$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: gXERghcWA2DvqtPGUohmaswk1ElKRitT26OISzp7v7k= Subject key identifier: BA:EB:F2:37:48:E0:5B:30:38:EF:18:61:A0:97:5D:A8:65:EB:37:96 Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 13DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 13CA Signing time: Tue 04 Nov 2025 17:02:57 +0000 Manifest this update: Tue 04 Nov 2025 17:02:56 +0000 Manifest next update: Tue 11 Nov 2025 17:02:56 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: EueAitgHsLd38iTxKFQRLSZUERPvO0meE7dmlu7fxOI=) 2: 813A255423A611F09025FC11C4F9AE02.roa (hash: uohcAOcE60pEPVtJLM2mjq+61BAF61CBsuLOOzelXqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5087 (0x13df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Nov 4 17:02:56 2025 GMT Not After : Nov 11 17:02:56 2025 GMT Subject: CN=690a31c0-d820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:50:1b:1b:01:bb:fe:f7:2f:36:e4:c5:ce:6a: 48:bf:ca:cd:6c:1a:4c:46:d5:19:ed:97:61:a8:0d: 0a:27:e6:bd:a5:2f:4b:e3:bb:56:0c:56:bf:14:01: a4:73:aa:b1:c5:05:f1:62:64:a0:7d:7d:9c:e8:f7: a3:4a:df:73:17:69:c9:5c:45:f2:a4:d6:e0:e0:25: 12:6f:80:1a:ce:95:e7:e2:49:a4:81:ce:c9:79:79: d3:66:69:fc:b2:cb:73:a8:fa:59:b9:24:8a:38:f7: 24:f5:0c:8b:42:f5:29:0e:75:23:20:48:41:26:36: 26:e7:ac:b4:0f:11:12:4d:9a:a4:55:db:6b:80:39: 75:a2:f1:88:c4:66:26:f7:9a:c0:62:1e:0b:2f:5f: 5e:f4:29:25:91:ab:93:5e:c8:d4:48:ce:01:91:0a: 72:38:e8:fd:e1:f6:29:6b:ad:5e:f3:ff:dc:eb:58: f8:8b:0e:4c:55:18:f6:a5:d8:eb:6c:34:7e:f4:7d: 27:e1:7a:ae:45:3e:ef:2e:de:cd:ff:1d:4d:f9:84: bd:16:04:5d:1f:e7:ae:ba:30:2f:a6:75:79:a6:41: b5:8e:3b:dc:02:a4:be:6b:32:c6:08:b2:fb:b7:2d: cc:9e:dc:2c:21:65:a5:4c:ed:55:f5:59:12:cf:cd: f3:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:EB:F2:37:48:E0:5B:30:38:EF:18:61:A0:97:5D:A8:65:EB:37:96 X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:04:4a:ee:82:a3:cf:d6:42:da:98:42:3d:2b:11:66:e2:0a: 2f:a8:a3:99:a1:31:3b:36:20:1f:9f:70:a1:13:b0:80:b8:c6: 88:41:37:0c:13:ea:03:df:67:76:38:31:38:3b:06:1b:28:97: 01:03:08:a8:f0:80:93:4d:da:ab:d8:bd:b8:55:90:32:cb:50: 4a:a2:ee:e3:50:29:ca:1d:21:d2:c2:92:42:9c:8c:f7:7a:36: 56:2e:db:3b:1a:36:af:7d:f9:af:a3:9a:81:14:6d:ef:66:db: 05:35:4c:e9:3f:b5:c4:52:19:65:fc:14:e7:fc:69:5c:a7:72: f6:a8:64:4d:0c:31:af:8e:4f:51:c9:47:5e:58:70:c4:90:1e: 09:c8:17:4c:5f:a1:4e:55:62:49:67:97:51:c4:fb:1e:82:72: 6c:a8:e2:df:7a:2b:df:8e:48:5f:0a:04:80:97:36:3a:5e:16: 35:ff:7b:e0:bc:e4:c8:20:b5:41:83:84:15:f1:ef:a1:57:0f: 83:1f:4a:44:30:7b:e6:dd:d4:0d:81:e4:cc:01:e9:6f:a7:3e: 5b:ae:84:50:8e:ce:e0:e2:ab:da:cd:b9:ad:e8:fd:de:0d:ec: 07:f3:7c:60:82:b4:49:ea:d8:2c:4e:81:49:27:20:73:9b:d9: 93:d6:3f:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjUxMTA0MTcwMjU2WhcNMjUxMTExMTcwMjU2WjAYMRYwFAYD VQQDEw02OTBhMzFjMC1kODIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1AbGwG7/vcvNuTFzmpIv8rNbBpMRtUZ7ZdhqA0KJ+a9pS9L47tWDFa/FAGk c6qxxQXxYmSgfX2c6PejSt9zF2nJXEXypNbg4CUSb4AazpXn4kmkgc7JeXnTZmn8 sstzqPpZuSSKOPck9QyLQvUpDnUjIEhBJjYm56y0DxESTZqkVdtrgDl1ovGIxGYm 95rAYh4LL19e9CklkauTXsjUSM4BkQpyOOj94fYpa61e8//c61j4iw5MVRj2pdjr bDR+9H0n4XquRT7vLt7N/x1N+YS9FgRdH+euujAvpnV5pkG1jjvcAqS+azLGCLL7 ty3MntwsIWWlTO1V9VkSz83zbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrr8jdI 4FswOO8YYaCXXahl6zeWMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8BErugqPP1kLamEI9KxFm4govqKOZoTE7NiAfn3ChE7CAuMaIQTcM E+oD32d2ODE4OwYbKJcBAwio8ICTTdqr2L24VZAyy1BKou7jUCnKHSHSwpJCnIz3 ejZWLts7Gjavffmvo5qBFG3vZtsFNUzpP7XEUhll/BTn/Glcp3L2qGRNDDGvjk9R yUdeWHDEkB4JyBdMX6FOVWJJZ5dRxPsegnJsqOLfeivfjkhfCgSAlzY6XhY1/3vg vOTIILVBg4QV8e+hVw+DH0pEMHvm3dQNgeTMAelvpz5broRQjs7g4qvazbmt6P3e DewH83xggrRJ6tgsToFJJyBzm9mT1j/5 -----END CERTIFICATE-----Generated at Wed Nov 5 18:01:09 2025 by rpki-client