$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft File: hYBFlRf-HXfU04pCnx0hxskt6TQ.mft (raw, json) Hash identifier: ok79yrvEpeTNOi8U3Ec7n31cRrixgJq95UKSR5ceFBw= Subject key identifier: 72:79:5A:BF:7C:8E:B0:E6:7E:44:2F:2C:EC:13:47:AC:52:0A:A5:4C Authority key identifier: 85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 Certificate issuer: /CN=A9145B5E/serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft Manifest number: EA Signing time: Sun 19 Oct 2025 08:20:28 +0000 Manifest this update: Sun 19 Oct 2025 08:20:28 +0000 Manifest next update: Sun 26 Oct 2025 08:20:28 +0000 Files and hashes: 1: hYBFlRf-HXfU04pCnx0hxskt6TQ.crl (hash: mK7rc9nBLvqxrtNNkK93qgOqqeN/8eqCoGd+fYk690I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:20:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B5E, serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Validity Not Before: Oct 19 08:20:28 2025 GMT Not After : Oct 26 08:20:28 2025 GMT Subject: CN=68f49f4c-e424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:0b:5d:aa:33:56:ea:5d:2f:fc:c8:70:77:3f: 7b:45:f8:1b:f4:9f:a8:40:0d:8f:0a:bf:f9:e9:0c: c9:70:fa:48:59:18:7e:e9:c0:20:8b:e7:4a:da:64: 15:aa:4c:d8:b5:f5:ab:88:53:c4:4b:96:3a:cc:0a: e6:92:e0:df:83:0e:d5:5e:a4:41:ea:4f:33:76:22: 27:63:59:24:41:53:49:00:ec:ec:8a:f5:c1:7b:4d: ae:e0:d0:23:70:4e:59:6f:29:3a:5d:e4:cc:b2:f0: 88:2c:7e:b6:64:73:33:ca:68:bc:0d:44:c4:51:9f: b4:19:ce:0a:48:ff:22:64:de:e4:b9:4c:f1:a3:b6: aa:e9:da:3f:19:74:7b:ac:d1:46:9c:87:e0:92:12: 1a:dd:40:9c:6e:e8:ee:6c:c4:f5:2f:26:7c:18:80: df:26:38:b5:d0:83:9f:75:52:f3:65:25:1d:4f:20: fb:15:e4:2e:b8:b2:d3:3f:0a:a4:39:22:1a:c5:96: 6d:1c:4f:76:2f:aa:5b:23:c5:01:60:b3:47:b4:0c: ff:fc:76:1e:3e:e2:7b:c1:1d:a7:0c:d1:9a:81:67: 16:5a:df:db:45:f6:aa:93:d0:1b:c8:da:f4:d0:f5: 34:6d:d2:da:ea:3a:ae:9b:86:b7:e4:1e:3c:64:5d: e5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:79:5A:BF:7C:8E:B0:E6:7E:44:2F:2C:EC:13:47:AC:52:0A:A5:4C X509v3 Authority Key Identifier: keyid:85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:d5:7b:70:9f:0a:47:72:4e:cf:8b:38:da:b2:1f:98:47:fb: ad:4a:3d:85:b1:68:7a:df:a0:3b:70:9e:21:27:96:58:98:8f: 87:2c:00:bf:f4:b8:73:12:8d:ab:b7:e6:0e:be:ec:3f:77:51: de:3b:61:8b:df:94:35:14:8b:e5:5b:4e:9c:43:74:71:a1:59: 56:c2:b6:af:9b:81:8c:2f:07:6b:39:41:1f:7d:2e:c6:02:fe: e9:a3:00:6e:5b:ee:01:54:23:4b:f9:90:47:30:98:2c:a2:8b: a5:e8:a7:99:4d:cf:f3:15:b9:ac:13:21:a0:46:74:9e:4a:82: 03:54:e8:fd:9d:81:24:75:6f:09:46:f2:8c:3f:ca:8a:61:25: 8c:d3:10:87:6d:7b:70:e8:3f:37:5c:ad:46:9a:ba:27:38:6d: ca:10:75:c8:d5:12:92:b6:04:d8:1e:60:63:48:2c:33:1c:7a: cd:20:24:2c:be:ac:c2:a8:58:73:15:b4:b5:7a:cb:95:e3:a9: 52:95:57:f5:a3:03:c1:af:6b:38:d9:35:6f:8d:fe:5f:49:85: e5:ee:9d:18:e5:be:47:c2:0b:c9:43:1d:9e:32:e0:17:b9:d5: 23:83:81:a6:dd:a9:00:a9:20:b1:d5:a0:38:49:5d:00:3b:1b: 05:7b:15:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCNUUxMTAvBgNVBAUTKDg1ODA0NTk1MTdGRTFENzdENEQzOEE0MjlGMUQyMUM2 QzkyREU5MzQwHhcNMjUxMDE5MDgyMDI4WhcNMjUxMDI2MDgyMDI4WjAYMRYwFAYD VQQDEw02OGY0OWY0Yy1lNDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnQtdqjNW6l0v/Mhwdz97Rfgb9J+oQA2PCr/56QzJcPpIWRh+6cAgi+dK2mQV qkzYtfWriFPES5Y6zArmkuDfgw7VXqRB6k8zdiInY1kkQVNJAOzsivXBe02u4NAj cE5Zbyk6XeTMsvCILH62ZHMzymi8DUTEUZ+0Gc4KSP8iZN7kuUzxo7aq6do/GXR7 rNFGnIfgkhIa3UCcbujubMT1LyZ8GIDfJji10IOfdVLzZSUdTyD7FeQuuLLTPwqk OSIaxZZtHE92L6pbI8UBYLNHtAz//HYePuJ7wR2nDNGagWcWWt/bRfaqk9AbyNr0 0PU0bdLa6jqum4a35B48ZF3liQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJ5Wr98 jrDmfkQvLOwTR6xSCqVMMB8GA1UdIwQYMBaAFIWARZUX/h131NOKQp8dIcbJLek0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUI1RS84NUJDRUU0QzQ1 QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhYZlUwNHBDbngwaHhza3Q2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZQkZsUmYtSFhmVTA0cENueDBoeHNrdDZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUI1RS84NUJDRUU0QzQ1QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhY ZlUwNHBDbngwaHhza3Q2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU1XtwnwpHck7Pizjash+YR/utSj2FsWh636A7cJ4hJ5ZYmI+HLAC/ 9LhzEo2rt+YOvuw/d1HeO2GL35Q1FIvlW06cQ3RxoVlWwravm4GMLwdrOUEffS7G Av7powBuW+4BVCNL+ZBHMJgsooul6KeZTc/zFbmsEyGgRnSeSoIDVOj9nYEkdW8J RvKMP8qKYSWM0xCHbXtw6D83XK1GmronOG3KEHXI1RKStgTYHmBjSCwzHHrNICQs vqzCqFhzFbS1esuV46lSlVf1owPBr2s42TVvjf5fSYXl7p0Y5b5HwgvJQx2eMuAX udUjg4Gm3akAqSCx1aA4SV0AOxsFexVD -----END CERTIFICATE-----Generated at Tue Oct 21 03:06:40 2025 by rpki-client