$ rpki-client -vvf rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft File: hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft (raw, json) Hash identifier: R8zKAkdY2q93qnadO8gz9ByF2QxjSEu62/XX4euU9aU= Subject key identifier: 10:22:D7:7F:A6:03:20:11:24:D0:44:0D:E8:72:1B:3F:18:28:AD:40 Authority key identifier: 84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D Certificate issuer: /CN=A9198767/serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft Manifest number: 016C Signing time: Sun 19 Oct 2025 06:37:39 +0000 Manifest this update: Sun 19 Oct 2025 06:37:38 +0000 Manifest next update: Sun 26 Oct 2025 06:37:38 +0000 Files and hashes: 1: hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl (hash: lBZ2W/5SThoyg8W6Qvek0sv7OF8ysgLPmm9JYYXBhcA=) 2: 7BABB4BE884C11EE81C71A38C4F9AE02.roa (hash: eDj76E11Nc1+IGlyzMBJDLm0PsvVUG2jJEzd62VT4NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:37:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198767, serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Validity Not Before: Oct 19 06:37:38 2025 GMT Not After : Oct 26 06:37:38 2025 GMT Subject: CN=68f48733-b3cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:bb:2e:f7:74:0b:07:53:ae:49:1d:32:65:28: 60:5d:bd:77:b6:92:92:75:9a:e2:ed:aa:1a:10:3c: 77:14:35:9b:6c:80:12:b2:21:91:9d:ce:83:b2:d3: ed:6b:1e:9a:94:17:ab:06:25:7f:a4:39:3e:e1:17: df:99:63:b2:a7:53:81:b5:8f:7e:a5:4a:0b:c4:32: cc:f8:1c:71:ca:51:e6:6f:1e:b8:30:e0:43:b7:ce: 12:c9:e8:a3:40:c8:ee:67:95:ef:82:b6:f8:0e:06: b0:9c:09:3e:cc:06:4a:cc:77:30:44:e3:bd:b7:19: b0:bb:94:62:05:34:c8:a6:33:4f:10:ab:14:0a:df: 30:e1:56:68:3d:b9:78:92:af:4c:59:bb:ae:2c:29: 5a:06:d3:c8:64:73:ab:ad:a8:e5:dc:08:1a:02:c5: 1c:d6:f5:58:d4:96:4c:b8:eb:67:9c:8c:d2:f0:68: f2:d9:b5:f1:8e:12:7c:e4:2f:47:4d:e2:2f:ec:b3: 38:c1:1e:f5:e0:f5:a3:0b:c0:95:00:e3:b6:09:d0: 68:9b:5d:e0:48:1f:f5:70:fe:b4:cc:95:e5:d7:55: 88:d7:bb:b8:32:8b:97:4c:fc:82:3e:65:0a:ad:e5: 2a:fc:c3:78:0a:9b:77:80:ed:d8:44:15:14:0e:20: 87:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:22:D7:7F:A6:03:20:11:24:D0:44:0D:E8:72:1B:3F:18:28:AD:40 X509v3 Authority Key Identifier: keyid:84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:49:e5:2f:f7:5d:c2:4f:91:13:37:fd:b3:42:9f:0d:1f:4f: ff:c1:2c:e7:09:a6:44:7a:54:6a:11:3a:95:c4:f1:30:60:7a: 52:b8:0d:d2:18:84:cb:8f:d2:f9:67:01:9a:30:b5:67:6a:b5: eb:c1:28:29:2a:98:5a:3d:99:f0:d2:b2:98:60:1c:3b:64:20: 44:ef:2b:70:f1:c9:fa:d3:81:1f:a4:55:f9:88:7f:39:98:82: 02:9b:f7:4d:61:eb:89:c4:30:12:76:8e:8a:c0:0c:28:80:de: 00:88:1f:af:0e:26:bd:35:a7:b8:e0:8d:41:d4:7f:ac:20:6c: b8:e8:fa:08:48:b2:c7:e0:75:94:69:7b:11:94:ff:3b:f0:0c: a7:b1:c2:3f:cf:bd:8c:5f:05:ba:c6:c0:7e:2c:1b:39:d1:11: f1:bb:67:7d:70:d8:0b:bb:f7:4e:93:28:06:0d:af:0c:dc:fc: 9a:fe:69:d8:2c:23:c8:4a:86:12:ba:ad:ec:87:12:67:cf:5b: 33:25:8b:36:cf:ce:77:88:26:97:7d:fe:2d:28:a1:d4:cb:81: be:fa:4a:e4:20:10:10:81:69:3d:3a:cf:de:89:3e:71:8c:d7: f3:c1:24:19:a5:cc:6e:7a:b0:b1:cf:95:00:0c:7c:37:d0:ba: 36:1f:bb:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3NjcxMTAvBgNVBAUTKDg0NjhCMDIxOTdGQzlCNzcwQUY4NDA1NTdCRjQxNUEw QjYxMzgyMEQwHhcNMjUxMDE5MDYzNzM4WhcNMjUxMDI2MDYzNzM4WjAYMRYwFAYD VQQDEw02OGY0ODczMy1iM2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAobsu93QLB1OuSR0yZShgXb13tpKSdZri7aoaEDx3FDWbbIASsiGRnc6DstPt ax6alBerBiV/pDk+4RffmWOyp1OBtY9+pUoLxDLM+BxxylHmbx64MOBDt84Syeij QMjuZ5Xvgrb4DgawnAk+zAZKzHcwROO9txmwu5RiBTTIpjNPEKsUCt8w4VZoPbl4 kq9MWbuuLClaBtPIZHOrrajl3AgaAsUc1vVY1JZMuOtnnIzS8Gjy2bXxjhJ85C9H TeIv7LM4wR714PWjC8CVAOO2CdBom13gSB/1cP60zJXl11WI17u4MouXTPyCPmUK reUq/MN4Cpt3gO3YRBUUDiCHkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBAi13+m AyARJNBEDehyGz8YKK1AMB8GA1UdIwQYMBaAFIRosCGX/Jt3CvhAVXv0FaC2E4IN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc2Ny83QkM2MUQ4Mjg4 NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0zY0stRUJWZV9RVm9MWVRn ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hHaXdJWmY4bTNjSy1FQlZlX1FWb0xZVGdnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc2Ny83QkM2MUQ4Mjg4NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0z Y0stRUJWZV9RVm9MWVRnZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaSeUv913CT5ETN/2zQp8NH0//wSznCaZEelRqETqVxPEwYHpSuA3S GITLj9L5ZwGaMLVnarXrwSgpKphaPZnw0rKYYBw7ZCBE7ytw8cn604EfpFX5iH85 mIICm/dNYeuJxDASdo6KwAwogN4AiB+vDia9Nae44I1B1H+sIGy46PoISLLH4HWU aXsRlP878AynscI/z72MXwW6xsB+LBs50RHxu2d9cNgLu/dOkygGDa8M3Pya/mnY LCPISoYSuq3shxJnz1szJYs2z853iCaXff4tKKHUy4G++krkIBAQgWk9Os/eiT5x jNfzwSQZpcxuerCxz5UADHw30Lo2H7uv -----END CERTIFICATE-----Generated at Mon Oct 20 16:31:47 2025 by rpki-client