$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft File: hf--WNwc9_kcLTgTTiC27wssOl8.mft (raw, json) Hash identifier: 6F2XYnitYTd6SS7qSF0chxQeNKyNS0vCskSbE/kSFIw= Subject key identifier: 9C:75:5F:DD:01:D0:4E:C3:5E:C5:43:21:A2:51:62:5B:AF:BD:4F:FA Authority key identifier: 85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F Certificate issuer: /CN=A911954F/serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft Manifest number: 0248 Signing time: Fri 19 Sep 2025 04:44:52 +0000 Manifest this update: Fri 19 Sep 2025 04:44:51 +0000 Manifest next update: Fri 26 Sep 2025 04:44:51 +0000 Files and hashes: 1: hf--WNwc9_kcLTgTTiC27wssOl8.crl (hash: ba9N9Ge6XOQntUIRm2+UYEzJ/FyPvRNo+gvrXF6nVuA=) 2: 6BCEC330344311EFB7DD0D34C4F9AE02.roa (hash: V5GXfj7MVmj/bsrh8ZK5BOMK+sTslcHA1M5O9HLWM8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 04:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911954F, serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Validity Not Before: Sep 19 04:44:51 2025 GMT Not After : Sep 26 04:44:51 2025 GMT Subject: CN=68ccdfc4-68ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9c:2f:92:00:ad:2c:3b:eb:20:6e:1f:dc:43: e0:84:c2:9b:fd:76:ff:0a:de:c6:03:19:c4:3d:34: ac:b8:79:04:1f:2b:93:c0:06:ee:95:c0:9f:d9:68: 04:0f:92:1c:f5:14:02:11:62:d2:1d:3b:b0:2b:cc: 4d:77:84:59:50:d3:54:fc:54:30:76:3c:95:a2:dd: 76:61:2f:87:54:33:18:ab:b5:ac:39:a6:31:af:32: b1:21:f6:7f:09:da:e5:81:48:73:8d:57:6a:2a:51: a0:24:ed:33:4c:00:79:79:aa:e7:e6:a1:f2:5a:75: 3a:14:11:0a:0c:10:00:22:c6:b2:56:94:df:26:b1: 80:ad:0c:27:7d:bd:fe:e6:cd:03:62:83:f6:f3:0e: a8:c3:7b:7a:73:4b:c6:75:ac:9d:42:9a:ff:9d:a4: 96:29:f6:18:5e:a7:55:33:1f:95:62:2d:c3:32:49: 68:61:b0:10:d1:1a:50:34:08:d2:ad:b8:09:2d:85: e8:e3:97:38:d0:b7:46:1d:7b:ee:27:34:94:2a:0d: 01:d0:42:71:c7:cd:85:64:09:32:7c:99:93:98:38: ed:1e:24:4e:69:79:d6:17:c1:a6:49:80:7c:ee:e8: 66:09:82:3a:4a:a6:f3:37:df:04:b1:71:39:a4:f7: 63:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:75:5F:DD:01:D0:4E:C3:5E:C5:43:21:A2:51:62:5B:AF:BD:4F:FA X509v3 Authority Key Identifier: keyid:85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:ed:8e:c7:b5:78:44:e3:08:18:dc:c3:6d:3d:2c:05:1f:27: eb:90:8f:00:00:b2:83:50:eb:5e:e1:40:a7:93:a8:70:cd:05: 22:f5:78:45:e4:50:2c:39:4b:fc:14:93:f4:4f:da:53:4f:12: 77:e5:cd:5e:3b:91:9c:6a:65:db:ae:c8:f5:02:f5:f1:55:b5: d1:ed:99:89:b6:3c:41:a1:07:92:da:9b:fe:18:6e:31:a0:1e: 74:e6:00:a2:bc:22:d0:31:3d:45:cb:60:81:6a:61:5b:ec:67: 13:ae:36:86:94:37:a3:65:1c:80:42:f2:c9:0f:f3:55:86:44: 4d:04:bb:97:c3:51:ab:45:2e:97:96:9e:1e:6d:e5:38:3f:d2: 8e:f2:b5:3c:7b:1c:e0:cf:2f:29:31:f1:c7:90:84:11:ab:ad: 5d:d2:33:59:c9:cb:c4:13:24:29:58:54:de:1a:37:d0:c7:9f: 49:b5:f0:36:d6:0f:36:72:64:90:33:cd:e9:0d:6c:79:14:12: 84:98:04:69:35:04:93:84:28:61:05:8c:85:d6:d2:48:80:8a: 30:71:18:12:d3:bd:fd:60:3c:9f:27:0f:50:60:cf:e9:43:5e: 3c:c9:54:55:14:ce:9f:6f:67:4f:b8:54:4d:73:aa:8e:a3:46: 0d:bc:dc:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1NEYxMTAvBgNVBAUTKDg1RkZCRTU4REMxQ0Y3RjkxQzJEMzgxMzRFMjBCNkVG MEIyQzNBNUYwHhcNMjUwOTE5MDQ0NDUxWhcNMjUwOTI2MDQ0NDUxWjAYMRYwFAYD VQQDEw02OGNjZGZjNC02OGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5wvkgCtLDvrIG4f3EPghMKb/Xb/Ct7GAxnEPTSsuHkEHyuTwAbulcCf2WgE D5Ic9RQCEWLSHTuwK8xNd4RZUNNU/FQwdjyVot12YS+HVDMYq7WsOaYxrzKxIfZ/ CdrlgUhzjVdqKlGgJO0zTAB5earn5qHyWnU6FBEKDBAAIsayVpTfJrGArQwnfb3+ 5s0DYoP28w6ow3t6c0vGdaydQpr/naSWKfYYXqdVMx+VYi3DMkloYbAQ0RpQNAjS rbgJLYXo45c40LdGHXvuJzSUKg0B0EJxx82FZAkyfJmTmDjtHiROaXnWF8GmSYB8 7uhmCYI6SqbzN98EsXE5pPdjGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJx1X90B 0E7DXsVDIaJRYluvvU/6MB8GA1UdIwQYMBaAFIX/vljcHPf5HC04E04gtu8LLDpf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTU0Ri81OTFBMzIyMDkx NEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlfa2NMVGdUVGlDMjd3c3NP bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hmLS1XTndjOV9rY0xUZ1RUaUMyN3dzc09sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTU0Ri81OTFBMzIyMDkxNEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlf a2NMVGdUVGlDMjd3c3NPbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG7Y7HtXhE4wgY3MNtPSwFHyfrkI8AALKDUOte4UCnk6hwzQUi9XhF 5FAsOUv8FJP0T9pTTxJ35c1eO5GcamXbrsj1AvXxVbXR7ZmJtjxBoQeS2pv+GG4x oB505gCivCLQMT1Fy2CBamFb7GcTrjaGlDejZRyAQvLJD/NVhkRNBLuXw1GrRS6X lp4ebeU4P9KO8rU8exzgzy8pMfHHkIQRq61d0jNZycvEEyQpWFTeGjfQx59JtfA2 1g82cmSQM83pDWx5FBKEmARpNQSThChhBYyF1tJIgIowcRgS0739YDyfJw9QYM/p Q148yVRVFM6fb2dPuFRNc6qOo0YNvNye -----END CERTIFICATE-----Generated at Fri Sep 19 16:08:42 2025 by rpki-client