$ rpki-client -vvf rpki.apnic.net/member_repository/A9176632/AB5A87065E0D11F094762F13C4F9AE02/hDGOgbLln2EUsQL6RQgzfekVw5M.mft File: hDGOgbLln2EUsQL6RQgzfekVw5M.mft (raw, json) Hash identifier: WQXhCkPWSYtYsY6/R0prRUFnYj0rjr3mhG93sVvwDQA= Subject key identifier: 7D:A3:36:D6:20:43:6F:33:0B:F8:2E:2A:E6:B3:88:3F:91:22:99:02 Authority key identifier: 84:31:8E:81:B2:E5:9F:61:14:B1:02:FA:45:08:33:7D:E9:15:C3:93 Certificate issuer: /CN=A9176632/serialNumber=84318E81B2E59F6114B102FA4508337DE915C393 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDGOgbLln2EUsQL6RQgzfekVw5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176632/AB5A87065E0D11F094762F13C4F9AE02/hDGOgbLln2EUsQL6RQgzfekVw5M.mft Manifest number: 35 Signing time: Sun 19 Oct 2025 11:04:12 +0000 Manifest this update: Sun 19 Oct 2025 11:04:11 +0000 Manifest next update: Sun 26 Oct 2025 11:04:11 +0000 Files and hashes: 1: hDGOgbLln2EUsQL6RQgzfekVw5M.crl (hash: gwaowTZBPMPZuHgnV/RHgus2rREVL29V87Qm2/PKtyQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176632/AB5A87065E0D11F094762F13C4F9AE02/hDGOgbLln2EUsQL6RQgzfekVw5M.crl rsync://rpki.apnic.net/member_repository/A9176632/AB5A87065E0D11F094762F13C4F9AE02/hDGOgbLln2EUsQL6RQgzfekVw5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDGOgbLln2EUsQL6RQgzfekVw5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176632, serialNumber=84318E81B2E59F6114B102FA4508337DE915C393 Validity Not Before: Oct 19 11:04:11 2025 GMT Not After : Oct 26 11:04:11 2025 GMT Subject: CN=68f4c5ac-ef0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3e:e9:86:c7:66:23:45:98:0f:32:35:1c:70: 02:5e:b0:25:7a:4c:7d:64:7b:e1:6e:e0:7e:74:be: 72:0d:d2:50:aa:99:c4:e6:ea:e2:64:69:dc:6e:3e: bc:97:04:fa:dc:cb:9d:86:23:b7:01:df:8c:ec:25: 8b:d5:3c:bd:af:f4:7e:bb:cd:8e:6d:43:33:b4:ce: 3e:f9:08:d2:fb:8e:f5:75:d8:6f:db:f0:cd:cd:99: 07:80:36:49:83:cd:bf:77:8c:0a:21:ff:2c:57:45: c7:12:2a:a2:06:89:f3:ed:b4:6c:e5:d3:54:97:62: 16:03:b5:45:35:91:2d:f4:8f:ed:83:1a:0f:b5:f9: 15:ea:0a:8c:2b:97:1c:a2:ca:3a:a6:82:19:ad:3a: b7:6b:ce:da:4a:cd:ef:3e:c7:af:fb:97:5e:8f:60: 00:d6:3d:99:b5:4c:76:9c:d1:b2:48:06:0f:ea:43: ae:43:d7:3d:6f:92:57:ec:cf:b9:32:d4:44:09:d7: 6f:ba:3c:8e:7a:08:5b:97:2c:aa:f9:2f:9b:0d:6e: 5f:f0:d2:a6:0a:81:b5:1c:34:1e:81:0c:b5:6b:97: 2a:e6:e0:9c:bd:14:b2:25:1f:96:a0:80:90:56:ab: 65:56:22:9a:77:cf:69:6d:ce:d4:a1:a1:29:f1:44: ff:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A3:36:D6:20:43:6F:33:0B:F8:2E:2A:E6:B3:88:3F:91:22:99:02 X509v3 Authority Key Identifier: keyid:84:31:8E:81:B2:E5:9F:61:14:B1:02:FA:45:08:33:7D:E9:15:C3:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176632/AB5A87065E0D11F094762F13C4F9AE02/hDGOgbLln2EUsQL6RQgzfekVw5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDGOgbLln2EUsQL6RQgzfekVw5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176632/AB5A87065E0D11F094762F13C4F9AE02/hDGOgbLln2EUsQL6RQgzfekVw5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:ec:40:07:7d:7e:14:cb:b0:51:c0:98:34:b0:ae:7b:78:21: 85:ee:22:73:5a:94:70:5a:33:66:a7:ff:f7:af:9c:a8:a9:87: 52:a6:ae:c3:3b:43:d1:27:20:72:49:c3:a1:bc:47:b8:a7:c6: e2:bf:4b:c4:6a:6c:c5:d3:c9:8b:c8:33:83:f1:1c:c4:a8:95: 8d:9c:65:7e:8c:27:11:98:4e:5b:d5:2c:32:c8:fd:77:6d:58: 18:1d:1e:c9:18:40:74:83:31:ea:00:7d:f0:8b:b1:bd:26:92: da:66:e0:35:1a:4d:ad:27:90:af:b6:02:c3:8e:2e:a0:d4:78: 26:88:4b:99:f7:97:30:cf:ef:53:ad:59:33:7b:13:48:b4:8c: 1c:5d:90:30:1d:9c:52:9b:5b:4f:92:44:89:1a:e8:b8:1d:93: a2:6f:33:fd:59:8c:3d:93:b2:32:c0:07:fb:4c:71:bc:d9:a5: b9:63:51:4c:02:dd:4a:20:ba:e3:6f:be:85:9d:53:e2:8f:80: ab:d2:52:a7:2c:67:58:3c:c4:30:82:f0:19:e2:83:57:2d:95: d3:ff:88:b9:73:92:09:15:c4:ad:97:1e:d4:b8:2b:6d:cd:a6: 14:af:d1:4a:dd:6d:bf:d9:f5:61:f9:65:7d:62:bb:3a:67:44: f5:bd:48:d8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NjYzMjExMC8GA1UEBRMoODQzMThFODFCMkU1OUY2MTE0QjEwMkZBNDUwODMzN0RF OTE1QzM5MzAeFw0yNTEwMTkxMTA0MTFaFw0yNTEwMjYxMTA0MTFaMBgxFjAUBgNV BAMTDTY4ZjRjNWFjLWVmMGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyPumGx2YjRZgPMjUccAJesCV6TH1ke+Fu4H50vnIN0lCqmcTm6uJkadxuPryX BPrcy52GI7cB34zsJYvVPL2v9H67zY5tQzO0zj75CNL7jvV12G/b8M3NmQeANkmD zb93jAoh/yxXRccSKqIGifPttGzl01SXYhYDtUU1kS30j+2DGg+1+RXqCowrlxyi yjqmghmtOrdrztpKze8+x6/7l16PYADWPZm1THac0bJIBg/qQ65D1z1vklfsz7ky 1EQJ12+6PI56CFuXLKr5L5sNbl/w0qYKgbUcNB6BDLVrlyrm4Jy9FLIlH5aggJBW q2VWIpp3z2ltztShoSnxRP9BAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfaM21iBD bzML+C4q5rOIP5EimQIwHwYDVR0jBBgwFoAUhDGOgbLln2EUsQL6RQgzfekVw5Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2NjMyL0FCNUE4NzA2NUUw RDExRjA5NDc2MkYxM0M0RjlBRTAyL2hER09nYkxsbjJFVXNRTDZSUWd6ZmVrVnc1 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaERHT2diTGxuMkVVc1FMNlJRZ3pmZWtWdzVNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 NjMyL0FCNUE4NzA2NUUwRDExRjA5NDc2MkYxM0M0RjlBRTAyL2hER09nYkxsbjJF VXNRTDZSUWd6ZmVrVnc1TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAETsQAd9fhTLsFHAmDSwrnt4IYXuInNalHBaM2an//evnKiph1KmrsM7 Q9EnIHJJw6G8R7inxuK/S8RqbMXTyYvIM4PxHMSolY2cZX6MJxGYTlvVLDLI/Xdt WBgdHskYQHSDMeoAffCLsb0mktpm4DUaTa0nkK+2AsOOLqDUeCaIS5n3lzDP71Ot WTN7E0i0jBxdkDAdnFKbW0+SRIka6Lgdk6JvM/1ZjD2TsjLAB/tMcbzZpbljUUwC 3UoguuNvvoWdU+KPgKvSUqcsZ1g8xDCC8Bnig1ctldP/iLlzkgkVxK2XHtS4K23N phSv0Urdbb/Z9WH5ZX1iuzpnRPW9SNg= -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:44 2025 by rpki-client