$ rpki-client -vvf rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.mft File: Hz6LAdhBy-YiDQLSzRETVPGcR7I.mft (raw, json) Hash identifier: HIOujZC6wi3LiWfk+qCsKW3cDC/RHceQXLUYAwdAtNE= Subject key identifier: E9:D9:95:9F:4C:CD:4E:B7:3B:BA:FD:6F:B9:86:CA:6F:23:C2:62:D1 Authority key identifier: 1F:3E:8B:01:D8:41:CB:E6:22:0D:02:D2:CD:11:13:54:F1:9C:47:B2 Certificate issuer: /CN=A912F17E/serialNumber=1F3E8B01D841CBE6220D02D2CD111354F19C47B2 Certificate serial: 34DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.mft Manifest number: 34D6 Signing time: Sun 02 Nov 2025 15:09:32 +0000 Manifest this update: Sun 02 Nov 2025 15:09:31 +0000 Manifest next update: Sun 09 Nov 2025 15:09:31 +0000 Files and hashes: 1: Hz6LAdhBy-YiDQLSzRETVPGcR7I.crl (hash: pTSVvwr37EuR+EbXtfZCaXIm9eyvga3VIR3mJiYSnzg=) 2: FFCDED80FFE111EFB1C18E52C4F9AE02.roa (hash: mU82c9UsN7aMzC4DMeuqqygQy0O+yLmNqhxj9poHsyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.crl rsync://rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13533 (0x34dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F17E, serialNumber=1F3E8B01D841CBE6220D02D2CD111354F19C47B2 Validity Not Before: Nov 2 15:09:31 2025 GMT Not After : Nov 9 15:09:31 2025 GMT Subject: CN=6907742b-a95a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6c:c2:8d:a7:f6:df:2b:7e:d5:06:c9:5a:02: b2:53:b3:3a:10:c4:ca:4f:28:11:4b:b3:d8:10:23: 7f:76:36:4d:5a:08:6a:6a:2f:ff:8a:76:c4:00:6e: 7a:8c:5a:02:a9:b6:39:40:45:4e:4c:4c:11:fd:d8: 58:68:5f:08:9a:80:7d:22:25:50:a9:64:3d:2f:6f: 22:9b:d7:fb:30:6a:5a:b4:ff:45:4c:d8:c4:b5:f7: 93:c4:a7:c3:4d:d9:30:67:b6:2b:b8:b6:bb:c7:2b: 1f:58:ac:25:d7:c0:2b:90:37:ac:bb:8a:e8:e6:45: fd:2f:11:23:3d:76:c8:44:23:18:17:15:c9:f3:1e: 45:7a:55:a6:fc:5b:fe:a0:c0:d3:49:18:62:56:ad: 18:36:1a:b6:ad:23:10:05:7d:a2:66:5b:3c:84:eb: 02:27:a7:45:e4:ba:64:75:18:fe:0d:02:f3:e9:67: 7b:b3:23:a8:0a:25:24:6d:7f:84:d2:e5:2c:90:fe: 5c:80:c1:1c:7c:ce:78:6f:97:2e:fb:7b:6f:a8:a2: 26:97:07:15:4f:ad:ce:cf:7c:f5:8c:40:76:28:4f: 60:71:9c:c7:50:ad:6b:4f:9d:8a:95:13:a6:0d:9a: 15:11:f0:13:7b:f9:a5:ee:bc:48:be:ab:3e:2f:98: de:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:D9:95:9F:4C:CD:4E:B7:3B:BA:FD:6F:B9:86:CA:6F:23:C2:62:D1 X509v3 Authority Key Identifier: keyid:1F:3E:8B:01:D8:41:CB:E6:22:0D:02:D2:CD:11:13:54:F1:9C:47:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:75:39:44:b8:54:a4:60:67:0a:63:43:ea:5f:3b:d9:7f:85: 36:b9:56:c7:4e:6c:00:4b:f9:d6:02:b7:78:3c:68:75:ab:e3: 68:a2:b0:e4:09:b7:f8:36:49:7c:85:5c:e6:90:21:ff:bc:41: 6b:2c:e7:5b:52:41:1f:86:cf:fa:91:ac:9e:36:e6:89:1d:f5: 6e:56:1c:5e:a6:35:6d:52:28:c5:d0:c2:5a:c3:62:27:1a:63: 5f:6e:c5:a4:b8:c2:ce:61:e7:6a:8a:81:78:30:57:24:32:af: 30:7e:0a:97:a2:e9:23:b1:6a:dd:8d:6a:7d:06:85:c3:c1:44: 0e:93:04:ff:80:aa:a3:7b:40:7f:40:62:d0:6c:41:51:47:bd: 61:9d:76:84:b8:61:c5:4b:e7:bd:17:43:18:9f:69:4b:5f:c9: 34:df:c4:c1:5a:82:d6:ef:85:bb:27:c9:52:86:c7:1a:bd:35: 9e:4b:a2:fe:e8:cb:8e:c7:c0:39:be:c3:56:1d:da:37:b6:ae: c7:e3:17:ef:fe:b9:40:9e:a5:ea:f6:f2:d2:21:2f:da:f9:09: 1c:b0:ca:84:df:de:87:8d:65:a7:d7:a8:8b:5c:0a:b0:04:af: 5a:a3:c1:17:87:8d:33:47:d0:cd:0f:58:f4:27:d6:75:3c:20: 78:e3:13:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYxN0UxMTAvBgNVBAUTKDFGM0U4QjAxRDg0MUNCRTYyMjBEMDJEMkNEMTExMzU0 RjE5QzQ3QjIwHhcNMjUxMTAyMTUwOTMxWhcNMjUxMTA5MTUwOTMxWjAYMRYwFAYD VQQDEw02OTA3NzQyYi1hOTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmzCjaf23yt+1QbJWgKyU7M6EMTKTygRS7PYECN/djZNWghqai//inbEAG56 jFoCqbY5QEVOTEwR/dhYaF8ImoB9IiVQqWQ9L28im9f7MGpatP9FTNjEtfeTxKfD TdkwZ7YruLa7xysfWKwl18ArkDesu4ro5kX9LxEjPXbIRCMYFxXJ8x5FelWm/Fv+ oMDTSRhiVq0YNhq2rSMQBX2iZls8hOsCJ6dF5LpkdRj+DQLz6Wd7syOoCiUkbX+E 0uUskP5cgMEcfM54b5cu+3tvqKImlwcVT63Oz3z1jEB2KE9gcZzHUK1rT52KlROm DZoVEfATe/ml7rxIvqs+L5je7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnZlZ9M zU63O7r9b7mGym8jwmLRMB8GA1UdIwQYMBaAFB8+iwHYQcvmIg0C0s0RE1TxnEey MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjE3RS9GQ0ZGODQ2NjFE QTMxMUUyODFFQUFGOTkwOEIwMkNEMi9IejZMQWRoQnktWWlEUUxTelJFVFZQR2NS N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h6NkxBZGhCeS1ZaURRTFN6UkVUVlBHY1I3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjE3RS9GQ0ZGODQ2NjFEQTMxMUUyODFFQUFGOTkwOEIwMkNEMi9IejZMQWRoQnkt WWlEUUxTelJFVFZQR2NSN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIdTlEuFSkYGcKY0PqXzvZf4U2uVbHTmwAS/nWArd4PGh1q+NoorDk Cbf4Nkl8hVzmkCH/vEFrLOdbUkEfhs/6kayeNuaJHfVuVhxepjVtUijF0MJaw2In GmNfbsWkuMLOYedqioF4MFckMq8wfgqXoukjsWrdjWp9BoXDwUQOkwT/gKqje0B/ QGLQbEFRR71hnXaEuGHFS+e9F0MYn2lLX8k038TBWoLW74W7J8lShscavTWeS6L+ 6MuOx8A5vsNWHdo3tq7H4xfv/rlAnqXq9vLSIS/a+QkcsMqE396HjWWn16iLXAqw BK9ao8EXh40zR9DND1j0J9Z1PCB44xPJ -----END CERTIFICATE-----Generated at Tue Nov 4 01:10:07 2025 by rpki-client