$ rpki-client -vvf rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft File: HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft (raw, json) Hash identifier: NLLvt8pbO6V3vEy2LrrPx+bYQhvjgFc/8gR3QqMnjoQ= Subject key identifier: 90:88:D1:BD:94:B6:80:65:27:F3:8D:2B:AA:7F:8B:6E:4F:77:82:DD Authority key identifier: 1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 Certificate issuer: /CN=A918742C/serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Certificate serial: 16E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft Manifest number: 16D6 Signing time: Sun 02 Nov 2025 16:39:46 +0000 Manifest this update: Sun 02 Nov 2025 16:39:46 +0000 Manifest next update: Sun 09 Nov 2025 16:39:46 +0000 Files and hashes: 1: HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl (hash: a6zEWiqZVhJTz3OJMOYb+IBpjMI5Q1/C13S7IhanMvE=) 2: 8DFAE1DA019D11E8A7804A1EC4F9AE02.roa (hash: 85zAa/NDU6R+uxxVwM+5q1AHLvo6RcZxo+KYtDUWQJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:39:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5856 (0x16e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918742C, serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Validity Not Before: Nov 2 16:39:46 2025 GMT Not After : Nov 9 16:39:46 2025 GMT Subject: CN=69078952-1f9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bd:a5:af:cc:9c:93:94:67:0e:ad:3b:4b:7e: f7:d9:d8:45:06:5a:bc:5e:69:25:0c:ad:e4:0a:06: d1:4c:42:78:42:a4:cf:1f:04:b9:14:a7:1b:86:fd: 70:46:e3:06:1a:80:d3:4b:e7:f0:65:8e:5d:51:d3: dc:fe:ea:a8:06:9e:96:db:0f:15:28:77:82:8d:10: 7f:df:9a:e1:47:99:35:2a:cc:44:a2:89:b3:f6:42: b1:85:59:5a:e4:43:3d:99:db:3b:ca:36:4d:05:65: 59:ee:b0:82:ba:95:86:62:02:76:0f:b7:db:1b:ef: d0:6f:3b:12:c8:17:0f:e0:b6:51:b7:5e:97:4f:fd: 3c:20:68:21:4b:1e:4e:b7:33:d1:cc:96:a9:1d:50: f9:c8:f2:f7:53:30:c7:7d:e0:4e:21:2e:01:aa:f8: 11:a3:57:8b:b3:d0:1f:56:ef:ad:b8:0b:6e:d5:e3: 01:04:12:6c:2b:76:08:2b:39:75:fb:98:06:84:21: 92:db:d1:0c:91:a7:ab:bd:ca:61:18:75:95:72:94: f8:fa:a2:1b:20:da:33:31:10:1a:35:7f:ef:2a:80: 24:6c:5b:fc:a4:6e:bd:9c:35:65:9c:d4:2a:4c:08: fc:f5:f4:e0:db:ca:a0:d7:b3:34:70:29:b7:33:4a: c1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:88:D1:BD:94:B6:80:65:27:F3:8D:2B:AA:7F:8B:6E:4F:77:82:DD X509v3 Authority Key Identifier: keyid:1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:04:cc:c8:ec:46:cd:ac:8d:3a:6c:e7:a0:eb:47:47:ab:77: 0e:32:83:8a:ab:34:f4:c6:5d:28:4c:3c:9c:c9:df:25:73:c7: a1:43:26:0e:96:9c:9b:6e:b1:a1:bd:39:9e:da:b2:22:82:40: 7a:a0:0f:18:b0:cf:15:1f:22:e5:49:ea:a3:6f:f4:36:cd:74: 9a:b0:ab:4f:8f:cd:76:f4:a0:de:58:13:81:2a:11:02:82:c2: 40:20:96:e1:cc:8b:22:a7:6a:43:52:8f:d1:82:f5:37:d9:f2: f9:d0:16:f9:79:94:74:15:60:7a:30:da:dc:7f:2c:05:fb:53: 54:65:e0:65:2c:44:64:a2:33:ee:9d:ff:53:33:44:34:7b:cc: e5:6e:d3:1c:da:20:7a:eb:ca:c2:bf:bf:8e:81:d9:98:c2:21: d1:b8:a7:4f:97:b3:7e:c9:27:87:17:0a:55:38:eb:a8:41:83: 7d:e0:90:f0:a8:d5:78:35:e5:01:2b:3b:93:1c:83:7b:5c:3e: a2:91:41:02:5b:9c:e8:e8:18:25:c4:38:05:49:f3:9c:49:07: 55:29:4a:70:ec:8d:74:31:f1:52:77:95:b9:cb:49:61:79:5d: c3:6c:0c:58:de:a1:51:83:67:ad:98:86:7d:9a:6f:82:c2:9b: a6:6a:db:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0MkMxMTAvBgNVBAUTKDFDM0Y5OUEwQzE4MkI1OENDNDVCODExMkYyOTFFMTJB MTUzMzMxRTkwHhcNMjUxMTAyMTYzOTQ2WhcNMjUxMTA5MTYzOTQ2WjAYMRYwFAYD VQQDEw02OTA3ODk1Mi0xZjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx72lr8yck5RnDq07S3732dhFBlq8XmklDK3kCgbRTEJ4QqTPHwS5FKcbhv1w RuMGGoDTS+fwZY5dUdPc/uqoBp6W2w8VKHeCjRB/35rhR5k1KsxEoomz9kKxhVla 5EM9mds7yjZNBWVZ7rCCupWGYgJ2D7fbG+/QbzsSyBcP4LZRt16XT/08IGghSx5O tzPRzJapHVD5yPL3UzDHfeBOIS4BqvgRo1eLs9AfVu+tuAtu1eMBBBJsK3YIKzl1 +5gGhCGS29EMkaervcphGHWVcpT4+qIbINozMRAaNX/vKoAkbFv8pG69nDVlnNQq TAj89fTg28qg17M0cCm3M0rBDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCI0b2U toBlJ/ONK6p/i25Pd4LdMB8GA1UdIwQYMBaAFBw/maDBgrWMxFuBEvKR4SoVMzHp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQyQy9GMjhDODlDNDAx OUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZekVXNEVTOHBIaEtoVXpN ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hELVpvTUdDdFl6RVc0RVM4cEhoS2hVek1lay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQyQy9GMjhDODlDNDAxOUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZ ekVXNEVTOHBIaEtoVXpNZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUBMzI7EbNrI06bOeg60dHq3cOMoOKqzT0xl0oTDycyd8lc8ehQyYO lpybbrGhvTme2rIigkB6oA8YsM8VHyLlSeqjb/Q2zXSasKtPj8129KDeWBOBKhEC gsJAIJbhzIsip2pDUo/RgvU32fL50Bb5eZR0FWB6MNrcfywF+1NUZeBlLERkojPu nf9TM0Q0e8zlbtMc2iB668rCv7+OgdmYwiHRuKdPl7N+ySeHFwpVOOuoQYN94JDw qNV4NeUBKzuTHIN7XD6ikUECW5zo6BglxDgFSfOcSQdVKUpw7I10MfFSd5W5y0lh eV3DbAxY3qFRg2etmIZ9mm+CwpumattU -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:18 2025 by rpki-client