$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft File: HSpVFaipmzCyHRhxvPr9J-saEyo.mft (raw, json) Hash identifier: codMXId5rIxkm95XSQXwKtLjORCvryPOGbtEuVOJALA= Subject key identifier: 5F:F4:8F:56:5F:EB:79:11:CE:5F:4B:3E:18:23:E0:6A:15:EA:37:A5 Authority key identifier: 1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A Certificate issuer: /CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Certificate serial: 02A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft Manifest number: 02A1 Signing time: Sun 19 Oct 2025 03:44:52 +0000 Manifest this update: Sun 19 Oct 2025 03:44:51 +0000 Manifest next update: Sun 26 Oct 2025 03:44:51 +0000 Files and hashes: 1: HSpVFaipmzCyHRhxvPr9J-saEyo.crl (hash: gOhBo1rZ9sZS1jQOG+0YglZ8ggal0AK0iPO52bDT4rI=) 2: D6E7D65C192E11ED927BF512C4F9AE02.roa (hash: /55pyDRuC0ryewlHl9M4i4PAiQ+McbMrbeJDHVMTz04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:44:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 676 (0x2a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B30, serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Validity Not Before: Oct 19 03:44:51 2025 GMT Not After : Oct 26 03:44:51 2025 GMT Subject: CN=68f45eb3-0cff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:eb:6e:97:02:2c:31:8d:08:98:8b:e4:4f:7b: 0d:21:0a:74:15:a2:01:0d:c0:8f:48:1b:8d:26:d8: fc:b6:6c:e1:f9:e7:69:01:85:38:dc:0a:ee:64:40: 15:8d:7b:44:13:e7:40:d0:c8:9d:31:ac:9c:0e:1e: 51:02:bc:1e:60:df:79:73:e2:a4:87:34:8f:59:c0: a8:8b:d7:04:ab:3b:aa:d7:c1:09:8a:1f:9e:87:b4: 62:fe:65:bc:77:5f:e5:91:7c:aa:0a:91:5d:cb:2c: c2:2d:32:f9:6f:d2:d2:cb:9c:0c:f6:e8:4f:4d:4a: d3:78:da:b2:b3:10:9d:89:af:5f:9c:7e:51:b0:6a: 1f:e8:99:39:2a:2d:03:c0:50:cf:12:0c:fb:8c:a6: 8f:04:38:bf:54:b9:81:dc:79:78:ae:7c:f0:03:36: 27:72:7d:fd:12:66:66:00:59:50:57:32:13:5d:14: 66:b7:93:78:82:1c:3f:e3:a0:cd:6d:e9:af:13:a4: 1b:a6:43:32:2d:f3:73:3a:62:8d:54:6d:01:99:55: 6e:34:52:63:b2:da:d2:00:87:c4:43:d7:f0:ad:a7: 55:c2:b8:d3:27:16:62:14:dd:62:3f:c2:35:31:07: af:12:14:cd:27:b6:6e:cd:48:d0:3f:82:d2:20:c6: d4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:F4:8F:56:5F:EB:79:11:CE:5F:4B:3E:18:23:E0:6A:15:EA:37:A5 X509v3 Authority Key Identifier: keyid:1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:f9:bb:ce:ff:eb:12:3b:38:5d:38:35:6a:19:da:ee:c0:27: 40:06:65:67:b2:31:94:be:fb:8e:7a:0b:ac:88:ec:ca:20:ba: 75:2b:a4:f7:0a:99:2d:74:99:5e:9e:e3:70:4e:42:9a:f2:1a: 7a:22:d1:db:4a:14:a7:a7:92:26:9c:25:07:5b:a5:0a:23:76: e8:c9:14:cf:d6:6b:a1:7e:b9:b6:c6:c6:99:47:1a:49:cb:99: 51:d8:ab:f2:10:fc:38:ff:52:4c:2f:ee:13:cf:0d:45:20:7a: e5:86:24:72:d0:ed:17:dc:08:dc:00:9b:7b:22:54:51:00:b8: fc:bb:d5:4c:16:8c:ab:91:e2:3d:f7:91:c0:6a:fd:9f:41:8e: 72:eb:d3:91:7b:1e:85:36:ff:17:3a:20:39:5d:d3:28:3f:2c: eb:c6:bb:77:f3:35:35:8f:72:84:26:1b:e4:b5:33:9c:ea:9c: d0:21:75:ca:36:1f:d8:8b:c7:b7:56:91:1f:99:a7:fc:19:5f: a2:2e:9a:02:72:30:6a:82:53:34:5f:4e:e3:6c:d1:9f:d6:03: cf:a7:83:d5:8b:0c:65:ea:f9:45:18:3d:b1:58:65:e8:a5:44: 00:50:3e:8d:64:49:5a:2b:fd:33:a8:22:35:49:d9:b8:3b:1e: 40:ab:45:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMzAxMTAvBgNVBAUTKDFEMkE1NTE1QThBOTlCMzBCMjFEMTg3MUJDRkFGRDI3 RUIxQTEzMkEwHhcNMjUxMDE5MDM0NDUxWhcNMjUxMDI2MDM0NDUxWjAYMRYwFAYD VQQDEw02OGY0NWViMy0wY2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOtulwIsMY0ImIvkT3sNIQp0FaIBDcCPSBuNJtj8tmzh+edpAYU43AruZEAV jXtEE+dA0MidMaycDh5RArweYN95c+KkhzSPWcCoi9cEqzuq18EJih+eh7Ri/mW8 d1/lkXyqCpFdyyzCLTL5b9LSy5wM9uhPTUrTeNqysxCdia9fnH5RsGof6Jk5Ki0D wFDPEgz7jKaPBDi/VLmB3Hl4rnzwAzYncn39EmZmAFlQVzITXRRmt5N4ghw/46DN bemvE6QbpkMyLfNzOmKNVG0BmVVuNFJjstrSAIfEQ9fwradVwrjTJxZiFN1iP8I1 MQevEhTNJ7ZuzUjQP4LSIMbUeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/0j1Zf 63kRzl9LPhgj4GoV6jelMB8GA1UdIwQYMBaAFB0qVRWoqZswsh0Ycbz6/SfrGhMq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIzMC84OTc3QzY3NDE5 MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16Q3lIUmh4dlByOUotc2FF eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hTcFZGYWlwbXpDeUhSaHh2UHI5Si1zYUV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIzMC84OTc3QzY3NDE5MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16 Q3lIUmh4dlByOUotc2FFeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt+bvO/+sSOzhdODVqGdruwCdABmVnsjGUvvuOegusiOzKILp1K6T3 CpktdJlenuNwTkKa8hp6ItHbShSnp5ImnCUHW6UKI3boyRTP1muhfrm2xsaZRxpJ y5lR2KvyEPw4/1JML+4Tzw1FIHrlhiRy0O0X3AjcAJt7IlRRALj8u9VMFoyrkeI9 95HAav2fQY5y69ORex6FNv8XOiA5XdMoPyzrxrt38zU1j3KEJhvktTOc6pzQIXXK Nh/Yi8e3VpEfmaf8GV+iLpoCcjBqglM0X07jbNGf1gPPp4PViwxl6vlFGD2xWGXo pUQAUD6NZElaK/0zqCI1Sdm4Ox5Aq0UC -----END CERTIFICATE-----Generated at Mon Oct 20 01:46:08 2025 by rpki-client