$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft File: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft (raw, json) Hash identifier: FIrsOas7QryveONetVkMUz2Fb4pfms2jLorA64XMFuU= Subject key identifier: 9A:15:CD:D7:09:F1:50:9E:1D:7B:B2:02:D4:41:A7:31:F2:4C:7C:EA Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0C1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft Manifest number: 0C12 Signing time: Sun 02 Nov 2025 18:44:48 +0000 Manifest this update: Sun 02 Nov 2025 18:44:47 +0000 Manifest next update: Sun 09 Nov 2025 18:44:47 +0000 Files and hashes: 1: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl (hash: dMu2im8W+ldYAMJ/fNSOTTjckYg99zqU3uuFok+LuyU=) 2: E5C9B0541B3E11EBBC57067AC4F9AE02.roa (hash: yqFSXrSreAwWsxKHKKypXy96bJWuk7Ta+8Svfir1RMk=) 3: E6D6D72E1B3E11EBBC57067AC4F9AE02.roa (hash: 8S+9u5NejOEqjzyGww6nqkHBEMgMZJI4JwQwHM3xtzk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:44:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3102 (0xc1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15, serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: Nov 2 18:44:47 2025 GMT Not After : Nov 9 18:44:47 2025 GMT Subject: CN=6907a6a0-cb0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c5:7c:6f:b5:af:de:3f:6c:2f:11:b2:ed:e1: e6:e0:1f:66:73:22:d0:61:b5:81:d7:59:16:8f:f7: 42:e5:9c:f1:80:17:27:ef:10:56:70:b6:6a:a7:d1: ef:27:b8:fe:3d:88:ba:56:be:0c:61:39:dc:5c:3a: 1d:62:c2:f6:1b:bd:4b:a6:b1:aa:02:45:97:da:95: b8:e0:51:a8:21:ae:39:98:d3:a5:b8:61:bf:3b:d9: 0a:5f:9f:68:9b:e0:0c:d8:bb:ad:01:a5:31:ce:0d: 15:d9:fc:3b:b3:f3:6e:d8:d8:ce:e1:38:ae:8a:01: 3a:7d:bd:99:3c:f6:b4:77:9b:f5:17:46:3a:15:b8: fc:93:85:47:84:56:6f:48:e7:9b:cc:e3:1a:31:bb: a0:84:b2:12:3b:a9:08:06:aa:ce:e8:fa:80:a3:6a: ce:fc:76:38:3e:43:45:31:08:01:de:db:75:f9:1d: e5:fa:c4:bd:d8:de:42:77:d6:86:07:19:84:61:ca: 79:30:7c:9c:f2:d0:ad:10:30:c9:91:f1:6c:9c:09: 11:f7:4b:cf:66:8b:80:a7:8a:e4:bb:61:e4:a5:ee: fe:0f:00:04:da:7b:5e:65:89:71:30:ac:17:c0:ae: 51:ad:20:87:c4:af:ca:08:84:04:35:6f:62:af:cb: 4c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:15:CD:D7:09:F1:50:9E:1D:7B:B2:02:D4:41:A7:31:F2:4C:7C:EA X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:fe:55:eb:a5:6e:35:e4:33:37:c4:92:0a:b2:dd:93:45:23: ae:38:30:89:d9:1b:77:ce:54:16:59:af:c6:6a:37:7b:7f:36: 6c:c1:d6:57:86:f2:11:6f:2d:33:a0:37:d5:49:60:6b:3c:90: 8d:c2:b8:4e:40:39:1c:c2:00:40:42:67:64:09:e2:87:39:3b: 49:1e:ba:52:d2:5b:83:99:f0:ea:e6:f6:53:47:df:ae:c8:d7: c2:03:d3:a0:ed:68:82:c4:d8:34:03:da:11:57:28:ba:ae:05: ef:f4:c4:9e:3c:7c:04:2d:0a:07:3a:df:40:5e:ed:29:33:4a: e1:de:2f:a3:d0:d9:d9:28:c1:59:ef:34:28:b1:ff:6f:3d:14: c4:72:72:0f:65:1b:67:43:7c:59:02:f3:4d:16:34:b1:bd:62: 76:a0:e3:f5:64:89:26:30:4e:d9:f3:a4:8a:05:09:a8:ab:fe: b5:42:cf:ae:9f:cb:c3:24:b6:68:4b:c6:ce:e2:78:b0:28:88: 20:c7:d6:c3:66:c3:78:39:70:52:83:a0:86:3b:48:d9:2e:dd: ec:17:da:c3:06:d3:e4:7b:e5:18:20:2f:d9:56:01:41:c0:74: 1c:a5:46:22:84:21:4a:79:0d:5b:12:a2:ea:28:35:c2:2e:d0: b8:67:1f:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjUxMTAyMTg0NDQ3WhcNMjUxMTA5MTg0NDQ3WjAYMRYwFAYD VQQDEw02OTA3YTZhMC1jYjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08V8b7Wv3j9sLxGy7eHm4B9mcyLQYbWB11kWj/dC5ZzxgBcn7xBWcLZqp9Hv J7j+PYi6Vr4MYTncXDodYsL2G71LprGqAkWX2pW44FGoIa45mNOluGG/O9kKX59o m+AM2LutAaUxzg0V2fw7s/Nu2NjO4TiuigE6fb2ZPPa0d5v1F0Y6Fbj8k4VHhFZv SOebzOMaMbughLISO6kIBqrO6PqAo2rO/HY4PkNFMQgB3tt1+R3l+sS92N5Cd9aG BxmEYcp5MHyc8tCtEDDJkfFsnAkR90vPZouAp4rku2Hkpe7+DwAE2nteZYlxMKwX wK5RrSCHxK/KCIQENW9ir8tMdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJoVzdcJ 8VCeHXuyAtRBpzHyTHzqMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkExNS83MDFGNTNEMjFEODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1Ra VDl0SjdDWEZzU0RRdTVRcGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4/lXrpW415DM3xJIKst2TRSOuODCJ2Rt3zlQWWa/Gajd7fzZswdZX hvIRby0zoDfVSWBrPJCNwrhOQDkcwgBAQmdkCeKHOTtJHrpS0luDmfDq5vZTR9+u yNfCA9Og7WiCxNg0A9oRVyi6rgXv9MSePHwELQoHOt9AXu0pM0rh3i+j0NnZKMFZ 7zQosf9vPRTEcnIPZRtnQ3xZAvNNFjSxvWJ2oOP1ZIkmME7Z86SKBQmoq/61Qs+u n8vDJLZoS8bO4niwKIggx9bDZsN4OXBSg6CGO0jZLt3sF9rDBtPke+UYIC/ZVgFB wHQcpUYihCFKeQ1bEqLqKDXCLtC4Zx/3 -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:38 2025 by rpki-client