$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft File: HWQu0o7OpfKqzzR7Fgl_nZJB120.mft (raw, json) Hash identifier: cMJ5PJ+ZHIbjLaIirkCjeSXXIl++mpIj+LktyKAqeyY= Subject key identifier: 2C:AB:C7:1C:BE:F3:90:9A:28:AF:74:32:43:28:59:08:9B:B7:1E:1E Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D Certificate issuer: /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Certificate serial: 039C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft Manifest number: 0398 Signing time: Sun 19 Oct 2025 02:46:41 +0000 Manifest this update: Sun 19 Oct 2025 02:46:41 +0000 Manifest next update: Sun 26 Oct 2025 02:46:41 +0000 Files and hashes: 1: HWQu0o7OpfKqzzR7Fgl_nZJB120.crl (hash: b8LsDbNKc+TQdkzQcPj3DNAi2r5j/3n6Sbvl1uPfk44=) 2: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (hash: 8hUucYPHQ79ZY6uDpo1eHlNtJ78CYgic7xieJwMDGwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:46:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 924 (0x39c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118E3A, serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Validity Not Before: Oct 19 02:46:41 2025 GMT Not After : Oct 26 02:46:41 2025 GMT Subject: CN=68f45111-d7f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f4:70:d9:50:0c:dc:35:58:b8:80:c4:1c:13: 63:cf:a6:68:cf:3d:58:89:ac:de:60:a1:89:6b:4c: e0:7b:88:7b:ad:70:28:88:e2:21:86:62:69:78:38: 32:71:63:92:d3:c7:5b:98:6b:89:5d:6f:72:84:a6: da:a1:b0:2f:8c:6e:df:46:96:69:35:08:6a:0d:e6: 16:10:6b:0d:61:60:9a:1a:ef:cc:08:37:6d:96:b8: 1a:2a:10:29:5a:da:09:5c:1a:70:fe:d3:63:5e:ed: 0e:78:fc:7d:3b:b5:75:fc:b1:4b:5f:28:c8:10:fd: 00:18:91:94:fa:16:4b:d3:78:dc:c4:56:20:f3:ef: 8b:95:53:7d:5b:3b:85:2d:b7:fd:66:25:19:ab:85: 9d:92:ac:6f:a3:02:90:25:33:3e:94:2f:e6:7e:3c: ee:1f:93:6f:f0:f7:57:b9:dc:1c:44:da:1f:96:0b: 87:11:0a:56:f0:c3:ed:ee:a9:c6:60:71:aa:a2:1d: 36:78:d5:b2:c0:ce:f3:2d:1b:13:40:b5:75:3f:54: 11:c1:4b:f3:6a:a5:a6:69:3d:3b:36:0e:be:69:20: 9b:ae:89:ca:1b:6a:5c:e1:aa:c3:f0:74:d5:93:da: eb:76:af:f5:3f:e0:3f:f4:63:3f:20:e7:ad:c6:23: b9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:AB:C7:1C:BE:F3:90:9A:28:AF:74:32:43:28:59:08:9B:B7:1E:1E X509v3 Authority Key Identifier: keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:cb:19:86:76:fc:98:5b:34:5f:16:39:26:5e:50:c4:27:7e: 66:2a:03:e1:1a:6a:1e:b7:1d:da:be:8d:b3:1c:a9:42:7b:31: 83:aa:0e:59:2f:ef:fa:2a:65:b5:94:58:32:27:b7:da:cf:06: 26:a8:9a:11:3a:b3:c0:c8:c1:83:2d:55:2e:31:92:55:57:3e: 6c:9d:cb:b5:99:a4:70:2a:12:36:11:1a:b4:70:69:9a:18:06: 5c:f3:fa:44:c2:f0:e0:53:8e:28:a6:aa:f5:c7:99:58:59:79: fb:bd:36:30:34:53:d0:1a:59:b8:a8:c5:79:19:f4:df:93:69: 36:95:83:f0:ef:83:fa:38:be:74:59:cf:b0:20:73:06:83:55: 11:ab:c6:30:73:70:4b:01:b3:f9:60:ab:7d:59:6d:1d:77:44: 65:89:77:8a:2c:df:1c:ab:38:04:c8:d1:27:2c:c2:f7:70:78: 98:6c:cc:c9:e1:eb:cf:f9:c4:94:d3:15:f3:1e:a8:bf:d7:43: a2:20:ab:99:b6:61:14:27:6c:d4:33:43:53:02:58:98:20:48: cc:ca:5a:eb:4b:ba:e9:49:06:64:7b:69:c2:ad:27:80:1c:d5: 09:90:c5:96:94:3e:dd:98:dd:22:a7:b7:5b:88:73:17:0c:26: b2:60:bb:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFM0ExMTAvBgNVBAUTKDFENjQyRUQyOEVDRUE1RjJBQUNGMzQ3QjE2MDk3RjlE OTI0MUQ3NkQwHhcNMjUxMDE5MDI0NjQxWhcNMjUxMDI2MDI0NjQxWjAYMRYwFAYD VQQDEw02OGY0NTExMS1kN2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfRw2VAM3DVYuIDEHBNjz6Zozz1YiazeYKGJa0zge4h7rXAoiOIhhmJpeDgy cWOS08dbmGuJXW9yhKbaobAvjG7fRpZpNQhqDeYWEGsNYWCaGu/MCDdtlrgaKhAp WtoJXBpw/tNjXu0OePx9O7V1/LFLXyjIEP0AGJGU+hZL03jcxFYg8++LlVN9WzuF Lbf9ZiUZq4WdkqxvowKQJTM+lC/mfjzuH5Nv8PdXudwcRNoflguHEQpW8MPt7qnG YHGqoh02eNWywM7zLRsTQLV1P1QRwUvzaqWmaT07Ng6+aSCbronKG2pc4arD8HTV k9rrdq/1P+A/9GM/IOetxiO5tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCyrxxy+ 85CaKK90MkMoWQibtx4eMB8GA1UdIwQYMBaAFB1kLtKOzqXyqs80exYJf52SQddt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEUzQS9BN0FCMEE4QUI5 OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3BmS3F6elI3RmdsX25aSkIx MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXUXUwbzdPcGZLcXp6UjdGZ2xfblpKQjEyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEUzQS9BN0FCMEE4QUI5OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3Bm S3F6elI3RmdsX25aSkIxMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3yxmGdvyYWzRfFjkmXlDEJ35mKgPhGmoetx3avo2zHKlCezGDqg5Z L+/6KmW1lFgyJ7fazwYmqJoROrPAyMGDLVUuMZJVVz5sncu1maRwKhI2ERq0cGma GAZc8/pEwvDgU44opqr1x5lYWXn7vTYwNFPQGlm4qMV5GfTfk2k2lYPw74P6OL50 Wc+wIHMGg1URq8Ywc3BLAbP5YKt9WW0dd0RliXeKLN8cqzgEyNEnLML3cHiYbMzJ 4evP+cSU0xXzHqi/10OiIKuZtmEUJ2zUM0NTAliYIEjMylrrS7rpSQZke2nCrSeA HNUJkMWWlD7dmN0ip7dbiHMXDCayYLsw -----END CERTIFICATE-----Generated at Mon Oct 20 07:07:40 2025 by rpki-client