$ rpki-client -vvf rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft File: hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft (raw, json) Hash identifier: Vax/5Or3lcfjng2Zv0CF2rSmelrDF64zJ4D9RCVcR3w= Subject key identifier: 7E:93:BE:5F:9D:18:F4:1F:35:C5:4F:D4:71:F2:F9:FC:FA:7C:99:2C Authority key identifier: 85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF Certificate issuer: /CN=A911C9E8/serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Certificate serial: 0189 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft Manifest number: 0186 Signing time: Sun 19 Oct 2025 06:12:33 +0000 Manifest this update: Sun 19 Oct 2025 06:12:32 +0000 Manifest next update: Sun 26 Oct 2025 06:12:32 +0000 Files and hashes: 1: hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl (hash: Dmg+olPUzcOYGSEPKU5E/ksoKph87AAB/a9vzgfM3vg=) 2: E39F4ED65C2411EEB54C4F43C4F9AE02.roa (hash: jSX8BBXcDhKRO02h61flDcL9PRKVJzf27mu274wCdhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:12:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C9E8, serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Validity Not Before: Oct 19 06:12:32 2025 GMT Not After : Oct 26 06:12:32 2025 GMT Subject: CN=68f48151-2f05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a4:61:66:5b:58:ee:fb:9a:c8:75:5e:bf:c2: e6:b7:ca:7d:5f:72:3c:d7:18:38:60:29:61:78:42: 4c:b4:6a:e7:d3:c3:9c:a4:cc:17:fd:29:76:b3:6e: 16:8f:2e:20:16:c0:98:a9:8d:ae:d9:68:c1:a2:a6: 77:9c:f0:c1:0e:87:5c:9d:8a:53:1d:a8:8b:79:a0: 51:95:97:54:2f:9e:cc:6c:ce:7b:be:56:17:64:7d: 72:4f:7d:7b:61:c1:12:2a:70:3a:6b:64:e1:ed:a2: eb:12:17:33:73:72:cd:07:58:b9:e5:ba:8d:75:87: db:79:93:d4:2f:6a:96:09:38:e6:88:6f:bd:6c:20: 58:b9:c9:f3:00:40:88:79:32:11:2f:d6:b7:ee:7b: 01:6a:d7:50:53:37:3d:21:75:a5:45:eb:a9:87:5e: ba:f5:e5:ca:05:14:fb:26:a7:1d:58:32:48:c7:6c: 28:e3:4a:0a:d0:06:05:d4:f7:a3:fa:8e:33:ca:98: 4f:08:d0:79:cb:e5:b9:8e:76:54:62:fa:eb:e3:72: f3:ef:7c:e8:07:66:f4:b2:ee:53:1c:a7:d3:a7:b5: 6c:61:ea:cf:64:f4:66:46:50:63:b8:e5:19:80:c6: 30:09:76:c5:1b:b3:b6:e9:5b:9c:0e:40:b2:37:70: cf:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:93:BE:5F:9D:18:F4:1F:35:C5:4F:D4:71:F2:F9:FC:FA:7C:99:2C X509v3 Authority Key Identifier: keyid:85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:48:59:62:25:0b:88:04:9f:e3:af:2f:07:d0:47:bf:51:e7: 72:79:34:5a:76:7c:b5:f0:79:59:a3:f2:0a:8d:40:9f:49:94: 04:90:b6:e7:11:ae:1b:ec:0a:f1:a5:05:99:48:b5:a7:26:fb: f1:b7:20:f5:00:16:c9:4c:1c:59:22:e1:59:7c:a6:d8:5d:6f: 23:1e:d7:d3:10:11:87:89:fe:43:98:e2:ba:9b:23:a8:4e:37: 99:a5:2f:af:e9:1a:9e:df:d1:71:a6:44:fa:f5:db:b1:3c:95: 18:5b:7a:b6:5f:0a:ca:24:25:96:e8:e5:de:e2:f1:ea:06:56: 45:bf:d8:ec:63:4b:41:dc:91:4f:b5:95:14:dc:2e:c7:be:df: ad:0e:5b:cc:76:be:90:da:c6:a6:20:51:37:c2:fc:e1:85:63: f8:a3:6e:d4:75:68:28:14:69:ca:d0:83:0d:a8:cc:02:27:79: 18:63:8a:18:bc:50:a0:d0:09:6d:39:b0:7b:97:3e:fc:88:8e: 01:db:e2:9e:f0:ab:87:96:f7:ac:5e:96:bf:e0:ec:c1:6a:91: a5:9c:7d:da:02:33:62:52:e4:3b:0a:5e:59:47:33:09:7a:28: b0:85:97:21:e5:9b:0a:ba:4d:ed:26:46:7c:1a:6a:50:0c:2e: 5c:e8:ed:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM5RTgxMTAvBgNVBAUTKDg1Mjk5RjBEQjE0QzhGMEE1M0QyNDQ2RUZEQjBDQzA1 OUMxNTI0QkYwHhcNMjUxMDE5MDYxMjMyWhcNMjUxMDI2MDYxMjMyWjAYMRYwFAYD VQQDEw02OGY0ODE1MS0yZjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaRhZltY7vuayHVev8Lmt8p9X3I81xg4YClheEJMtGrn08OcpMwX/Sl2s24W jy4gFsCYqY2u2WjBoqZ3nPDBDodcnYpTHaiLeaBRlZdUL57MbM57vlYXZH1yT317 YcESKnA6a2Th7aLrEhczc3LNB1i55bqNdYfbeZPUL2qWCTjmiG+9bCBYucnzAECI eTIRL9a37nsBatdQUzc9IXWlReuph1669eXKBRT7JqcdWDJIx2wo40oK0AYF1Pej +o4zyphPCNB5y+W5jnZUYvrr43Lz73zoB2b0su5THKfTp7VsYerPZPRmRlBjuOUZ gMYwCXbFG7O26VucDkCyN3DPmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6Tvl+d GPQfNcVP1HHy+fz6fJksMB8GA1UdIwQYMBaAFIUpnw2xTI8KU9JEbv2wzAWcFSS/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzlFOC9GREY2NzMwNjU4 RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3cFQwa1J1X2JETUJad1ZK TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hTbWZEYkZNandwVDBrUnVfYkRNQlp3VkpMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzlFOC9GREY2NzMwNjU4RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3 cFQwa1J1X2JETUJad1ZKTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZSFliJQuIBJ/jry8H0Ee/UedyeTRadny18HlZo/IKjUCfSZQEkLbn Ea4b7ArxpQWZSLWnJvvxtyD1ABbJTBxZIuFZfKbYXW8jHtfTEBGHif5DmOK6myOo TjeZpS+v6Rqe39FxpkT69duxPJUYW3q2XwrKJCWW6OXe4vHqBlZFv9jsY0tB3JFP tZUU3C7Hvt+tDlvMdr6Q2samIFE3wvzhhWP4o27UdWgoFGnK0IMNqMwCJ3kYY4oY vFCg0AltObB7lz78iI4B2+Ke8KuHlvesXpa/4OzBapGlnH3aAjNiUuQ7Cl5ZRzMJ eiiwhZch5ZsKuk3tJkZ8GmpQDC5c6O2H -----END CERTIFICATE-----Generated at Mon Oct 20 01:49:57 2025 by rpki-client