$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft File: hn09aLZZeAOvVkZcDptTq2Z7cqg.mft (raw, json) Hash identifier: rcjIaV9PMOyfsdW+HpXQ6FXh+xvJRYArjB2in7RSufU= Subject key identifier: 6C:6D:07:D3:10:7E:C2:39:EF:9E:E3:5D:7E:C9:06:5F:A8:AA:B3:D4 Authority key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 Certificate issuer: /CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Certificate serial: 06B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft Manifest number: 06B1 Signing time: Sat 18 Oct 2025 23:41:27 +0000 Manifest this update: Sat 18 Oct 2025 23:41:26 +0000 Manifest next update: Sat 25 Oct 2025 23:41:26 +0000 Files and hashes: 1: hn09aLZZeAOvVkZcDptTq2Z7cqg.crl (hash: Dw4agD+bvHUPleeX4WrRWAO4sOPRrI3Pj6vgkb+5ma8=) 2: 4EC5B52480B811EBBEE2CA7FC4F9AE02.roa (hash: bzwAo1vTwZtUvpqV0SE31TfJe7tyOs8AEfKtkNJnl48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:41:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1718 (0x6b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDC5, serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Validity Not Before: Oct 18 23:41:26 2025 GMT Not After : Oct 25 23:41:26 2025 GMT Subject: CN=68f425a6-f66b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ab:b7:5f:93:15:ff:a2:f8:8c:ef:da:9c:e2: ee:eb:66:35:63:6a:99:31:c4:66:29:dd:bd:49:6c: 4c:2f:88:e0:05:1a:12:37:3c:9e:c0:28:d1:68:fc: 94:51:b2:a3:dd:04:9b:9f:66:fb:f2:2e:30:d5:70: 02:db:c6:e5:04:98:30:58:c7:c3:cc:ea:dd:44:0d: e1:49:d7:65:2b:17:12:b9:69:c9:0c:9d:f6:cd:64: 9c:b0:5c:38:8d:8d:10:b6:ec:26:7e:d9:9b:47:16: 8f:dc:0d:c0:fd:66:dc:7b:1b:4e:d3:4d:3f:05:3e: 9b:10:26:a5:43:6a:a9:f8:08:8a:23:c3:4a:72:a9: 9c:27:0b:64:4f:37:ef:2e:ad:62:d1:41:c5:62:b6: 2a:6e:2c:24:19:d2:d5:66:81:6d:e9:75:cc:e1:75: 9b:34:c0:75:3d:69:49:7b:cf:15:3d:de:6a:30:3b: 68:f0:5f:21:a7:1e:65:d1:2f:07:0d:87:81:a2:81: a4:d9:12:44:4b:f1:45:2c:1f:25:66:5f:a5:9a:ab: 2b:6f:bb:8f:b0:5a:98:05:08:38:4c:e4:48:60:f2: 63:32:21:dd:1c:1d:17:61:e2:83:d4:7e:af:5b:98: 7c:13:d6:c2:31:88:87:3b:d7:59:3f:14:6a:d1:fa: d0:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:6D:07:D3:10:7E:C2:39:EF:9E:E3:5D:7E:C9:06:5F:A8:AA:B3:D4 X509v3 Authority Key Identifier: keyid:86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:92:3c:4c:f9:a3:3c:78:97:21:41:7a:84:47:46:2f:22:58: 18:be:0c:7d:2a:e6:5f:91:77:39:69:fb:74:47:1d:b9:ff:d4: d1:b2:7e:15:52:fe:fd:e4:1f:9c:46:41:c5:b0:27:9f:8e:7c: e9:33:12:bc:24:4a:1c:93:2b:05:c0:35:11:cf:27:1d:ef:91: ac:4e:70:58:79:3f:ae:d5:48:4a:f8:83:03:57:5a:dc:4f:e6: cb:62:f1:d8:d3:99:cd:f1:ce:2b:ab:d0:c0:8a:77:f6:35:ff: db:b4:44:20:d1:b3:1d:64:90:fb:45:7b:2d:ed:33:32:b9:85: a7:e3:5f:1f:9c:7a:40:12:1b:a6:40:b7:b0:e1:bb:90:0f:77: c4:bf:4f:80:34:6a:89:60:d5:a9:00:ae:83:f4:03:15:83:f4: e4:fc:69:5b:b0:5d:f0:ce:50:c1:1d:26:37:4e:b7:e3:30:de: b6:e0:29:35:57:29:ef:c6:50:36:bd:6f:cb:02:ef:cc:e1:d9: 7a:93:13:12:cf:df:f8:ae:8e:39:2e:ee:b8:da:ba:77:7d:bd: 2e:98:8f:6d:f6:9d:48:82:4e:c4:24:07:00:06:b6:1e:5a:b0: 03:0e:79:62:e1:f6:27:d8:6f:38:2b:c8:05:c4:75:3f:5e:50: 41:f7:34:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQzUxMTAvBgNVBAUTKDg2N0QzRDY4QjY1OTc4MDNBRjU2NDY1QzBFOUI1M0FC NjY3QjcyQTgwHhcNMjUxMDE4MjM0MTI2WhcNMjUxMDI1MjM0MTI2WjAYMRYwFAYD VQQDEw02OGY0MjVhNi1mNjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmau3X5MV/6L4jO/anOLu62Y1Y2qZMcRmKd29SWxML4jgBRoSNzyewCjRaPyU UbKj3QSbn2b78i4w1XAC28blBJgwWMfDzOrdRA3hSddlKxcSuWnJDJ32zWScsFw4 jY0QtuwmftmbRxaP3A3A/WbcextO000/BT6bECalQ2qp+AiKI8NKcqmcJwtkTzfv Lq1i0UHFYrYqbiwkGdLVZoFt6XXM4XWbNMB1PWlJe88VPd5qMDto8F8hpx5l0S8H DYeBooGk2RJES/FFLB8lZl+lmqsrb7uPsFqYBQg4TORIYPJjMiHdHB0XYeKD1H6v W5h8E9bCMYiHO9dZPxRq0frQrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxtB9MQ fsI5757jXX7JBl+oqrPUMB8GA1UdIwQYMBaAFIZ9PWi2WXgDr1ZGXA6bU6tme3Ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDNS9FOUYyOTJDNjgw QjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVBT3ZWa1pjRHB0VHEyWjdj cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2huMDlhTFpaZUFPdlZrWmNEcHRUcTJaN2NxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDNS9FOUYyOTJDNjgwQjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVB T3ZWa1pjRHB0VHEyWjdjcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZkjxM+aM8eJchQXqER0YvIlgYvgx9KuZfkXc5aft0Rx25/9TRsn4V Uv795B+cRkHFsCefjnzpMxK8JEockysFwDURzycd75GsTnBYeT+u1UhK+IMDV1rc T+bLYvHY05nN8c4rq9DAinf2Nf/btEQg0bMdZJD7RXst7TMyuYWn418fnHpAEhum QLew4buQD3fEv0+ANGqJYNWpAK6D9AMVg/Tk/GlbsF3wzlDBHSY3TrfjMN624Ck1 VynvxlA2vW/LAu/M4dl6kxMSz9/4ro45Lu642rp3fb0umI9t9p1Igk7EJAcABrYe WrADDnli4fYn2G84K8gFxHU/XlBB9zQ0 -----END CERTIFICATE-----Generated at Tue Oct 21 00:04:24 2025 by rpki-client