$ rpki-client -vvf rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft File: HJuixf6owDTaVR_a3GKlOnoC5ds.mft (raw, json) Hash identifier: yxwJWDqUlBaK/bMKr4MeSHGq5AaOqNo0Cfp+Zy9l5yI= Subject key identifier: D7:03:E4:5C:F1:C1:36:06:4E:27:E6:75:23:D7:F6:34:5F:9A:F0:53 Authority key identifier: 1C:9B:A2:C5:FE:A8:C0:34:DA:55:1F:DA:DC:62:A5:3A:7A:02:E5:DB Certificate issuer: /CN=A9193D86/serialNumber=1C9BA2C5FEA8C034DA551FDADC62A53A7A02E5DB Certificate serial: 09B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft Manifest number: 099D Signing time: Tue 28 Oct 2025 19:57:04 +0000 Manifest this update: Tue 28 Oct 2025 19:57:04 +0000 Manifest next update: Tue 04 Nov 2025 19:57:04 +0000 Files and hashes: 1: HJuixf6owDTaVR_a3GKlOnoC5ds.crl (hash: Pyou/kuplzqwxu+M/TL2e2I0hcl9Xz00lxev6mp6kjw=) 2: 52FC6006A19911EA96035C38C4F9AE02.roa (hash: W0ibhleTeTRf9SQxlBk7HfDKAYLQO1EEAaw2Uj8cqZ4=) 3: 7B136C42CC8511EC8D238672C4F9AE02.roa (hash: QSi8XLx3OVsMnyA15sUJv5CABNiE2WZTW3Q/q6D7Y/8=) 4: 79C02FB0CC8511EC8D238672C4F9AE02.roa (hash: VxFJ2WxHqvcaRXlyN+j6s6uxQHhjavcFYpy6cqbLq00=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.crl rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 19:57:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2489 (0x9b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193D86, serialNumber=1C9BA2C5FEA8C034DA551FDADC62A53A7A02E5DB Validity Not Before: Oct 28 19:57:04 2025 GMT Not After : Nov 4 19:57:04 2025 GMT Subject: CN=69012010-acce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2d:08:fc:f4:26:09:1c:2a:77:14:b8:e7:90: 34:ea:41:c4:42:80:5a:3f:d3:b1:1c:1f:72:f8:e6: 79:f5:8a:2f:99:f9:ee:b8:0b:ab:3a:d3:23:b4:30: d4:42:d5:fa:51:69:38:d0:6e:c1:0b:a6:19:77:70: 7a:84:1e:c4:c6:02:fe:7b:69:15:b8:61:c1:3b:f8: 07:33:48:0e:ef:78:b7:85:1c:64:a2:41:de:7d:59: 2f:e8:39:96:79:88:a7:fb:82:52:5c:e7:4d:3e:80: 4e:df:58:28:c6:cd:5b:c0:0a:64:0f:4d:91:66:35: 99:df:1c:19:f4:1f:5b:3c:fb:c9:4b:99:38:62:d1: e9:d2:c5:a9:fa:27:b4:7b:8b:7c:fd:c6:e2:4a:c0: ea:e3:a7:45:0f:81:13:49:51:c0:a6:d8:90:87:6a: 39:cf:2b:da:8c:1b:26:12:aa:e5:07:87:6b:60:54: 5f:8e:6d:ac:ba:f1:a1:51:06:af:c0:cf:3b:6a:2f: 62:30:3c:8d:78:7b:01:ec:3a:3a:32:fa:6a:e5:09: e8:d4:23:f2:c4:09:04:b4:f2:f9:77:d1:87:39:01: 49:1f:82:87:48:29:ed:f6:54:69:55:e6:f1:21:33: d9:d1:33:fd:a6:0e:05:dd:8a:ad:ef:bd:40:0a:a9: db:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:03:E4:5C:F1:C1:36:06:4E:27:E6:75:23:D7:F6:34:5F:9A:F0:53 X509v3 Authority Key Identifier: keyid:1C:9B:A2:C5:FE:A8:C0:34:DA:55:1F:DA:DC:62:A5:3A:7A:02:E5:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:5f:96:9b:e6:e2:af:3f:2b:3c:8f:57:07:30:3d:74:f0:4a: 5d:dd:9b:b1:8d:2e:ea:59:54:dc:99:ac:89:31:94:f2:ed:fa: 50:2b:5b:7f:55:81:c9:12:fd:25:e9:68:35:57:b1:ac:b7:35: 46:80:38:d8:0b:ba:fd:1f:d4:cc:8b:a5:da:54:63:df:86:5c: 86:74:83:ac:d3:e8:3a:d0:61:4d:3c:a7:18:20:19:69:d0:7d: e2:06:8f:69:ec:f5:36:5d:8a:65:c8:9e:d6:38:da:80:c5:c2: 80:60:ce:76:c6:32:0f:d7:cc:37:a3:fe:0c:65:7e:bc:90:1a: 48:e6:5c:02:a7:47:03:f0:fd:67:c6:d4:85:d6:04:6c:bc:5f: e1:43:54:e0:45:9b:c7:bb:10:cf:73:eb:9a:11:a1:0a:cf:6f: 77:0b:01:3c:a9:90:b3:c1:1d:64:d4:23:8f:36:57:b3:31:f0: 24:1f:6e:54:6a:33:49:45:e5:67:5d:41:58:68:77:5e:ad:1f: bc:49:50:70:ef:93:58:16:1e:07:26:5e:83:89:55:5d:23:ce: 71:76:a3:c2:e3:24:7f:9b:8b:06:4f:28:ff:39:bf:56:ca:a4: de:e1:4f:c6:26:56:92:b0:c0:a4:79:21:a3:c0:88:63:95:89: c5:ea:dd:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNEODYxMTAvBgNVBAUTKDFDOUJBMkM1RkVBOEMwMzREQTU1MUZEQURDNjJBNTNB N0EwMkU1REIwHhcNMjUxMDI4MTk1NzA0WhcNMjUxMTA0MTk1NzA0WjAYMRYwFAYD VQQDEw02OTAxMjAxMC1hY2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwS0I/PQmCRwqdxS455A06kHEQoBaP9OxHB9y+OZ59YovmfnuuAurOtMjtDDU QtX6UWk40G7BC6YZd3B6hB7ExgL+e2kVuGHBO/gHM0gO73i3hRxkokHefVkv6DmW eYin+4JSXOdNPoBO31goxs1bwApkD02RZjWZ3xwZ9B9bPPvJS5k4YtHp0sWp+ie0 e4t8/cbiSsDq46dFD4ETSVHAptiQh2o5zyvajBsmEqrlB4drYFRfjm2suvGhUQav wM87ai9iMDyNeHsB7Do6Mvpq5Qno1CPyxAkEtPL5d9GHOQFJH4KHSCnt9lRpVebx ITPZ0TP9pg4F3Yqt771ACqnbwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcD5Fzx wTYGTifmdSPX9jRfmvBTMB8GA1UdIwQYMBaAFBybosX+qMA02lUf2txipTp6AuXb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0Q4Ni9DNjdEMTc2RTlB NUYxMUVBOUY2MjZCNUVDNEY5QUUwMi9ISnVpeGY2b3dEVGFWUl9hM0dLbE9ub0M1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hKdWl4ZjZvd0RUYVZSX2EzR0tsT25vQzVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0Q4Ni9DNjdEMTc2RTlBNUYxMUVBOUY2MjZCNUVDNEY5QUUwMi9ISnVpeGY2b3dE VGFWUl9hM0dLbE9ub0M1ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHX5ab5uKvPys8j1cHMD108Epd3ZuxjS7qWVTcmayJMZTy7fpQK1t/ VYHJEv0l6Wg1V7GstzVGgDjYC7r9H9TMi6XaVGPfhlyGdIOs0+g60GFNPKcYIBlp 0H3iBo9p7PU2XYplyJ7WONqAxcKAYM52xjIP18w3o/4MZX68kBpI5lwCp0cD8P1n xtSF1gRsvF/hQ1TgRZvHuxDPc+uaEaEKz293CwE8qZCzwR1k1COPNlezMfAkH25U ajNJReVnXUFYaHderR+8SVBw75NYFh4HJl6DiVVdI85xdqPC4yR/m4sGTyj/Ob9W yqTe4U/GJlaSsMCkeSGjwIhjlYnF6t3u -----END CERTIFICATE-----Generated at Thu Oct 30 19:35:10 2025 by rpki-client