$ rpki-client -vvf rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft File: HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft (raw, json) Hash identifier: ADc/J6ON3Qy7RuAabBGNNwvNMx0ROey56QCGfi8c5UE= Subject key identifier: A6:E6:D5:FC:85:4C:99:0A:32:82:63:FB:56:95:A0:65:AF:78:B7:01 Authority key identifier: 1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E Certificate issuer: /CN=A911D848/serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft Manifest number: C8 Signing time: Wed 05 Nov 2025 06:07:51 +0000 Manifest this update: Wed 05 Nov 2025 06:07:51 +0000 Manifest next update: Wed 12 Nov 2025 06:07:51 +0000 Files and hashes: 1: HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl (hash: 9prbIL0xqBKHpv20j3dNzr4OYmxtQ4WwTo8MU2YcvlA=) 2: F0C8DB1CA54E11EF8592FD66C4F9AE02.roa (hash: pGqkeCwicqjTqpVAd+nv6sW9bSd6/F8SqrVl+2o3VCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D848, serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Validity Not Before: Nov 5 06:07:51 2025 GMT Not After : Nov 12 06:07:51 2025 GMT Subject: CN=690ae9b7-aad3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e8:d8:90:e0:78:d4:05:58:36:45:5f:4f:d6: 68:57:cd:57:52:c9:e3:31:45:6c:0f:3f:df:c0:d0: e9:20:0c:dd:65:30:d7:8e:50:1a:d8:f9:b2:5e:2d: 1f:56:f1:2d:04:94:6e:08:6f:c2:c5:65:e9:f6:84: b1:ca:e6:26:d4:0e:6d:a9:50:54:d9:c3:5c:f9:ba: a9:9e:22:c9:34:e0:34:db:3a:97:da:7d:82:77:66: df:c5:a1:11:38:fc:48:9a:d2:49:ae:c8:cb:8a:b6: ec:5f:6e:e8:67:5d:28:03:6f:f2:fa:a2:8b:c9:69: 45:fa:29:53:e6:32:5f:b1:04:ef:74:64:77:68:4a: 0c:05:17:17:e9:71:56:57:1b:6a:8b:69:ef:ad:f7: 0c:d4:f1:b9:af:1c:85:dc:6f:5b:da:bc:1b:c8:9d: e2:32:d9:7e:a3:60:89:bb:7e:83:74:4a:f8:a7:19: 8d:69:62:ca:c4:8b:2b:b0:a6:1c:23:5f:29:fb:45: 22:d6:bf:ca:a3:94:b4:32:c2:1d:10:5b:92:65:ed: 23:e6:4d:70:11:d5:25:ba:d1:4a:f1:ec:80:67:b4: ff:d0:2f:ee:47:ec:f7:a6:f0:d9:1f:21:2d:ee:93: 20:6c:fb:b9:1d:f9:45:2d:ae:78:73:4c:69:69:88: ca:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:E6:D5:FC:85:4C:99:0A:32:82:63:FB:56:95:A0:65:AF:78:B7:01 X509v3 Authority Key Identifier: keyid:1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:de:5f:14:1c:f1:4e:47:87:1a:ec:d3:44:d7:74:c1:a3:cd: ce:f1:da:24:bc:96:56:a3:1d:75:a0:0c:75:65:a5:fe:76:90: bd:1f:4f:c0:09:9b:05:b2:7b:ec:39:0e:12:eb:f0:52:6f:a8: 3f:11:af:2b:8f:b8:d8:2f:16:bb:94:cb:9e:58:38:8a:d0:68: fe:58:e7:75:da:05:03:66:af:32:c8:bb:60:eb:51:f9:d3:b1: f7:a5:a1:93:de:bc:43:d1:12:c2:a9:13:e9:ef:32:7d:c9:a3: ab:1c:14:2e:a1:7a:95:9e:0c:27:a4:26:6d:8b:65:bb:96:f8: 11:15:15:2b:dd:1a:5f:fb:eb:13:27:e1:e2:43:58:6f:b0:1d: 23:dd:ca:98:f2:ea:6d:1b:24:61:4d:18:12:b6:7d:14:45:f8: 34:50:0e:4c:5a:2a:ef:81:ad:73:bc:5e:24:a1:09:03:ab:f8: b4:cc:9e:c3:38:94:7a:8a:2c:2a:12:0b:40:36:9a:18:c5:b0: be:bc:b2:dc:c5:2d:0a:a5:38:55:94:d1:91:26:ce:5f:a7:7e: 25:12:93:c7:c1:56:98:3d:6b:ce:59:4f:16:76:02:95:04:fb: c6:2a:68:5a:c7:de:fa:b2:11:3b:02:e2:21:e8:19:7d:62:45: d6:66:13:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ4NDgxMTAvBgNVBAUTKDFERDFCODY4Nzg4NjkyNEM0NjEzMTE2MDUwRUU5MEU5 RDQ5NDI2OUUwHhcNMjUxMTA1MDYwNzUxWhcNMjUxMTEyMDYwNzUxWjAYMRYwFAYD VQQDEw02OTBhZTliNy1hYWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ejYkOB41AVYNkVfT9ZoV81XUsnjMUVsDz/fwNDpIAzdZTDXjlAa2PmyXi0f VvEtBJRuCG/CxWXp9oSxyuYm1A5tqVBU2cNc+bqpniLJNOA02zqX2n2Cd2bfxaER OPxImtJJrsjLirbsX27oZ10oA2/y+qKLyWlF+ilT5jJfsQTvdGR3aEoMBRcX6XFW Vxtqi2nvrfcM1PG5rxyF3G9b2rwbyJ3iMtl+o2CJu36DdEr4pxmNaWLKxIsrsKYc I18p+0Ui1r/Ko5S0MsIdEFuSZe0j5k1wEdUlutFK8eyAZ7T/0C/uR+z3pvDZHyEt 7pMgbPu5HflFLa54c0xpaYjKcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKbm1fyF TJkKMoJj+1aVoGWveLcBMB8GA1UdIwQYMBaAFB3RuGh4hpJMRhMRYFDukOnUlCae MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDg0OC9DMjUxQjVCMjlC MTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2treEdFeEZnVU82UTZkU1VK cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkRzRhSGlHa2t4R0V4RmdVTzZRNmRTVUpwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDg0OC9DMjUxQjVCMjlCMTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2tr eEdFeEZnVU82UTZkU1VKcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA53l8UHPFOR4ca7NNE13TBo83O8dokvJZWox11oAx1ZaX+dpC9H0/A CZsFsnvsOQ4S6/BSb6g/Ea8rj7jYLxa7lMueWDiK0Gj+WOd12gUDZq8yyLtg61H5 07H3paGT3rxD0RLCqRPp7zJ9yaOrHBQuoXqVngwnpCZti2W7lvgRFRUr3Rpf++sT J+HiQ1hvsB0j3cqY8uptGyRhTRgStn0URfg0UA5MWirvga1zvF4koQkDq/i0zJ7D OJR6iiwqEgtANpoYxbC+vLLcxS0KpThVlNGRJs5fp34lEpPHwVaYPWvOWU8WdgKV BPvGKmhax976shE7AuIh6Bl9YkXWZhPo -----END CERTIFICATE-----Generated at Thu Nov 6 00:37:04 2025 by rpki-client