$ rpki-client -vvf rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft File: HlwQfv0DzxPSFKOaaizo3a0wRw4.mft (raw, json) Hash identifier: ElX0q+7Kvay4LLstyP49I6F2d4h621gil/5W/ylEu60= Subject key identifier: A8:70:BD:44:01:19:5C:F2:13:83:7D:91:9F:80:DA:E4:29:D1:DD:22 Authority key identifier: 1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E Certificate issuer: /CN=A914D9C3/serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft Manifest number: C7 Signing time: Fri 17 Oct 2025 09:06:13 +0000 Manifest this update: Fri 17 Oct 2025 09:06:12 +0000 Manifest next update: Fri 24 Oct 2025 09:06:12 +0000 Files and hashes: 1: HlwQfv0DzxPSFKOaaizo3a0wRw4.crl (hash: wg88uxAUmqDB7ukC2HazWrkcPcA2St9Atye4R+d6MjI=) 2: F7B3707C806911EF8C30A03DC4F9AE02.roa (hash: 9WzRWZ39qEL+BS0hCUtMSeDhBI46JI/Ih27Az+Uy8VI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 09:06:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D9C3, serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Validity Not Before: Oct 17 09:06:12 2025 GMT Not After : Oct 24 09:06:12 2025 GMT Subject: CN=68f20705-f9a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:05:5b:fc:38:07:02:c0:99:0d:fd:46:88:5d: 3d:49:62:d1:3b:88:54:a6:3b:00:d9:c9:2a:24:3b: 8c:a5:e1:bc:99:6e:96:d0:fa:cb:52:b8:37:ea:47: 7a:b1:34:e5:96:bc:44:4f:35:cc:c4:22:aa:30:90: b4:5b:50:cf:32:64:4b:ad:db:b9:2a:33:6b:05:cf: 2b:22:2f:d9:3d:5d:9f:13:31:70:fe:b8:2b:c8:3f: 68:03:66:b2:2e:ce:40:c6:b2:66:34:3b:67:16:d7: e1:48:0b:b0:37:bb:b1:23:0c:37:c9:5e:1f:85:8e: 27:8a:54:7a:b3:59:da:06:b2:5d:55:32:20:d1:9b: 11:be:5e:47:64:fb:02:d1:db:3b:77:21:2e:07:e8: ae:a2:ae:d0:b0:ab:ec:09:6c:01:20:d8:42:c4:95: b6:e7:d5:b5:06:43:d7:de:42:52:c3:18:2c:28:ee: e1:8a:4c:44:52:31:1d:a2:8b:8c:0b:c8:8b:c1:a7: fb:0c:3c:c4:59:bb:7b:49:8c:ca:dc:cb:51:64:d7: 63:fb:5f:bd:6f:21:32:b7:3f:72:2f:b2:a5:8f:c7: 1f:ca:0a:6e:c0:6e:c9:61:e2:7a:e2:f2:39:19:0b: 9d:4a:3b:b2:b3:16:6d:d4:9c:20:90:53:13:f8:52: 7c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:70:BD:44:01:19:5C:F2:13:83:7D:91:9F:80:DA:E4:29:D1:DD:22 X509v3 Authority Key Identifier: keyid:1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:68:98:f3:19:8c:b6:f2:28:2d:d1:88:b3:61:a7:ed:e1:1d: 0c:e5:5c:f3:83:8d:52:6f:8c:e0:8c:d8:4a:89:b3:78:2f:89: 6e:a6:15:2a:99:fa:02:42:28:ae:c1:a2:bc:63:bb:28:8d:e0: 7b:03:1b:73:b5:58:ff:19:44:f7:50:8a:e6:8e:de:d7:bd:37: 40:c7:83:d4:3d:0d:0b:3e:1a:cb:9b:41:01:af:41:a2:dc:9b: 52:16:d3:ef:e9:fa:5e:69:e7:e9:24:58:c0:21:e6:18:a7:d4: 4d:5d:9f:cb:dd:69:cf:85:d0:1c:08:82:cd:6e:19:dc:83:cd: 82:f6:40:62:75:c1:51:ac:83:6a:a9:dc:de:ab:2b:c2:f5:1c: 20:d9:37:f2:79:7c:a0:18:b5:b2:84:7a:e0:5c:01:52:47:f0: d4:38:21:9e:10:19:63:96:e1:9b:48:01:fd:83:1c:eb:36:c6: fa:e7:f8:de:29:4a:1a:02:ea:cc:5c:d9:65:da:cf:c7:4f:a7: 04:a4:78:b2:22:87:df:2c:d1:a7:45:c2:e2:31:d7:1f:07:9e: bc:23:6c:11:ef:1e:31:67:5c:26:a0:b9:78:fa:cb:2d:de:d4: 64:71:0b:37:37:bc:2e:90:92:34:0a:36:b5:46:bc:1f:21:58: f2:a6:33:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ5QzMxMTAvBgNVBAUTKDFFNUMxMDdFRkQwM0NGMTNEMjE0QTM5QTZBMkNFOERE QUQzMDQ3MEUwHhcNMjUxMDE3MDkwNjEyWhcNMjUxMDI0MDkwNjEyWjAYMRYwFAYD VQQDEw02OGYyMDcwNS1mOWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQVb/DgHAsCZDf1GiF09SWLRO4hUpjsA2ckqJDuMpeG8mW6W0PrLUrg36kd6 sTTllrxETzXMxCKqMJC0W1DPMmRLrdu5KjNrBc8rIi/ZPV2fEzFw/rgryD9oA2ay Ls5AxrJmNDtnFtfhSAuwN7uxIww3yV4fhY4nilR6s1naBrJdVTIg0ZsRvl5HZPsC 0ds7dyEuB+iuoq7QsKvsCWwBINhCxJW259W1BkPX3kJSwxgsKO7hikxEUjEdoouM C8iLwaf7DDzEWbt7SYzK3MtRZNdj+1+9byEytz9yL7Klj8cfygpuwG7JYeJ64vI5 GQudSjuysxZt1JwgkFMT+FJ8tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhwvUQB GVzyE4N9kZ+A2uQp0d0iMB8GA1UdIwQYMBaAFB5cEH79A88T0hSjmmos6N2tMEcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDlDMy80NUNDODJDQzgw NjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4UFNGS09hYWl6bzNhMHdS dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hsd1FmdjBEenhQU0ZLT2FhaXpvM2Ewd1J3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDlDMy80NUNDODJDQzgwNjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4 UFNGS09hYWl6bzNhMHdSdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARaJjzGYy28igt0YizYaft4R0M5Vzzg41Sb4zgjNhKibN4L4luphUq mfoCQiiuwaK8Y7sojeB7AxtztVj/GUT3UIrmjt7XvTdAx4PUPQ0LPhrLm0EBr0Gi 3JtSFtPv6fpeaefpJFjAIeYYp9RNXZ/L3WnPhdAcCILNbhncg82C9kBidcFRrINq qdzeqyvC9Rwg2TfyeXygGLWyhHrgXAFSR/DUOCGeEBljluGbSAH9gxzrNsb65/je KUoaAurMXNll2s/HT6cEpHiyIoffLNGnRcLiMdcfB568I2wR7x4xZ1wmoLl4+sst 3tRkcQs3N7wukJI0Cja1RrwfIVjypjPu -----END CERTIFICATE-----Generated at Sun Oct 19 09:13:09 2025 by rpki-client