$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: +QYaBOqes6e7QTsMYlDC8awcYqz6w+sOuNjOZpGxUIg= Subject key identifier: 8E:8E:64:AA:AE:0A:7A:EB:16:C5:EF:43:A1:2A:89:62:89:33:00:A9 Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 13DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 13C9 Signing time: Sun 02 Nov 2025 16:57:05 +0000 Manifest this update: Sun 02 Nov 2025 16:57:04 +0000 Manifest next update: Sun 09 Nov 2025 16:57:04 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: d4rOf/jZQ2HWYdR7x/yzVGjMKocDM6+KWHE3DtAycR8=) 2: 813A255423A611F09025FC11C4F9AE02.roa (hash: uohcAOcE60pEPVtJLM2mjq+61BAF61CBsuLOOzelXqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5086 (0x13de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Nov 2 16:57:04 2025 GMT Not After : Nov 9 16:57:04 2025 GMT Subject: CN=69078d61-1d5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:23:ab:46:44:8a:e3:e4:cf:72:ac:16:fd:cf: ef:71:68:8c:6c:76:61:6a:1c:c4:25:0b:20:10:63: 10:7a:5d:5e:92:3d:08:a4:ea:49:5b:6f:4d:c3:91: 54:5f:5f:55:eb:6e:9a:07:0a:16:6f:fe:0e:0d:3e: 29:30:c5:2e:a6:4c:3b:c9:70:c7:ae:19:96:d4:9b: 5a:70:db:da:1e:ea:ee:63:e2:57:02:fc:63:9f:44: 3a:51:7e:ba:0d:e5:25:db:13:c9:62:c3:d8:72:75: f6:a0:95:0f:7a:19:a7:87:b6:c2:19:a2:66:18:d0: 2a:32:4f:d9:82:5d:87:86:98:6e:a3:39:be:5a:9c: 22:46:6d:77:1c:59:37:25:00:80:c2:7a:79:27:d5: 81:ca:0a:35:7c:c3:62:ca:a6:d5:34:13:c4:85:a8: 17:c3:48:61:7d:86:d2:b3:20:83:33:15:14:6d:23: 2c:77:ee:7e:70:dd:f6:67:e6:2f:49:94:43:83:31: af:2e:62:32:13:9d:f8:2c:3e:a9:93:c9:b1:19:96: 26:46:e5:ea:17:28:84:4c:ce:87:52:19:ad:e2:2c: db:d3:5f:ee:52:54:96:93:b3:ab:ae:23:a7:4b:4e: 56:05:f9:e6:83:45:38:1f:20:aa:0e:0c:31:1c:0c: f0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:8E:64:AA:AE:0A:7A:EB:16:C5:EF:43:A1:2A:89:62:89:33:00:A9 X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:4a:27:58:b3:be:9a:5b:6d:ac:d0:88:99:b4:88:be:2a:d1: 39:54:e0:27:50:c7:ac:55:ca:af:a7:71:ca:eb:d6:fb:38:89: 5f:d8:e5:e6:fa:9f:d3:4a:0b:a4:6f:f2:bc:63:30:85:11:f8: e0:92:16:de:bd:7d:97:f5:89:31:0c:c5:22:79:c9:6a:3d:7f: f5:06:61:b2:e2:91:40:72:aa:44:aa:17:f9:79:a7:e9:09:3a: 3c:60:0c:65:08:30:ec:fe:10:44:2a:25:37:ba:f3:ee:c6:f5: 54:10:e5:35:bd:c3:83:ce:9f:77:0a:01:47:9f:67:48:49:3f: 8e:77:05:a1:b2:96:65:fe:6e:89:29:1b:17:07:06:64:5b:53: 9d:c2:4e:93:58:69:6b:d7:34:ea:aa:23:83:61:cc:3a:82:a7: 17:50:97:d1:53:df:02:d1:2a:2d:f8:40:ff:72:fd:fe:73:d8: 61:05:59:52:b1:15:1b:c6:a7:86:01:98:59:d5:f8:38:02:b0: b6:49:68:e3:31:e8:36:e0:4c:df:09:9a:2a:45:32:c8:dd:d9: 8f:c1:d8:b5:50:36:5f:6a:4b:79:82:df:41:8a:b3:e5:a0:ba: a2:f6:a5:cc:34:11:3b:06:a6:5a:74:17:5d:22:e0:2e:c2:05: 55:bd:2f:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjUxMTAyMTY1NzA0WhcNMjUxMTA5MTY1NzA0WjAYMRYwFAYD VQQDEw02OTA3OGQ2MS0xZDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCOrRkSK4+TPcqwW/c/vcWiMbHZhahzEJQsgEGMQel1ekj0IpOpJW29Nw5FU X19V626aBwoWb/4ODT4pMMUupkw7yXDHrhmW1JtacNvaHuruY+JXAvxjn0Q6UX66 DeUl2xPJYsPYcnX2oJUPehmnh7bCGaJmGNAqMk/Zgl2Hhphuozm+WpwiRm13HFk3 JQCAwnp5J9WBygo1fMNiyqbVNBPEhagXw0hhfYbSsyCDMxUUbSMsd+5+cN32Z+Yv SZRDgzGvLmIyE534LD6pk8mxGZYmRuXqFyiETM6HUhmt4izb01/uUlSWk7OrriOn S05WBfnmg0U4HyCqDgwxHAzwLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6OZKqu CnrrFsXvQ6EqiWKJMwCpMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmSidYs76aW22s0IiZtIi+KtE5VOAnUMesVcqvp3HK69b7OIlf2OXm +p/TSgukb/K8YzCFEfjgkhbevX2X9YkxDMUieclqPX/1BmGy4pFAcqpEqhf5eafp CTo8YAxlCDDs/hBEKiU3uvPuxvVUEOU1vcODzp93CgFHn2dIST+OdwWhspZl/m6J KRsXBwZkW1Odwk6TWGlr1zTqqiODYcw6gqcXUJfRU98C0Sot+ED/cv3+c9hhBVlS sRUbxqeGAZhZ1fg4ArC2SWjjMeg24EzfCZoqRTLI3dmPwdi1UDZfakt5gt9BirPl oLqi9qXMNBE7BqZadBddIuAuwgVVvS8T -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:59 2025 by rpki-client