$ rpki-client -vvf rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft File: cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft (raw, json) Hash identifier: z93hiSXo1JxJg7knxepgTrpwsKwym3cIOkbHVQ3yytA= Subject key identifier: 2B:07:3B:1E:41:59:F9:49:EB:4F:FA:85:DD:9E:2D:43:64:2F:59:36 Authority key identifier: 70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C Certificate issuer: /CN=A917B540/serialNumber=702FA1AE9682B2B22ECDD9A53012F0E6F1BA1B9C Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft Manifest number: 01D0 Signing time: Mon 03 Nov 2025 02:51:00 +0000 Manifest this update: Mon 03 Nov 2025 02:51:00 +0000 Manifest next update: Mon 10 Nov 2025 02:51:00 +0000 Files and hashes: 1: cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl (hash: q2GNJIcr20tCfZ53nF2xp3D8UmJglQDFSrq80qdIpQQ=) 2: 1966C856FB9E11ED8309FC1DC4F9AE02.roa (hash: UaxkzwEU7Uh70PtMMkf/dHGEWq655rIu4QsEPhurB3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B540, serialNumber=702FA1AE9682B2B22ECDD9A53012F0E6F1BA1B9C Validity Not Before: Nov 3 02:51:00 2025 GMT Not After : Nov 10 02:51:00 2025 GMT Subject: CN=69081894-d924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2b:4b:cd:50:31:5f:65:60:ec:64:2a:34:2f: cf:8e:d9:38:f2:ba:c4:96:b3:44:ee:63:34:3e:b8: 3f:b4:9b:6e:4e:0c:42:e4:1f:e2:a0:02:36:da:05: b2:3e:93:18:9d:b1:b6:c5:70:68:f7:ba:d8:e6:e0: 3b:18:9c:c9:05:56:11:a4:ec:81:a1:4f:ad:01:af: dc:5d:eb:20:a0:f2:66:61:12:ef:96:b1:bc:be:15: d2:0a:3e:a8:64:7c:a9:f3:c8:2c:b1:f0:12:c2:7f: 62:fb:5c:ff:f5:69:4d:af:b2:65:8b:1e:f5:a2:7a: 13:cd:60:14:e1:5a:81:aa:c1:32:f2:51:20:c2:84: fb:f7:ef:56:e1:69:0f:c9:91:9a:60:16:9c:dd:9b: ca:3a:81:15:e0:f6:35:08:8d:30:8e:c7:8d:21:f3: 76:c1:e5:c4:22:c6:06:50:7e:25:11:c5:a6:cc:b8: a9:78:a5:85:c4:76:91:b9:87:3d:41:cc:1a:ad:ee: 7e:8a:9b:86:65:78:1e:52:32:68:cd:94:42:b9:86: be:e7:32:fc:ab:1f:1e:6c:0e:c0:56:f1:43:96:c5: 32:fb:4a:79:81:b1:b6:0a:6d:5f:4c:8e:b1:b6:5f: e0:82:44:81:b4:0e:c3:ec:a0:9c:bf:e6:f6:5b:74: 76:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:07:3B:1E:41:59:F9:49:EB:4F:FA:85:DD:9E:2D:43:64:2F:59:36 X509v3 Authority Key Identifier: keyid:70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:ef:fc:e1:fb:0d:6b:cc:60:e6:c2:3f:e9:24:84:cd:ee:3a: df:c9:8f:38:61:ba:66:d0:2b:53:46:e8:63:ba:02:76:60:31: 23:65:47:66:51:77:df:15:77:ba:b2:83:6d:30:da:b2:6a:e0: df:cc:4e:e1:dd:68:26:29:78:4f:6a:fe:63:af:bf:8c:64:bc: 43:36:d2:4d:de:11:56:6c:94:9d:d2:3a:d2:e1:ba:4d:8d:4f: 12:61:a5:eb:4a:2a:cf:12:98:d8:aa:6e:0a:50:05:ae:74:15: 91:97:02:9c:3b:3f:d3:f5:a3:9d:f3:98:ef:64:04:56:cb:27: f1:62:4d:74:6c:af:b6:51:e4:9a:6b:86:83:d1:5b:d3:ac:05: 7a:6e:e2:44:04:fe:50:13:45:2e:d4:68:75:f9:89:9a:ce:66: 36:77:50:22:01:ee:39:e8:c1:c1:e3:4e:39:63:b6:92:10:62: d7:7d:5f:4d:ce:5e:9b:a5:ab:e2:e8:bb:00:81:17:c9:df:56: 47:eb:13:8e:48:8c:ff:bb:d2:36:fa:61:8a:dc:f7:99:d4:31: d0:3a:78:76:fe:d7:4e:07:08:b9:cb:ad:9b:ca:c7:5a:81:5e: 41:bd:b9:40:6c:17:10:c0:9b:01:80:8f:fc:82:5a:41:80:de: 74:81:99:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1NDAxMTAvBgNVBAUTKDcwMkZBMUFFOTY4MkIyQjIyRUNERDlBNTMwMTJGMEU2 RjFCQTFCOUMwHhcNMjUxMTAzMDI1MTAwWhcNMjUxMTEwMDI1MTAwWjAYMRYwFAYD VQQDEw02OTA4MTg5NC1kOTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsitLzVAxX2Vg7GQqNC/Pjtk48rrElrNE7mM0Prg/tJtuTgxC5B/ioAI22gWy PpMYnbG2xXBo97rY5uA7GJzJBVYRpOyBoU+tAa/cXesgoPJmYRLvlrG8vhXSCj6o ZHyp88gssfASwn9i+1z/9WlNr7Jlix71onoTzWAU4VqBqsEy8lEgwoT79+9W4WkP yZGaYBac3ZvKOoEV4PY1CI0wjseNIfN2weXEIsYGUH4lEcWmzLipeKWFxHaRuYc9 Qcware5+ipuGZXgeUjJozZRCuYa+5zL8qx8ebA7AVvFDlsUy+0p5gbG2Cm1fTI6x tl/ggkSBtA7D7KCcv+b2W3R2ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCsHOx5B WflJ60/6hd2eLUNkL1k2MB8GA1UdIwQYMBaAFHAvoa6WgrKyLs3ZpTAS8Obxuhuc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjU0MC9EOTdBOTVCQ0Y4 ODAxMUVEQjlBQkZDNTZDNEY5QUUwMi9jQy1ocnBhQ3NySXV6ZG1sTUJMdzV2RzZH NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NDLWhycGFDc3JJdXpkbWxNQkx3NXZHNkc1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjU0MC9EOTdBOTVCQ0Y4ODAxMUVEQjlBQkZDNTZDNEY5QUUwMi9jQy1ocnBhQ3Ny SXV6ZG1sTUJMdzV2RzZHNXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC07/zh+w1rzGDmwj/pJITN7jrfyY84Ybpm0CtTRuhjugJ2YDEjZUdm UXffFXe6soNtMNqyauDfzE7h3WgmKXhPav5jr7+MZLxDNtJN3hFWbJSd0jrS4bpN jU8SYaXrSirPEpjYqm4KUAWudBWRlwKcOz/T9aOd85jvZARWyyfxYk10bK+2UeSa a4aD0VvTrAV6buJEBP5QE0Uu1Gh1+YmazmY2d1AiAe456MHB4045Y7aSEGLXfV9N zl6bpavi6LsAgRfJ31ZH6xOOSIz/u9I2+mGK3PeZ1DHQOnh2/tdOBwi5y62bysda gV5BvblAbBcQwJsBgI/8glpBgN50gZnj -----END CERTIFICATE-----Generated at Tue Nov 4 01:08:22 2025 by rpki-client