$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft File: 1hg6YWfsLkpyRwcPHws5trnJU-E.mft (raw, json) Hash identifier: XdAqGrHzOofkvAYrQOSEwXVmU5gymug+8Di2jhVRugo= Subject key identifier: 42:3B:58:CB:B8:8B:FF:07:B4:C9:21:10:02:4B:B0:20:B3:E9:2D:24 Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Certificate serial: 0B66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft Manifest number: 0B5F Signing time: Sun 02 Nov 2025 19:05:04 +0000 Manifest this update: Sun 02 Nov 2025 19:05:04 +0000 Manifest next update: Sun 09 Nov 2025 19:05:04 +0000 Files and hashes: 1: 1hg6YWfsLkpyRwcPHws5trnJU-E.crl (hash: mcc1HjFRD06U8J6snBe4a1QdWrD9EqFcLkyFx0bPjsQ=) 2: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (hash: m3vliiEgyQOK9cLamk8Seg9r2MS0Thb0iCeLTBZTTaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:05:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2918 (0xb66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157705, serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Validity Not Before: Nov 2 19:05:04 2025 GMT Not After : Nov 9 19:05:04 2025 GMT Subject: CN=6907ab60-4adb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:69:36:77:b7:c8:52:6e:55:c3:b3:03:a1:ef: e0:68:a4:0b:d8:b8:d9:ac:1f:ad:a1:f8:0d:90:9d: 35:1c:96:10:8f:3b:3a:95:cd:a2:74:0c:91:98:33: 53:8c:13:fd:04:b9:fc:a3:1f:f8:da:21:0d:68:30: a7:f6:74:c3:a6:08:40:71:b9:80:58:96:54:df:6f: 8a:62:fd:3f:26:42:b1:62:29:37:d3:1b:a2:c6:24: 63:14:65:1b:f4:4f:7f:81:66:f5:f7:2f:96:12:7c: 72:d2:22:1b:56:b8:f0:16:01:5b:97:9c:7c:2d:dd: 13:e9:34:9e:21:12:96:75:16:71:cd:a1:7d:e7:93: 9a:71:58:5b:1e:ea:70:f4:1f:51:8a:7d:7f:44:a8: 7a:ea:5d:6a:9f:c8:dc:39:25:58:71:7d:06:f6:8f: 59:03:88:c2:a9:aa:40:7b:87:fe:df:f5:86:c4:e1: 6d:03:ff:d7:5d:51:e8:ff:ac:9d:bc:87:ef:ad:05: 37:44:96:cc:7b:44:42:88:28:ad:ce:74:ef:20:e0: d7:29:e7:44:00:85:47:c5:6d:92:ad:8a:d6:7a:67: 2d:3c:f9:3e:20:97:ce:48:42:7b:a5:3e:46:30:a8: 82:db:39:55:35:dc:d6:97:85:91:d2:19:27:ac:cc: 03:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:3B:58:CB:B8:8B:FF:07:B4:C9:21:10:02:4B:B0:20:B3:E9:2D:24 X509v3 Authority Key Identifier: keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:a8:58:6a:e3:44:de:51:f6:03:dc:4e:bb:ee:97:6d:bc:1c: b6:17:da:11:03:3c:ed:36:bb:2a:77:16:64:07:af:5e:ab:bf: 58:2b:06:ed:91:7a:b4:a6:02:3a:c0:87:49:d3:a2:f1:e2:29: 62:58:42:19:f2:ad:43:93:06:34:cc:1a:4b:b4:13:17:19:d4: f9:34:6e:82:f8:01:08:79:f1:f4:2f:59:01:3d:3c:41:e7:29: d6:4d:26:e3:90:64:0f:0a:e1:95:df:22:1f:bb:72:04:b8:fc: 28:0d:cb:b1:2c:8c:89:eb:23:0d:09:ab:af:b0:b2:06:60:d4: 75:a4:92:16:37:21:d9:02:a2:29:c8:9a:5f:03:53:ee:b7:0f: e5:64:31:97:c4:3f:b1:ae:dc:ec:ef:3c:33:83:ff:09:12:17: 48:b5:d9:6c:1e:5b:a1:0e:b1:e9:42:af:9c:b4:a7:6a:5c:5b: 0e:9c:7c:7e:6c:43:cd:80:b1:56:de:a5:a6:4f:b4:f0:5f:bc: 1b:2c:d1:ac:75:23:3d:54:6c:04:7f:dc:1e:54:3f:ae:be:9f: 6d:d3:e3:fc:5d:e6:49:a2:b3:5d:ed:f1:86:74:da:0a:e1:e6: ab:60:dd:64:d6:46:6e:7e:3d:92:09:24:11:c5:e4:13:88:b1: 3d:23:3f:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MDUxMTAvBgNVBAUTKEQ2MTgzQTYxNjdFQzJFNEE3MjQ3MDcwRjFGMEIzOUI2 QjlDOTUzRTEwHhcNMjUxMTAyMTkwNTA0WhcNMjUxMTA5MTkwNTA0WjAYMRYwFAYD VQQDEw02OTA3YWI2MC00YWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2k2d7fIUm5Vw7MDoe/gaKQL2LjZrB+tofgNkJ01HJYQjzs6lc2idAyRmDNT jBP9BLn8ox/42iENaDCn9nTDpghAcbmAWJZU32+KYv0/JkKxYik30xuixiRjFGUb 9E9/gWb19y+WEnxy0iIbVrjwFgFbl5x8Ld0T6TSeIRKWdRZxzaF955OacVhbHupw 9B9Rin1/RKh66l1qn8jcOSVYcX0G9o9ZA4jCqapAe4f+3/WGxOFtA//XXVHo/6yd vIfvrQU3RJbMe0RCiCitznTvIODXKedEAIVHxW2SrYrWemctPPk+IJfOSEJ7pT5G MKiC2zlVNdzWl4WR0hknrMwDDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEI7WMu4 i/8HtMkhEAJLsCCz6S0kMB8GA1UdIwQYMBaAFNYYOmFn7C5KckcHDx8LOba5yVPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcwNS8zM0ZBRTZGNDQw Q0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xrcHlSd2NQSHdzNXRybkpV LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZzZZV2ZzTGtweVJ3Y1BId3M1dHJuSlUtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcwNS8zM0ZBRTZGNDQwQ0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xr cHlSd2NQSHdzNXRybkpVLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlqFhq40TeUfYD3E677pdtvBy2F9oRAzztNrsqdxZkB69eq79YKwbt kXq0pgI6wIdJ06Lx4iliWEIZ8q1DkwY0zBpLtBMXGdT5NG6C+AEIefH0L1kBPTxB 5ynWTSbjkGQPCuGV3yIfu3IEuPwoDcuxLIyJ6yMNCauvsLIGYNR1pJIWNyHZAqIp yJpfA1Putw/lZDGXxD+xrtzs7zwzg/8JEhdItdlsHluhDrHpQq+ctKdqXFsOnHx+ bEPNgLFW3qWmT7TwX7wbLNGsdSM9VGwEf9weVD+uvp9t0+P8XeZJorNd7fGGdNoK 4earYN1k1kZufj2SCSQRxeQTiLE9Iz/5 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:26 2025 by rpki-client