$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft File: HSpVFaipmzCyHRhxvPr9J-saEyo.mft (raw, json) Hash identifier: izJfLSwvtYwmUb43NsCYyyCcP9kipIIelEXHDs2TiGI= Subject key identifier: 9C:32:E1:11:6D:5D:F3:05:59:F6:80:35:F7:51:56:D8:C3:D3:73:33 Authority key identifier: 1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A Certificate issuer: /CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Certificate serial: 02AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft Manifest number: 02AA Signing time: Mon 03 Nov 2025 01:28:25 +0000 Manifest this update: Mon 03 Nov 2025 01:28:24 +0000 Manifest next update: Mon 10 Nov 2025 01:28:24 +0000 Files and hashes: 1: HSpVFaipmzCyHRhxvPr9J-saEyo.crl (hash: /rR7X+v7EfmP+D0UoNWFefb6dQkCKWZMv2R8EgUGM4A=) 2: D6E7D65C192E11ED927BF512C4F9AE02.roa (hash: AYJESnvrL0xf2cFi0STIbVetOH/3woitG40ANaAhl6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:28:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 686 (0x2ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B30, serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Validity Not Before: Nov 3 01:28:24 2025 GMT Not After : Nov 10 01:28:24 2025 GMT Subject: CN=69080538-1e47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:60:95:e0:61:ee:10:87:f0:be:12:f7:f8:e9: 22:5b:2b:2f:b4:76:a3:0a:c4:a6:5d:e9:70:9b:c2: 1c:e7:fe:29:72:0d:a5:46:d7:e5:56:0f:e4:e9:ba: 31:51:d0:0b:e0:2c:60:7f:f3:ea:66:e5:e2:c5:3d: 52:c7:a2:15:fc:5d:02:60:e6:4f:7a:2c:3a:a2:cf: 00:6a:8f:51:51:e2:85:05:71:7c:f1:3b:69:d4:f7: b6:a1:57:4e:c5:ee:2a:8b:a2:1d:71:a9:1b:8c:f9: 1d:df:b7:57:3e:01:0e:8a:91:6f:60:a5:41:f3:ae: 93:8a:ac:fa:2d:5e:eb:4d:98:9f:9d:c4:ca:11:22: 21:02:78:62:0d:b8:0a:e7:d1:ac:65:9f:6e:d8:19: f5:86:3f:3d:de:28:b2:ea:5e:20:e4:94:35:8f:1a: 72:95:67:99:b9:60:e0:37:e1:10:f4:d1:c4:cb:99: 53:bc:ea:f0:6a:31:a0:67:08:a0:74:df:bd:40:0f: df:4b:b0:a0:c1:db:c1:e4:0b:45:65:81:da:7f:7a: 47:89:4e:5a:59:32:15:4f:3f:25:32:fe:0e:be:97: ea:95:14:f7:43:bf:d1:dc:a0:36:76:b1:99:37:2e: fe:65:5c:6d:9b:1d:97:54:e7:1c:3f:22:c4:58:93: 40:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:32:E1:11:6D:5D:F3:05:59:F6:80:35:F7:51:56:D8:C3:D3:73:33 X509v3 Authority Key Identifier: keyid:1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:c4:51:57:59:82:05:97:f0:fa:a9:e7:33:b2:96:e8:91:4f: ce:fc:2d:8d:37:ba:34:7b:40:ed:d4:d9:74:8e:0e:f0:35:8d: 45:b6:7e:cf:86:d0:73:55:cd:ad:a8:1a:77:47:a4:8f:2e:0d: c8:57:46:86:b0:12:31:31:6d:7b:bb:7e:55:de:8e:20:ae:84: 98:c4:fb:26:c7:f0:03:89:3e:4f:64:69:f6:bf:b2:20:3c:17: a3:1d:47:9a:06:ef:f6:31:f9:b1:a7:d6:e9:aa:51:0f:1f:e6: 4a:55:f7:03:1f:2b:f5:92:e2:14:bf:00:aa:c4:a6:80:ca:67: 1c:06:00:64:c0:41:0f:72:39:64:7b:97:bb:fc:86:60:54:c3: a8:5a:b9:14:ca:56:f6:61:2d:e0:e4:18:62:a8:4f:69:43:3b: b7:6c:ab:f7:ce:d5:36:e1:d5:78:85:11:50:7e:c2:5b:8c:1c: 30:46:6c:f5:a6:73:31:a5:a8:e4:78:f7:81:bf:c8:96:3e:6d: 76:b4:5c:62:f3:37:e0:ae:1e:01:ad:43:3d:60:99:5d:ce:af: b2:7f:5b:9d:6a:7c:a1:98:29:80:4a:5f:2b:e6:11:a9:59:96: 66:07:50:cf:15:fc:cf:d7:d0:6a:74:62:f1:21:04:ec:c6:1a: ae:9a:e7:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMzAxMTAvBgNVBAUTKDFEMkE1NTE1QThBOTlCMzBCMjFEMTg3MUJDRkFGRDI3 RUIxQTEzMkEwHhcNMjUxMTAzMDEyODI0WhcNMjUxMTEwMDEyODI0WjAYMRYwFAYD VQQDEw02OTA4MDUzOC0xZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlmCV4GHuEIfwvhL3+OkiWysvtHajCsSmXelwm8Ic5/4pcg2lRtflVg/k6box UdAL4Cxgf/PqZuXixT1Sx6IV/F0CYOZPeiw6os8Aao9RUeKFBXF88Ttp1Pe2oVdO xe4qi6IdcakbjPkd37dXPgEOipFvYKVB866Tiqz6LV7rTZifncTKESIhAnhiDbgK 59GsZZ9u2Bn1hj893iiy6l4g5JQ1jxpylWeZuWDgN+EQ9NHEy5lTvOrwajGgZwig dN+9QA/fS7CgwdvB5AtFZYHaf3pHiU5aWTIVTz8lMv4OvpfqlRT3Q7/R3KA2drGZ Ny7+ZVxtmx2XVOccPyLEWJNAzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJwy4RFt XfMFWfaANfdRVtjD03MzMB8GA1UdIwQYMBaAFB0qVRWoqZswsh0Ycbz6/SfrGhMq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIzMC84OTc3QzY3NDE5 MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16Q3lIUmh4dlByOUotc2FF eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hTcFZGYWlwbXpDeUhSaHh2UHI5Si1zYUV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIzMC84OTc3QzY3NDE5MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16 Q3lIUmh4dlByOUotc2FFeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJxFFXWYIFl/D6qeczspbokU/O/C2NN7o0e0Dt1Nl0jg7wNY1Ftn7P htBzVc2tqBp3R6SPLg3IV0aGsBIxMW17u35V3o4groSYxPsmx/ADiT5PZGn2v7Ig PBejHUeaBu/2Mfmxp9bpqlEPH+ZKVfcDHyv1kuIUvwCqxKaAymccBgBkwEEPcjlk e5e7/IZgVMOoWrkUylb2YS3g5BhiqE9pQzu3bKv3ztU24dV4hRFQfsJbjBwwRmz1 pnMxpajkePeBv8iWPm12tFxi8zfgrh4BrUM9YJldzq+yf1udanyhmCmASl8r5hGp WZZmB1DPFfzP19BqdGLxIQTsxhqumueT -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:13 2025 by rpki-client