$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: Hi4GQeBFbzr/ivaRqFNcuADyAW+4DoF6tJW1ds+m2O4= Subject key identifier: F4:79:0F:E3:69:1C:DD:22:26:83:F6:30:0A:77:9F:55:12:84:95:76 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 0834 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 081F Signing time: Tue 04 Nov 2025 20:59:25 +0000 Manifest this update: Tue 04 Nov 2025 20:59:24 +0000 Manifest next update: Tue 11 Nov 2025 20:59:24 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: kmmAQVaw3fXItWzQ3AK/SNdVJewwT73WJuzndaDI4ig=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: 8DddYe6Xxj3AQcHWCxpAXO4NAnMo0qG6fie32kIabM4=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: zLBeyUvYeL3WiTP8OfhHdt93sxWxJckWd6if90VdF+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:59:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2100 (0x834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Nov 4 20:59:24 2025 GMT Not After : Nov 11 20:59:24 2025 GMT Subject: CN=690a692c-5302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cb:dd:a3:2a:b4:85:c3:a7:38:47:1e:cd:76: 17:5b:ac:d6:16:f6:73:19:f5:3a:b3:4e:43:29:62: de:3f:d1:5e:e1:6f:8e:1a:7b:14:af:2c:a6:18:f4: 80:63:43:fd:fa:c6:36:19:f3:c0:20:45:ec:ab:ac: 05:fe:31:f4:cc:1c:c4:d4:02:63:e0:ea:72:a6:af: 85:aa:1a:27:72:ae:2a:ff:ac:a4:ed:8e:14:8b:c6: b7:00:be:5d:58:a4:f1:88:8a:f7:27:30:f3:03:d5: 70:7d:c8:33:d8:3f:37:4a:12:1b:a9:ea:a0:14:49: ed:8a:e7:07:b7:40:2b:b1:ed:5a:a1:27:93:d3:e6: ff:03:86:6f:4f:6d:41:26:f0:13:46:a1:d6:8b:0f: 49:56:41:43:7e:ae:f2:eb:43:4e:6c:2b:be:2d:ed: 2d:ca:da:61:38:c8:0b:db:00:86:cc:5a:cb:94:50: 09:a9:89:24:c1:c0:44:0f:02:3f:78:c8:3e:f5:47: 40:40:42:12:96:95:2d:27:d4:98:1c:02:a6:f7:79: 79:28:31:5a:69:b6:c1:f6:7b:c7:ad:52:80:f8:20: 12:fd:e1:2c:e3:8c:5e:f1:03:4e:ea:c8:35:85:f5: 93:75:f0:98:25:15:04:a3:69:2a:84:74:7d:46:36: 35:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:79:0F:E3:69:1C:DD:22:26:83:F6:30:0A:77:9F:55:12:84:95:76 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:05:18:95:74:b9:de:dd:aa:d8:35:92:26:6f:37:71:b5:f8: d3:86:51:08:8b:6f:72:13:cd:f3:2c:38:c9:d3:98:75:88:0b: c3:cf:c7:a6:78:13:0d:b8:4b:54:33:fa:43:73:20:75:2a:9a: 23:3a:41:dd:04:b5:6a:49:c8:8e:f2:2c:3a:85:bd:f0:b2:8c: a9:c4:21:09:ed:26:f3:21:09:3e:98:59:d4:d8:e2:21:a1:ba: cf:5f:81:e6:53:c6:47:f6:9d:6b:f1:30:fd:42:13:cd:e2:e9: 61:e0:c6:5b:ce:67:57:6b:58:11:1a:ad:ae:e5:30:42:c3:7f: 89:fb:b1:7b:0e:75:5f:d4:f7:74:e0:65:04:f5:9b:5a:d3:ef: 67:5c:6d:fa:3f:60:57:f1:15:74:e2:67:f2:5c:d8:41:37:c6: c5:21:59:ed:db:99:04:3c:9c:41:2c:44:65:87:37:4d:a7:47: d5:3a:dd:16:1f:df:49:e5:72:f5:03:a1:68:7f:48:ab:be:d0: c9:07:67:a7:27:da:c5:c9:f7:5e:fc:28:ab:de:98:92:b7:28: 23:b4:07:c6:fa:f2:0d:84:74:4d:a6:9f:9b:92:2e:49:97:85: 18:46:43:d0:98:d4:d1:5a:36:a2:15:26:7a:38:ab:0c:4d:ff: d9:74:05:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjUxMTA0MjA1OTI0WhcNMjUxMTExMjA1OTI0WjAYMRYwFAYD VQQDEw02OTBhNjkyYy01MzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8vdoyq0hcOnOEcezXYXW6zWFvZzGfU6s05DKWLeP9Fe4W+OGnsUryymGPSA Y0P9+sY2GfPAIEXsq6wF/jH0zBzE1AJj4Opypq+Fqhoncq4q/6yk7Y4Ui8a3AL5d WKTxiIr3JzDzA9Vwfcgz2D83ShIbqeqgFEntiucHt0Arse1aoSeT0+b/A4ZvT21B JvATRqHWiw9JVkFDfq7y60NObCu+Le0tytphOMgL2wCGzFrLlFAJqYkkwcBEDwI/ eMg+9UdAQEISlpUtJ9SYHAKm93l5KDFaabbB9nvHrVKA+CAS/eEs44xe8QNO6sg1 hfWTdfCYJRUEo2kqhHR9RjY1cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPR5D+Np HN0iJoP2MAp3n1UShJV2MB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUBRiVdLne3arYNZImbzdxtfjThlEIi29yE83zLDjJ05h1iAvDz8em eBMNuEtUM/pDcyB1KpojOkHdBLVqSciO8iw6hb3wsoypxCEJ7SbzIQk+mFnU2OIh obrPX4HmU8ZH9p1r8TD9QhPN4ulh4MZbzmdXa1gRGq2u5TBCw3+J+7F7DnVf1Pd0 4GUE9Zta0+9nXG36P2BX8RV04mfyXNhBN8bFIVnt25kEPJxBLERlhzdNp0fVOt0W H99J5XL1A6Fof0irvtDJB2enJ9rFyfde/Cir3piStygjtAfG+vINhHRNpp+bki5J l4UYRkPQmNTRWjaiFSZ6OKsMTf/ZdAWF -----END CERTIFICATE-----Generated at Wed Nov 5 22:34:41 2025 by rpki-client