$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: zK6bp5vsOUw9P7QEtVjLamp3X/rXOY/D5rSYwT+Ck1w= Subject key identifier: DA:EF:0F:91:82:57:E6:A6:27:2F:AF:01:9F:90:49:A9:11:47:D5:3B Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 082E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 0819 Signing time: Fri 24 Oct 2025 21:47:18 +0000 Manifest this update: Fri 24 Oct 2025 21:47:17 +0000 Manifest next update: Fri 31 Oct 2025 21:47:17 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: mTvEN/tPVc+weWvQ6kDqTOrZSG7D9E6Hp7FtxWYMf04=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: 8DddYe6Xxj3AQcHWCxpAXO4NAnMo0qG6fie32kIabM4=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: zLBeyUvYeL3WiTP8OfhHdt93sxWxJckWd6if90VdF+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 21:47:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2094 (0x82e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Oct 24 21:47:17 2025 GMT Not After : Oct 31 21:47:17 2025 GMT Subject: CN=68fbf3e6-a433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:85:04:cc:84:a8:66:db:83:d1:a1:65:51:0f: 4e:9f:3f:c6:8a:02:ee:6c:09:43:9d:0e:7e:5b:5d: 29:98:52:73:9a:f9:86:7a:43:d1:e3:ac:c9:99:59: 8f:64:fc:ce:d2:bf:4c:a8:29:d9:69:df:8e:29:90: e3:94:a7:d5:6b:95:67:6f:66:d5:13:c8:ed:41:62: 05:57:87:5e:b7:ed:c8:6f:91:e7:3b:d2:9c:0a:ee: 88:1e:a8:f5:ec:87:f9:1b:ee:54:b4:37:cd:bd:a5: ba:35:07:4c:d7:43:44:67:7b:14:8a:0c:02:18:07: 5a:e5:98:84:3b:53:39:67:37:55:b3:91:ee:26:ca: 1b:7a:eb:0f:8c:13:ad:bc:5e:51:f2:51:b7:6d:7b: 64:84:96:61:10:7d:02:5f:41:b4:7b:8e:92:fe:79: b0:b3:5d:96:6d:2a:88:04:6f:cb:6b:a8:c2:d1:09: a6:74:92:10:1a:aa:02:fe:f4:bc:ab:dc:23:bc:b6: b5:61:6b:d9:25:b3:40:b6:18:61:8c:7e:de:0c:0b: ec:f3:0e:2a:e1:e1:39:54:e0:68:a1:74:13:a9:94: 61:d9:f3:b0:ed:1f:84:db:e8:cb:7a:8d:d1:49:36: 23:ad:0e:a2:f1:14:79:a9:8e:b6:a4:9e:2c:36:1c: f5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:EF:0F:91:82:57:E6:A6:27:2F:AF:01:9F:90:49:A9:11:47:D5:3B X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:7c:bb:4e:d8:ec:79:da:fa:c7:5c:9e:fa:86:e4:b6:0a:0d: 99:b2:51:5a:7b:30:58:99:00:f8:2c:56:06:64:0a:c5:33:18: 3d:c3:71:9a:39:5a:b2:87:c7:96:29:32:e7:82:23:14:3c:4f: c3:47:55:f1:69:72:1c:84:ff:05:41:01:eb:df:d2:7c:e5:9e: b7:3f:2c:69:8a:78:29:12:5b:d4:fc:b4:c8:00:c1:fd:ed:c9: 3d:e4:01:1f:44:3e:9c:34:df:ca:15:bd:01:b4:89:c6:62:b8: 3e:cc:d3:8b:9e:c0:e1:ff:f5:f5:1f:1c:d8:52:d4:e5:35:78: 52:89:53:c6:f6:7c:c7:ed:48:dc:1b:fe:7c:3b:ff:9d:7d:46: c2:c2:86:ae:37:5e:cf:13:e4:79:87:ab:54:ef:9d:6a:38:aa: 05:bc:18:94:e8:a3:91:ae:63:32:91:00:7d:6a:c4:cb:ed:3a: 85:d8:f5:cd:55:ab:59:d2:51:07:61:42:70:a1:66:3f:91:da: c2:0b:80:e7:8c:6d:14:11:90:8b:5f:93:0d:3a:cb:71:8d:f9: 76:b3:f9:5e:8e:0c:c5:2c:4f:ac:0e:e2:e8:ba:fb:20:a1:da: 17:ab:ff:df:a1:05:81:b1:a5:67:aa:dc:a8:26:f7:de:d3:d3: aa:52:6c:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjUxMDI0MjE0NzE3WhcNMjUxMDMxMjE0NzE3WjAYMRYwFAYD VQQDEw02OGZiZjNlNi1hNDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAooUEzISoZtuD0aFlUQ9Onz/GigLubAlDnQ5+W10pmFJzmvmGekPR46zJmVmP ZPzO0r9MqCnZad+OKZDjlKfVa5Vnb2bVE8jtQWIFV4det+3Ib5HnO9KcCu6IHqj1 7If5G+5UtDfNvaW6NQdM10NEZ3sUigwCGAda5ZiEO1M5ZzdVs5HuJsobeusPjBOt vF5R8lG3bXtkhJZhEH0CX0G0e46S/nmws12WbSqIBG/La6jC0QmmdJIQGqoC/vS8 q9wjvLa1YWvZJbNAthhhjH7eDAvs8w4q4eE5VOBooXQTqZRh2fOw7R+E2+jLeo3R STYjrQ6i8RR5qY62pJ4sNhz1nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNrvD5GC V+amJy+vAZ+QSakRR9U7MB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCafLtO2Ox52vrHXJ76huS2Cg2ZslFaezBYmQD4LFYGZArFMxg9w3Ga OVqyh8eWKTLngiMUPE/DR1XxaXIchP8FQQHr39J85Z63PyxpingpElvU/LTIAMH9 7ck95AEfRD6cNN/KFb0BtInGYrg+zNOLnsDh//X1HxzYUtTlNXhSiVPG9nzH7Ujc G/58O/+dfUbCwoauN17PE+R5h6tU751qOKoFvBiU6KORrmMykQB9asTL7TqF2PXN VatZ0lEHYUJwoWY/kdrCC4DnjG0UEZCLX5MNOstxjfl2s/lejgzFLE+sDuLouvsg odoXq//foQWBsaVnqtyoJvfe09OqUmx3 -----END CERTIFICATE-----Generated at Sat Oct 25 08:03:37 2025 by rpki-client