$ rpki-client -vvf rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft File: HN4SRMu7llQubIsJo9rBwbRDaNc.mft (raw, json) Hash identifier: +2dkNrYSnYRN8GVGAXjYbFr7LWLchRLAlVHLWejvqGU= Subject key identifier: 89:90:FF:E9:D5:21:57:32:96:BA:AB:F5:1A:78:0F:AE:4F:7B:A0:11 Authority key identifier: 1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 Certificate issuer: /CN=A918A498/serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft Manifest number: 78 Signing time: Sun 19 Oct 2025 10:06:52 +0000 Manifest this update: Sun 19 Oct 2025 10:06:51 +0000 Manifest next update: Sun 26 Oct 2025 10:06:51 +0000 Files and hashes: 1: HN4SRMu7llQubIsJo9rBwbRDaNc.crl (hash: 0CVXeT5TeW6BFmtpHk3Asiu8Z+lZVFK2bBF4Q6Yo8eQ=) 2: 62C86698F80A11EFA400AC2FC4F9AE02.roa (hash: iou6EnoDniALad6Yrel3h0kHQ1grK3uoWpHvIkBO8LI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:06:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A498, serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Validity Not Before: Oct 19 10:06:51 2025 GMT Not After : Oct 26 10:06:51 2025 GMT Subject: CN=68f4b83c-4a44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ba:67:30:5b:4a:70:f7:0b:76:89:8c:03:70: 95:ba:c9:e9:fe:ff:56:4f:0f:70:7e:13:da:f4:8c: 66:5b:f1:15:20:1b:ef:ae:1a:46:bd:c0:85:e0:fb: 6a:59:8f:ea:96:61:dc:07:c6:68:0e:f0:b5:5b:c2: 4b:ae:2b:f0:4b:9a:69:a9:80:e0:68:ee:dd:d0:b2: 34:11:b0:4a:fe:2c:ce:7b:63:01:65:88:45:d5:25: 44:94:e9:68:d6:6b:2d:ed:d3:72:62:fc:4b:86:9e: 2c:30:a6:d0:48:e8:1e:23:b5:73:37:cb:b3:b1:02: 65:88:f0:5d:0a:7a:e0:93:38:52:f4:fd:d8:20:8f: 73:e9:25:5d:ff:2e:48:35:b5:a7:6e:bd:60:6d:58: 5d:d4:c4:12:bf:2a:b8:4c:22:11:c9:dc:17:9c:ab: 1f:cf:06:50:01:ca:17:ea:2c:cd:28:4c:92:90:4b: bb:6c:60:bc:79:0e:6c:42:19:c7:fa:82:35:fe:82: 99:4b:0a:28:a7:a3:8a:fb:34:cf:4d:ff:15:02:e1: f0:a9:9e:41:d8:8a:eb:54:ac:67:80:a8:37:dc:42: cf:21:2e:40:3f:30:4b:97:a6:9a:8f:33:00:01:8e: a4:aa:7a:31:57:93:9e:f2:f8:65:5c:21:8a:e4:bf: 50:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:90:FF:E9:D5:21:57:32:96:BA:AB:F5:1A:78:0F:AE:4F:7B:A0:11 X509v3 Authority Key Identifier: keyid:1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:1b:a3:46:7e:59:61:b5:d8:00:26:62:d1:d4:8e:7c:36:81: a6:c8:a4:66:28:9f:8e:36:cf:cd:f9:7b:f0:98:8e:59:b9:09: 62:c6:e4:fe:33:64:3e:68:61:ec:2c:04:22:e6:2f:44:12:e8: 42:5a:03:a6:93:e2:9b:99:17:2e:ab:88:44:3f:c1:6d:f8:03: 06:9b:10:a4:42:d4:5d:37:4a:fe:e0:96:f7:c7:fa:9d:53:5f: 99:f3:73:bd:bf:92:ea:fc:fe:12:63:46:f9:08:84:c4:cb:36: f3:40:67:b7:89:25:08:3d:30:99:b5:78:e9:ed:cb:26:44:07: 41:6a:b2:5f:e6:c0:99:67:0d:68:c2:6f:c5:cc:7a:32:94:16: 67:1f:b6:87:ea:f6:41:ab:e6:d7:13:0a:15:f2:7f:52:fe:e6: fa:a2:0f:4b:e9:05:d3:e3:71:40:e7:9c:36:e8:75:0b:97:bb: 1e:9c:36:ce:f0:8a:99:bf:0e:76:4b:cf:43:c6:18:af:78:54: 93:65:32:8c:94:f2:ba:79:c8:a2:2b:42:c2:88:98:d0:c2:cc: 5c:b1:00:72:9e:b9:d1:8e:bf:68:90:eb:e1:9d:f6:5c:c3:aa: fe:6f:f8:2f:9e:61:a5:2f:20:e3:45:a4:dc:98:29:78:c9:2f: 98:51:02:ea -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTQ5ODExMC8GA1UEBRMoMUNERTEyNDRDQkJCOTY1NDJFNkM4QjA5QTNEQUMxQzFC NDQzNjhENzAeFw0yNTEwMTkxMDA2NTFaFw0yNTEwMjYxMDA2NTFaMBgxFjAUBgNV BAMTDTY4ZjRiODNjLTRhNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIumcwW0pw9wt2iYwDcJW6yen+/1ZPD3B+E9r0jGZb8RUgG++uGka9wIXg+2pZ j+qWYdwHxmgO8LVbwkuuK/BLmmmpgOBo7t3QsjQRsEr+LM57YwFliEXVJUSU6WjW ay3t03Ji/EuGniwwptBI6B4jtXM3y7OxAmWI8F0KeuCTOFL0/dggj3PpJV3/Lkg1 taduvWBtWF3UxBK/KrhMIhHJ3Becqx/PBlAByhfqLM0oTJKQS7tsYLx5DmxCGcf6 gjX+gplLCiino4r7NM9N/xUC4fCpnkHYiutUrGeAqDfcQs8hLkA/MEuXppqPMwAB jqSqejFXk57y+GVcIYrkv1A1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiZD/6dUh VzKWuqv1GngPrk97oBEwHwYDVR0jBBgwFoAUHN4SRMu7llQubIsJo9rBwbRDaNcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDk4L0QyREVEMzQ2Rjgw OTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxRdWJJc0pvOXJCd2JSRGFO Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE40U1JNdTdsbFF1YklzSm85ckJ3YlJEYU5jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB NDk4L0QyREVEMzQ2RjgwOTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxR dWJJc0pvOXJCd2JSRGFOYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAM4bo0Z+WWG12AAmYtHUjnw2gabIpGYon442z835e/CYjlm5CWLG5P4z ZD5oYewsBCLmL0QS6EJaA6aT4puZFy6riEQ/wW34AwabEKRC1F03Sv7glvfH+p1T X5nzc72/kur8/hJjRvkIhMTLNvNAZ7eJJQg9MJm1eOntyyZEB0Fqsl/mwJlnDWjC b8XMejKUFmcftofq9kGr5tcTChXyf1L+5vqiD0vpBdPjcUDnnDbodQuXux6cNs7w ipm/DnZLz0PGGK94VJNlMoyU8rp5yKIrQsKImNDCzFyxAHKeudGOv2iQ6+Gd9lzD qv5v+C+eYaUvIONFpNyYKXjJL5hRAuo= -----END CERTIFICATE-----Generated at Mon Oct 20 16:13:14 2025 by rpki-client