$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft File: hYBFlRf-HXfU04pCnx0hxskt6TQ.mft (raw, json) Hash identifier: vqKQKPckeBjQ53hN0fP0xSxzAmdcJzNANsS6AJQQmC8= Subject key identifier: 3F:37:0D:AB:6A:16:73:50:07:19:21:AF:B1:EF:E1:64:25:91:E7:25 Authority key identifier: 85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 Certificate issuer: /CN=A9145B5E/serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Certificate serial: F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft Manifest number: F1 Signing time: Mon 03 Nov 2025 05:15:35 +0000 Manifest this update: Mon 03 Nov 2025 05:15:35 +0000 Manifest next update: Mon 10 Nov 2025 05:15:35 +0000 Files and hashes: 1: hYBFlRf-HXfU04pCnx0hxskt6TQ.crl (hash: b7NlykIpCqQ+F/QtWE/rh/xdm+9GsaZ12yEu7CQGrSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:15:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B5E, serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Validity Not Before: Nov 3 05:15:35 2025 GMT Not After : Nov 10 05:15:35 2025 GMT Subject: CN=69083a77-e7a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:03:93:8e:5b:50:aa:30:f4:94:7d:74:fd:e5: 52:56:7a:8f:57:fb:23:da:98:98:27:e8:29:e7:99: 01:4e:a9:3a:e7:00:2c:7c:80:2b:80:73:63:1a:10: cf:28:17:0d:6e:1b:cb:0e:53:c0:01:9a:d7:7b:ea: e3:5a:21:f7:b2:8c:c5:b3:4a:18:45:f2:cf:c1:93: 1f:c7:6d:57:b8:33:34:0f:e8:2d:35:6b:46:c3:ae: c7:47:f8:25:25:de:cb:b7:c6:e5:01:db:58:81:96: 0c:22:e5:94:b1:4f:07:56:3b:30:aa:0d:b1:d7:02: 9e:78:00:6f:33:5a:58:86:a0:6d:1b:f9:23:fb:1f: 57:86:51:5f:91:b9:d1:85:3c:0c:95:27:c6:40:72: 6c:0f:3e:1d:28:42:1a:72:26:07:d9:9e:12:f0:12: e4:2e:80:6b:08:ac:14:10:f0:fe:90:58:6f:a0:db: df:23:e4:b6:38:62:e9:1a:6c:2f:45:1d:c5:e4:c6: 17:1d:0d:79:55:62:7a:47:71:70:2a:ad:da:85:35: 61:13:1e:26:33:3d:99:88:41:91:92:b2:45:00:22: 8a:2a:c9:d1:19:da:d9:ed:48:5f:3a:af:8e:2b:28: 5b:77:cd:c6:32:89:45:7e:d2:59:09:83:a9:64:b0: 5e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:37:0D:AB:6A:16:73:50:07:19:21:AF:B1:EF:E1:64:25:91:E7:25 X509v3 Authority Key Identifier: keyid:85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:e7:4d:2c:08:2e:ab:80:81:64:8c:95:75:64:4b:21:4b:a0: b5:d6:7b:b7:4e:39:49:3a:d6:6a:8b:a0:18:5d:2c:29:2e:02: 31:2c:24:28:42:e6:ef:82:bf:c7:b8:2d:45:db:6a:7b:22:25: 7e:fd:93:2b:43:37:6f:ce:8e:8c:fa:85:75:cb:d1:25:25:0a: da:7d:85:60:15:11:d6:eb:51:b5:1b:dc:a9:73:5e:c2:33:2d: e9:0c:b1:0a:a6:01:0b:9c:13:66:f4:00:5a:4b:a4:77:8b:fe: ff:f0:34:09:e8:40:20:06:08:fb:7a:52:a5:d2:a4:e5:f7:6f: ee:73:97:b6:74:63:68:cb:2b:a6:c4:1f:cc:b5:ba:b9:a8:26: 1e:7a:cd:71:1d:65:03:91:6a:ce:16:74:43:5e:73:95:a2:0a: 1c:dd:2c:3d:c4:33:f9:2f:5a:5b:2c:ad:95:c3:d2:f6:51:c6: 6b:06:11:ca:34:d5:5b:b2:cb:be:e4:fe:ad:7b:f8:4e:54:e6: 4f:e9:c4:1c:b2:02:7f:35:40:d4:88:b1:e0:02:54:78:27:5e: 33:a9:04:04:2e:ec:7e:a3:9c:13:4a:35:32:4e:3c:02:ce:a9: 39:47:18:f9:1d:e4:2d:a9:7a:66:d3:44:fc:bd:40:09:ce:0d: 3a:03:1c:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCNUUxMTAvBgNVBAUTKDg1ODA0NTk1MTdGRTFENzdENEQzOEE0MjlGMUQyMUM2 QzkyREU5MzQwHhcNMjUxMTAzMDUxNTM1WhcNMjUxMTEwMDUxNTM1WjAYMRYwFAYD VQQDEw02OTA4M2E3Ny1lN2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQOTjltQqjD0lH10/eVSVnqPV/sj2piYJ+gp55kBTqk65wAsfIArgHNjGhDP KBcNbhvLDlPAAZrXe+rjWiH3sozFs0oYRfLPwZMfx21XuDM0D+gtNWtGw67HR/gl Jd7Lt8blAdtYgZYMIuWUsU8HVjswqg2x1wKeeABvM1pYhqBtG/kj+x9XhlFfkbnR hTwMlSfGQHJsDz4dKEIaciYH2Z4S8BLkLoBrCKwUEPD+kFhvoNvfI+S2OGLpGmwv RR3F5MYXHQ15VWJ6R3FwKq3ahTVhEx4mMz2ZiEGRkrJFACKKKsnRGdrZ7UhfOq+O Kyhbd83GMolFftJZCYOpZLBegQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD83Datq FnNQBxkhr7Hv4WQlkeclMB8GA1UdIwQYMBaAFIWARZUX/h131NOKQp8dIcbJLek0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUI1RS84NUJDRUU0QzQ1 QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhYZlUwNHBDbngwaHhza3Q2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZQkZsUmYtSFhmVTA0cENueDBoeHNrdDZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUI1RS84NUJDRUU0QzQ1QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhY ZlUwNHBDbngwaHhza3Q2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ500sCC6rgIFkjJV1ZEshS6C11nu3TjlJOtZqi6AYXSwpLgIxLCQo Qubvgr/HuC1F22p7IiV+/ZMrQzdvzo6M+oV1y9ElJQrafYVgFRHW61G1G9ypc17C My3pDLEKpgELnBNm9ABaS6R3i/7/8DQJ6EAgBgj7elKl0qTl92/uc5e2dGNoyyum xB/Mtbq5qCYees1xHWUDkWrOFnRDXnOVogoc3Sw9xDP5L1pbLK2Vw9L2UcZrBhHK NNVbssu+5P6te/hOVOZP6cQcsgJ/NUDUiLHgAlR4J14zqQQELux+o5wTSjUyTjwC zqk5Rxj5HeQtqXpm00T8vUAJzg06Axwy -----END CERTIFICATE-----Generated at Tue Nov 4 15:54:03 2025 by rpki-client