$ rpki-client -vvf rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft File: HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft (raw, json) Hash identifier: i2e/deQApekBvPjYmLnyr5twfcWvAvcgURJ6lVuzdfo= Subject key identifier: 2B:29:74:82:CA:DA:5A:47:CA:5F:C1:20:CB:61:32:62:90:76:0F:BA Authority key identifier: 1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 Certificate issuer: /CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Certificate serial: 0B72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft Manifest number: 0B42 Signing time: Tue 04 Nov 2025 19:27:53 +0000 Manifest this update: Tue 04 Nov 2025 19:27:52 +0000 Manifest next update: Tue 11 Nov 2025 19:27:52 +0000 Files and hashes: 1: HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl (hash: UVMEIL4auNBY6NK7nm3nGAAimhFQvff4c0PgjmBn/8k=) 2: 1AB6B24A502211F0AFF2E30FC4F9AE02.roa (hash: kj+LbGbtBvSSpF59xQ/oF6zo99e75Fj59GXX8sxOzfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:27:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2930 (0xb72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F721, serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Validity Not Before: Nov 4 19:27:52 2025 GMT Not After : Nov 11 19:27:52 2025 GMT Subject: CN=690a53b8-499a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6b:f2:fa:84:6c:e3:c4:da:25:51:1c:3e:5b: 6b:66:1f:4a:50:67:33:a3:e1:87:de:46:54:bb:0f: fb:9c:98:22:13:e8:47:0e:27:c9:59:92:7b:99:96: b7:39:7c:5b:53:41:d5:5e:51:ab:1e:f9:6f:3c:ff: ef:fe:e6:1f:5a:3a:74:94:c6:11:a1:36:61:00:e5: e3:8c:b7:7b:67:6e:6a:60:72:13:19:ff:3d:dc:e2: d2:04:96:f9:6b:a6:95:cd:3e:0a:c0:ae:d3:ad:f1: b9:78:81:f4:2c:b1:25:e5:80:64:1c:88:ad:ad:01: 51:0c:4f:b2:62:ee:39:31:22:0a:3e:4d:09:10:26: 32:34:74:ec:af:9d:ef:93:98:ff:75:de:b7:2c:32: 08:4f:0e:66:ac:b0:9b:5a:a3:06:5f:27:e7:c2:d9: cb:e1:36:18:c6:c3:6f:da:ed:ad:0d:32:e0:10:4f: b2:ba:4c:e8:3a:ee:2e:bd:fb:0f:1b:99:7c:8e:b9: 51:27:73:c0:75:1a:ab:a3:3c:04:2b:cd:54:49:5a: 2f:96:35:5a:40:b3:13:d0:1a:f2:53:80:d8:11:7b: 21:8d:12:08:4c:ab:fd:86:d1:7b:77:b3:ea:01:bc: 9d:18:3a:53:f8:3f:45:46:c6:62:8b:c1:62:0b:5a: 47:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:29:74:82:CA:DA:5A:47:CA:5F:C1:20:CB:61:32:62:90:76:0F:BA X509v3 Authority Key Identifier: keyid:1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:da:2f:9a:b2:05:6e:10:52:ea:27:cb:0b:3e:fb:6a:ba:2c: b9:37:ce:3f:e0:5d:17:16:41:b8:19:2b:65:2f:09:95:d7:35: b4:43:bf:34:22:e9:e8:11:96:13:7b:98:cc:df:dd:82:e9:1e: e4:82:af:6f:00:18:07:e5:5e:50:0c:de:f3:5f:dc:35:cf:92: 9a:e7:8a:c1:02:f0:a3:28:22:e6:4d:b3:72:af:4a:15:cc:25: 76:5d:ba:3a:ee:04:57:2c:1d:c9:4e:22:55:e9:41:65:c7:f6: e4:50:b9:3a:16:8b:4c:39:4b:42:03:c6:b8:90:cf:2f:c3:df: 88:f2:6a:ae:01:ad:3a:fb:4f:7a:fd:4b:b9:75:32:6c:81:f5: fe:80:a1:a2:2f:29:e5:32:2f:8c:ff:bb:5f:ab:74:aa:e8:5e: 56:3c:52:39:ac:7e:76:cc:3c:cc:08:ed:ff:44:21:eb:76:6e: 48:f3:75:7e:02:ad:8c:01:9b:d5:24:c6:9b:26:5f:30:64:5d: 78:1c:ff:23:8f:cd:45:59:d0:29:82:c1:3d:d0:55:05:88:d6: 4d:4c:57:9c:07:d6:f9:19:8d:81:bf:37:8b:3f:e9:b9:a9:61: 46:3b:5a:50:cb:b4:7a:42:a2:60:f6:06:41:e8:0d:6d:3a:99: 18:f8:fd:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y3MjExMTAvBgNVBAUTKDFERDcxN0IyMjk5MzYxOTBDRUI2NjdDN0NFMUNBOUY5 QkZCNUZBQzQwHhcNMjUxMTA0MTkyNzUyWhcNMjUxMTExMTkyNzUyWjAYMRYwFAYD VQQDEw02OTBhNTNiOC00OTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2vy+oRs48TaJVEcPltrZh9KUGczo+GH3kZUuw/7nJgiE+hHDifJWZJ7mZa3 OXxbU0HVXlGrHvlvPP/v/uYfWjp0lMYRoTZhAOXjjLd7Z25qYHITGf893OLSBJb5 a6aVzT4KwK7TrfG5eIH0LLEl5YBkHIitrQFRDE+yYu45MSIKPk0JECYyNHTsr53v k5j/dd63LDIITw5mrLCbWqMGXyfnwtnL4TYYxsNv2u2tDTLgEE+yukzoOu4uvfsP G5l8jrlRJ3PAdRqrozwEK81USVovljVaQLMT0BryU4DYEXshjRIITKv9htF7d7Pq AbydGDpT+D9FRsZii8FiC1pHxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCspdILK 2lpHyl/BIMthMmKQdg+6MB8GA1UdIwQYMBaAFB3XF7Ipk2GQzrZnx84cqfm/tfrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjcyMS82NDQyNDM3QTUz QUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFlaRE90bWZIemh5cC1iLTEt c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkY1hzaW1UWVpET3RtZkh6aHlwLWItMS1zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjcyMS82NDQyNDM3QTUzQUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFla RE90bWZIemh5cC1iLTEtc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT2i+asgVuEFLqJ8sLPvtquiy5N84/4F0XFkG4GStlLwmV1zW0Q780 IunoEZYTe5jM392C6R7kgq9vABgH5V5QDN7zX9w1z5Ka54rBAvCjKCLmTbNyr0oV zCV2Xbo67gRXLB3JTiJV6UFlx/bkULk6FotMOUtCA8a4kM8vw9+I8mquAa06+096 /Uu5dTJsgfX+gKGiLynlMi+M/7tfq3Sq6F5WPFI5rH52zDzMCO3/RCHrdm5I83V+ Aq2MAZvVJMabJl8wZF14HP8jj81FWdApgsE90FUFiNZNTFecB9b5GY2BvzeLP+m5 qWFGO1pQy7R6QqJg9gZB6A1tOpkY+P0W -----END CERTIFICATE-----Generated at Wed Nov 5 17:58:28 2025 by rpki-client