$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft File: HsyXilPvK-iOXyatm4q4g3PRl6Y.mft (raw, json) Hash identifier: vvwzPKCRVhB0skHZ5phGUCkCbTOftsjSuUev+Drs1Dk= Subject key identifier: C9:F6:7C:51:3D:C2:67:A2:06:F2:55:97:F8:60:22:CA:5F:6C:A7:1C Authority key identifier: 1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 Certificate issuer: /CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Certificate serial: 34D8 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft Manifest number: 34D8 Signing time: Mon 20 Oct 2025 14:22:59 +0000 Manifest this update: Mon 20 Oct 2025 14:22:59 +0000 Manifest next update: Mon 27 Oct 2025 14:22:59 +0000 Files and hashes: 1: HsyXilPvK-iOXyatm4q4g3PRl6Y.crl (hash: UJglevojCZNAuyyxVqM08UnZw7Z9/UahuUNlb9WfcQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13528 (0x34d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Validity Not Before: Oct 20 14:22:59 2025 GMT Not After : Oct 27 14:22:59 2025 GMT Subject: CN=68f645c3-d465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c2:b0:22:80:46:b1:9b:8c:d6:60:e0:80:68: 07:c2:84:1f:a3:83:0d:6c:20:b9:27:7c:e9:a5:ba: 5d:2c:06:06:08:22:37:4f:d3:56:c3:12:e1:ea:f2: 70:93:ba:bc:a9:5b:f6:92:dd:a5:1d:f1:69:88:ba: 77:04:5b:f5:82:7c:8e:33:9a:ad:7d:b1:43:c8:ad: 46:4f:43:3d:f6:12:76:41:3f:0c:65:4c:e6:97:64: 1c:c7:7f:e4:57:bc:91:75:0f:64:49:c7:ed:3b:86: eb:2a:b3:49:56:23:81:4e:89:7e:6e:65:08:71:2b: 32:2e:69:d0:e4:25:68:0f:55:b7:c1:74:47:8f:9f: 40:f9:b1:04:09:ec:ec:d5:ab:db:48:e0:49:16:a6: da:df:d4:2c:df:9c:e1:bc:69:2a:59:1d:8d:03:5f: 35:28:93:83:fa:b5:c4:53:3b:78:e3:0b:2b:72:4b: 9b:44:5c:12:7e:02:33:b5:3b:e5:c8:79:77:d5:32: 5f:8b:63:98:42:a0:75:bb:92:30:ba:f0:f7:c8:f4: 27:11:c3:c5:41:cd:3a:e6:16:96:cc:2d:52:aa:0f: 85:f4:89:78:60:37:1b:7e:83:87:1f:96:f9:ca:e3: 3d:ab:57:89:5c:95:5d:9e:7d:5d:e0:eb:64:b6:51: d7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F6:7C:51:3D:C2:67:A2:06:F2:55:97:F8:60:22:CA:5F:6C:A7:1C X509v3 Authority Key Identifier: keyid:1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:8d:20:18:56:3a:ca:1b:83:24:a0:42:86:05:9f:7b:d0:6c: 48:ef:79:00:17:21:f2:8b:fb:79:d3:52:31:96:b2:df:3a:73: 59:15:29:9e:4d:c2:29:d8:e4:fd:c0:dd:d3:84:98:5c:4b:57: cc:c5:6f:b2:0e:86:18:e9:ea:54:03:11:4f:1a:53:ab:62:fa: 90:a3:ad:a3:4f:ec:00:de:6a:bf:76:f1:34:18:c6:b3:a3:a3: b5:93:9b:4b:89:93:e8:23:eb:8c:f3:03:c4:51:66:23:b9:18: fd:b0:48:6f:e5:9a:3d:a6:7c:fc:a9:a6:04:a7:8d:cd:11:a9: 97:a4:fb:f5:bf:df:bd:eb:b3:a1:66:94:00:a9:85:62:8b:e4: 11:85:c7:d9:5a:8a:3a:a3:50:6b:1b:cd:df:35:c3:70:88:d7: 08:fa:96:b1:e9:ee:5b:9f:44:10:2a:42:04:e5:3a:12:0a:3b: 14:71:01:0a:3b:34:da:c7:e8:70:4f:e7:05:fd:6c:17:1f:13: 36:b5:35:05:e7:49:12:16:d1:d6:a9:03:e5:d3:fa:05:c6:5b: 7a:52:1b:2b:ae:67:fa:df:4f:a4:4e:02:f6:fb:f9:29:87:fe: 37:f4:2b:50:63:ce:ed:10:91:26:d6:f2:71:f8:60:29:47:79: b1:83:32:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKDFFQ0M5NzhBNTNFRjJCRTg4RTVGMjZBRDlCOEFCODgz NzNEMTk3QTYwHhcNMjUxMDIwMTQyMjU5WhcNMjUxMDI3MTQyMjU5WjAYMRYwFAYD VQQDEw02OGY2NDVjMy1kNDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1sKwIoBGsZuM1mDggGgHwoQfo4MNbCC5J3zppbpdLAYGCCI3T9NWwxLh6vJw k7q8qVv2kt2lHfFpiLp3BFv1gnyOM5qtfbFDyK1GT0M99hJ2QT8MZUzml2Qcx3/k V7yRdQ9kScftO4brKrNJViOBTol+bmUIcSsyLmnQ5CVoD1W3wXRHj59A+bEECezs 1avbSOBJFqba39Qs35zhvGkqWR2NA181KJOD+rXEUzt44wsrckubRFwSfgIztTvl yHl31TJfi2OYQqB1u5IwuvD3yPQnEcPFQc065haWzC1Sqg+F9Il4YDcbfoOHH5b5 yuM9q1eJXJVdnn1d4OtktlHXRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMn2fFE9 wmeiBvJVl/hgIspfbKccMB8GA1UdIwQYMBaAFB7Ml4pT7yvojl8mrZuKuINz0Zem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9CRkVCMDAwODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkstaU9YeWF0bTRxNGczUFJs NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0hzeVhpbFB2Sy1pT1h5YXRtNHE0ZzNQUmw2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUYzRS9CRkVCMDAwODFEODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkst aU9YeWF0bTRxNGczUFJsNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACjSAYVjrKG4MkoEKGBZ970GxI73kAFyHyi/t501IxlrLfOnNZFSme TcIp2OT9wN3ThJhcS1fMxW+yDoYY6epUAxFPGlOrYvqQo62jT+wA3mq/dvE0GMaz o6O1k5tLiZPoI+uM8wPEUWYjuRj9sEhv5Zo9pnz8qaYEp43NEamXpPv1v9+967Oh ZpQAqYVii+QRhcfZWoo6o1BrG83fNcNwiNcI+pax6e5bn0QQKkIE5ToSCjsUcQEK OzTax+hwT+cF/WwXHxM2tTUF50kSFtHWqQPl0/oFxlt6Uhsrrmf630+kTgL2+/kp h/439CtQY87tEJEm1vJx+GApR3mxgzIV -----END CERTIFICATE-----Generated at Mon Oct 20 18:26:32 2025 by rpki-client