$ rpki-client -vvf rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft File: hNqJJ83vUDOW9ScgGU65MSCdPzo.mft (raw, json) Hash identifier: 6gaVuZJzD3pyYzmBPlJ33k/3y7wWF8ThHlRGLiqMHxU= Subject key identifier: 6F:68:FB:11:9F:9A:84:D9:1D:D7:69:BF:11:E8:9F:47:89:D7:9F:F3 Authority key identifier: 84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A Certificate issuer: /CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Certificate serial: 035F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft Manifest number: 0353 Signing time: Wed 05 Nov 2025 01:04:21 +0000 Manifest this update: Wed 05 Nov 2025 01:04:21 +0000 Manifest next update: Wed 12 Nov 2025 01:04:21 +0000 Files and hashes: 1: hNqJJ83vUDOW9ScgGU65MSCdPzo.crl (hash: S/le7gS1YUDgtMIonQq80PYgkwoWzVEB9iZMe0epJco=) 2: 3EABAF20D8E311EC8F274181C4F9AE02.roa (hash: D/07ECvWp7oQg2+1KPxjiVqoD+wojBNXOMz248kJJ/8=) 3: 6910E952A86A11EF89DA976DC4F9AE02.roa (hash: l1w8+0ex2ah/bqLhlgu70ROEZ3rYXLDAefLnWRzXKeM=) 4: 00F0B7EEA87411EF88F5C638C4F9AE02.roa (hash: jCGpkTOREB2CZphvzKOSraYTHWPq9LTO8zozaxcqQy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 863 (0x35f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F051, serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Validity Not Before: Nov 5 01:04:21 2025 GMT Not After : Nov 12 01:04:21 2025 GMT Subject: CN=690aa295-2f69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b5:69:6e:ba:67:df:b7:3c:00:96:c3:cb:02: e9:a7:c2:89:ef:8f:e4:0a:ae:60:c6:87:d0:cb:3c: e2:c8:dc:46:00:11:9d:be:4a:63:79:f3:6a:33:ae: 4b:21:6b:e7:28:99:27:51:95:e1:28:6b:67:d8:05: 8c:a7:b4:c4:e6:dd:a0:5a:d6:21:c9:2a:9a:b9:0b: 63:95:59:9f:83:7c:c5:89:71:95:a0:2f:a4:af:d9: 9f:56:14:eb:79:eb:b1:b8:b2:26:c7:0c:9b:f8:4c: 5f:64:2b:90:c9:62:fa:25:bf:ca:0d:8a:87:55:b5: 64:34:8a:d1:92:3e:8e:fe:61:de:65:62:24:73:98: ae:aa:c6:70:d9:cd:19:b9:a7:d1:77:db:63:7d:0b: 5b:17:8d:74:08:99:73:d2:e0:79:42:48:55:34:fe: 3a:40:41:bd:a8:b5:a1:ae:f3:a2:3f:99:08:0a:1f: 2c:f3:f6:92:40:b5:57:93:05:8f:11:fb:eb:e7:d1: 84:da:ea:9a:5a:0f:ed:9c:78:0d:88:2a:b7:26:75: 63:62:a9:98:14:b8:79:de:95:98:96:01:be:06:c9: 35:17:a8:4d:22:c6:b5:a6:6c:f8:b0:bb:d6:90:2b: f3:2d:ea:b3:a1:c7:13:4e:c1:98:a4:3a:1b:d5:8a: b5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:68:FB:11:9F:9A:84:D9:1D:D7:69:BF:11:E8:9F:47:89:D7:9F:F3 X509v3 Authority Key Identifier: keyid:84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:cc:9b:22:05:02:52:65:b5:69:8d:59:f7:46:1c:4e:b0:55: bc:6d:c3:27:03:31:e8:93:d1:9e:ff:d8:4c:0b:50:b6:59:62: d4:78:4b:09:54:62:76:e0:29:dd:72:31:c7:a8:ce:8a:ea:47: 8d:4d:cc:88:34:01:7d:68:8c:d3:26:75:d5:38:f3:75:ed:b6: 31:10:88:32:ed:b8:26:cb:fb:25:33:a7:bb:07:f1:34:1e:cf: bb:e6:ab:85:ba:58:43:8d:ac:8c:08:72:37:94:30:5e:d8:23: 01:86:92:15:14:19:d9:3d:3f:2d:b5:66:17:11:26:e0:02:5b: ce:2c:d3:57:67:15:dd:16:db:d7:fb:5c:50:67:f2:98:4d:a2: f5:5c:3e:32:bf:e9:73:ee:52:79:08:2e:22:86:38:06:e1:ea: d9:b7:1d:80:d2:f8:e0:49:82:13:85:6b:86:c1:12:37:da:03: 11:42:e3:0f:b9:6c:a3:e0:f5:45:8f:8f:ad:0b:80:0d:b1:fb: 8e:d5:68:59:f0:a9:e6:9a:f9:3a:78:44:be:e9:a7:dc:93:c6: 7c:3b:0b:8e:f9:6a:73:23:1f:e2:f1:03:20:f1:96:c0:df:16: 18:c2:ea:36:1b:d8:dc:37:15:4d:9e:7d:83:86:23:a1:b2:c7: fd:25:35:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwNTExMTAvBgNVBAUTKDg0REE4OTI3Q0RFRjUwMzM5NkY1MjcyMDE5NEVCOTMx MjA5RDNGM0EwHhcNMjUxMTA1MDEwNDIxWhcNMjUxMTEyMDEwNDIxWjAYMRYwFAYD VQQDEw02OTBhYTI5NS0yZjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2rVpbrpn37c8AJbDywLpp8KJ74/kCq5gxofQyzziyNxGABGdvkpjefNqM65L IWvnKJknUZXhKGtn2AWMp7TE5t2gWtYhySqauQtjlVmfg3zFiXGVoC+kr9mfVhTr eeuxuLImxwyb+ExfZCuQyWL6Jb/KDYqHVbVkNIrRkj6O/mHeZWIkc5iuqsZw2c0Z uafRd9tjfQtbF410CJlz0uB5QkhVNP46QEG9qLWhrvOiP5kICh8s8/aSQLVXkwWP Efvr59GE2uqaWg/tnHgNiCq3JnVjYqmYFLh53pWYlgG+Bsk1F6hNIsa1pmz4sLvW kCvzLeqzoccTTsGYpDob1Yq1ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9o+xGf moTZHddpvxHon0eJ15/zMB8GA1UdIwQYMBaAFITaiSfN71AzlvUnIBlOuTEgnT86 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjA1MS81QUFEOUQ3RUQ4 REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVET1c5U2NnR1U2NU1TQ2RQ em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOcUpKODN2VURPVzlTY2dHVTY1TVNDZFB6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjA1MS81QUFEOUQ3RUQ4REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVE T1c5U2NnR1U2NU1TQ2RQem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbzJsiBQJSZbVpjVn3RhxOsFW8bcMnAzHok9Ge/9hMC1C2WWLUeEsJ VGJ24CndcjHHqM6K6keNTcyINAF9aIzTJnXVOPN17bYxEIgy7bgmy/slM6e7B/E0 Hs+75quFulhDjayMCHI3lDBe2CMBhpIVFBnZPT8ttWYXESbgAlvOLNNXZxXdFtvX +1xQZ/KYTaL1XD4yv+lz7lJ5CC4ihjgG4erZtx2A0vjgSYIThWuGwRI32gMRQuMP uWyj4PVFj4+tC4ANsfuO1WhZ8Knmmvk6eES+6afck8Z8OwuO+WpzIx/i8QMg8ZbA 3xYYwuo2G9jcNxVNnn2DhiOhssf9JTVN -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:43 2025 by rpki-client