$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: rQT59wNj7pvGo6+2o2KxVjgyf/3qO75hNwnoJeurYOw= Subject key identifier: 0E:2E:E5:8F:AF:37:5C:E1:FA:5F:7C:15:14:0A:D1:C6:63:06:9B:74 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 082C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 0817 Signing time: Sat 18 Oct 2025 22:09:09 +0000 Manifest this update: Sat 18 Oct 2025 22:09:09 +0000 Manifest next update: Sat 25 Oct 2025 22:09:09 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: EEac102oJ5nooowoLDqDIflxP+g0lgIvnnrc7Ddmstg=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: 8DddYe6Xxj3AQcHWCxpAXO4NAnMo0qG6fie32kIabM4=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: zLBeyUvYeL3WiTP8OfhHdt93sxWxJckWd6if90VdF+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2092 (0x82c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Oct 18 22:09:09 2025 GMT Not After : Oct 25 22:09:09 2025 GMT Subject: CN=68f41005-0fe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5d:0c:84:a7:46:14:58:7d:42:05:49:ec:2e: 82:5b:1c:98:75:13:05:4a:5a:db:d4:20:91:af:3a: 4c:02:32:bc:06:33:a1:bc:03:0b:2a:b0:7c:df:ef: 72:29:ea:e0:c7:83:9b:59:4b:31:41:ac:e9:fb:3a: 1d:d1:65:57:48:55:c4:1b:13:cd:1b:85:2b:18:1e: 4c:e7:31:91:53:21:34:b0:a1:76:64:c9:a9:ba:7d: be:69:2d:e5:62:61:85:6e:e3:b1:87:8b:43:ca:1f: a4:f8:b2:9f:57:0b:5a:b7:32:d5:0e:55:dd:a6:53: c4:49:bf:75:78:97:a6:2e:64:8e:ef:a9:97:a7:d8: 34:36:77:43:95:c2:73:f4:c0:91:7b:26:07:3b:20: a2:c3:9e:4e:43:06:f1:a5:23:2c:1f:9c:24:63:ec: 86:59:d3:6c:be:11:d0:a0:0e:ae:77:e5:80:ad:8d: 0e:71:8e:9b:91:37:ea:2a:48:27:7f:f9:1f:21:04: 8f:c7:c9:5c:aa:cf:8a:f5:3f:94:06:8b:26:3b:e4: 44:5e:4d:29:2a:ce:d8:87:94:ff:bb:6d:28:4f:36: 7c:1c:be:64:8e:f6:30:8d:b3:c1:e4:6a:64:de:24: 1b:ba:83:91:7a:7b:ab:7d:b7:cc:28:c6:ac:67:38: 57:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:2E:E5:8F:AF:37:5C:E1:FA:5F:7C:15:14:0A:D1:C6:63:06:9B:74 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:a2:2b:1f:f5:ed:cf:8d:ea:13:5a:86:64:8f:16:e7:11:d2: 92:b1:50:24:68:26:3a:fb:96:37:3b:69:de:d0:7c:d4:db:f6: e0:7d:82:51:e4:13:b0:05:60:66:54:38:a5:5b:1f:7f:53:da: 00:72:bc:0e:1b:d1:76:72:cf:7b:7e:44:32:46:2f:61:95:cf: 3b:db:12:cf:04:73:96:e5:09:3a:e8:7a:fd:01:15:ff:75:73: cb:86:1a:bc:d5:c8:ba:60:dd:1a:a4:63:3d:9f:ef:18:7c:74: 09:22:df:e5:8d:fc:e9:44:c5:c6:77:4e:e7:f5:58:4d:db:a5: bf:15:c0:8e:1f:4d:90:5a:54:fa:89:fa:80:5f:b1:04:0b:b6: 4f:6e:cc:cf:d0:1e:06:d7:a3:f5:af:c2:3e:2d:9c:2d:d4:b8: 4f:7f:9b:7e:dd:7b:fe:e7:6a:83:8b:04:0d:0c:0d:5d:cf:1d: 44:26:0b:2f:79:42:c0:2b:63:10:ca:40:38:5c:72:13:a0:9d: 26:85:a0:1a:4d:b1:5d:95:a0:2b:c0:77:08:66:e7:73:03:b9: e3:ee:cb:86:46:2a:fb:25:b9:9b:67:8f:29:db:07:2b:02:03: 04:f8:65:be:1d:c4:9a:36:20:1b:5f:dc:e7:40:1b:2a:25:2d: 83:01:09:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjUxMDE4MjIwOTA5WhcNMjUxMDI1MjIwOTA5WjAYMRYwFAYD VQQDEw02OGY0MTAwNS0wZmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx10MhKdGFFh9QgVJ7C6CWxyYdRMFSlrb1CCRrzpMAjK8BjOhvAMLKrB83+9y Kergx4ObWUsxQazp+zod0WVXSFXEGxPNG4UrGB5M5zGRUyE0sKF2ZMmpun2+aS3l YmGFbuOxh4tDyh+k+LKfVwtatzLVDlXdplPESb91eJemLmSO76mXp9g0NndDlcJz 9MCReyYHOyCiw55OQwbxpSMsH5wkY+yGWdNsvhHQoA6ud+WArY0OcY6bkTfqKkgn f/kfIQSPx8lcqs+K9T+UBosmO+REXk0pKs7Yh5T/u20oTzZ8HL5kjvYwjbPB5Gpk 3iQbuoORenurfbfMKMasZzhXxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4u5Y+v N1zh+l98FRQK0cZjBpt0MB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3oisf9e3PjeoTWoZkjxbnEdKSsVAkaCY6+5Y3O2ne0HzU2/bgfYJR 5BOwBWBmVDilWx9/U9oAcrwOG9F2cs97fkQyRi9hlc872xLPBHOW5Qk66Hr9ARX/ dXPLhhq81ci6YN0apGM9n+8YfHQJIt/ljfzpRMXGd07n9VhN26W/FcCOH02QWlT6 ifqAX7EEC7ZPbszP0B4G16P1r8I+LZwt1LhPf5t+3Xv+52qDiwQNDA1dzx1EJgsv eULAK2MQykA4XHIToJ0mhaAaTbFdlaArwHcIZudzA7nj7suGRir7JbmbZ48p2wcr AgME+GW+HcSaNiAbX9znQBsqJS2DAQkr -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:49 2025 by rpki-client