$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json) Hash identifier: uJg1QyYMZ8O50dTnKCTMVqdLGqs9GHVuL7KDfZ53bDw= Subject key identifier: E7:6F:92:61:ED:3E:0A:71:EF:02:A4:2F:2C:A2:40:84:B4:B1:BA:43 Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Certificate serial: 0C23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft Manifest number: 0C1C Signing time: Sat 18 Oct 2025 19:30:48 +0000 Manifest this update: Sat 18 Oct 2025 19:30:47 +0000 Manifest next update: Sat 25 Oct 2025 19:30:47 +0000 Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: Z3dp+zq2PKW0y9HRX7LHag3ltT5BxK6pwRWhvJvYmlo=) 2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: oYtKqIUNSIUuh/+KpPti5KOAL0KI5TmVO0WB52ytTkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:30:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3107 (0xc23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FD74, serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Validity Not Before: Oct 18 19:30:47 2025 GMT Not After : Oct 25 19:30:47 2025 GMT Subject: CN=68f3eae7-525e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5b:01:24:53:ca:be:3d:aa:e6:7a:c0:2c:42: 9c:2d:ac:5d:30:db:a1:c1:85:ee:fd:11:74:7d:13: d4:85:00:7b:d1:07:92:87:37:08:59:c6:da:90:56: c3:5e:eb:d0:e4:08:77:68:2a:c1:ed:ba:82:20:17: b6:a9:c0:05:39:e7:8d:1f:e7:94:9c:09:01:2c:8a: ac:85:54:d0:af:21:a2:0f:42:c0:1e:39:93:4b:92: 00:1d:ac:92:f7:2c:3d:a5:e1:68:57:58:61:9f:e2: ef:0b:c4:98:1b:f9:37:63:8e:e6:89:f5:a7:35:78: ed:56:cc:12:25:d0:84:62:d0:a6:99:79:89:19:fd: 3b:40:c7:57:ae:22:25:e1:57:00:a1:4d:46:64:55: 05:c4:7b:ca:94:ff:58:e9:7b:55:99:66:e8:e5:57: 70:88:af:23:d3:cc:10:58:10:3c:f0:7c:f5:a8:fe: 37:94:ce:7e:42:de:dc:1b:cc:ae:55:6f:95:9a:03: d6:d8:d2:0f:bc:dc:e3:94:7b:f1:7e:03:2c:70:8f: d8:b9:49:33:5f:ee:7d:db:36:0e:60:8b:fb:58:b7: 60:bc:54:bc:c0:33:2c:aa:6f:f2:61:03:47:7c:bb: 92:b1:0b:f8:fc:2e:5e:40:16:9a:a7:4b:18:5d:d6: f0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:6F:92:61:ED:3E:0A:71:EF:02:A4:2F:2C:A2:40:84:B4:B1:BA:43 X509v3 Authority Key Identifier: keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:c5:1b:3e:f0:86:ef:c1:01:21:c2:81:ae:72:d2:a4:c4:44: ba:ba:f8:b4:e3:52:8b:da:dd:f6:bb:ce:c8:33:31:cd:20:08: 79:ee:e5:37:c1:a3:1b:45:01:e3:0d:6c:58:74:b4:ea:74:e2: 0a:e3:2f:53:e6:8e:5a:1a:24:09:d7:8c:0b:a9:ef:4b:f8:a1: 90:e5:8d:8f:64:61:2f:8d:d5:1e:cc:84:77:df:6c:2e:65:01: 2f:e4:0b:44:5a:31:2d:3e:6e:7f:d5:89:a5:c2:1c:2f:2d:3d: b5:75:87:c6:f3:ae:cc:48:60:a5:b1:35:31:5e:7b:5b:27:38: c6:56:bd:53:c1:3f:fb:e7:9a:93:41:5f:33:d5:91:ad:c0:a4: 1a:d4:2a:6f:48:7a:a1:39:cd:51:0f:18:e2:ef:4c:c1:30:4b: e9:04:f0:0a:9d:22:a3:c8:0d:4f:d8:00:31:71:f2:de:e3:0d: 95:0f:e4:a6:cc:af:dd:94:05:2a:2e:b7:b9:f5:7b:1c:fe:a6: c9:b4:3c:88:c4:57:71:26:ea:24:e6:bc:9d:8d:28:57:13:5e: 4e:08:8e:7e:bb:9c:85:81:2e:91:09:08:84:6d:a5:bf:68:09: 16:cc:f3:60:06:a6:10:b4:f0:88:5c:f7:44:b8:52:68:c9:f0: ad:4e:d7:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND MDJDMDM2MjcwHhcNMjUxMDE4MTkzMDQ3WhcNMjUxMDI1MTkzMDQ3WjAYMRYwFAYD VQQDEw02OGYzZWFlNy01MjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1sBJFPKvj2q5nrALEKcLaxdMNuhwYXu/RF0fRPUhQB70QeShzcIWcbakFbD XuvQ5Ah3aCrB7bqCIBe2qcAFOeeNH+eUnAkBLIqshVTQryGiD0LAHjmTS5IAHayS 9yw9peFoV1hhn+LvC8SYG/k3Y47mifWnNXjtVswSJdCEYtCmmXmJGf07QMdXriIl 4VcAoU1GZFUFxHvKlP9Y6XtVmWbo5VdwiK8j08wQWBA88Hz1qP43lM5+Qt7cG8yu VW+VmgPW2NIPvNzjlHvxfgMscI/YuUkzX+592zYOYIv7WLdgvFS8wDMsqm/yYQNH fLuSsQv4/C5eQBaap0sYXdbwfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdvkmHt Pgpx7wKkLyyiQIS0sbpDMB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y MkxJQzM3SGVJaFBBTEFOaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKxRs+8IbvwQEhwoGuctKkxES6uvi041KL2t32u87IMzHNIAh57uU3 waMbRQHjDWxYdLTqdOIK4y9T5o5aGiQJ14wLqe9L+KGQ5Y2PZGEvjdUezIR332wu ZQEv5AtEWjEtPm5/1YmlwhwvLT21dYfG867MSGClsTUxXntbJzjGVr1TwT/755qT QV8z1ZGtwKQa1CpvSHqhOc1RDxji70zBMEvpBPAKnSKjyA1P2AAxcfLe4w2VD+Sm zK/dlAUqLre59Xsc/qbJtDyIxFdxJuok5rydjShXE15OCI5+u5yFgS6RCQiEbaW/ aAkWzPNgBqYQtPCIXPdEuFJoyfCtTtdK -----END CERTIFICATE-----Generated at Mon Oct 20 14:03:38 2025 by rpki-client