$ rpki-client -vvf rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft File: hdbxhJPYoIzHKxsJHUr1T48KKLM.mft (raw, json) Hash identifier: lOZyR3Roi77Z/5mP4cY1jFLXAqxyyWZb714pom/fVZU= Subject key identifier: 04:45:40:69:F9:4A:4C:59:65:47:B4:9B:34:43:F6:EB:66:42:1F:55 Authority key identifier: 85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 Certificate issuer: /CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Certificate serial: 06B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft Manifest number: 06A6 Signing time: Sun 02 Nov 2025 22:17:58 +0000 Manifest this update: Sun 02 Nov 2025 22:17:57 +0000 Manifest next update: Sun 09 Nov 2025 22:17:57 +0000 Files and hashes: 1: hdbxhJPYoIzHKxsJHUr1T48KKLM.crl (hash: WHAobsjtkD9HHuWzCfWro2QLk0NyhDUtvWMIOIQFrk0=) 2: F66F50628A9C11EB9B2E044BC4F9AE02.roa (hash: hWP/crnjmiKRkQxu0624FvYvc5uF2iF9vYd33TXrr/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1712 (0x6b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125225, serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Validity Not Before: Nov 2 22:17:57 2025 GMT Not After : Nov 9 22:17:57 2025 GMT Subject: CN=6907d896-b46b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:16:6b:7b:d6:f5:12:eb:c6:97:b5:34:9a:9f: 61:a4:72:a7:11:80:41:ed:d9:72:5b:a6:ae:53:fe: de:67:e4:b2:62:3c:b6:18:9a:25:49:ae:e5:8a:ea: b1:58:bd:b1:72:a2:88:e9:30:33:0f:06:7f:c5:36: 55:e3:b1:f2:0e:8b:a1:2f:a7:13:2a:0b:dc:74:49: 9a:20:0a:bb:38:4f:07:04:39:79:fc:6b:04:28:6a: bb:34:56:a1:c9:10:d9:0e:23:ab:97:18:e3:28:b7: 46:8b:0a:47:45:61:be:9e:57:7e:62:7f:7d:1e:ae: dd:c5:39:87:b2:c7:7b:fb:08:b7:87:0f:38:a4:5a: ae:41:d9:8a:01:0c:a9:4b:44:92:45:0b:e0:73:84: e8:82:67:39:ae:9c:83:25:57:3e:3d:03:4c:1a:3d: 40:06:8d:76:b1:1d:63:4d:06:87:87:be:26:b6:75: 85:d2:4d:ca:50:b1:76:72:40:e8:5b:ac:ac:7d:af: 51:6a:f9:33:d6:fc:96:05:25:f2:b6:08:8e:5e:16: 65:ce:59:c6:78:8f:f5:8c:c9:c5:41:cb:e1:2d:d2: 18:29:59:b4:8d:49:3e:50:bc:c0:ea:53:af:3e:d7: ec:9e:af:80:11:b7:88:d3:0c:98:e9:73:a2:f2:e2: 04:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:45:40:69:F9:4A:4C:59:65:47:B4:9B:34:43:F6:EB:66:42:1F:55 X509v3 Authority Key Identifier: keyid:85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:cd:aa:2f:84:49:9d:40:7e:6f:ed:0d:23:c9:c2:23:76:3c: c6:e0:43:75:13:9f:6f:6c:55:cf:b4:f9:0d:30:72:8a:ab:9a: 2f:40:f4:34:30:d6:1a:8d:37:bb:4f:8f:23:1b:45:1f:b7:90: 66:0e:74:39:59:0f:79:53:81:7d:9c:ca:b4:63:84:04:f9:5c: 5b:fc:36:e8:f9:34:37:9d:f0:c4:d6:20:d9:ad:b9:ae:b0:d4: 56:8d:f0:58:c8:e3:05:33:e9:ef:54:4c:cf:ef:0a:f3:de:f6: 75:3e:1a:39:70:94:98:0c:67:3b:2c:68:62:8f:ed:73:85:fd: a0:36:90:64:f2:95:a8:16:cc:b1:1c:11:3e:f5:05:9c:20:f1: 5f:84:64:f6:b9:a4:3e:67:cf:ac:cd:31:a8:d7:77:dd:10:28: 89:28:0f:7d:72:82:80:22:6a:97:39:19:fe:1a:bb:09:b8:d8: 82:56:55:0e:3d:3f:29:8e:59:5b:1c:5d:95:5a:53:d1:8b:97: 9d:d1:f8:04:60:1d:c9:d3:85:0b:49:93:cd:e5:d2:13:63:68: 49:cf:91:4e:f2:ed:d5:cc:99:9c:49:5a:5a:3d:c2:27:c5:34: 13:1d:88:30:7e:b4:42:39:ab:87:4e:18:5c:a4:97:c2:4c:67: cd:be:58:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUyMjUxMTAvBgNVBAUTKDg1RDZGMTg0OTNEOEEwOENDNzJCMUIwOTFENEFGNTRG OEYwQTI4QjMwHhcNMjUxMTAyMjIxNzU3WhcNMjUxMTA5MjIxNzU3WjAYMRYwFAYD VQQDEw02OTA3ZDg5Ni1iNDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xZre9b1EuvGl7U0mp9hpHKnEYBB7dlyW6auU/7eZ+SyYjy2GJolSa7liuqx WL2xcqKI6TAzDwZ/xTZV47HyDouhL6cTKgvcdEmaIAq7OE8HBDl5/GsEKGq7NFah yRDZDiOrlxjjKLdGiwpHRWG+nld+Yn99Hq7dxTmHssd7+wi3hw84pFquQdmKAQyp S0SSRQvgc4Togmc5rpyDJVc+PQNMGj1ABo12sR1jTQaHh74mtnWF0k3KULF2ckDo W6ysfa9Ravkz1vyWBSXytgiOXhZlzlnGeI/1jMnFQcvhLdIYKVm0jUk+ULzA6lOv Ptfsnq+AEbeI0wyY6XOi8uIETQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFARFQGn5 SkxZZUe0mzRD9utmQh9VMB8GA1UdIwQYMBaAFIXW8YST2KCMxysbCR1K9U+PCiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTIyNS9DQTY5MDQ0MjhB OUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9JekhLeHNKSFVyMVQ0OEtL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hkYnhoSlBZb0l6SEt4c0pIVXIxVDQ4S0tMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTIyNS9DQTY5MDQ0MjhBOUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9J ekhLeHNKSFVyMVQ0OEtLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBizaovhEmdQH5v7Q0jycIjdjzG4EN1E59vbFXPtPkNMHKKq5ovQPQ0 MNYajTe7T48jG0Uft5BmDnQ5WQ95U4F9nMq0Y4QE+Vxb/Dbo+TQ3nfDE1iDZrbmu sNRWjfBYyOMFM+nvVEzP7wrz3vZ1Pho5cJSYDGc7LGhij+1zhf2gNpBk8pWoFsyx HBE+9QWcIPFfhGT2uaQ+Z8+szTGo13fdECiJKA99coKAImqXORn+GrsJuNiCVlUO PT8pjllbHF2VWlPRi5ed0fgEYB3J04ULSZPN5dITY2hJz5FO8u3VzJmcSVpaPcIn xTQTHYgwfrRCOauHThhcpJfCTGfNvlis -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:56 2025 by rpki-client