$ rpki-client -vvf rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft File: HKNtz8PAQzP4g7g18sjd0CXVQQY.mft (raw, json) Hash identifier: uRUaOzM+o8qJYuXpLuwWvUogHlbUqPMBfySnR7ZQauQ= Subject key identifier: 68:18:77:0E:16:64:59:08:C2:75:38:CE:1A:D6:BC:15:3C:FE:50:D4 Authority key identifier: 1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 Certificate issuer: /CN=A9142F59/serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft Manifest number: 3A Signing time: Sun 19 Oct 2025 11:08:10 +0000 Manifest this update: Sun 19 Oct 2025 11:08:09 +0000 Manifest next update: Sun 26 Oct 2025 11:08:09 +0000 Files and hashes: 1: HKNtz8PAQzP4g7g18sjd0CXVQQY.crl (hash: azKKhas+BEvHyGHK/vLvcHTCxRyy8q22Bwhh097lf2E=) 2: C7A29726A65311F091E2CF10C4F9AE02.roa (hash: H+sz1WV2JCbo6B0gUh55p+qB63Mvx+1vqhNeQo2vgMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:08:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142F59, serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Validity Not Before: Oct 19 11:08:09 2025 GMT Not After : Oct 26 11:08:09 2025 GMT Subject: CN=68f4c699-b8a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:51:c1:ee:62:a3:c7:75:b1:8e:69:f3:c2:67: ac:4f:72:94:b3:59:07:89:b7:91:07:cd:c9:28:16: 53:1b:11:86:cd:d8:01:d0:ab:61:c2:7d:70:dc:b2: 58:14:8c:2b:82:b1:f6:0b:fe:33:f2:da:6b:0c:0a: 1a:d2:d7:7e:d9:f2:ec:d2:42:20:7d:28:45:02:bb: 82:dc:c7:bc:05:1b:cc:80:dc:df:bc:cc:b6:06:d4: 90:9b:41:77:04:db:ac:57:8f:87:04:3c:53:b9:5a: 2e:c1:cd:77:c0:12:b8:27:01:46:6b:20:2b:ea:ad: 07:11:1b:2b:24:7b:5d:c1:1a:7f:87:75:fa:db:ac: fa:d4:a5:61:aa:2b:5a:34:cb:6f:1d:31:70:ee:58: b9:e5:a9:52:82:ab:0e:ba:7c:0f:d9:a9:29:82:6d: 56:3d:1a:b7:40:47:07:a7:d3:9d:dd:f7:dc:bb:1f: 90:e8:c5:0d:59:55:38:dd:0e:3b:d3:13:0e:45:e3: 94:3f:94:7f:18:27:12:ea:c1:cd:3f:5c:20:78:a1: c4:97:d5:d3:3f:eb:e3:c2:5f:70:2e:f5:5d:29:62: 71:3e:70:d2:3c:f8:45:3c:c3:aa:96:fb:01:12:42: 8b:87:3b:9f:60:f4:8a:80:8f:a1:a4:a6:2a:9b:d8: 88:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:18:77:0E:16:64:59:08:C2:75:38:CE:1A:D6:BC:15:3C:FE:50:D4 X509v3 Authority Key Identifier: keyid:1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:d3:b1:ad:62:0d:fd:19:26:c5:ec:b9:a6:9b:59:56:93:dd: 2e:6f:48:30:6b:66:df:d6:44:0e:69:8a:fa:c0:18:be:87:f0: 81:9a:cb:e8:56:2b:1c:88:0d:0e:61:48:c9:f8:d0:61:5f:2c: 6e:22:3c:02:d6:af:ae:97:d6:9a:7f:9d:92:17:82:2c:a2:65: ed:bd:51:de:ac:be:1f:ba:1f:0c:02:72:91:ab:e8:ed:c7:c1: f0:35:f5:6a:70:83:08:01:4e:fc:be:86:e7:4c:aa:3c:b7:f0: 0a:33:a8:4b:83:b8:86:ac:94:3d:01:19:f9:b0:58:a0:22:c1: 87:56:c4:7a:6f:5c:77:ac:b9:b7:c0:39:22:25:86:be:39:0d: cb:6a:97:c6:fd:f1:73:1f:fa:a6:5f:fc:8e:af:51:8e:cc:3a: 61:74:10:26:5c:28:4f:21:07:0f:52:f5:bc:d2:3c:98:72:08: 3d:6d:32:f7:99:7c:8f:49:02:2d:22:76:c4:20:d6:b1:07:06: a3:1f:58:be:fd:4e:5e:46:62:00:50:1c:24:8f:44:a2:b7:6d: 13:28:c7:71:4f:69:61:6e:0b:07:67:f0:a2:5c:a4:39:66:5b: 3c:1c:9f:9b:ef:88:4c:87:f1:46:ec:05:2a:8f:5d:95:6c:72: 36:18:59:06 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkY1OTExMC8GA1UEBRMoMUNBMzZEQ0ZDM0MwNDMzM0Y4ODNCODM1RjJDOERERDAy NUQ1NDEwNjAeFw0yNTEwMTkxMTA4MDlaFw0yNTEwMjYxMTA4MDlaMBgxFjAUBgNV BAMTDTY4ZjRjNjk5LWI4YTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuUcHuYqPHdbGOafPCZ6xPcpSzWQeJt5EHzckoFlMbEYbN2AHQq2HCfXDcslgU jCuCsfYL/jPy2msMChrS137Z8uzSQiB9KEUCu4Lcx7wFG8yA3N+8zLYG1JCbQXcE 26xXj4cEPFO5Wi7BzXfAErgnAUZrICvqrQcRGyske13BGn+HdfrbrPrUpWGqK1o0 y28dMXDuWLnlqVKCqw66fA/ZqSmCbVY9GrdARwen053d99y7H5DoxQ1ZVTjdDjvT Ew5F45Q/lH8YJxLqwc0/XCB4ocSX1dM/6+PCX3Au9V0pYnE+cNI8+EU8w6qW+wES QouHO59g9IqAj6Gkpiqb2IjRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaBh3DhZk WQjCdTjOGta8FTz+UNQwHwYDVR0jBBgwFoAUHKNtz8PAQzP4g7g18sjd0CXVQQYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRjU5LzA1MjZENjJFNjIz MDExRjBBMDIwNzYzMEM0RjlBRTAyL0hLTnR6OFBBUXpQNGc3ZzE4c2pkMENYVlFR WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSEtOdHo4UEFRelA0ZzdnMThzamQwQ1hWUVFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RjU5LzA1MjZENjJFNjIzMDExRjBBMDIwNzYzMEM0RjlBRTAyL0hLTnR6OFBBUXpQ NGc3ZzE4c2pkMENYVlFRWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJfTsa1iDf0ZJsXsuaabWVaT3S5vSDBrZt/WRA5pivrAGL6H8IGay+hW KxyIDQ5hSMn40GFfLG4iPALWr66X1pp/nZIXgiyiZe29Ud6svh+6HwwCcpGr6O3H wfA19WpwgwgBTvy+hudMqjy38AozqEuDuIaslD0BGfmwWKAiwYdWxHpvXHesubfA OSIlhr45Dctql8b98XMf+qZf/I6vUY7MOmF0ECZcKE8hBw9S9bzSPJhyCD1tMveZ fI9JAi0idsQg1rEHBqMfWL79Tl5GYgBQHCSPRKK3bRMox3FPaWFuCwdn8KJcpDlm Wzwcn5vviEyH8UbsBSqPXZVscjYYWQY= -----END CERTIFICATE-----Generated at Mon Oct 20 16:35:26 2025 by rpki-client