$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft File: hgOgrKcgSw7-1k23DeUcdboDk1U.mft (raw, json) Hash identifier: dKo0iws3WbvBQmQBtW4KrLA4Cv4nMbjtqM4vztnT7lg= Subject key identifier: 4B:0F:21:BF:9C:71:14:FD:C4:92:16:F2:5C:8F:BD:F8:80:28:F5:A2 Authority key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 Certificate issuer: /CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Certificate serial: 0314 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft Manifest number: 02FD Signing time: Wed 05 Nov 2025 01:24:16 +0000 Manifest this update: Wed 05 Nov 2025 01:24:15 +0000 Manifest next update: Wed 12 Nov 2025 01:24:15 +0000 Files and hashes: 1: hgOgrKcgSw7-1k23DeUcdboDk1U.crl (hash: XgmLeop61XVd5yZxOI++kU8pIIVLVOHRMuhHawDdHxo=) 2: 673C2B68A8BA11F096079D46C4F9AE02.roa (hash: gPhfTgtKlx4wmH5qoiWguK/Xx1pbfFOHbMckJ1VrL+Q=) 3: 208C7D2E066C11EDB31C2239C4F9AE02.roa (hash: j8sJFdaGh5hoT/OlB8BepmWR8CssCrYtB82PMaTll9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 788 (0x314) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EB2, serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Validity Not Before: Nov 5 01:24:15 2025 GMT Not After : Nov 12 01:24:15 2025 GMT Subject: CN=690aa740-482d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4a:79:16:11:3c:7f:a6:50:70:8e:d2:a7:ea: 77:6b:8b:92:94:cd:76:e6:91:ab:84:38:5a:69:8c: a1:5c:d2:d1:7c:93:bd:72:85:93:6e:10:6e:23:bb: 55:39:f2:a5:03:e2:36:09:be:65:35:dd:66:80:71: 9c:c0:bc:ed:48:ce:6f:92:a8:a8:c5:de:d1:49:4c: 8c:ca:b8:64:66:74:19:3c:8c:2b:0a:0a:4b:de:8b: 08:2d:11:a5:cb:c1:db:e8:01:2a:96:3c:f8:2d:75: 95:31:a4:17:dc:e0:63:eb:0e:45:b9:32:8b:d1:8c: f6:32:bb:02:fa:00:db:62:00:52:df:13:23:01:c0: 12:1a:13:1c:6f:5a:c5:3a:19:a7:c4:39:94:ac:0a: 30:50:4c:5d:5a:dc:b0:2d:ce:da:a4:13:4e:25:cc: 40:cf:07:28:99:18:2a:c5:34:f1:46:7a:f2:6f:c7: d6:ca:86:63:c1:1b:ee:70:19:63:a9:44:8f:83:4a: 94:2e:ce:47:93:bc:7f:d2:d9:57:e2:49:37:65:d8: 45:63:bb:d0:e7:7e:6f:b4:8a:25:0f:fa:6a:03:15: ed:59:7e:04:5f:0e:08:64:52:6d:51:fb:aa:20:2e: 00:34:d2:2b:f4:cc:b3:ec:6a:98:89:01:b5:f7:ab: ef:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:0F:21:BF:9C:71:14:FD:C4:92:16:F2:5C:8F:BD:F8:80:28:F5:A2 X509v3 Authority Key Identifier: keyid:86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:3c:94:19:8c:8c:d3:fa:98:07:9f:36:0c:1e:e1:d0:b7:ba: f5:42:72:0a:08:d5:a0:1a:06:b2:0a:ff:90:9c:ec:66:59:43: 7c:1b:14:fb:c6:d6:c5:09:37:17:a5:3a:fe:37:aa:61:09:6b: 81:d2:01:d0:3e:75:93:88:78:cc:c8:88:e5:99:be:43:4d:f0: 14:2e:0c:7a:be:cc:47:b9:9f:6d:32:9c:da:46:93:47:a4:ae: 74:12:14:fa:c0:af:cb:e6:ad:93:7d:44:7a:13:57:99:11:e1: 0f:fa:80:ed:bf:5d:d1:72:cd:a2:5d:95:cf:c1:ac:18:c8:42: 64:53:54:77:81:6b:be:b4:18:5d:d7:ad:b7:e4:2a:cf:19:88: 79:24:9a:64:e6:53:75:a9:76:a1:e2:a8:87:16:9d:b1:27:a1: 1e:07:c4:d2:49:f3:94:fe:dd:2e:4f:d4:f8:2a:97:83:1c:d3: d0:f8:4c:2b:aa:12:4e:80:48:0f:ba:bb:84:d4:02:db:b0:78: 59:40:f8:b2:00:f1:0e:05:74:65:a9:11:02:b1:25:c9:23:44: d8:91:ee:f9:19:53:60:fd:7a:2e:28:e4:82:a0:fe:f6:dd:4e: e6:f7:b5:2e:d9:a2:33:26:36:82:3d:ca:39:71:62:5f:3d:a6: 2c:48:ff:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFQjIxMTAvBgNVBAUTKDg2MDNBMEFDQTcyMDRCMEVGRUQ2NERCNzBERTUxQzc1 QkEwMzkzNTUwHhcNMjUxMTA1MDEyNDE1WhcNMjUxMTEyMDEyNDE1WjAYMRYwFAYD VQQDEw02OTBhYTc0MC00ODJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0p5FhE8f6ZQcI7Sp+p3a4uSlM125pGrhDhaaYyhXNLRfJO9coWTbhBuI7tV OfKlA+I2Cb5lNd1mgHGcwLztSM5vkqioxd7RSUyMyrhkZnQZPIwrCgpL3osILRGl y8Hb6AEqljz4LXWVMaQX3OBj6w5FuTKL0Yz2MrsC+gDbYgBS3xMjAcASGhMcb1rF OhmnxDmUrAowUExdWtywLc7apBNOJcxAzwcomRgqxTTxRnryb8fWyoZjwRvucBlj qUSPg0qULs5Hk7x/0tlX4kk3ZdhFY7vQ535vtIolD/pqAxXtWX4EXw4IZFJtUfuq IC4ANNIr9Myz7GqYiQG196vv5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEsPIb+c cRT9xJIW8lyPvfiAKPWiMB8GA1UdIwQYMBaAFIYDoKynIEsO/tZNtw3lHHW6A5NV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVCMi83QUM3NjdERTA2 NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3Ny0xazIzRGVVY2Rib0Rr MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnT2dyS2NnU3c3LTFrMjNEZVVjZGJvRGsxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVCMi83QUM3NjdERTA2NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3 Ny0xazIzRGVVY2Rib0RrMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+PJQZjIzT+pgHnzYMHuHQt7r1QnIKCNWgGgayCv+QnOxmWUN8GxT7 xtbFCTcXpTr+N6phCWuB0gHQPnWTiHjMyIjlmb5DTfAULgx6vsxHuZ9tMpzaRpNH pK50EhT6wK/L5q2TfUR6E1eZEeEP+oDtv13Rcs2iXZXPwawYyEJkU1R3gWu+tBhd 16235CrPGYh5JJpk5lN1qXah4qiHFp2xJ6EeB8TSSfOU/t0uT9T4KpeDHNPQ+Ewr qhJOgEgPuruE1ALbsHhZQPiyAPEOBXRlqRECsSXJI0TYke75GVNg/XouKOSCoP72 3U7m97Uu2aIzJjaCPco5cWJfPaYsSP99 -----END CERTIFICATE-----Generated at Wed Nov 5 15:04:20 2025 by rpki-client