$ rpki-client -vvf rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft File: hseUaUaypXsFbwKyeTQNMMLOSbQ.mft (raw, json) Hash identifier: +l0AM11cdC8R+d9bbjJmCOZQNo8MnSu6U+MpXnrsC9E= Subject key identifier: F5:D8:C1:3B:3F:03:30:8C:38:C4:EB:73:DF:95:A2:B2:6A:FD:5C:A4 Authority key identifier: 86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4 Certificate issuer: /CN=A9120B99/serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4 Certificate serial: 354E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft Manifest number: 3525 Signing time: Mon 20 Oct 2025 14:24:28 +0000 Manifest this update: Mon 20 Oct 2025 14:24:27 +0000 Manifest next update: Mon 27 Oct 2025 14:24:27 +0000 Files and hashes: 1: hseUaUaypXsFbwKyeTQNMMLOSbQ.crl (hash: vGxiph4Kio0nGy01CF/LVg2UPzPURKOzDBAMXJgcUOk=) 2: D750ADC20ACF11F0B4EBA55FC4F9AE02.roa (hash: NL1ARYRNOz8aLxkxUrPpKF6D4wwBVw7q5BCEbZZrFuo=) 3: AF6AA9ECFF6011ED90C62C26C4F9AE02.roa (hash: I6SN+VthWHNwpn13bC2pRMPfdtmxkMFNn0d1M2WvxFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13646 (0x354e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120B99, serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4 Validity Not Before: Oct 20 14:24:27 2025 GMT Not After : Oct 27 14:24:27 2025 GMT Subject: CN=68f6461c-1e72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:90:e3:3f:be:9f:c7:7c:d0:b6:77:a5:21:9a: f5:88:ff:81:c1:cf:35:0c:43:9e:de:20:04:09:1b: b3:f8:20:31:15:a2:0f:b1:e7:71:84:88:df:32:a2: 76:c0:a5:d0:f8:3c:8b:29:3e:fb:ff:da:68:a7:83: 50:7a:23:74:47:c7:ac:9d:ed:ff:38:9e:b6:6f:c9: ea:0c:c9:9f:83:c3:f5:86:e6:9b:14:bc:0f:ad:6e: da:0a:6b:6f:cd:23:45:52:17:61:f8:b4:30:99:37: 10:42:0e:f1:29:82:8b:6b:1e:8e:8a:12:40:98:e8: f0:8b:31:06:ab:53:bc:07:2a:7d:f1:bc:26:f8:d2: 24:35:ed:bd:77:b1:d0:35:66:21:55:60:a6:77:7d: d4:71:e6:86:43:2d:48:6f:18:ed:c1:ff:bd:4e:8d: 4d:f0:c7:8a:84:36:a6:f9:e2:d2:e6:c1:86:61:b8: 54:33:f8:b2:e5:87:9b:71:ed:f1:09:fb:cc:c5:c6: 94:b3:19:47:98:cf:f3:5a:e1:64:1f:23:49:ed:e6: 7b:bb:1e:dc:16:a3:00:4c:13:e1:a1:75:5c:b2:7d: 23:23:7b:27:4e:45:b1:20:9a:3c:e9:7a:e9:96:31: a1:39:67:50:66:96:ea:c9:65:de:0b:32:87:7d:c2: 98:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:D8:C1:3B:3F:03:30:8C:38:C4:EB:73:DF:95:A2:B2:6A:FD:5C:A4 X509v3 Authority Key Identifier: keyid:86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:80:6d:73:00:b3:0d:93:19:1b:a0:fc:db:49:ee:43:da:17: f7:78:ed:8b:67:67:d1:96:c9:d4:d1:e5:38:83:83:b0:c3:52: 1b:6f:fe:7f:5e:8a:01:d3:6b:f4:f2:ad:dd:5e:fd:b2:bd:bc: 25:f0:55:0b:6e:62:cd:37:4d:37:76:24:54:f5:64:7a:97:63: 18:55:f6:ce:0c:4f:ed:17:30:89:c3:bd:b8:c7:b8:ff:62:7b: f1:80:96:26:6a:60:d0:38:87:2a:a4:e1:a9:7a:0c:aa:cb:14: 7f:ac:f5:66:36:2b:a6:71:93:4c:09:60:de:dd:ba:f9:06:13: 18:91:e8:ff:a5:09:8d:d3:0c:3c:3a:20:bd:d1:d4:fa:5f:f6: 6c:d9:38:2b:19:d6:33:2e:e2:6c:56:82:c2:40:c9:75:5c:50: c0:63:59:59:4c:7d:24:55:8f:30:76:14:3b:c4:35:53:e1:48: a0:ee:d7:7d:5f:a4:37:2a:d3:fb:5d:35:21:54:9c:39:4b:4e: 12:73:6f:98:16:fc:93:07:6d:8c:b0:25:93:97:69:6f:8a:2f: 9e:8b:e1:4c:86:4e:0e:be:d9:29:65:64:c1:e7:55:24:79:b9: 74:64:42:70:e4:03:ee:36:2c:be:77:25:70:c4:c4:5f:5f:fd: 34:c6:dc:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBCOTkxMTAvBgNVBAUTKDg2Qzc5NDY5NDZCMkE1N0IwNTZGMDJCMjc5MzQwRDMw QzJDRTQ5QjQwHhcNMjUxMDIwMTQyNDI3WhcNMjUxMDI3MTQyNDI3WjAYMRYwFAYD VQQDEw02OGY2NDYxYy0xZTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZDjP76fx3zQtnelIZr1iP+Bwc81DEOe3iAECRuz+CAxFaIPsedxhIjfMqJ2 wKXQ+DyLKT77/9pop4NQeiN0R8esne3/OJ62b8nqDMmfg8P1huabFLwPrW7aCmtv zSNFUhdh+LQwmTcQQg7xKYKLax6OihJAmOjwizEGq1O8Byp98bwm+NIkNe29d7HQ NWYhVWCmd33UceaGQy1Ibxjtwf+9To1N8MeKhDam+eLS5sGGYbhUM/iy5Yebce3x CfvMxcaUsxlHmM/zWuFkHyNJ7eZ7ux7cFqMATBPhoXVcsn0jI3snTkWxIJo86Xrp ljGhOWdQZpbqyWXeCzKHfcKYgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXYwTs/ AzCMOMTrc9+VorJq/VykMB8GA1UdIwQYMBaAFIbHlGlGsqV7BW8Csnk0DTDCzkm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEI5OS9EM0Y5MDUxQzFE ODMxMUUyQjRFRDVDRDkwOEIwMkNEMi9oc2VVYVVheXBYc0Zid0t5ZVRRTk1NTE9T YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzZVVhVWF5cFhzRmJ3S3llVFFOTU1MT1NiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEI5OS9EM0Y5MDUxQzFEODMxMUUyQjRFRDVDRDkwOEIwMkNEMi9oc2VVYVVheXBY c0Zid0t5ZVRRTk1NTE9TYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCggG1zALMNkxkboPzbSe5D2hf3eO2LZ2fRlsnU0eU4g4Oww1Ibb/5/ XooB02v08q3dXv2yvbwl8FULbmLNN003diRU9WR6l2MYVfbODE/tFzCJw724x7j/ YnvxgJYmamDQOIcqpOGpegyqyxR/rPVmNiumcZNMCWDe3br5BhMYkej/pQmN0ww8 OiC90dT6X/Zs2TgrGdYzLuJsVoLCQMl1XFDAY1lZTH0kVY8wdhQ7xDVT4Uig7td9 X6Q3KtP7XTUhVJw5S04Sc2+YFvyTB22MsCWTl2lvii+ei+FMhk4OvtkpZWTB51Uk ebl0ZEJw5APuNiy+dyVwxMRfX/00xtx2 -----END CERTIFICATE-----Generated at Tue Oct 21 00:29:16 2025 by rpki-client