$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft File: HfNLnj96ONdYmO1LBfntTEAEzrw.mft (raw, json) Hash identifier: oPdcujWzbXDDAHv6cIRsZgzsiJYao8XQ9LtTRr+osL0= Subject key identifier: 82:CB:CB:DF:C5:66:3A:5F:5B:C7:41:77:C6:C9:24:9E:69:0A:A3:D4 Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 0A4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft Manifest number: 0A40 Signing time: Tue 04 Nov 2025 19:48:58 +0000 Manifest this update: Tue 04 Nov 2025 19:48:57 +0000 Manifest next update: Tue 11 Nov 2025 19:48:57 +0000 Files and hashes: 1: HfNLnj96ONdYmO1LBfntTEAEzrw.crl (hash: Tg2CUSnVNHEm+CDoELcb6f/9HMVs4MUJudWy+QWAxAQ=) 2: A23D5DE87A6911EA930EB439C4F9AE02.roa (hash: 0c8vFwsGm0y9J7tirCRPVhjPNwdGg4DZRn3e0fuJjls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:48:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2635 (0xa4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227, serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: Nov 4 19:48:57 2025 GMT Not After : Nov 11 19:48:57 2025 GMT Subject: CN=690a58aa-af84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c8:9c:0e:aa:ec:bf:c8:92:71:24:67:06:82: 07:99:43:29:68:0c:84:ac:f0:db:30:c1:a2:4d:d6: e7:0c:90:df:7c:2c:60:d4:ca:fa:51:b5:d4:2d:fd: a2:62:bc:0f:04:0e:a6:76:4b:e7:95:9b:65:94:cb: 9d:4a:f0:71:24:ee:6d:81:d1:5f:fc:30:4d:fd:92: 0f:78:f5:f8:82:1a:65:02:f0:13:2a:a2:76:04:04: 10:fd:ea:83:ac:fb:e3:61:c9:7c:78:c8:9a:e5:fd: 3b:28:3d:8e:9e:39:18:71:21:ac:53:95:17:7e:88: 41:6b:91:5a:cd:b9:2b:56:63:60:d6:d9:2d:c4:79: 6b:e4:97:78:53:63:39:af:7c:e0:64:ed:2f:3d:5f: ad:4a:7a:54:27:61:c2:b1:51:a0:38:a9:fd:d1:3c: ff:fb:3b:ea:c8:78:f6:97:cc:c8:cf:da:28:5e:e5: 07:3e:3e:2d:f0:cb:e2:50:a7:a2:3e:11:b8:a1:a6: ee:37:ba:e5:7a:95:ec:f9:ec:a6:1a:c8:8e:f2:b7: c6:be:dc:c6:64:d5:67:9a:6b:90:cf:33:f0:1e:1d: 7c:d3:89:99:2b:b5:07:05:c6:13:3c:16:9d:c3:bf: 73:4e:fb:1d:43:2e:df:c5:96:44:a6:6b:b4:ce:95: d1:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:CB:CB:DF:C5:66:3A:5F:5B:C7:41:77:C6:C9:24:9E:69:0A:A3:D4 X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:8a:f3:40:99:b0:58:80:69:5e:78:58:78:21:6c:c1:3e:f2: c6:d9:e0:23:0c:a4:d0:0d:8f:ea:d2:ef:d7:24:2c:49:fc:ab: 0a:44:46:a5:12:20:b2:aa:a9:5e:00:fa:29:f1:52:4c:6b:69: 8c:95:2c:52:e1:5a:59:43:59:8e:19:78:12:37:f9:6a:6b:c9: d8:4d:3a:2a:2e:14:db:ad:b6:76:10:18:ed:76:27:3a:b3:e6: 18:ce:7a:bf:3a:21:c2:a0:f7:4e:ca:74:ce:5f:4c:8e:d9:7e: ff:a7:c6:2e:d2:49:9a:1d:ba:2d:92:7a:49:ec:ae:68:9a:1f: 7b:f6:e5:77:f4:5e:72:f3:14:19:0b:4d:9f:d9:c6:7f:24:55: ef:2d:31:ff:af:95:b8:44:39:65:ac:f8:c6:19:40:a5:37:9e: 83:19:05:8c:1a:82:d8:b0:88:01:36:d0:7c:69:2c:ce:3e:7a: 5d:79:28:88:d8:25:b4:28:6b:7d:67:f9:c1:f3:45:04:f5:5e: 9b:6d:e5:99:8a:6e:48:1a:1e:6e:4d:18:cb:b4:f9:f7:5a:2b: a2:65:69:a1:a2:ce:f2:0b:97:83:7f:af:3f:07:73:46:86:97: 8c:11:a9:3b:da:c1:06:d2:4f:ec:fa:29:f0:24:18:41:1c:05: be:37:58:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjUxMTA0MTk0ODU3WhcNMjUxMTExMTk0ODU3WjAYMRYwFAYD VQQDEw02OTBhNThhYS1hZjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmcicDqrsv8iScSRnBoIHmUMpaAyErPDbMMGiTdbnDJDffCxg1Mr6UbXULf2i YrwPBA6mdkvnlZtllMudSvBxJO5tgdFf/DBN/ZIPePX4ghplAvATKqJ2BAQQ/eqD rPvjYcl8eMia5f07KD2OnjkYcSGsU5UXfohBa5FazbkrVmNg1tktxHlr5Jd4U2M5 r3zgZO0vPV+tSnpUJ2HCsVGgOKn90Tz/+zvqyHj2l8zIz9ooXuUHPj4t8MviUKei PhG4oabuN7rlepXs+eymGsiO8rfGvtzGZNVnmmuQzzPwHh1804mZK7UHBcYTPBad w79zTvsdQy7fxZZEpmu0zpXR1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFILLy9/F ZjpfW8dBd8bJJJ5pCqPUMB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjIyNy8wRDcyOEEwQTdBM0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9O ZFltTzFMQmZudFRFQUV6cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9ivNAmbBYgGleeFh4IWzBPvLG2eAjDKTQDY/q0u/XJCxJ/KsKREal EiCyqqleAPop8VJMa2mMlSxS4VpZQ1mOGXgSN/lqa8nYTToqLhTbrbZ2EBjtdic6 s+YYznq/OiHCoPdOynTOX0yO2X7/p8Yu0kmaHbotknpJ7K5omh979uV39F5y8xQZ C02f2cZ/JFXvLTH/r5W4RDllrPjGGUClN56DGQWMGoLYsIgBNtB8aSzOPnpdeSiI 2CW0KGt9Z/nB80UE9V6bbeWZim5IGh5uTRjLtPn3WiuiZWmhos7yC5eDf68/B3NG hpeMEak72sEG0k/s+inwJBhBHAW+N1gE -----END CERTIFICATE-----Generated at Wed Nov 5 19:31:13 2025 by rpki-client