$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: JMTtYa0Mnh062tf7SA5oMAchixs3829IJC4lcX/Jqkc= Subject key identifier: BF:1D:45:CD:B4:AF:3B:A0:D7:2E:97:02:87:C8:72:4E:A3:EA:D3:74 Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 13D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 13C0 Signing time: Sat 18 Oct 2025 17:26:34 +0000 Manifest this update: Sat 18 Oct 2025 17:26:33 +0000 Manifest next update: Sat 25 Oct 2025 17:26:33 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: Ja/2w6wXd/pPWgStQ9ozOpBp2Tr7E+AUie6NYyCBXY8=) 2: 813A255423A611F09025FC11C4F9AE02.roa (hash: uohcAOcE60pEPVtJLM2mjq+61BAF61CBsuLOOzelXqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:26:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5077 (0x13d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Oct 18 17:26:33 2025 GMT Not After : Oct 25 17:26:33 2025 GMT Subject: CN=68f3cdca-a3c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6e:db:23:b9:d5:83:7e:50:2a:27:e8:5c:23: 27:3b:68:5b:fd:4a:7d:b3:fe:f9:a2:a6:5d:e9:b0: 07:a3:8a:f0:81:6c:b3:9a:fc:e5:de:dd:1c:e1:33: 1b:95:1f:83:8c:52:5a:4b:e8:af:ed:1f:cf:12:d6: 61:f4:43:3e:ae:7e:5e:a7:40:33:34:03:cb:90:60: 63:5a:83:d8:c4:ba:cf:e9:a8:b0:16:01:bc:2d:be: 39:ae:bf:aa:9c:81:e7:ea:2f:db:e7:f9:3a:5c:7a: c9:30:89:d2:59:9c:23:20:18:f7:13:ed:08:9a:8d: 4f:fa:3e:b7:3d:3f:12:b2:90:c0:4d:85:e0:d2:e4: cd:39:8d:73:ae:a7:56:3e:35:81:9c:db:fc:a5:74: cc:2d:be:70:19:f1:da:97:2e:ee:79:89:e4:ee:8a: d2:a0:ec:b0:25:49:63:84:ac:75:1e:fb:9b:66:ee: bf:18:a2:a5:87:df:ea:82:57:3b:00:6c:3b:c1:5c: 5b:bf:11:21:57:57:57:ac:d8:ae:7f:7c:9b:1f:6a: f0:f4:26:59:5b:26:e2:f7:04:7b:11:78:03:2c:39: 6b:cb:78:1d:a6:3b:de:12:85:e1:74:60:0d:9d:5f: c4:8b:8d:ae:d4:41:0e:3d:74:3c:37:82:ee:c8:e8: 60:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:1D:45:CD:B4:AF:3B:A0:D7:2E:97:02:87:C8:72:4E:A3:EA:D3:74 X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:f2:65:dd:e2:f9:30:33:89:02:09:34:a1:1f:40:b9:85:65: a8:ed:78:96:fe:c9:d9:48:36:44:5f:bd:7d:c2:1e:de:6b:d4: ce:d4:42:5b:6b:c7:41:f2:3d:5c:47:d9:f0:6c:f5:54:70:75: 29:c2:01:b9:44:04:b5:16:56:1e:37:1a:75:69:97:7b:33:1d: 85:c3:10:95:5c:e3:21:fe:fd:f2:49:cf:c0:c5:f8:eb:9a:7a: 1e:ec:0d:6a:5a:a6:b6:1d:af:fb:8d:b0:5e:6e:cb:7d:08:7a: ed:f0:ff:b8:6d:0d:20:aa:f5:58:fe:d5:5a:57:4d:ab:f8:4c: 0c:87:17:8f:02:03:6f:d5:37:3f:07:09:04:c7:74:55:b1:f4: 38:9a:3e:d9:4d:6f:52:17:98:5d:bd:4c:7c:e7:06:71:52:b2: 10:0d:95:38:08:97:03:65:63:d0:b6:e4:95:27:0e:f8:f4:3c: 52:b1:b4:40:9e:e8:cc:87:1f:8e:e8:f5:cd:c6:f9:33:bb:40: d3:6f:f1:e0:16:e8:43:7d:98:44:f8:cb:59:22:44:34:1f:c1: 56:e3:8e:b0:ec:04:0f:6d:61:39:61:fd:fe:44:44:8d:35:46: da:68:5b:b0:b9:5e:b4:eb:48:b2:f2:70:c6:b4:40:c4:95:3f: e1:24:8a:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjUxMDE4MTcyNjMzWhcNMjUxMDI1MTcyNjMzWjAYMRYwFAYD VQQDEw02OGYzY2RjYS1hM2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu27bI7nVg35QKifoXCMnO2hb/Up9s/75oqZd6bAHo4rwgWyzmvzl3t0c4TMb lR+DjFJaS+iv7R/PEtZh9EM+rn5ep0AzNAPLkGBjWoPYxLrP6aiwFgG8Lb45rr+q nIHn6i/b5/k6XHrJMInSWZwjIBj3E+0Imo1P+j63PT8SspDATYXg0uTNOY1zrqdW PjWBnNv8pXTMLb5wGfHaly7ueYnk7orSoOywJUljhKx1HvubZu6/GKKlh9/qglc7 AGw7wVxbvxEhV1dXrNiuf3ybH2rw9CZZWybi9wR7EXgDLDlry3gdpjveEoXhdGAN nV/Ei42u1EEOPXQ8N4LuyOhgvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8dRc20 rzug1y6XAofIck6j6tN0MB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCt8mXd4vkwM4kCCTShH0C5hWWo7XiW/snZSDZEX719wh7ea9TO1EJb a8dB8j1cR9nwbPVUcHUpwgG5RAS1FlYeNxp1aZd7Mx2FwxCVXOMh/v3ySc/Axfjr mnoe7A1qWqa2Ha/7jbBebst9CHrt8P+4bQ0gqvVY/tVaV02r+EwMhxePAgNv1Tc/ BwkEx3RVsfQ4mj7ZTW9SF5hdvUx85wZxUrIQDZU4CJcDZWPQtuSVJw749DxSsbRA nujMhx+O6PXNxvkzu0DTb/HgFuhDfZhE+MtZIkQ0H8FW446w7AQPbWE5Yf3+RESN NUbaaFuwuV6060iy8nDGtEDElT/hJIpS -----END CERTIFICATE-----Generated at Mon Oct 20 05:47:08 2025 by rpki-client