$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft File: hf--WNwc9_kcLTgTTiC27wssOl8.mft (raw, json) Hash identifier: KadGlgTz7yGfbJt87eKbYzeXOTcRBEIYxeYUnE0DSUI= Subject key identifier: 18:FF:C4:77:E6:3B:C6:A2:34:49:A8:39:91:CC:59:01:E9:DE:DE:6F Authority key identifier: 85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F Certificate issuer: /CN=A911954F/serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft Manifest number: 0274 Signing time: Mon 03 Nov 2025 03:56:53 +0000 Manifest this update: Mon 03 Nov 2025 03:56:52 +0000 Manifest next update: Mon 10 Nov 2025 03:56:52 +0000 Files and hashes: 1: hf--WNwc9_kcLTgTTiC27wssOl8.crl (hash: GNMqMKwrbGFiug3nS7y14EFSLU4zsZSzDqcYSaqlJsE=) 2: 6BCEC330344311EFB7DD0D34C4F9AE02.roa (hash: V5GXfj7MVmj/bsrh8ZK5BOMK+sTslcHA1M5O9HLWM8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:56:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911954F, serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Validity Not Before: Nov 3 03:56:52 2025 GMT Not After : Nov 10 03:56:52 2025 GMT Subject: CN=69082805-20c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:98:a5:b6:e1:3a:c0:8d:c6:d2:fb:d1:8e:12: 9f:93:c0:33:0f:79:09:03:06:88:0a:c4:ba:30:69: a2:8f:a4:e4:98:a2:a9:b1:84:da:7b:f9:c8:13:96: 84:6a:88:f5:69:64:38:e7:00:24:66:98:08:74:b3: f6:88:d5:02:05:2a:ea:08:83:33:49:4a:d2:74:e6: 56:55:b8:9b:7c:34:79:27:c4:86:18:45:06:e9:29: 04:90:e8:41:38:35:a1:27:6b:55:fb:9c:00:1d:51: b1:a3:86:68:05:ce:b1:cc:12:c8:ef:0f:e2:0d:e7: 29:f4:26:f5:e0:86:31:7d:85:b5:a4:43:a6:38:d6: 00:79:03:ea:cc:d4:a6:ba:a4:aa:73:41:9c:b2:b8: aa:98:55:ce:13:97:e2:57:6c:ff:ac:cc:33:d9:b2: e3:ee:19:a4:08:b4:13:35:48:eb:65:1d:67:8f:75: 6a:e2:3d:7f:69:c4:ec:f7:9b:e2:37:46:50:9f:a6: dc:75:1d:2b:52:9e:39:9c:71:49:b0:7e:b4:6c:da: 8d:18:59:6b:72:af:9e:cb:fe:2a:59:32:1f:58:41: f1:3f:11:62:4e:d9:0a:ad:ba:3c:6c:9a:6e:b6:ad: 58:93:06:af:87:50:62:aa:14:c7:4d:21:5c:e6:ee: bc:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:FF:C4:77:E6:3B:C6:A2:34:49:A8:39:91:CC:59:01:E9:DE:DE:6F X509v3 Authority Key Identifier: keyid:85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:8b:1f:16:1f:ac:d6:ad:fb:b8:27:c3:00:51:a9:cf:26:54: aa:c1:bb:f5:9e:e9:30:9b:34:b5:fd:73:e5:5b:39:18:7a:2f: 77:96:36:5f:70:92:6f:41:ed:b4:40:ac:dc:4d:6f:03:92:32: e1:b3:af:45:4d:f6:e4:59:dc:ef:09:f3:9f:0d:44:85:7e:df: 3c:38:72:26:7f:4d:02:65:ee:06:87:42:71:32:f0:c4:28:ec: 9e:0a:88:d3:c2:bb:a8:f4:c0:78:b9:1b:d1:7d:96:fa:82:1e: 9d:d0:7f:8e:f6:25:23:64:a6:3a:e1:de:b8:38:cb:aa:c9:8d: fb:da:4b:14:66:9b:eb:d2:c8:7e:cc:d5:0a:e6:75:b0:21:fd: 0b:a5:f9:b4:af:d1:2a:44:47:18:aa:f6:0c:8d:e0:06:f4:33: 7a:53:46:be:04:a1:63:26:64:64:f8:2c:6a:a1:fb:2d:2d:4d: 39:a0:ba:8f:e2:de:f1:de:6b:c0:99:ce:7c:59:67:12:2a:8d: d8:61:d8:c3:a4:fb:f9:17:80:8e:49:a0:79:53:b0:b8:50:ab: ef:7e:5b:d5:a7:88:96:9b:23:a0:71:d1:7c:7e:02:d5:3d:91: de:13:38:e7:23:bf:a1:d4:32:9d:17:ca:62:f9:9e:70:49:01: 10:ae:99:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1NEYxMTAvBgNVBAUTKDg1RkZCRTU4REMxQ0Y3RjkxQzJEMzgxMzRFMjBCNkVG MEIyQzNBNUYwHhcNMjUxMTAzMDM1NjUyWhcNMjUxMTEwMDM1NjUyWjAYMRYwFAYD VQQDEw02OTA4MjgwNS0yMGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpiltuE6wI3G0vvRjhKfk8AzD3kJAwaICsS6MGmij6TkmKKpsYTae/nIE5aE aoj1aWQ45wAkZpgIdLP2iNUCBSrqCIMzSUrSdOZWVbibfDR5J8SGGEUG6SkEkOhB ODWhJ2tV+5wAHVGxo4ZoBc6xzBLI7w/iDecp9Cb14IYxfYW1pEOmONYAeQPqzNSm uqSqc0GcsriqmFXOE5fiV2z/rMwz2bLj7hmkCLQTNUjrZR1nj3Vq4j1/acTs95vi N0ZQn6bcdR0rUp45nHFJsH60bNqNGFlrcq+ey/4qWTIfWEHxPxFiTtkKrbo8bJpu tq1Ykwavh1BiqhTHTSFc5u68HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBj/xHfm O8aiNEmoOZHMWQHp3t5vMB8GA1UdIwQYMBaAFIX/vljcHPf5HC04E04gtu8LLDpf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTU0Ri81OTFBMzIyMDkx NEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlfa2NMVGdUVGlDMjd3c3NP bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hmLS1XTndjOV9rY0xUZ1RUaUMyN3dzc09sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTU0Ri81OTFBMzIyMDkxNEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlf a2NMVGdUVGlDMjd3c3NPbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3ix8WH6zWrfu4J8MAUanPJlSqwbv1nukwmzS1/XPlWzkYei93ljZf cJJvQe20QKzcTW8DkjLhs69FTfbkWdzvCfOfDUSFft88OHImf00CZe4Gh0JxMvDE KOyeCojTwruo9MB4uRvRfZb6gh6d0H+O9iUjZKY64d64OMuqyY372ksUZpvr0sh+ zNUK5nWwIf0Lpfm0r9EqREcYqvYMjeAG9DN6U0a+BKFjJmRk+CxqofstLU05oLqP 4t7x3mvAmc58WWcSKo3YYdjDpPv5F4COSaB5U7C4UKvvflvVp4iWmyOgcdF8fgLV PZHeEzjnI7+h1DKdF8pi+Z5wSQEQrplu -----END CERTIFICATE-----Generated at Tue Nov 4 08:29:02 2025 by rpki-client