$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json) Hash identifier: 93xjRLce1jJnok1TqxnrutLkOBa0qT+w43r6HeOkvVQ= Subject key identifier: A9:DF:15:23:F3:44:E9:4D:C9:D1:0B:62:60:7C:CF:4C:91:BE:44:82 Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Certificate serial: 0C2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft Manifest number: 0C25 Signing time: Tue 04 Nov 2025 18:48:12 +0000 Manifest this update: Tue 04 Nov 2025 18:48:11 +0000 Manifest next update: Tue 11 Nov 2025 18:48:11 +0000 Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: OgrNsmRQBnavKAAqQLM1Weosec658Cpf9Py/YLZuFNQ=) 2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: oYtKqIUNSIUuh/+KpPti5KOAL0KI5TmVO0WB52ytTkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:48:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3116 (0xc2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FD74, serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Validity Not Before: Nov 4 18:48:11 2025 GMT Not After : Nov 11 18:48:11 2025 GMT Subject: CN=690a4a6b-1331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e5:fb:52:88:88:cc:e4:e3:e9:6b:bb:c3:ba: 21:a5:41:6a:db:3e:6a:58:e9:d0:37:ad:63:18:78: a0:db:9e:ef:47:f6:f9:6d:c7:8b:ab:f0:84:3b:03: 7c:bc:44:ea:70:e3:bd:6d:51:be:4d:17:96:79:20: 20:fb:90:29:65:ce:dc:e4:8a:84:d6:ee:48:d8:d1: 83:a2:4a:6f:fd:cf:5b:d0:33:30:81:28:e0:e4:16: 06:3e:be:5a:73:a6:b9:5a:fc:47:ab:0d:8b:69:1e: 7a:e7:c3:2e:c5:48:b8:83:33:77:5e:23:df:5a:aa: 1b:f1:d9:e2:06:89:b9:81:4a:9c:b0:bb:33:9f:47: 0e:ca:3d:ef:e3:d8:d2:56:bf:7a:25:43:2f:75:3a: aa:74:1d:73:dd:7b:64:ca:14:1f:94:85:c3:5b:db: 59:04:8e:3f:8c:77:c7:23:43:e9:32:c6:aa:53:26: 8b:a8:e4:7f:ea:b4:84:a0:d7:70:a2:e0:fb:7f:bb: 24:dd:92:a7:b7:94:fe:a7:5e:f8:56:72:4b:62:7d: bd:ff:93:5a:e2:e7:09:54:2c:46:1e:b9:5d:3a:66: e5:35:d3:68:f7:f1:65:df:62:0b:4e:32:21:5a:a9: 15:95:02:a2:2b:04:ac:0d:e4:fe:68:ae:1c:f3:b4: 98:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:DF:15:23:F3:44:E9:4D:C9:D1:0B:62:60:7C:CF:4C:91:BE:44:82 X509v3 Authority Key Identifier: keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:26:05:9f:a5:f8:b3:ca:30:4a:16:ba:61:87:63:bc:78:25: 8c:c1:7f:f4:58:e0:c6:d1:91:08:e9:80:b9:65:61:7d:d7:22: a4:af:2f:74:09:8f:75:bf:c4:f8:1d:02:ca:7c:10:36:74:29: d4:64:a5:07:4e:b5:60:8e:b0:37:0a:82:08:7b:7e:c2:56:2e: 00:f6:cf:53:0a:ad:2e:ff:bb:f6:9d:30:1a:92:b7:db:79:2f: 7f:b5:e5:49:57:54:f4:c9:06:80:61:a1:36:48:aa:89:75:d3: c9:e0:71:ae:57:ec:bb:98:24:25:4e:10:32:b5:72:d4:13:e0: 75:d2:ab:cf:77:56:d5:07:a2:83:ed:8f:38:2d:df:ff:ca:15: 13:1c:56:5e:57:bf:12:c1:84:ea:a6:62:2c:5b:2f:56:59:34: d5:84:a2:29:ab:a6:d2:76:86:72:c8:79:8a:00:41:57:b9:51: 28:5f:0d:d4:5b:fe:2f:3a:79:ba:8c:b5:ba:20:10:30:0b:78: fb:be:d0:4c:b6:3f:c3:14:d3:44:7f:ab:5d:4d:86:f9:a0:03: de:35:5e:38:84:9a:f8:28:54:a8:28:22:84:41:05:98:cb:df: 8b:c3:20:b9:9c:a4:68:9f:ab:01:6c:d4:8b:ea:6b:99:9b:ce: 52:3c:70:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND MDJDMDM2MjcwHhcNMjUxMTA0MTg0ODExWhcNMjUxMTExMTg0ODExWjAYMRYwFAYD VQQDEw02OTBhNGE2Yi0xMzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuX7UoiIzOTj6Wu7w7ohpUFq2z5qWOnQN61jGHig257vR/b5bceLq/CEOwN8 vETqcOO9bVG+TReWeSAg+5ApZc7c5IqE1u5I2NGDokpv/c9b0DMwgSjg5BYGPr5a c6a5WvxHqw2LaR5658MuxUi4gzN3XiPfWqob8dniBom5gUqcsLszn0cOyj3v49jS Vr96JUMvdTqqdB1z3XtkyhQflIXDW9tZBI4/jHfHI0PpMsaqUyaLqOR/6rSEoNdw ouD7f7sk3ZKnt5T+p174VnJLYn29/5Na4ucJVCxGHrldOmblNdNo9/Fl32ILTjIh WqkVlQKiKwSsDeT+aK4c87SYoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKnfFSPz ROlNydELYmB8z0yRvkSCMB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y MkxJQzM3SGVJaFBBTEFOaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYJgWfpfizyjBKFrphh2O8eCWMwX/0WODG0ZEI6YC5ZWF91yKkry90 CY91v8T4HQLKfBA2dCnUZKUHTrVgjrA3CoIIe37CVi4A9s9TCq0u/7v2nTAakrfb eS9/teVJV1T0yQaAYaE2SKqJddPJ4HGuV+y7mCQlThAytXLUE+B10qvPd1bVB6KD 7Y84Ld//yhUTHFZeV78SwYTqpmIsWy9WWTTVhKIpq6bSdoZyyHmKAEFXuVEoXw3U W/4vOnm6jLW6IBAwC3j7vtBMtj/DFNNEf6tdTYb5oAPeNV44hJr4KFSoKCKEQQWY y9+LwyC5nKRon6sBbNSL6muZm85SPHA5 -----END CERTIFICATE-----Generated at Wed Nov 5 12:06:30 2025 by rpki-client