$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft File: HWQu0o7OpfKqzzR7Fgl_nZJB120.mft (raw, json) Hash identifier: 0K83vU5xsdExo3b0B0y7NncjAhjcV3vJaemHD/EaEYg= Subject key identifier: 26:41:5C:E7:E5:EC:BC:4F:EB:96:FD:4F:E1:12:9D:07:67:7F:20:F7 Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D Certificate issuer: /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Certificate serial: 03A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft Manifest number: 03A0 Signing time: Wed 05 Nov 2025 00:50:04 +0000 Manifest this update: Wed 05 Nov 2025 00:50:04 +0000 Manifest next update: Wed 12 Nov 2025 00:50:04 +0000 Files and hashes: 1: HWQu0o7OpfKqzzR7Fgl_nZJB120.crl (hash: Xo8ue4l3+8B//YnC3fJRibwnFGGllFpz29LraXVkAjQ=) 2: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (hash: 8hUucYPHQ79ZY6uDpo1eHlNtJ78CYgic7xieJwMDGwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:50:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 932 (0x3a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118E3A, serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Validity Not Before: Nov 5 00:50:04 2025 GMT Not After : Nov 12 00:50:04 2025 GMT Subject: CN=690a9f3c-09d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:62:fa:81:64:1a:2e:2c:f0:8b:99:c5:f1:e4: 69:2a:7c:aa:83:b9:b2:e0:0a:83:31:61:39:b5:f0: 90:7b:fc:e6:4c:ac:27:91:8a:eb:53:31:76:6c:a9: 18:dc:e0:c6:22:9e:09:39:23:1c:dc:ea:b5:01:57: e1:b2:4b:24:f3:9b:af:60:88:d5:4d:55:cd:08:62: f7:4c:db:56:28:5c:46:f6:b8:ef:6c:0c:37:31:a2: 04:d4:bb:ea:8a:d4:0d:3f:d4:4e:12:42:16:cc:a8: 43:eb:72:55:b6:9f:3f:5d:da:6c:d8:4d:14:e2:2b: 88:ec:97:cf:60:0d:6e:c3:cd:7c:90:14:98:ce:ce: 12:9a:0a:e6:04:42:54:59:c3:9c:75:83:e2:be:93: 85:29:93:04:16:c4:33:7c:39:60:70:91:24:b0:13: 58:46:f2:07:6e:3a:18:a7:f0:e7:4f:f0:f5:50:3e: 4e:f8:84:15:4b:8c:04:d3:21:db:98:66:95:85:6a: 2d:5c:6d:5c:ac:60:e8:b4:00:ae:3f:b9:c0:ff:3a: 6d:19:9a:8f:0e:06:d8:70:41:2c:9e:91:61:9e:d8: c4:e9:a1:f5:42:d0:8c:4b:1b:26:8d:62:9a:e8:4b: ac:93:58:a8:fe:88:2b:1a:ae:29:90:e3:e2:3b:dd: 3f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:41:5C:E7:E5:EC:BC:4F:EB:96:FD:4F:E1:12:9D:07:67:7F:20:F7 X509v3 Authority Key Identifier: keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:68:ab:ed:1f:3a:16:ca:d7:a5:71:c0:35:fe:e5:f9:9d:de: 4b:eb:0e:71:ab:08:f7:72:bf:4e:54:67:15:16:41:8a:35:38: 75:bb:d7:01:7d:dc:fa:f7:38:53:a2:2b:88:7b:ae:58:a1:9b: 33:31:db:65:f0:ea:05:3e:74:0b:aa:93:50:57:f8:15:64:cd: fa:56:56:63:40:16:cc:ae:04:c9:3b:02:e6:24:48:ac:9c:84: 8f:ef:95:f2:1a:0e:01:1a:39:b2:0a:d2:63:19:02:a3:5a:c8: f2:76:59:0f:81:37:1b:fe:d7:a8:a9:4d:0e:e6:39:35:be:7f: 19:a1:cf:44:5d:b6:7c:98:af:a3:41:ec:0f:be:a8:cf:c1:20: 5a:c3:b2:6d:02:14:b4:6e:90:9b:4d:bb:49:85:e7:a2:bd:60: 70:1d:77:41:50:07:57:88:55:5b:55:33:4a:6a:f5:bd:09:c3: f5:4f:da:d2:ab:a3:6a:c5:05:17:1b:1b:07:80:fa:5f:fe:f8: 14:02:c0:90:dd:8a:84:64:e2:47:a9:42:69:be:5d:5a:c6:7e: 4c:9c:df:31:65:9b:d1:11:9d:d7:2c:4d:13:b8:9f:65:1c:86: e2:5b:08:77:f7:ea:5d:22:7a:e2:34:8a:89:bf:03:8c:a1:59: 2b:4b:74:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFM0ExMTAvBgNVBAUTKDFENjQyRUQyOEVDRUE1RjJBQUNGMzQ3QjE2MDk3RjlE OTI0MUQ3NkQwHhcNMjUxMTA1MDA1MDA0WhcNMjUxMTEyMDA1MDA0WjAYMRYwFAYD VQQDEw02OTBhOWYzYy0wOWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn2L6gWQaLizwi5nF8eRpKnyqg7my4AqDMWE5tfCQe/zmTKwnkYrrUzF2bKkY 3ODGIp4JOSMc3Oq1AVfhsksk85uvYIjVTVXNCGL3TNtWKFxG9rjvbAw3MaIE1Lvq itQNP9ROEkIWzKhD63JVtp8/Xdps2E0U4iuI7JfPYA1uw818kBSYzs4SmgrmBEJU WcOcdYPivpOFKZMEFsQzfDlgcJEksBNYRvIHbjoYp/DnT/D1UD5O+IQVS4wE0yHb mGaVhWotXG1crGDotACuP7nA/zptGZqPDgbYcEEsnpFhntjE6aH1QtCMSxsmjWKa 6Eusk1io/ogrGq4pkOPiO90/JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZBXOfl 7LxP65b9T+ESnQdnfyD3MB8GA1UdIwQYMBaAFB1kLtKOzqXyqs80exYJf52SQddt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEUzQS9BN0FCMEE4QUI5 OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3BmS3F6elI3RmdsX25aSkIx MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXUXUwbzdPcGZLcXp6UjdGZ2xfblpKQjEyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEUzQS9BN0FCMEE4QUI5OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3Bm S3F6elI3RmdsX25aSkIxMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLaKvtHzoWytelccA1/uX5nd5L6w5xqwj3cr9OVGcVFkGKNTh1u9cB fdz69zhToiuIe65YoZszMdtl8OoFPnQLqpNQV/gVZM36VlZjQBbMrgTJOwLmJEis nISP75XyGg4BGjmyCtJjGQKjWsjydlkPgTcb/teoqU0O5jk1vn8Zoc9EXbZ8mK+j QewPvqjPwSBaw7JtAhS0bpCbTbtJheeivWBwHXdBUAdXiFVbVTNKavW9CcP1T9rS q6NqxQUXGxsHgPpf/vgUAsCQ3YqEZOJHqUJpvl1axn5MnN8xZZvREZ3XLE0TuJ9l HIbiWwh39+pdInriNIqJvwOMoVkrS3T8 -----END CERTIFICATE-----Generated at Wed Nov 5 05:07:48 2025 by rpki-client