLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUJDQy9COTU4OEJBQ0NFNzgxMUVGODBFRjRENDRDNEY5QUUwMi9Ia2p2NVQ1aTdT QkxwNmFVT0V5NnlTUm5sS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtQDLTgaL/KD6Ju/IbukiX+6SmhUWBJT7uOGx8gLuCOaKYax0u5d0p C7BsjbJKoXnefB7RF81hPcvvF6JpBKGACzoSEArnm3V1DEk0P9mDfosXFTPY57kI xSxMwgxFi5ld/3zP4c5RFKUo7tewF01F19358ZvoiGLI5qCtETlCHgz5dt3x3sL/ H+Kbg/XmLepm2pRpmKne84YlKS1IR7OS0GuPZPX2l+KLyjzUwsIakXTpvbWHibJx LBj33Mw/YdIPZ7zrZAD0c3LcvDGfJEOREmluVCC26prfSTj94dZ6Xe6VNrSAF0lE TCeDxgYvWsPhd203yt2q7Yn9S0d6KJ6l -----END CERTIFICATE-----Generated at Wed Nov 5 16:38:19 2025 by rpki-client