$ rpki-client -vvf rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft File: HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft (raw, json) Hash identifier: ztICNUo6dwoKKpPgsye8UL5hEMV5ZN9WVc+4xWmtx4w= Subject key identifier: BF:B8:0F:4D:59:EB:AC:B6:C4:12:49:3E:35:0C:56:C2:03:EC:3C:CF Authority key identifier: 1D:3A:9A:8F:C9:7C:FC:D7:AE:84:FF:DC:5A:A0:BB:FB:96:93:DC:97 Certificate issuer: /CN=A913C52D/serialNumber=1D3A9A8FC97CFCD7AE84FFDC5AA0BBFB9693DC97 Certificate serial: 070F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft Manifest number: 070E Signing time: Thu 06 Nov 2025 19:51:16 +0000 Manifest this update: Thu 06 Nov 2025 19:51:15 +0000 Manifest next update: Thu 13 Nov 2025 19:51:15 +0000 Files and hashes: 1: HTqaj8l8_NeuhP_cWqC7-5aT3Jc.crl (hash: WMRVMNulhS6Q6UebivacQa4dgIP5zZaqbjaKA13cfGc=) 2: FCF8B992679111F09C8F057DC4F9AE02.roa (hash: kwKEGvjPSYWkocb09ei383ShnOWyBUUVEonrFFSPNGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.crl rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 19:51:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1807 (0x70f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C52D, serialNumber=1D3A9A8FC97CFCD7AE84FFDC5AA0BBFB9693DC97 Validity Not Before: Nov 6 19:51:15 2025 GMT Not After : Nov 13 19:51:15 2025 GMT Subject: CN=690cfc34-7936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a4:c9:9d:d7:50:de:90:80:48:60:27:d3:2c: 7f:8b:3d:9d:23:7d:58:bc:f8:b9:a3:6f:24:fc:c3: 94:35:95:5a:79:ce:21:23:a7:57:64:49:0b:e6:b3: 7f:e5:3d:66:c1:67:42:e2:ac:9b:78:23:2d:df:ad: 7b:1c:4e:7c:59:c7:83:f6:01:d8:75:e4:2e:80:6f: f8:52:12:cb:a6:e8:86:5c:b3:d2:45:bc:28:21:05: 13:80:4c:80:73:3e:61:31:f2:4a:bb:70:31:88:81: b7:44:0e:ec:70:d5:dc:96:56:d1:6c:fd:1a:e8:8a: 3c:63:75:87:f1:3e:7b:66:bc:29:61:15:63:3f:53: 13:ea:51:5d:ac:67:54:0d:f5:18:79:db:b5:25:29: 04:37:e7:76:85:30:d4:1d:ab:e6:5e:19:b8:dc:32: d9:d5:58:5a:2f:a5:7f:7e:f5:eb:52:08:48:a1:34: cb:b2:d3:7e:8a:45:34:8c:95:6a:3a:26:45:cb:08: 9e:12:2f:0b:2a:9d:23:eb:c1:79:a5:4a:79:cf:ba: 4c:6a:e0:33:1e:84:39:7f:f8:8f:8c:1a:33:5b:94: fa:30:4f:73:3a:01:ca:1e:2e:2d:55:ae:61:d1:2e: 35:0c:42:6b:36:a8:e9:62:32:20:7c:5f:88:2a:b2: 75:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:B8:0F:4D:59:EB:AC:B6:C4:12:49:3E:35:0C:56:C2:03:EC:3C:CF X509v3 Authority Key Identifier: keyid:1D:3A:9A:8F:C9:7C:FC:D7:AE:84:FF:DC:5A:A0:BB:FB:96:93:DC:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:9a:4b:b3:98:0b:ea:d8:a8:a8:a6:87:70:24:48:68:21:e6: 79:18:ae:b9:d6:29:ce:de:0d:02:ca:35:8f:4e:16:a6:12:2b: f5:e9:e8:b9:7b:61:34:c1:2a:53:b3:90:10:1c:32:31:c5:33: 0f:d6:27:cf:ff:b6:50:3e:70:97:9c:4d:63:23:61:c3:b2:55: c7:7d:b9:3b:be:a0:c4:e1:bf:28:aa:8e:8c:da:8d:b2:ea:02: 06:fc:93:d7:e7:92:ea:5a:69:84:dd:00:ff:bb:9d:4e:85:1a: e4:fa:4b:11:6d:a8:16:ef:37:0e:e7:a1:d2:95:ee:cf:db:9a: 95:97:5d:8b:52:bd:54:d3:b5:66:38:9e:ea:e2:c9:f4:c3:24: c9:20:d6:f4:bd:ea:9a:b3:69:05:72:58:c2:1a:da:d7:cc:fe: 3b:60:71:47:82:c2:c8:82:a9:2e:d3:83:9c:dc:98:61:aa:1e: b5:e9:24:5f:3c:07:1f:5a:68:0f:40:9b:c2:42:7b:4d:3b:8d: 86:ec:38:59:b5:74:4f:49:7c:11:2b:ea:c6:d7:70:0c:74:bc: eb:db:cd:6b:d9:ce:c3:9d:b5:0f:4c:a5:3e:4d:bb:44:63:19: e6:52:57:49:1a:43:e4:df:c2:ff:f0:03:df:d1:cd:48:c8:5a: 4a:80:8b:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M1MkQxMTAvBgNVBAUTKDFEM0E5QThGQzk3Q0ZDRDdBRTg0RkZEQzVBQTBCQkZC OTY5M0RDOTcwHhcNMjUxMTA2MTk1MTE1WhcNMjUxMTEzMTk1MTE1WjAYMRYwFAYD VQQDEw02OTBjZmMzNC03OTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KTJnddQ3pCASGAn0yx/iz2dI31YvPi5o28k/MOUNZVaec4hI6dXZEkL5rN/ 5T1mwWdC4qybeCMt3617HE58WceD9gHYdeQugG/4UhLLpuiGXLPSRbwoIQUTgEyA cz5hMfJKu3AxiIG3RA7scNXcllbRbP0a6Io8Y3WH8T57ZrwpYRVjP1MT6lFdrGdU DfUYedu1JSkEN+d2hTDUHavmXhm43DLZ1VhaL6V/fvXrUghIoTTLstN+ikU0jJVq OiZFywieEi8LKp0j68F5pUp5z7pMauAzHoQ5f/iPjBozW5T6ME9zOgHKHi4tVa5h 0S41DEJrNqjpYjIgfF+IKrJ1UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+4D01Z 66y2xBJJPjUMVsID7DzPMB8GA1UdIwQYMBaAFB06mo/JfPzXroT/3Fqgu/uWk9yX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzUyRC84RkE5NzZCRTVC QjcxMUVCOEJBRDIxNDJDNEY5QUUwMi9IVHFhajhsOF9OZXVoUF9jV3FDNy01YVQz SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hUcWFqOGw4X05ldWhQX2NXcUM3LTVhVDNKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzUyRC84RkE5NzZCRTVCQjcxMUVCOEJBRDIxNDJDNEY5QUUwMi9IVHFhajhsOF9O ZXVoUF9jV3FDNy01YVQzSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJmkuzmAvq2KiopodwJEhoIeZ5GK651inO3g0CyjWPThamEiv16ei5 e2E0wSpTs5AQHDIxxTMP1ifP/7ZQPnCXnE1jI2HDslXHfbk7vqDE4b8oqo6M2o2y 6gIG/JPX55LqWmmE3QD/u51OhRrk+ksRbagW7zcO56HSle7P25qVl12LUr1U07Vm OJ7q4sn0wyTJINb0veqas2kFcljCGtrXzP47YHFHgsLIgqku04Oc3Jhhqh616SRf PAcfWmgPQJvCQntNO42G7DhZtXRPSXwRK+rG13AMdLzr281r2c7DnbUPTKU+TbtE YxnmUldJGkPk38L/8APf0c1IyFpKgIuA -----END CERTIFICATE-----Generated at Fri Nov 7 12:59:21 2025 by rpki-client