$ rpki-client -vvf rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft File: hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft (raw, json) Hash identifier: zyyfFoqbVqBY2j6TRb9CDFdhs0cmVlON6fgEsf+mz4k= Subject key identifier: A9:87:81:8F:92:E9:1D:53:87:95:75:0E:1F:40:CC:1D:37:3A:AC:0E Authority key identifier: 85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF Certificate issuer: /CN=A911C9E8/serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Certificate serial: 0190 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft Manifest number: 018D Signing time: Mon 03 Nov 2025 03:30:57 +0000 Manifest this update: Mon 03 Nov 2025 03:30:56 +0000 Manifest next update: Mon 10 Nov 2025 03:30:56 +0000 Files and hashes: 1: hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl (hash: In/+9EdNShNUn+1IwIFeg1x63hV4rs9xuf5Lw83IFfI=) 2: E39F4ED65C2411EEB54C4F43C4F9AE02.roa (hash: jSX8BBXcDhKRO02h61flDcL9PRKVJzf27mu274wCdhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C9E8, serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Validity Not Before: Nov 3 03:30:56 2025 GMT Not After : Nov 10 03:30:56 2025 GMT Subject: CN=690821f0-8bb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8e:29:9c:ac:14:d1:3a:23:28:bf:2e:d3:fa: 50:28:1f:2d:fe:11:0f:60:40:27:03:b7:7a:44:c9: 8c:e0:30:35:7b:57:e3:eb:00:73:89:7b:92:75:9b: 79:58:83:d7:19:a1:df:a7:37:b3:aa:3b:1e:b2:34: 53:98:3b:0d:6a:40:5b:5d:5e:6f:bb:ba:c5:65:ee: 54:83:3f:d4:35:00:e5:6b:86:80:a3:10:0a:66:4d: 57:b6:b7:e9:d6:6a:a5:94:94:83:73:ba:97:64:f1: 9e:04:fc:2f:98:79:36:2a:64:a4:95:1e:bb:43:ff: 30:a7:9f:4c:be:6b:f0:9c:49:a2:a2:07:80:e4:45: 4e:df:24:b5:e2:e2:65:99:db:1f:88:3d:ee:d8:34: 43:76:a7:84:23:7d:bb:24:c2:01:50:d4:5b:4a:58: 54:e4:77:d5:35:25:79:0d:fc:ec:1f:10:13:ee:30: 99:48:02:30:3b:be:67:76:21:57:ae:46:d8:10:7c: 62:58:f6:81:ab:ba:e4:ab:8f:de:d9:16:9a:16:a5: 51:ec:ca:2f:48:6d:77:ff:d0:a6:5b:1e:a3:72:11: 27:0b:51:6a:ca:74:6d:09:45:45:79:be:04:81:b5: b8:82:b7:9c:af:65:55:f2:71:f6:aa:e7:9a:49:a1: 26:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:87:81:8F:92:E9:1D:53:87:95:75:0E:1F:40:CC:1D:37:3A:AC:0E X509v3 Authority Key Identifier: keyid:85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:e5:a5:6f:b6:39:3a:5a:b1:d4:1f:92:e6:b5:f4:08:50:23: 15:5b:db:f0:ad:d9:3c:0a:7e:21:ec:e6:44:3b:b3:5e:51:3f: fd:1c:c0:e4:18:86:a9:03:2f:ea:10:fc:71:d2:af:65:7e:63: 5b:0f:2f:08:cb:24:1a:bb:dd:22:2c:2b:59:37:eb:33:93:d3: 92:a9:f5:bc:a3:f8:4a:bc:40:d8:e7:50:f3:60:76:67:a5:12: 9d:1a:3c:50:74:b7:b9:58:36:cf:a3:d2:b2:ec:1d:a2:8b:13: 65:40:25:cb:13:d4:c2:44:82:2f:98:43:00:24:0a:10:d2:7d: 0e:2d:44:da:9d:70:f5:21:02:d5:36:22:7b:50:c6:de:0f:c3: 90:03:50:06:f4:2d:7d:ec:3a:f9:0f:43:99:ea:86:84:be:b9: 0c:c6:65:63:1b:10:8f:9f:c3:28:bb:21:ed:0e:a8:99:b8:39: 86:70:a1:37:77:38:84:1c:44:d0:c5:60:16:a7:72:62:a4:65: 53:ae:3e:e2:39:e7:5b:2f:94:64:21:a4:98:f7:72:26:92:b2: bd:bb:70:5d:d6:68:cb:6f:c7:53:8f:a2:f7:80:e9:dc:36:db: a3:d8:04:31:25:2b:45:ee:e7:71:f4:ea:05:03:fd:de:bd:08: ea:7e:81:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM5RTgxMTAvBgNVBAUTKDg1Mjk5RjBEQjE0QzhGMEE1M0QyNDQ2RUZEQjBDQzA1 OUMxNTI0QkYwHhcNMjUxMTAzMDMzMDU2WhcNMjUxMTEwMDMzMDU2WjAYMRYwFAYD VQQDEw02OTA4MjFmMC04YmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoo4pnKwU0TojKL8u0/pQKB8t/hEPYEAnA7d6RMmM4DA1e1fj6wBziXuSdZt5 WIPXGaHfpzezqjsesjRTmDsNakBbXV5vu7rFZe5Ugz/UNQDla4aAoxAKZk1Xtrfp 1mqllJSDc7qXZPGeBPwvmHk2KmSklR67Q/8wp59MvmvwnEmiogeA5EVO3yS14uJl mdsfiD3u2DRDdqeEI327JMIBUNRbSlhU5HfVNSV5DfzsHxAT7jCZSAIwO75ndiFX rkbYEHxiWPaBq7rkq4/e2RaaFqVR7MovSG13/9CmWx6jchEnC1FqynRtCUVFeb4E gbW4grecr2VV8nH2queaSaEmsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmHgY+S 6R1Th5V1Dh9AzB03OqwOMB8GA1UdIwQYMBaAFIUpnw2xTI8KU9JEbv2wzAWcFSS/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzlFOC9GREY2NzMwNjU4 RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3cFQwa1J1X2JETUJad1ZK TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hTbWZEYkZNandwVDBrUnVfYkRNQlp3VkpMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzlFOC9GREY2NzMwNjU4RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3 cFQwa1J1X2JETUJad1ZKTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB35aVvtjk6WrHUH5LmtfQIUCMVW9vwrdk8Cn4h7OZEO7NeUT/9HMDk GIapAy/qEPxx0q9lfmNbDy8IyyQau90iLCtZN+szk9OSqfW8o/hKvEDY51DzYHZn pRKdGjxQdLe5WDbPo9Ky7B2iixNlQCXLE9TCRIIvmEMAJAoQ0n0OLUTanXD1IQLV NiJ7UMbeD8OQA1AG9C197Dr5D0OZ6oaEvrkMxmVjGxCPn8MouyHtDqiZuDmGcKE3 dziEHETQxWAWp3JipGVTrj7iOedbL5RkIaSY93ImkrK9u3Bd1mjLb8dTj6L3gOnc Ntuj2AQxJStF7udx9OoFA/3evQjqfoGF -----END CERTIFICATE-----Generated at Tue Nov 4 16:31:54 2025 by rpki-client