$ rpki-client -vvf rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft File: HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft (raw, json) Hash identifier: tL/eKTgrdw+K+rqQv77kYfdFGhuQc7e8DSB4skVmZmM= Subject key identifier: D5:75:8A:74:F5:64:F6:07:FA:4A:2C:3C:5C:91:44:93:3A:B5:45:2A Authority key identifier: 1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E Certificate issuer: /CN=A911D848/serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft Manifest number: BE Signing time: Sun 19 Oct 2025 09:11:36 +0000 Manifest this update: Sun 19 Oct 2025 09:11:35 +0000 Manifest next update: Sun 26 Oct 2025 09:11:35 +0000 Files and hashes: 1: HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl (hash: Kj7GdCltfWnQJQ6bORX7pdZ8Zkwka62wo9iI/2bdTKk=) 2: F0C8DB1CA54E11EF8592FD66C4F9AE02.roa (hash: 76K1YbroX8X8W0IqnMICi5xKvh2ELCOHzwZ1tdiFlUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:11:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D848, serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Validity Not Before: Oct 19 09:11:35 2025 GMT Not After : Oct 26 09:11:35 2025 GMT Subject: CN=68f4ab47-8a48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9b:d0:5b:9d:36:bd:22:58:17:1b:34:b8:f4: 39:33:33:10:16:9c:42:a2:7e:85:ad:23:92:7e:60: 0e:9d:05:38:88:3e:8b:40:d7:0f:18:06:46:73:e8: a5:fb:65:3d:2d:4d:87:72:df:53:98:c7:b2:13:2d: 36:41:d4:fa:c6:98:85:4d:04:6f:b1:de:bc:09:18: a8:9d:86:80:d3:7c:69:3f:b7:61:e2:b8:a0:e3:43: 46:7f:71:15:01:a1:b6:d1:a2:4d:c6:42:c0:8a:55: de:58:2a:eb:e9:0e:d6:6d:95:22:31:ba:7e:f4:ea: e7:60:9f:17:df:62:3b:51:9d:87:ef:af:0b:22:fc: 58:e2:2d:2f:c2:88:0c:14:1f:1b:05:fc:1b:ea:98: 95:11:12:41:c5:02:5a:fb:30:0a:0d:61:b0:75:12: 53:07:76:9a:2f:6f:60:c1:42:5a:f5:a2:f2:04:eb: 7d:68:47:08:d3:4d:60:c1:78:b2:a6:eb:b2:1f:dc: 3c:d1:0d:ec:1d:f7:37:0a:b2:e1:23:3f:4e:60:38: 52:d6:f4:4f:19:10:35:c3:49:38:0c:cf:80:5f:95: 4d:c2:5f:73:a5:14:44:e3:3c:31:a4:f3:8e:ac:95: e8:31:37:09:c9:1e:55:3b:b2:02:ea:2d:6e:22:f2: 77:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:75:8A:74:F5:64:F6:07:FA:4A:2C:3C:5C:91:44:93:3A:B5:45:2A X509v3 Authority Key Identifier: keyid:1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:b2:27:93:9e:1c:1c:3d:ba:14:d4:74:61:36:42:e2:bc:01: 68:60:d9:6d:6b:c4:3f:97:61:dc:62:3c:67:88:30:bc:10:46: d4:04:2a:29:87:0c:88:9f:ad:e7:c3:9e:c7:58:a7:83:be:77: ed:fe:fa:2d:d1:d4:ba:c0:94:36:4a:35:c7:77:e3:28:07:69: db:e6:e2:c8:20:6b:eb:ea:ec:de:9d:f9:83:7d:7d:ce:da:61: 0c:21:91:5b:43:76:1f:7a:72:fb:c0:48:78:a5:26:41:c4:78: c7:cb:dc:79:47:c8:98:a1:84:43:61:19:b7:41:f4:29:98:d7: 42:52:6d:9d:9c:3e:2a:f1:26:02:53:85:b7:79:9f:56:1a:69: 78:d2:b9:88:4e:66:e1:2f:9a:a9:4c:97:2b:b9:e1:6d:9c:5e: 97:8d:61:27:c2:98:d1:4b:bc:d2:96:e9:41:77:29:06:cd:0e: 1c:80:ee:ff:2c:71:e5:7f:b0:1c:7c:bd:ad:84:0e:d8:45:0e: 91:d9:1c:c3:95:24:24:75:b5:a6:93:f4:2c:1f:73:c0:42:91: 3c:70:d1:87:0f:96:bb:fa:fe:e9:f2:33:06:68:64:0f:aa:7a: 0f:39:8e:7e:a6:6e:9d:c0:49:5b:0f:68:de:bf:28:b7:52:4a: 9d:7a:d1:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ4NDgxMTAvBgNVBAUTKDFERDFCODY4Nzg4NjkyNEM0NjEzMTE2MDUwRUU5MEU5 RDQ5NDI2OUUwHhcNMjUxMDE5MDkxMTM1WhcNMjUxMDI2MDkxMTM1WjAYMRYwFAYD VQQDEw02OGY0YWI0Ny04YTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5vQW502vSJYFxs0uPQ5MzMQFpxCon6FrSOSfmAOnQU4iD6LQNcPGAZGc+il +2U9LU2Hct9TmMeyEy02QdT6xpiFTQRvsd68CRionYaA03xpP7dh4rig40NGf3EV AaG20aJNxkLAilXeWCrr6Q7WbZUiMbp+9OrnYJ8X32I7UZ2H768LIvxY4i0vwogM FB8bBfwb6piVERJBxQJa+zAKDWGwdRJTB3aaL29gwUJa9aLyBOt9aEcI001gwXiy puuyH9w80Q3sHfc3CrLhIz9OYDhS1vRPGRA1w0k4DM+AX5VNwl9zpRRE4zwxpPOO rJXoMTcJyR5VO7IC6i1uIvJ3uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNV1inT1 ZPYH+kosPFyRRJM6tUUqMB8GA1UdIwQYMBaAFB3RuGh4hpJMRhMRYFDukOnUlCae MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDg0OC9DMjUxQjVCMjlC MTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2treEdFeEZnVU82UTZkU1VK cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkRzRhSGlHa2t4R0V4RmdVTzZRNmRTVUpwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDg0OC9DMjUxQjVCMjlCMTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2tr eEdFeEZnVU82UTZkU1VKcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdsieTnhwcPboU1HRhNkLivAFoYNlta8Q/l2HcYjxniDC8EEbUBCop hwyIn63nw57HWKeDvnft/vot0dS6wJQ2SjXHd+MoB2nb5uLIIGvr6uzenfmDfX3O 2mEMIZFbQ3YfenL7wEh4pSZBxHjHy9x5R8iYoYRDYRm3QfQpmNdCUm2dnD4q8SYC U4W3eZ9WGml40rmITmbhL5qpTJcrueFtnF6XjWEnwpjRS7zSlulBdykGzQ4cgO7/ LHHlf7AcfL2thA7YRQ6R2RzDlSQkdbWmk/QsH3PAQpE8cNGHD5a7+v7p8jMGaGQP qnoPOY5+pm6dwElbD2jevyi3UkqdetHe -----END CERTIFICATE-----Generated at Mon Oct 20 04:08:22 2025 by rpki-client