$ rpki-client -vvf rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft File: HSQuN7enRsN-RUFFarAJiztXPPw.mft (raw, json) Hash identifier: N44/rEv1EVbYCnglACP+Dhva7S5nH0cwSIjHAQCZ4jg= Subject key identifier: 61:6E:B3:95:84:AA:EB:61:2B:F5:54:E5:03:47:36:64:E7:2E:61:BA Authority key identifier: 1D:24:2E:37:B7:A7:46:C3:7E:45:41:45:6A:B0:09:8B:3B:57:3C:FC Certificate issuer: /CN=A9142EA4/serialNumber=1D242E37B7A746C37E4541456AB0098B3B573CFC Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSQuN7enRsN-RUFFarAJiztXPPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft Manifest number: 33 Signing time: Sun 19 Oct 2025 11:09:00 +0000 Manifest this update: Sun 19 Oct 2025 11:08:59 +0000 Manifest next update: Sun 26 Oct 2025 11:08:59 +0000 Files and hashes: 1: HSQuN7enRsN-RUFFarAJiztXPPw.crl (hash: 3wCG6JIJpVR0FltYkoZkY6/8dZ8x8MIMy/8nTLiUg+M=) 2: 96E040E063B211F09B18DA38C4F9AE02.roa (hash: RBJCVf8Vhn27huQa1u7FR3jz192DVTd/ur20Jj+Crn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.crl rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSQuN7enRsN-RUFFarAJiztXPPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142EA4, serialNumber=1D242E37B7A746C37E4541456AB0098B3B573CFC Validity Not Before: Oct 19 11:08:59 2025 GMT Not After : Oct 26 11:08:59 2025 GMT Subject: CN=68f4c6cc-c08d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:76:36:93:08:8e:50:af:04:5e:92:26:ab:22: 95:5a:b0:35:99:cf:da:7b:50:52:73:73:a5:87:2c: 66:da:68:b8:50:c8:c3:1e:71:1f:63:68:ca:57:5b: df:17:27:a1:46:57:f9:34:62:06:a5:95:64:05:9f: d8:39:94:95:98:73:fc:99:77:53:db:0b:78:fa:02: 30:5d:4a:ba:26:4c:e3:93:89:36:2e:19:8d:5d:5c: c9:ed:9e:b4:43:25:89:b8:e8:45:57:07:01:c1:45: 4b:d7:03:33:86:66:f4:84:05:e8:df:68:5d:6d:8d: 9a:4b:62:61:79:93:b5:bb:46:90:90:32:46:0f:71: 3d:97:54:d4:94:96:2c:02:55:8d:bb:75:cb:4c:d6: 16:79:07:42:fb:35:93:24:b2:d8:9a:c7:ad:61:20: 43:37:11:5b:84:c4:bd:68:78:3e:a6:86:9c:77:99: ac:27:fa:f9:25:19:d4:e2:2d:57:dc:01:16:ba:12: 22:57:47:00:cb:97:0b:61:e8:c5:d9:bd:14:83:c4: 40:e5:61:11:e9:52:23:42:fa:64:b1:06:af:16:bc: 73:cd:57:72:e7:19:e6:32:dc:82:eb:86:60:c8:7e: 2a:5d:d8:81:41:32:ac:1d:17:f6:9b:bd:1b:ac:cf: 5e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:6E:B3:95:84:AA:EB:61:2B:F5:54:E5:03:47:36:64:E7:2E:61:BA X509v3 Authority Key Identifier: keyid:1D:24:2E:37:B7:A7:46:C3:7E:45:41:45:6A:B0:09:8B:3B:57:3C:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSQuN7enRsN-RUFFarAJiztXPPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:81:db:b4:ec:38:33:f5:24:11:2e:ce:28:1b:07:45:db:d5: 2a:89:11:79:11:8e:46:1b:00:55:a0:be:a3:e6:7b:1f:74:97: 11:8d:90:00:b0:f2:e2:4e:22:88:d7:63:71:24:dd:0e:ef:aa: 1f:a6:29:b1:97:77:d1:96:09:bf:a4:00:f1:07:8d:5e:a3:04: d6:7f:70:0a:79:21:b2:60:72:ae:e8:d3:f7:b6:2d:70:b2:0c: e1:b7:b2:d9:87:c5:df:87:28:cb:b5:a8:46:f3:05:47:88:b1: 00:67:75:9b:ec:64:ad:26:74:11:8d:8e:fb:a6:b4:fe:8b:b7: 82:bf:b5:43:c9:47:ff:93:dc:2e:9e:f4:cf:d0:e2:67:a8:49: c1:e7:e3:b0:8a:90:ae:86:5d:59:80:af:d5:70:f1:50:35:6d: 9f:12:7a:08:42:63:aa:80:71:2b:69:a9:13:88:29:9b:8c:26: 11:9e:d3:0f:0f:80:66:e7:db:33:55:24:37:cd:ab:b9:44:09: 46:69:1f:aa:a6:e2:8d:0a:87:ef:f0:40:29:d2:da:7f:52:8d: 6a:9a:4b:ae:4a:a1:42:11:9e:d8:be:b5:e9:58:3d:9f:17:7f: fb:ba:7f:75:eb:f0:7b:21:4c:11:fc:42:62:8f:e3:26:5e:82: 59:5c:25:a7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkVBNDExMC8GA1UEBRMoMUQyNDJFMzdCN0E3NDZDMzdFNDU0MTQ1NkFCMDA5OEIz QjU3M0NGQzAeFw0yNTEwMTkxMTA4NTlaFw0yNTEwMjYxMTA4NTlaMBgxFjAUBgNV BAMTDTY4ZjRjNmNjLWMwOGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8djaTCI5QrwRekiarIpVasDWZz9p7UFJzc6WHLGbaaLhQyMMecR9jaMpXW98X J6FGV/k0YgallWQFn9g5lJWYc/yZd1PbC3j6AjBdSromTOOTiTYuGY1dXMntnrRD JYm46EVXBwHBRUvXAzOGZvSEBejfaF1tjZpLYmF5k7W7RpCQMkYPcT2XVNSUliwC VY27dctM1hZ5B0L7NZMkstiax61hIEM3EVuExL1oeD6mhpx3mawn+vklGdTiLVfc ARa6EiJXRwDLlwth6MXZvRSDxEDlYRHpUiNC+mSxBq8WvHPNV3LnGeYy3ILrhmDI fipd2IFBMqwdF/abvRusz17JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYW6zlYSq 62Er9VTlA0c2ZOcuYbowHwYDVR0jBBgwFoAUHSQuN7enRsN+RUFFarAJiztXPPww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRUE0LzI2NERDRjFDNjNB RjExRjA4RTAwMkI0Q0M0RjlBRTAyL0hTUXVON2VuUnNOLVJVRkZhckFKaXp0WFBQ dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFNRdU43ZW5Sc04tUlVGRmFyQUppenRYUFB3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RUE0LzI2NERDRjFDNjNBRjExRjA4RTAwMkI0Q0M0RjlBRTAyL0hTUXVON2VuUnNO LVJVRkZhckFKaXp0WFBQdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH+B27TsODP1JBEuzigbB0Xb1SqJEXkRjkYbAFWgvqPmex90lxGNkACw 8uJOIojXY3Ek3Q7vqh+mKbGXd9GWCb+kAPEHjV6jBNZ/cAp5IbJgcq7o0/e2LXCy DOG3stmHxd+HKMu1qEbzBUeIsQBndZvsZK0mdBGNjvumtP6Lt4K/tUPJR/+T3C6e 9M/Q4meoScHn47CKkK6GXVmAr9Vw8VA1bZ8SeghCY6qAcStpqROIKZuMJhGe0w8P gGbn2zNVJDfNq7lECUZpH6qm4o0Kh+/wQCnS2n9SjWqaS65KoUIRnti+telYPZ8X f/u6f3Xr8HshTBH8QmKP4yZegllcJac= -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:27 2025 by rpki-client