$ rpki-client -vvf rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft File: HN4SRMu7llQubIsJo9rBwbRDaNc.mft (raw, json) Hash identifier: OPyXMVatKk7KI9bZgKb5QHay+uxzRoVJwUI6CO1hVac= Subject key identifier: 43:07:0E:23:94:17:A8:F6:70:1F:75:DE:0D:54:BA:99:C2:3D:16:35 Authority key identifier: 1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 Certificate issuer: /CN=A918A498/serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft Manifest number: 7F Signing time: Mon 03 Nov 2025 06:42:56 +0000 Manifest this update: Mon 03 Nov 2025 06:42:56 +0000 Manifest next update: Mon 10 Nov 2025 06:42:56 +0000 Files and hashes: 1: HN4SRMu7llQubIsJo9rBwbRDaNc.crl (hash: gPwLifnkcMiKJmsG5n2d3crcV9GjK5WYWQd0jcjzn5Q=) 2: 62C86698F80A11EFA400AC2FC4F9AE02.roa (hash: iou6EnoDniALad6Yrel3h0kHQ1grK3uoWpHvIkBO8LI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:42:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A498, serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Validity Not Before: Nov 3 06:42:56 2025 GMT Not After : Nov 10 06:42:56 2025 GMT Subject: CN=69084ef0-ffa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3c:9f:f2:3c:13:ae:4b:95:4a:db:87:31:69: 81:e4:c9:a2:18:77:24:41:0c:9c:ac:66:4d:94:a6: 50:6b:bb:d4:f5:a7:9e:a7:69:6a:23:24:fb:a6:d5: 4d:7a:9f:3d:09:a6:de:b9:c5:5f:9d:fe:86:54:76: 79:4e:eb:65:9a:37:35:31:d0:b6:69:d0:6a:93:10: 91:35:e4:e9:07:d5:1f:50:9e:3c:fc:fa:3d:15:8e: bc:10:2f:78:ad:13:3d:00:8d:ae:25:5e:3f:bb:d3: 92:1e:c8:d2:c4:3e:63:d0:23:dc:a5:e6:52:34:d5: c9:44:97:72:18:3a:20:41:87:77:3c:9a:dc:e9:54: 88:a5:f4:15:4b:67:5d:1b:85:43:f9:b6:d5:2c:ec: ec:a2:2d:eb:93:bc:36:ca:b9:a0:55:58:d9:43:63: 58:ac:c8:5f:df:85:4e:74:4f:20:c6:06:76:af:b8: 9f:6a:3e:4f:63:66:b9:5f:db:21:da:9c:25:3e:7b: 06:9d:de:10:4a:0e:e0:d8:a5:db:a7:08:8b:e0:d7: 46:e4:78:76:b5:cf:34:c4:b7:21:7e:f4:02:f1:fa: 6f:74:e3:00:24:97:c1:d9:1d:60:4e:71:69:2c:7a: 6f:c0:d2:1c:32:3f:7c:84:62:55:de:5f:c8:0b:ba: d0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:07:0E:23:94:17:A8:F6:70:1F:75:DE:0D:54:BA:99:C2:3D:16:35 X509v3 Authority Key Identifier: keyid:1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:f7:be:8c:a6:b7:8f:73:56:7f:88:2a:d7:c5:d5:95:f0:dc: de:cb:3b:e2:57:e6:40:9e:cf:6b:dc:4e:15:6d:10:eb:20:a1: e3:fd:ca:2e:0f:01:a9:89:d8:cc:dc:d3:ff:19:58:21:5c:68: bc:46:84:5b:64:ff:f3:6b:1b:f7:c7:51:3e:d2:19:a3:6f:3b: 67:06:b3:d2:a8:d5:b7:80:c1:1d:d7:82:9a:fb:ca:16:c9:9a: aa:bb:5a:53:60:22:22:b3:ca:2e:8e:16:b7:b6:4c:d9:ac:af: 94:43:cb:36:91:61:1b:f2:21:7c:32:1f:9c:2b:e9:dd:08:00: d6:17:1c:7a:86:4b:26:c5:5b:14:de:b4:89:71:19:45:8f:91: cb:ef:c2:81:32:ee:a2:59:f0:b2:d4:1d:aa:40:9e:b5:12:7c: 5a:2c:d6:02:94:c7:60:1c:da:6d:a4:5b:d8:65:98:bb:ef:82: 9a:ea:71:fe:ba:1b:e2:7c:33:74:7e:1a:60:90:af:14:f6:17: a0:7e:91:bc:57:9c:d4:49:74:7b:fa:98:0d:8d:37:90:50:90: 06:ff:23:ce:cf:7f:19:f7:f6:ef:ba:24:80:fb:26:c1:4e:1d: 53:d0:a4:f6:05:18:ba:25:0d:7b:bf:19:0b:9d:e4:64:b5:1e: 13:27:f9:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0OTgxMTAvBgNVBAUTKDFDREUxMjQ0Q0JCQjk2NTQyRTZDOEIwOUEzREFDMUMx QjQ0MzY4RDcwHhcNMjUxMTAzMDY0MjU2WhcNMjUxMTEwMDY0MjU2WjAYMRYwFAYD VQQDEw02OTA4NGVmMC1mZmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTyf8jwTrkuVStuHMWmB5MmiGHckQQycrGZNlKZQa7vU9aeep2lqIyT7ptVN ep89CabeucVfnf6GVHZ5Tutlmjc1MdC2adBqkxCRNeTpB9UfUJ48/Po9FY68EC94 rRM9AI2uJV4/u9OSHsjSxD5j0CPcpeZSNNXJRJdyGDogQYd3PJrc6VSIpfQVS2dd G4VD+bbVLOzsoi3rk7w2yrmgVVjZQ2NYrMhf34VOdE8gxgZ2r7ifaj5PY2a5X9sh 2pwlPnsGnd4QSg7g2KXbpwiL4NdG5Hh2tc80xLchfvQC8fpvdOMAJJfB2R1gTnFp LHpvwNIcMj98hGJV3l/IC7rQ1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMHDiOU F6j2cB913g1UupnCPRY1MB8GA1UdIwQYMBaAFBzeEkTLu5ZULmyLCaPawcG0Q2jX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ5OC9EMkRFRDM0NkY4 MDkxMUVGQTUyODFCMTZDNEY5QUUwMi9ITjRTUk11N2xsUXViSXNKbzlyQndiUkRh TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hONFNSTXU3bGxRdWJJc0pvOXJCd2JSRGFOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ5OC9EMkRFRDM0NkY4MDkxMUVGQTUyODFCMTZDNEY5QUUwMi9ITjRTUk11N2xs UXViSXNKbzlyQndiUkRhTmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh976MprePc1Z/iCrXxdWV8NzeyzviV+ZAns9r3E4VbRDrIKHj/cou DwGpidjM3NP/GVghXGi8RoRbZP/zaxv3x1E+0hmjbztnBrPSqNW3gMEd14Ka+8oW yZqqu1pTYCIis8oujha3tkzZrK+UQ8s2kWEb8iF8Mh+cK+ndCADWFxx6hksmxVsU 3rSJcRlFj5HL78KBMu6iWfCy1B2qQJ61EnxaLNYClMdgHNptpFvYZZi774Ka6nH+ uhvifDN0fhpgkK8U9hegfpG8V5zUSXR7+pgNjTeQUJAG/yPOz38Z9/bvuiSA+ybB Th1T0KT2BRi6JQ17vxkLneRktR4TJ/mx -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:13 2025 by rpki-client