$ rpki-client -vvf rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft File: hF2I4KIVFF82fZMEvz9xrujrTC0.mft (raw, json) Hash identifier: IMAsHZRMyq8xNBB+utdOdzXfQjeujcWA1j/Jb8sXAfk= Subject key identifier: CE:CF:D1:2C:F9:FB:0C:EF:6E:53:AD:7B:95:C4:A1:92:5F:73:A4:6B Authority key identifier: 84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D Certificate issuer: /CN=A9194AE2/serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft Manifest number: F8 Signing time: Sun 19 Oct 2025 08:13:27 +0000 Manifest this update: Sun 19 Oct 2025 08:13:26 +0000 Manifest next update: Sun 26 Oct 2025 08:13:26 +0000 Files and hashes: 1: hF2I4KIVFF82fZMEvz9xrujrTC0.crl (hash: jbbK2BQ18y4SmU0vJEYt92trpy/O/0YiW62LLQFG9y0=) 2: CB6840EE3BAC11EF9C334410C4F9AE02.roa (hash: ZyyI/ZozrG5/nhJLIBxR0Bcz7+GF6Q+AWpBF1mK4I18=) 3: 2042987C6C4411EF9B263275C4F9AE02.roa (hash: NjBAV+BZBuGQVA2KV6NfHJRJuvgRL/XOA20W9Q3lchw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194AE2, serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Validity Not Before: Oct 19 08:13:26 2025 GMT Not After : Oct 26 08:13:26 2025 GMT Subject: CN=68f49da6-d5b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:1e:cb:f4:19:29:4e:dd:5f:cd:b1:d1:10:b7: 38:b4:a6:79:c8:0d:05:b7:b2:41:7c:2c:2b:87:0d: 1d:29:74:74:a3:94:1e:17:61:31:d0:c4:38:b4:c9: ae:eb:8d:e6:0e:59:b4:79:3a:34:1e:67:d4:f4:a6: 80:db:0a:21:38:c6:60:bc:65:72:6e:5b:ce:36:55: 6a:13:54:85:d4:1e:5b:8f:e1:ed:a1:d2:92:f3:fa: 79:ee:a0:ae:6b:0c:82:b4:6e:a4:98:bc:38:fc:15: 57:38:53:0c:17:0e:a9:ab:d3:fa:f0:7b:0e:ef:80: 0c:6a:de:91:2f:41:a1:c6:74:b2:97:a7:0f:4d:30: 03:0c:c1:03:db:e4:7c:78:e8:ec:69:0c:77:af:58: a5:17:91:1c:02:8a:9a:ec:f1:77:8b:6e:54:21:b3: be:cf:ec:05:ca:ea:f8:d3:1e:0f:d2:4a:67:ff:ba: 18:c3:3b:46:8a:5c:8c:91:df:ad:d1:f1:3e:e5:7f: 61:f6:76:f8:94:37:41:28:1f:0e:38:d2:59:53:65: d9:d4:51:c7:88:44:b3:bd:7a:7a:b4:f9:74:5f:b0: b6:b2:22:95:38:d7:9b:a2:94:0d:e3:d9:ec:fd:12: 7e:7f:0a:2c:16:d4:d3:d4:31:d7:3e:5f:1a:71:a8: fc:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:CF:D1:2C:F9:FB:0C:EF:6E:53:AD:7B:95:C4:A1:92:5F:73:A4:6B X509v3 Authority Key Identifier: keyid:84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:7e:81:16:be:2a:46:b3:c1:f7:1d:12:fb:5b:4e:61:33:94: c1:b7:41:3f:6b:3f:59:88:2a:8d:68:09:c6:80:a7:92:39:37: d9:11:a4:49:4e:25:7d:1a:9b:e2:64:ed:0e:73:8f:15:80:82: bd:47:51:07:7b:45:f7:63:22:81:7b:db:49:bc:a4:58:60:9e: 7a:c9:d7:16:9b:02:1a:22:63:ba:b4:40:ea:ba:01:bf:58:0d: a9:1e:be:24:72:bb:50:88:58:79:4e:df:c2:98:2c:ed:ff:b1: 61:50:28:4e:83:76:79:53:5b:b6:6d:23:c0:52:ca:68:c2:c1: 42:08:3a:bb:39:8a:3e:e2:95:5f:32:b5:b6:6e:ca:15:3f:e2: f5:50:bd:76:6c:d9:ce:d8:96:af:e4:cc:20:06:1b:13:f5:29: e4:e4:17:79:08:f9:72:17:11:8c:e6:22:48:5d:12:b7:78:37: 6d:15:27:cb:bf:d8:09:1f:76:9a:d9:c4:38:76:23:e5:ed:4a: 23:80:c6:b9:49:31:76:eb:63:8f:e3:ec:e6:f8:dc:dd:6a:18: 6e:16:fa:b3:1a:fb:24:40:4c:30:25:37:5d:8a:66:cd:4f:1a: a3:74:a8:1d:6b:9a:ce:4a:b5:32:cb:3c:c3:cd:5f:f3:c5:bb: e6:08:76:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBRTIxMTAvBgNVBAUTKDg0NUQ4OEUwQTIxNTE0NUYzNjdEOTMwNEJGM0Y3MUFF RThFQjRDMkQwHhcNMjUxMDE5MDgxMzI2WhcNMjUxMDI2MDgxMzI2WjAYMRYwFAYD VQQDEw02OGY0OWRhNi1kNWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+B7L9BkpTt1fzbHRELc4tKZ5yA0Ft7JBfCwrhw0dKXR0o5QeF2Ex0MQ4tMmu 643mDlm0eTo0HmfU9KaA2wohOMZgvGVyblvONlVqE1SF1B5bj+HtodKS8/p57qCu awyCtG6kmLw4/BVXOFMMFw6pq9P68HsO74AMat6RL0GhxnSyl6cPTTADDMED2+R8 eOjsaQx3r1ilF5EcAoqa7PF3i25UIbO+z+wFyur40x4P0kpn/7oYwztGilyMkd+t 0fE+5X9h9nb4lDdBKB8OONJZU2XZ1FHHiESzvXp6tPl0X7C2siKVONebopQN49ns /RJ+fwosFtTT1DHXPl8acaj8zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7P0Sz5 +wzvblOte5XEoZJfc6RrMB8GA1UdIwQYMBaAFIRdiOCiFRRfNn2TBL8/ca7o60wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEFFMi8yNkE2RjQ0QzNC QUMxMUVGOUQ3RUE4NzFDNEY5QUUwMi9oRjJJNEtJVkZGODJmWk1Fdno5eHJ1anJU QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hGMkk0S0lWRkY4MmZaTUV2ejl4cnVqclRDMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEFFMi8yNkE2RjQ0QzNCQUMxMUVGOUQ3RUE4NzFDNEY5QUUwMi9oRjJJNEtJVkZG ODJmWk1Fdno5eHJ1anJUQzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVfoEWvipGs8H3HRL7W05hM5TBt0E/az9ZiCqNaAnGgKeSOTfZEaRJ TiV9GpviZO0Oc48VgIK9R1EHe0X3YyKBe9tJvKRYYJ56ydcWmwIaImO6tEDqugG/ WA2pHr4kcrtQiFh5Tt/CmCzt/7FhUChOg3Z5U1u2bSPAUspowsFCCDq7OYo+4pVf MrW2bsoVP+L1UL12bNnO2Jav5MwgBhsT9Snk5Bd5CPlyFxGM5iJIXRK3eDdtFSfL v9gJH3aa2cQ4diPl7UojgMa5STF262OP4+zm+NzdahhuFvqzGvskQEwwJTddimbN TxqjdKgda5rOSrUyyzzDzV/zxbvmCHYL -----END CERTIFICATE-----Generated at Mon Oct 20 21:26:28 2025 by rpki-client