$ rpki-client -vvf rpki.apnic.net/member_repository/A916D23A/8E3C121E48D511EA83351771C4F9AE02/-HInxmU9abruLplIhCzrC0BJ54Y.mft File: -HInxmU9abruLplIhCzrC0BJ54Y.mft (raw, json) Hash identifier: j4Xi/ztpqtO0HVEypn05Wxex2SQm+qJnvddiRE6A43Q= Subject key identifier: E1:B7:1E:FD:FA:1C:33:08:1E:5B:63:DC:93:D2:DB:1F:AF:10:4A:01 Authority key identifier: F8:72:27:C6:65:3D:69:BA:EE:2E:99:48:84:2C:EB:0B:40:49:E7:86 Certificate issuer: /CN=A916D23A/serialNumber=F87227C6653D69BAEE2E9948842CEB0B4049E786 Certificate serial: 0B45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-HInxmU9abruLplIhCzrC0BJ54Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D23A/8E3C121E48D511EA83351771C4F9AE02/-HInxmU9abruLplIhCzrC0BJ54Y.mft Manifest number: 0B35 Signing time: Sun 26 Oct 2025 19:45:50 +0000 Manifest this update: Sun 26 Oct 2025 19:45:50 +0000 Manifest next update: Sun 02 Nov 2025 19:45:50 +0000 Files and hashes: 1: -HInxmU9abruLplIhCzrC0BJ54Y.crl (hash: 5AnPDVFWqxewbZ6ouxGKDA0ipNrwqcnL/tajVhrwN/I=) 2: E265728A877911EA9E28DF0BC4F9AE02.roa (hash: s5FxAXvHyHM95JkI0bpkB+0cESUkZdTctd6oGAI/wW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D23A/8E3C121E48D511EA83351771C4F9AE02/-HInxmU9abruLplIhCzrC0BJ54Y.crl rsync://rpki.apnic.net/member_repository/A916D23A/8E3C121E48D511EA83351771C4F9AE02/-HInxmU9abruLplIhCzrC0BJ54Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-HInxmU9abruLplIhCzrC0BJ54Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 19:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2885 (0xb45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D23A, serialNumber=F87227C6653D69BAEE2E9948842CEB0B4049E786 Validity Not Before: Oct 26 19:45:50 2025 GMT Not After : Nov 2 19:45:50 2025 GMT Subject: CN=68fe7a6e-e2b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:de:bb:39:b0:02:e4:c5:f5:74:22:3c:2a:df: a2:30:68:6f:aa:be:9d:49:a3:78:31:fe:65:78:3f: 92:ab:ce:b2:4a:9e:9a:23:bf:2f:e3:dd:8e:80:44: 49:b4:3b:84:33:64:be:37:db:0d:cc:82:db:38:4b: cb:5a:bf:75:0e:14:ab:3e:60:9e:30:f1:a7:c8:42: 11:ba:65:db:c2:7e:d6:29:7c:21:39:77:5e:e8:51: 98:87:31:8d:54:17:4b:a5:c6:fb:eb:8a:18:e2:61: 59:3d:8f:c5:dc:90:13:bb:06:d2:3b:52:61:55:fa: 7d:88:13:83:9c:f4:df:03:fc:36:f7:da:f5:4b:c6: 5c:d9:9a:3e:70:82:34:cf:d5:9b:17:26:37:89:98: b3:17:15:9f:ba:3c:0d:bf:f0:60:84:61:f3:e4:53: 08:a1:2c:8b:f8:0b:64:52:1f:69:d9:30:70:47:27: 65:36:59:61:c0:cf:ad:06:b3:7a:ed:25:d0:3a:5a: cc:04:6a:51:bf:cd:c6:45:1f:35:50:6c:03:a8:9b: 5f:bb:eb:f8:f8:42:5e:db:59:9d:d3:32:ab:ec:e9: 96:23:f0:a9:a9:5b:99:23:47:30:a2:52:ee:20:42: 2b:f2:63:87:3a:2e:cb:86:29:6a:9f:62:1a:58:a6: 92:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B7:1E:FD:FA:1C:33:08:1E:5B:63:DC:93:D2:DB:1F:AF:10:4A:01 X509v3 Authority Key Identifier: keyid:F8:72:27:C6:65:3D:69:BA:EE:2E:99:48:84:2C:EB:0B:40:49:E7:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D23A/8E3C121E48D511EA83351771C4F9AE02/-HInxmU9abruLplIhCzrC0BJ54Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-HInxmU9abruLplIhCzrC0BJ54Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D23A/8E3C121E48D511EA83351771C4F9AE02/-HInxmU9abruLplIhCzrC0BJ54Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:bf:f5:14:b1:fb:d2:87:3a:8a:58:04:ac:ae:69:aa:5e:b3: f0:47:7f:26:42:70:77:93:19:84:d1:86:2d:e4:4f:e7:17:49: f5:33:72:e4:7e:d2:2b:1b:9a:88:65:86:a9:8a:b3:e3:1a:eb: 25:e1:7c:4b:10:24:d8:13:22:0a:22:8e:39:0e:5f:09:de:5d: 11:38:e4:b3:6d:9d:d9:34:59:2b:9c:80:83:bc:23:db:69:2d: aa:2a:02:74:94:2f:f8:ba:8d:90:92:13:ed:3f:00:14:8e:f8: ff:a2:f5:db:8a:20:65:44:c9:63:82:52:85:59:05:bc:23:1c: 90:cd:a9:56:be:e0:ba:8c:4b:b4:ba:6e:ab:f1:03:e2:30:fa: 4b:5b:8a:d9:68:1f:16:2b:a0:d7:d6:ae:a1:20:fd:06:98:da: f5:2d:d3:7f:c9:94:7c:35:02:f0:4b:db:6e:0e:6b:cb:ff:53: e4:d1:d0:ec:2e:b4:79:1f:90:09:88:b0:61:b6:76:1a:cb:dc: 5d:8b:d8:d5:e7:c5:5f:59:7d:fd:17:7e:4b:38:74:b2:42:62: ee:bb:bb:af:60:f5:59:27:b8:a6:4d:02:55:07:9d:a4:f6:2e: 50:6b:00:be:01:93:15:96:ef:a0:5f:b2:b2:f6:67:4e:11:d4: 6c:c8:a4:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyM0ExMTAvBgNVBAUTKEY4NzIyN0M2NjUzRDY5QkFFRTJFOTk0ODg0MkNFQjBC NDA0OUU3ODYwHhcNMjUxMDI2MTk0NTUwWhcNMjUxMTAyMTk0NTUwWjAYMRYwFAYD VQQDEw02OGZlN2E2ZS1lMmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1967ObAC5MX1dCI8Kt+iMGhvqr6dSaN4Mf5leD+Sq86ySp6aI78v492OgERJ tDuEM2S+N9sNzILbOEvLWr91DhSrPmCeMPGnyEIRumXbwn7WKXwhOXde6FGYhzGN VBdLpcb764oY4mFZPY/F3JATuwbSO1JhVfp9iBODnPTfA/w299r1S8Zc2Zo+cII0 z9WbFyY3iZizFxWfujwNv/BghGHz5FMIoSyL+AtkUh9p2TBwRydlNllhwM+tBrN6 7SXQOlrMBGpRv83GRR81UGwDqJtfu+v4+EJe21md0zKr7OmWI/CpqVuZI0cwolLu IEIr8mOHOi7Lhilqn2IaWKaSYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOG3Hv36 HDMIHltj3JPS2x+vEEoBMB8GA1UdIwQYMBaAFPhyJ8ZlPWm67i6ZSIQs6wtASeeG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDIzQS84RTNDMTIxRTQ4 RDUxMUVBODMzNTE3NzFDNEY5QUUwMi8tSElueG1VOWFicnVMcGxJaEN6ckMwQko1 NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ISW54bVU5YWJydUxwbEloQ3pyQzBCSjU0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDIzQS84RTNDMTIxRTQ4RDUxMUVBODMzNTE3NzFDNEY5QUUwMi8tSElueG1VOWFi cnVMcGxJaEN6ckMwQko1NFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3v/UUsfvShzqKWASsrmmqXrPwR38mQnB3kxmE0YYt5E/nF0n1M3Lk ftIrG5qIZYapirPjGusl4XxLECTYEyIKIo45Dl8J3l0ROOSzbZ3ZNFkrnICDvCPb aS2qKgJ0lC/4uo2QkhPtPwAUjvj/ovXbiiBlRMljglKFWQW8IxyQzalWvuC6jEu0 um6r8QPiMPpLW4rZaB8WK6DX1q6hIP0GmNr1LdN/yZR8NQLwS9tuDmvL/1Pk0dDs LrR5H5AJiLBhtnYay9xdi9jV58VfWX39F35LOHSyQmLuu7uvYPVZJ7imTQJVB52k 9i5QawC+AZMVlu+gX7Ky9mdOEdRsyKTL -----END CERTIFICATE-----Generated at Mon Oct 27 04:42:09 2025 by rpki-client