$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft File: hf--WNwc9_kcLTgTTiC27wssOl8.mft (raw, json) Hash identifier: SN/eRW3ukfJi2bkTptiX2Mpda0/7lcO2vv0jKUolkVo= Subject key identifier: B0:DC:47:4A:EC:F0:3E:F7:36:E3:63:91:AC:42:EF:19:BE:07:77:B3 Authority key identifier: 85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F Certificate issuer: /CN=A911954F/serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft Manifest number: 0276 Signing time: Wed 05 Nov 2025 04:05:16 +0000 Manifest this update: Wed 05 Nov 2025 04:05:15 +0000 Manifest next update: Wed 12 Nov 2025 04:05:15 +0000 Files and hashes: 1: hf--WNwc9_kcLTgTTiC27wssOl8.crl (hash: fsmdEIFCDv4wc0sGg7YpdA6jyo9ijuYpuenUzxha9dI=) 2: 6BCEC330344311EFB7DD0D34C4F9AE02.roa (hash: V5GXfj7MVmj/bsrh8ZK5BOMK+sTslcHA1M5O9HLWM8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:05:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911954F, serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Validity Not Before: Nov 5 04:05:15 2025 GMT Not After : Nov 12 04:05:15 2025 GMT Subject: CN=690accfb-79a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c3:01:72:1c:b3:62:95:b4:bc:77:be:51:c5: f9:74:e1:d0:b6:38:7d:21:9a:f7:f3:ba:fe:1f:bb: 2d:5c:d0:81:1b:91:27:ef:65:16:02:d7:dd:4e:d5: 4d:fb:0f:1c:45:33:ac:e4:81:9a:a4:bb:0c:37:96: 18:a4:18:8d:73:a8:3a:63:37:f4:19:77:c9:4a:34: 2e:65:53:04:ab:06:73:0b:c7:b1:f2:15:70:8f:11: 2b:da:60:7b:78:d1:a5:a9:61:b9:ea:e7:27:49:5d: 4d:ca:ec:5f:7e:fc:bc:c4:91:f9:4c:23:4e:8f:80: 15:de:a5:b6:3d:1c:92:d6:6f:6e:dc:8b:04:f5:1c: d7:e6:df:e5:a5:e6:8a:db:2d:3d:d5:ec:40:c3:21: 29:e3:46:07:98:27:74:83:05:c7:fb:1e:bb:ce:23: 39:80:aa:0c:af:25:10:0b:00:23:c6:8d:62:9b:f7: 86:a5:bf:53:1a:c3:2f:a7:48:66:c2:af:9d:b3:ce: df:49:27:be:3f:c8:0a:05:15:90:fc:53:64:b8:d7: c6:a9:16:bf:eb:87:e9:f7:f0:59:dd:4b:c2:ce:a8: 79:99:e5:c5:91:5e:00:a1:95:5a:a5:12:57:a4:b5: 27:97:6b:7c:0a:ea:34:2a:6b:cd:a4:4b:b4:fc:49: 85:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:DC:47:4A:EC:F0:3E:F7:36:E3:63:91:AC:42:EF:19:BE:07:77:B3 X509v3 Authority Key Identifier: keyid:85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:26:c8:0d:4c:7f:07:43:b3:61:9b:01:3b:79:11:af:85:49: 53:bd:7a:8b:eb:7a:62:39:65:34:d9:84:8f:37:8f:e4:be:86: c5:38:c4:93:81:f0:55:47:c2:e6:b9:98:eb:12:fd:2a:10:54: da:68:af:da:64:1b:47:8a:60:39:8e:8a:19:36:8e:42:31:2e: fd:7d:a6:d5:b9:9e:12:97:a9:a6:5c:e1:d2:b0:2b:30:26:6e: 2b:72:7a:53:cc:c3:e8:36:2f:72:56:76:9a:0f:b6:1a:32:b2: 24:f8:12:33:12:00:05:d7:ba:3b:5b:02:dd:7a:19:24:b5:f5: 61:b3:8d:a2:c8:3d:7d:71:32:84:58:9f:46:b4:5c:c3:21:7f: 7e:8b:47:9f:f4:1f:10:df:65:79:7b:64:eb:94:b3:bf:1f:f2: 16:15:a7:6a:99:ab:7d:fb:b9:01:99:a1:58:e5:9f:6d:d9:ac: 00:7a:cf:64:a0:cd:c8:b2:76:62:67:5d:df:84:01:b4:c9:41: 7e:15:21:10:95:10:69:91:ea:29:27:cf:f8:b8:87:f5:e9:b9: 6f:a1:df:bb:51:b5:9e:24:7f:ca:a5:51:cf:2d:d7:f7:a4:b0: 81:e8:61:be:d4:5a:3f:5c:9c:ef:a4:e3:2f:c4:5f:0f:ab:44: b2:8a:da:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1NEYxMTAvBgNVBAUTKDg1RkZCRTU4REMxQ0Y3RjkxQzJEMzgxMzRFMjBCNkVG MEIyQzNBNUYwHhcNMjUxMTA1MDQwNTE1WhcNMjUxMTEyMDQwNTE1WjAYMRYwFAYD VQQDEw02OTBhY2NmYi03OWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA58MBchyzYpW0vHe+UcX5dOHQtjh9IZr387r+H7stXNCBG5En72UWAtfdTtVN +w8cRTOs5IGapLsMN5YYpBiNc6g6Yzf0GXfJSjQuZVMEqwZzC8ex8hVwjxEr2mB7 eNGlqWG56ucnSV1Nyuxffvy8xJH5TCNOj4AV3qW2PRyS1m9u3IsE9RzX5t/lpeaK 2y091exAwyEp40YHmCd0gwXH+x67ziM5gKoMryUQCwAjxo1im/eGpb9TGsMvp0hm wq+ds87fSSe+P8gKBRWQ/FNkuNfGqRa/64fp9/BZ3UvCzqh5meXFkV4AoZVapRJX pLUnl2t8Cuo0KmvNpEu0/EmFpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDcR0rs 8D73NuNjkaxC7xm+B3ezMB8GA1UdIwQYMBaAFIX/vljcHPf5HC04E04gtu8LLDpf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTU0Ri81OTFBMzIyMDkx NEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlfa2NMVGdUVGlDMjd3c3NP bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hmLS1XTndjOV9rY0xUZ1RUaUMyN3dzc09sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTU0Ri81OTFBMzIyMDkxNEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlf a2NMVGdUVGlDMjd3c3NPbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtJsgNTH8HQ7NhmwE7eRGvhUlTvXqL63piOWU02YSPN4/kvobFOMST gfBVR8LmuZjrEv0qEFTaaK/aZBtHimA5jooZNo5CMS79fabVuZ4Sl6mmXOHSsCsw Jm4rcnpTzMPoNi9yVnaaD7YaMrIk+BIzEgAF17o7WwLdehkktfVhs42iyD19cTKE WJ9GtFzDIX9+i0ef9B8Q32V5e2TrlLO/H/IWFadqmat9+7kBmaFY5Z9t2awAes9k oM3IsnZiZ13fhAG0yUF+FSEQlRBpkeopJ8/4uIf16blvod+7UbWeJH/KpVHPLdf3 pLCB6GG+1Fo/XJzvpOMvxF8Pq0Syitp2 -----END CERTIFICATE-----Generated at Wed Nov 5 10:25:28 2025 by rpki-client