$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft File: HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft (raw, json) Hash identifier: 3CLm6VxrOIGkruR1uFB+J+DcEiAXTd5asSdBwq+kM40= Subject key identifier: 48:11:FF:D8:FB:7B:71:28:94:3B:66:D7:99:AD:76:78:2D:4E:57:2B Authority key identifier: 1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 Certificate issuer: /CN=A919EF2B/serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Certificate serial: 031B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft Manifest number: 0317 Signing time: Sun 19 Oct 2025 03:12:50 +0000 Manifest this update: Sun 19 Oct 2025 03:12:49 +0000 Manifest next update: Sun 26 Oct 2025 03:12:49 +0000 Files and hashes: 1: HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl (hash: i/tE8lYlXvpNL1fCWX+7wxxReqm1MvqJY4thYfX/1Dw=) 2: 830C9F90EBCA11ECA2A1747EC4F9AE02.roa (hash: i5bEFhc7shjBgj4Fert4VleTijIxiv1ZRXXWoyNF05s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:12:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 795 (0x31b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF2B, serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Validity Not Before: Oct 19 03:12:49 2025 GMT Not After : Oct 26 03:12:49 2025 GMT Subject: CN=68f45732-8511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:24:a8:e0:88:54:08:83:e7:c3:fb:7f:9b:8f: 1f:cc:b3:cc:9f:da:e9:55:36:59:4e:da:82:8e:fb: c5:0c:b5:f9:14:54:47:ff:03:0c:d0:86:24:95:4a: dc:ba:31:34:3f:ea:f7:d5:06:f9:2e:60:b4:29:ac: 8f:18:fa:06:b2:e6:c0:07:4b:55:20:3d:93:28:ab: ee:22:8c:c1:85:c6:d4:37:2a:b6:d1:26:b0:bd:21: 93:2e:06:13:8e:91:90:e1:f6:8d:c7:69:f7:56:de: 4b:69:07:67:81:a3:55:d5:4a:f8:19:e8:f5:c7:a8: 77:db:26:a5:df:fe:78:0e:ed:6a:37:2c:ca:8a:c1: 47:9f:3b:51:52:ee:9e:51:69:a0:97:b2:d7:ce:15: c5:3e:fc:06:db:d0:14:e4:21:4c:2f:59:ee:89:da: 02:65:cb:5b:91:82:c6:b4:2c:77:a1:96:52:55:a6: ea:ee:58:c9:f7:3f:2e:fa:10:56:27:e4:68:79:59: 70:8b:b5:76:9f:37:8d:63:08:99:61:28:f6:06:02: 20:4f:50:f6:ce:3d:48:9c:61:e0:60:05:84:3d:bf: ad:74:78:51:6e:eb:ef:cc:b7:e8:88:d4:6a:46:cc: d8:64:da:b3:15:b9:2e:8f:a5:b4:b9:81:66:48:fe: 72:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:11:FF:D8:FB:7B:71:28:94:3B:66:D7:99:AD:76:78:2D:4E:57:2B X509v3 Authority Key Identifier: keyid:1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:ac:d0:15:04:4e:6d:dc:64:fb:dd:12:e8:2d:4a:f6:8d:80: 5b:24:76:20:43:86:c0:b6:f6:2c:38:82:e7:bb:5e:b3:ba:56: 89:9a:34:61:09:91:20:08:eb:17:bf:33:9e:67:bb:6c:9e:d0: e0:19:53:c8:97:0b:44:26:58:a8:8f:fe:a9:56:53:9e:7b:94: c0:04:6d:40:31:c2:80:ec:80:1a:4f:1e:f8:4a:e3:5d:3d:30: 9a:54:3f:25:fd:ff:ee:a3:da:eb:4e:cd:90:b6:a0:ea:e1:e0: 6e:ed:f0:f0:ee:27:bb:73:32:56:9f:c7:3c:a7:e4:d9:f5:9f: 9c:5d:f5:c0:c3:62:5a:01:99:cf:a0:d4:80:84:70:c8:3d:99: df:55:cb:8f:41:9e:32:0f:a7:50:74:40:d1:f0:21:17:ed:ee: 34:c2:de:3b:05:23:c8:44:b9:0c:03:50:7b:10:94:37:28:f7: f6:f5:d2:db:b8:91:da:5a:d3:e0:f5:55:1f:85:52:6a:75:1a: fd:59:88:53:51:11:7d:2d:71:03:e7:ee:9f:29:47:c9:43:f7: a1:9e:70:c7:a7:bb:6c:4e:9d:d8:ac:de:71:b6:77:da:c9:6e: 1a:9c:3c:4d:0f:6b:4a:7a:00:19:01:24:24:49:92:d5:5b:d1: 00:5a:ae:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGMkIxMTAvBgNVBAUTKDFDQkE4RDNEQUE4MDQ4ODkzMEE5OTI4QjE5NkVERUUw NzVGNDA5QTQwHhcNMjUxMDE5MDMxMjQ5WhcNMjUxMDI2MDMxMjQ5WjAYMRYwFAYD VQQDEw02OGY0NTczMi04NTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4CSo4IhUCIPnw/t/m48fzLPMn9rpVTZZTtqCjvvFDLX5FFRH/wMM0IYklUrc ujE0P+r31Qb5LmC0KayPGPoGsubAB0tVID2TKKvuIozBhcbUNyq20SawvSGTLgYT jpGQ4faNx2n3Vt5LaQdngaNV1Ur4Gej1x6h32yal3/54Du1qNyzKisFHnztRUu6e UWmgl7LXzhXFPvwG29AU5CFML1nuidoCZctbkYLGtCx3oZZSVabq7ljJ9z8u+hBW J+RoeVlwi7V2nzeNYwiZYSj2BgIgT1D2zj1InGHgYAWEPb+tdHhRbuvvzLfoiNRq RszYZNqzFbkuj6W0uYFmSP5y8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgR/9j7 e3EolDtm15mtdngtTlcrMB8GA1UdIwQYMBaAFBy6jT2qgEiJMKmSixlu3uB19Amk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUYyQi81MzczMjJGQUVC QzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJa3dxWktMR1c3ZTRIWDBD YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMcU5QYXFBU0lrd3FaS0xHVzdlNEhYMENhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUYyQi81MzczMjJGQUVCQzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJ a3dxWktMR1c3ZTRIWDBDYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+rNAVBE5t3GT73RLoLUr2jYBbJHYgQ4bAtvYsOILnu16zulaJmjRh CZEgCOsXvzOeZ7tsntDgGVPIlwtEJlioj/6pVlOee5TABG1AMcKA7IAaTx74SuNd PTCaVD8l/f/uo9rrTs2QtqDq4eBu7fDw7ie7czJWn8c8p+TZ9Z+cXfXAw2JaAZnP oNSAhHDIPZnfVcuPQZ4yD6dQdEDR8CEX7e40wt47BSPIRLkMA1B7EJQ3KPf29dLb uJHaWtPg9VUfhVJqdRr9WYhTURF9LXED5+6fKUfJQ/ehnnDHp7tsTp3YrN5xtnfa yW4anDxND2tKegAZASQkSZLVW9EAWq77 -----END CERTIFICATE-----Generated at Mon Oct 20 01:49:23 2025 by rpki-client