$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft File: hHItvUIme93Vm4hBUpklNTHgY2Q.mft (raw, json) Hash identifier: tJy5kRmZCfWL976O40pf9+LmqaQRvhjSQGdv+FMwF8c= Subject key identifier: 9E:F1:4D:03:6C:46:95:0B:2B:92:83:E3:E9:81:72:D9:FE:64:51:92 Authority key identifier: 84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 Certificate issuer: /CN=A918FEF3/serialNumber=84722DBD42267BDDD59B88415299253531E06364 Certificate serial: 1827 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft Manifest number: 1827 Signing time: Sun 02 Nov 2025 16:31:32 +0000 Manifest this update: Sun 02 Nov 2025 16:31:31 +0000 Manifest next update: Sun 09 Nov 2025 16:31:31 +0000 Files and hashes: 1: hHItvUIme93Vm4hBUpklNTHgY2Q.crl (hash: kzop8JJOiD9AodGK3/YHqmrbddi3UPWdMTpXcPxw+Bs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6183 (0x1827) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FEF3, serialNumber=84722DBD42267BDDD59B88415299253531E06364 Validity Not Before: Nov 2 16:31:31 2025 GMT Not After : Nov 9 16:31:31 2025 GMT Subject: CN=69078763-3081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:20:53:98:05:6a:bf:da:10:b2:19:51:0f:a0: 14:46:17:70:8b:b6:6d:8e:63:bb:7a:73:88:4c:11: 80:b1:23:c3:10:fb:e5:12:fd:29:71:98:98:15:f4: 5c:12:79:4c:4f:15:ad:96:55:eb:ed:db:3a:f6:03: 16:e3:55:57:9d:f9:23:ee:22:ec:b8:09:cf:64:bd: d6:5a:b6:08:8b:6e:b8:cd:cb:ee:f7:3e:a9:c7:44: e3:fa:73:04:9a:c7:0b:af:bc:71:c8:9a:7f:3b:85: 4c:34:30:83:32:2b:0f:e0:f2:9d:b8:fc:02:b0:a4: e9:23:22:f3:a5:94:c1:18:42:f0:77:6f:46:ea:a2: c5:95:22:73:92:f3:08:fc:68:d7:52:f3:de:20:63: 5c:eb:fa:ac:dd:9b:ae:9a:66:c9:52:71:79:ae:67: 3f:a2:05:cd:c6:df:e9:79:94:04:3d:d4:c0:b9:e5: 41:0d:18:36:62:d0:3e:65:0e:69:f5:69:1a:a1:0e: 69:b8:06:97:e0:54:b5:0a:b7:8d:16:50:bd:a1:3a: b5:82:cd:47:c1:22:22:a0:b3:33:70:d3:d4:9c:cf: e9:49:62:b7:9f:40:14:7b:d1:90:58:af:2f:73:d6: 3a:d8:42:d5:08:ea:73:68:cc:56:97:19:cb:d7:e0: a9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:F1:4D:03:6C:46:95:0B:2B:92:83:E3:E9:81:72:D9:FE:64:51:92 X509v3 Authority Key Identifier: keyid:84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:2b:e9:b9:50:6b:17:15:75:1d:ec:d9:4c:3a:e8:64:6b:0a: c1:4c:25:cf:c2:e6:83:b3:1f:0a:c2:40:22:1f:25:b6:74:39: e2:84:61:17:58:a2:4c:f6:03:a5:03:55:c3:5f:97:5d:0b:d3: 20:bd:f3:ab:db:a4:d7:24:30:f5:0a:f3:29:bf:4d:51:df:52: 5a:bc:45:cd:30:1b:10:67:26:62:89:ff:e5:65:58:ce:42:78: 25:bd:42:53:6a:e8:00:b1:22:90:45:b1:cb:cd:2d:31:2f:44: da:19:a3:f6:af:ac:f6:53:ae:78:21:02:74:bc:8a:16:1e:47: c8:5c:e8:bc:99:13:d5:37:a6:6e:89:95:3e:b7:84:29:65:12: 7e:6d:1d:0c:e7:48:da:5c:65:8e:0c:a9:6b:11:68:44:d2:6e: e3:8e:0c:30:dc:4e:95:30:9a:f9:82:aa:fc:7a:de:df:d8:10: a8:78:de:12:2c:70:3d:37:2e:90:af:b7:85:96:a8:76:db:9b: 83:ff:e4:d8:5c:2c:b5:c9:15:1e:48:72:b0:e3:92:68:aa:7d: 91:40:55:7d:04:31:e3:45:97:34:47:91:01:e1:12:d4:2b:ba: 1f:76:78:9a:c4:9c:48:ea:dc:27:ea:86:28:46:16:ad:35:7e: 03:59:d9:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFRjMxMTAvBgNVBAUTKDg0NzIyREJENDIyNjdCRERENTlCODg0MTUyOTkyNTM1 MzFFMDYzNjQwHhcNMjUxMTAyMTYzMTMxWhcNMjUxMTA5MTYzMTMxWjAYMRYwFAYD VQQDEw02OTA3ODc2My0zMDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCBTmAVqv9oQshlRD6AURhdwi7ZtjmO7enOITBGAsSPDEPvlEv0pcZiYFfRc EnlMTxWtllXr7ds69gMW41VXnfkj7iLsuAnPZL3WWrYIi264zcvu9z6px0Tj+nME mscLr7xxyJp/O4VMNDCDMisP4PKduPwCsKTpIyLzpZTBGELwd29G6qLFlSJzkvMI /GjXUvPeIGNc6/qs3ZuummbJUnF5rmc/ogXNxt/peZQEPdTAueVBDRg2YtA+ZQ5p 9WkaoQ5puAaX4FS1CreNFlC9oTq1gs1HwSIioLMzcNPUnM/pSWK3n0AUe9GQWK8v c9Y62ELVCOpzaMxWlxnL1+CpXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ7xTQNs RpULK5KD4+mBctn+ZFGSMB8GA1UdIwQYMBaAFIRyLb1CJnvd1ZuIQVKZJTUx4GNk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGMy9FNjMzN0QzMEJE MzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5M1ZtNGhCVXBrbE5USGdZ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hISXR2VUltZTkzVm00aEJVcGtsTlRIZ1kyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkVGMy9FNjMzN0QzMEJEMzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5 M1ZtNGhCVXBrbE5USGdZMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdK+m5UGsXFXUd7NlMOuhkawrBTCXPwuaDsx8KwkAiHyW2dDnihGEX WKJM9gOlA1XDX5ddC9MgvfOr26TXJDD1CvMpv01R31JavEXNMBsQZyZiif/lZVjO QnglvUJTaugAsSKQRbHLzS0xL0TaGaP2r6z2U654IQJ0vIoWHkfIXOi8mRPVN6Zu iZU+t4QpZRJ+bR0M50jaXGWODKlrEWhE0m7jjgww3E6VMJr5gqr8et7f2BCoeN4S LHA9Ny6Qr7eFlqh225uD/+TYXCy1yRUeSHKw45Joqn2RQFV9BDHjRZc0R5EB4RLU K7ofdniaxJxI6twn6oYoRhatNX4DWdkM -----END CERTIFICATE-----Generated at Tue Nov 4 01:10:17 2025 by rpki-client