$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft File: hqZPKtLd4rfZYk5pInrQmxd4xsE.mft (raw, json) Hash identifier: HycUPSl2vWxyvwQDfR4bpoprZrRHcgR8Rh0TEmj8EgA= Subject key identifier: 28:28:E3:76:40:C3:71:AD:27:86:BD:B5:7E:CE:58:4A:7C:48:3A:72 Authority key identifier: 86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 Certificate issuer: /CN=A9169A3F/serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft Manifest number: AF Signing time: Sun 19 Oct 2025 09:17:24 +0000 Manifest this update: Sun 19 Oct 2025 09:17:24 +0000 Manifest next update: Sun 26 Oct 2025 09:17:24 +0000 Files and hashes: 1: hqZPKtLd4rfZYk5pInrQmxd4xsE.crl (hash: D+7uSpPuAYLvimvo/fvgHeVpTKBziTCdWIAw4juyhQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:17:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A3F, serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Validity Not Before: Oct 19 09:17:24 2025 GMT Not After : Oct 26 09:17:24 2025 GMT Subject: CN=68f4aca4-1597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d7:64:4f:9e:b3:19:fc:eb:72:67:ee:94:1a: c4:11:09:77:93:3a:2a:8f:e8:2f:9c:d5:38:f7:92: de:d8:1f:43:82:5f:ce:36:f9:4e:cb:52:9c:d1:93: 65:0f:6f:ff:e3:c6:0d:d6:4b:ed:d2:30:73:5e:97: 56:a5:bf:56:ed:74:7b:ef:05:a0:17:82:92:f4:9a: cc:2d:77:08:da:9a:dd:c9:3d:e7:6b:5d:54:ba:6e: fa:3d:f5:ce:07:96:1d:f0:79:ae:52:63:d6:85:8c: 25:08:03:89:d0:df:b2:4e:19:7d:62:d9:12:05:c1: b3:dc:42:bb:c3:f5:cc:e2:f0:70:73:cf:e9:43:4b: e2:fd:ae:1c:cf:ff:b7:27:d9:17:2b:89:33:c0:7c: 45:e3:ed:52:0e:f8:9b:87:7e:bd:2d:ef:15:7b:1f: 40:c1:59:b6:44:26:be:3f:a6:ab:f1:fd:76:15:f6: 13:eb:74:e8:d2:50:c9:7c:eb:4f:8e:75:77:0a:7c: 46:c7:66:09:d8:57:01:5d:47:3a:d0:9b:58:51:7b: 40:8e:76:31:55:05:7b:9e:15:84:05:54:c6:2e:df: 67:5c:b0:1d:64:81:1a:ac:86:e8:5b:bf:51:46:29: b6:3e:b2:c2:c4:5d:24:48:5b:96:f0:35:2c:70:15: b8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:28:E3:76:40:C3:71:AD:27:86:BD:B5:7E:CE:58:4A:7C:48:3A:72 X509v3 Authority Key Identifier: keyid:86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:41:28:58:b4:cf:63:92:3a:9d:6d:9a:3b:a1:e5:30:6e:8c: 0d:f3:69:1c:43:5d:31:5f:2d:c2:ad:a4:90:eb:89:ad:22:04: c8:04:15:3f:ac:2a:8b:19:27:63:f9:47:76:1b:97:bc:67:4d: fd:35:33:2f:ed:8c:e4:e7:e6:a2:48:50:60:5c:a0:cb:5a:d4: 9a:93:ec:8a:a3:94:2b:90:ec:2d:d8:cc:c0:77:ee:85:a6:d3: 96:25:14:e4:3c:40:c6:6f:31:93:e3:64:76:71:b4:95:ad:cb: 14:50:47:46:34:8e:19:b5:f2:b5:43:db:d3:40:be:56:3e:e0: e7:e6:5c:0f:aa:13:ee:92:55:34:c6:bd:4f:c8:c2:e5:e4:eb: d1:24:eb:12:9a:a1:77:75:cf:f1:5c:27:3d:f7:6f:e6:5b:75: 1b:61:8d:75:1d:25:17:7c:30:e1:2f:08:7c:43:e3:11:ee:9c: 8b:56:6c:94:8e:0a:2f:58:bb:29:d3:30:7e:02:80:e8:29:f5: 42:34:00:40:79:07:7e:a8:8b:e0:60:6d:fa:45:9f:5b:f4:01: d1:c4:f4:da:0a:d4:c0:ed:05:7c:de:af:33:8b:d1:f2:e7:7b: 23:ca:2b:28:8f:ff:ee:63:e5:3a:e1:ba:fe:d4:a9:e5:07:e1: 30:7f:48:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBM0YxMTAvBgNVBAUTKDg2QTY0RjJBRDJEREUyQjdEOTYyNEU2OTIyN0FEMDlC MTc3OEM2QzEwHhcNMjUxMDE5MDkxNzI0WhcNMjUxMDI2MDkxNzI0WjAYMRYwFAYD VQQDEw02OGY0YWNhNC0xNTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA79dkT56zGfzrcmfulBrEEQl3kzoqj+gvnNU495Le2B9Dgl/ONvlOy1Kc0ZNl D2//48YN1kvt0jBzXpdWpb9W7XR77wWgF4KS9JrMLXcI2prdyT3na11Uum76PfXO B5Yd8HmuUmPWhYwlCAOJ0N+yThl9YtkSBcGz3EK7w/XM4vBwc8/pQ0vi/a4cz/+3 J9kXK4kzwHxF4+1SDvibh369Le8Vex9AwVm2RCa+P6ar8f12FfYT63To0lDJfOtP jnV3CnxGx2YJ2FcBXUc60JtYUXtAjnYxVQV7nhWEBVTGLt9nXLAdZIEarIboW79R Rim2PrLCxF0kSFuW8DUscBW4XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgo43ZA w3GtJ4a9tX7OWEp8SDpyMB8GA1UdIwQYMBaAFIamTyrS3eK32WJOaSJ60JsXeMbB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUEzRi85QjI3NTRGNkEy NEYxMUVGQjZCMEZGNDlDNEY5QUUwMi9ocVpQS3RMZDRyZlpZazVwSW5yUW14ZDR4 c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hxWlBLdExkNHJmWllrNXBJbnJRbXhkNHhzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUEzRi85QjI3NTRGNkEyNEYxMUVGQjZCMEZGNDlDNEY5QUUwMi9ocVpQS3RMZDRy ZlpZazVwSW5yUW14ZDR4c0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPQShYtM9jkjqdbZo7oeUwbowN82kcQ10xXy3CraSQ64mtIgTIBBU/ rCqLGSdj+Ud2G5e8Z039NTMv7Yzk5+aiSFBgXKDLWtSak+yKo5QrkOwt2MzAd+6F ptOWJRTkPEDGbzGT42R2cbSVrcsUUEdGNI4ZtfK1Q9vTQL5WPuDn5lwPqhPuklU0 xr1PyMLl5OvRJOsSmqF3dc/xXCc992/mW3UbYY11HSUXfDDhLwh8Q+MR7pyLVmyU jgovWLsp0zB+AoDoKfVCNABAeQd+qIvgYG36RZ9b9AHRxPTaCtTA7QV83q8zi9Hy 53sjyisoj//uY+U64br+1KnlB+Ewf0gr -----END CERTIFICATE-----Generated at Tue Oct 21 15:15:15 2025 by rpki-client