$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft File: hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft (raw, json) Hash identifier: ivznT0Fx7vcPPZRw+yH1XtxeRBdEoUkk6ads0n2QUSg= Subject key identifier: 96:4F:D0:FA:6D:1D:0A:83:31:0B:C9:D4:9F:9B:F4:0C:30:E3:5A:47 Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 0FE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft Manifest number: 0FCA Signing time: Sat 18 Oct 2025 18:05:52 +0000 Manifest this update: Sat 18 Oct 2025 18:05:51 +0000 Manifest next update: Sat 25 Oct 2025 18:05:51 +0000 Files and hashes: 1: hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl (hash: COBdlf+Vm0WpjgZoM6nVFih5FcUMT69N7I5nsorvV/U=) 2: 28DA447C289B11EAA1EA9B53C4F9AE02.roa (hash: xqp4ztY1055hAOWGxzBB8IclFQx9Z0YAGfkQm9qw9nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:05:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4064 (0xfe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE, serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: Oct 18 18:05:51 2025 GMT Not After : Oct 25 18:05:51 2025 GMT Subject: CN=68f3d6ff-40d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:24:70:fd:c7:59:b1:85:fb:41:c8:ea:a6:fc: 3c:b7:e8:9b:fb:bc:4b:5b:68:ca:5f:d2:41:e3:19: 82:b0:42:7b:8e:20:31:6e:20:ce:78:1e:41:46:00: 23:ac:77:ea:41:fe:0c:0c:2d:aa:79:5f:9d:03:ff: a0:a8:4d:ed:00:52:50:d4:c4:ba:cb:f0:86:25:40: af:6d:10:1b:b3:0f:5d:99:42:64:3d:f6:a7:db:95: 24:d3:a6:70:c8:61:b1:b5:4c:8c:c8:30:15:a7:c6: b5:14:60:14:4c:9b:a4:6d:38:d5:4c:19:68:d0:00: 6f:25:3d:b8:e1:be:89:de:74:74:5b:22:05:ce:22: 2e:54:b7:27:03:c4:7f:1c:bb:e1:91:4a:ea:f0:eb: 4f:a2:28:fe:e5:c3:c7:51:62:5c:36:f6:f4:79:f4: 3c:d5:38:db:a3:02:5c:bf:ab:8c:3d:51:af:4e:fa: c0:1e:1f:17:f6:36:82:36:34:db:4e:31:29:32:07: 16:e3:26:5d:b4:48:f4:87:66:0e:74:1e:a2:c9:5d: a2:cd:97:1e:c0:05:d8:8d:7a:93:cc:b4:85:cc:d9: 03:ca:f7:d9:9f:c4:2b:96:69:86:35:af:5a:9d:4b: 78:ea:7b:62:ae:b4:16:a7:ef:8f:37:98:5c:26:0d: a2:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:4F:D0:FA:6D:1D:0A:83:31:0B:C9:D4:9F:9B:F4:0C:30:E3:5A:47 X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:86:16:4e:53:c7:1a:44:3c:72:8f:07:db:40:78:95:5a:8c: 59:7d:aa:3b:92:06:7a:0d:0b:e5:af:c1:a4:20:8b:fb:f6:35: 19:cb:4d:85:ed:ae:5a:2c:c9:e1:b3:5e:73:58:86:63:f3:e4: 75:3a:69:6a:79:c1:e1:d1:05:ec:d6:a6:ad:78:fe:84:37:a4: c7:2d:00:d4:c0:a7:98:85:c5:83:48:eb:84:45:33:7f:f2:0b: 5b:89:9c:68:1f:5f:11:14:3f:20:14:40:f7:16:de:15:23:7c: 35:e2:ff:35:74:99:5f:93:b5:28:5e:32:3a:1f:cc:1e:27:2f: 57:3b:da:2f:44:b2:a1:b5:2e:b2:f5:3f:df:06:a3:3e:88:0c: b7:5c:21:94:00:f5:5a:9c:e9:9b:d5:70:02:fb:8e:12:ba:66: 18:82:aa:a9:aa:30:f0:e2:ba:45:12:34:36:1a:bf:c0:a7:f2: ae:f1:24:6a:e9:00:03:b9:f3:ef:36:44:b9:35:ee:42:10:41: 47:8f:90:af:a1:0d:17:c4:e4:0d:ba:73:d2:98:9c:d1:8d:8e: 37:d6:47:60:06:ef:12:1e:a5:2c:74:12:cf:68:cb:d9:45:9e: 46:a4:50:21:e9:3d:1f:d2:b0:9d:2c:0e:c3:06:f6:b8:4c:1e: 01:04:25:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjUxMDE4MTgwNTUxWhcNMjUxMDI1MTgwNTUxWjAYMRYwFAYD VQQDEw02OGYzZDZmZi00MGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCRw/cdZsYX7Qcjqpvw8t+ib+7xLW2jKX9JB4xmCsEJ7jiAxbiDOeB5BRgAj rHfqQf4MDC2qeV+dA/+gqE3tAFJQ1MS6y/CGJUCvbRAbsw9dmUJkPfan25Uk06Zw yGGxtUyMyDAVp8a1FGAUTJukbTjVTBlo0ABvJT244b6J3nR0WyIFziIuVLcnA8R/ HLvhkUrq8OtPoij+5cPHUWJcNvb0efQ81TjbowJcv6uMPVGvTvrAHh8X9jaCNjTb TjEpMgcW4yZdtEj0h2YOdB6iyV2izZcewAXYjXqTzLSFzNkDyvfZn8QrlmmGNa9a nUt46ntirrQWp++PN5hcJg2ivwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZP0Ppt HQqDMQvJ1J+b9Aww41pHMB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QThCRS85MDE5RDEyMDY0MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZR clpBSHhDQTJkbUpZMVVoV1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjhhZOU8caRDxyjwfbQHiVWoxZfao7kgZ6DQvlr8GkIIv79jUZy02F 7a5aLMnhs15zWIZj8+R1OmlqecHh0QXs1qateP6EN6THLQDUwKeYhcWDSOuERTN/ 8gtbiZxoH18RFD8gFED3Ft4VI3w14v81dJlfk7UoXjI6H8weJy9XO9ovRLKhtS6y 9T/fBqM+iAy3XCGUAPVanOmb1XAC+44SumYYgqqpqjDw4rpFEjQ2Gr/Ap/Ku8SRq 6QADufPvNkS5Ne5CEEFHj5CvoQ0XxOQNunPSmJzRjY431kdgBu8SHqUsdBLPaMvZ RZ5GpFAh6T0f0rCdLA7DBva4TB4BBCVX -----END CERTIFICATE-----Generated at Mon Oct 20 01:46:18 2025 by rpki-client