$ rpki-client -vvf rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft File: H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft (raw, json) Hash identifier: IPTyupd66G9ymtSBogbINeJNpjW1zltXcDhHqE01vTc= Subject key identifier: 3D:01:0A:25:A8:83:13:21:96:13:68:FB:6D:6E:36:4E:07:77:8E:93 Authority key identifier: 1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF Certificate issuer: /CN=A916A447/serialNumber=1F68258C526C5DBC715434357D380020146440EF Certificate serial: 2917 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft Manifest number: 28A3 Signing time: Sun 02 Nov 2025 15:36:21 +0000 Manifest this update: Sun 02 Nov 2025 15:36:20 +0000 Manifest next update: Sun 09 Nov 2025 15:36:20 +0000 Files and hashes: 1: H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl (hash: VP+FuEG1dGDZvGKCEVYUmOF6iUKOsG/LeaIssGcxJPQ=) 2: 57D5BBF870F211F086293675C4F9AE02.roa (hash: MfxJKHAl2OU7PVOYPpiK4bilcuV1ajcVyr3SRatYOEw=) 3: 4B65B208288F11EFB3C88742C4F9AE02.roa (hash: r2GAe+G1s6g34WU+Ia+gD4xaBN9kiFwzFN+koW6QJQs=) 4: 7F3D1128DC7811EFA7D7DB49C4F9AE02.roa (hash: Oiuj+Kbic3HQuA1OyKape4/HDdacy+ZxoCUL9iL91SY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:36:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10519 (0x2917) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A447, serialNumber=1F68258C526C5DBC715434357D380020146440EF Validity Not Before: Nov 2 15:36:20 2025 GMT Not After : Nov 9 15:36:20 2025 GMT Subject: CN=69077a74-7214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:52:f0:e5:fa:4b:95:c6:59:7f:71:33:61:d4: 9e:7e:55:78:50:da:9e:85:c0:81:33:43:6a:cb:8d: 4b:a7:57:6e:79:50:01:0c:e0:a1:88:4a:74:d3:44: 9e:fa:94:c9:10:bb:35:37:b7:10:e4:cd:58:4e:e4: 98:f0:d3:2a:1d:c6:aa:70:31:ad:84:48:bf:55:34: 8c:99:fe:d0:0f:bd:51:ab:be:52:39:13:7f:36:a2: d0:85:c6:19:56:ec:68:d7:dc:38:6a:53:39:04:49: d0:c2:0c:9e:76:05:6a:66:f7:ed:12:b6:74:e0:ef: 8f:f6:07:c2:83:45:9c:4c:ef:52:0a:dc:de:23:51: 68:fb:e5:83:12:fa:83:7c:ea:f4:e1:f5:f9:1a:6b: ab:05:90:64:b3:2a:d6:32:02:56:1c:dc:f8:0b:03: 1f:be:88:40:b6:86:fe:73:0e:1e:fc:8e:11:95:e6: e0:08:aa:26:0b:5d:bb:9c:3d:b0:6c:32:7a:9f:5c: a0:45:e0:23:08:ca:25:6b:0b:61:52:95:30:3c:a7: a3:d9:d4:ae:78:d0:8e:fc:6f:34:57:96:19:5e:47: da:a9:0f:ba:ff:30:b8:a2:4b:3a:33:2e:93:b4:8b: 26:2d:aa:a7:09:e9:3a:7a:23:3d:f1:de:a9:82:8c: 60:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:01:0A:25:A8:83:13:21:96:13:68:FB:6D:6E:36:4E:07:77:8E:93 X509v3 Authority Key Identifier: keyid:1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:89:5e:0f:c0:56:b0:28:02:94:82:89:93:f0:78:3b:6f:c4: 9d:19:7f:68:23:91:d6:ab:f7:33:6c:e6:ff:26:5e:5f:7b:63: 9b:ef:b7:ea:54:7e:45:29:15:b5:27:9b:25:de:3f:26:00:a9: 7f:cf:5d:ab:33:8a:d6:e8:a1:fd:42:56:5a:de:fb:fb:b8:98: ec:05:06:6c:e2:97:cd:83:9c:3f:46:c9:ab:e9:27:92:8d:9e: 6e:ee:3f:a2:19:77:6f:04:6d:3b:2e:0f:27:c1:d8:95:60:d2: 4a:19:42:cf:10:14:4b:d0:0b:9c:00:3d:69:30:c2:0e:be:f7: 98:29:ed:02:70:b5:e2:7e:a0:6b:4f:f6:2e:d3:dc:29:99:79: fc:44:38:63:d2:96:cf:8d:a8:df:70:f3:fd:d1:29:82:6b:e7: 7f:f7:9a:a1:99:e5:af:d9:0a:37:d4:08:6d:37:91:03:42:cb: 13:59:5d:c3:28:1d:27:ea:ce:1a:d0:0b:ac:7c:64:77:23:96: 70:17:ab:39:0d:36:1d:36:61:f1:4c:a8:ca:2a:5b:c4:fa:fe: b9:1a:3e:be:21:b7:8a:02:85:3a:bf:5a:47:07:72:a2:38:c7: 48:9b:b4:f1:fe:7a:32:9d:25:bf:ac:6a:ca:cd:c1:9c:3a:77: ba:a2:f9:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE0NDcxMTAvBgNVBAUTKDFGNjgyNThDNTI2QzVEQkM3MTU0MzQzNTdEMzgwMDIw MTQ2NDQwRUYwHhcNMjUxMTAyMTUzNjIwWhcNMjUxMTA5MTUzNjIwWjAYMRYwFAYD VQQDEw02OTA3N2E3NC03MjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVLw5fpLlcZZf3EzYdSeflV4UNqehcCBM0Nqy41Lp1dueVABDOChiEp000Se +pTJELs1N7cQ5M1YTuSY8NMqHcaqcDGthEi/VTSMmf7QD71Rq75SORN/NqLQhcYZ Vuxo19w4alM5BEnQwgyedgVqZvftErZ04O+P9gfCg0WcTO9SCtzeI1Fo++WDEvqD fOr04fX5GmurBZBksyrWMgJWHNz4CwMfvohAtob+cw4e/I4RlebgCKomC127nD2w bDJ6n1ygReAjCMolawthUpUwPKej2dSueNCO/G80V5YZXkfaqQ+6/zC4oks6My6T tIsmLaqnCek6eiM98d6pgoxgkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0BCiWo gxMhlhNo+21uNk4Hd46TMB8GA1UdIwQYMBaAFB9oJYxSbF28cVQ0NX04ACAUZEDv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTQ0Ny9EMjA3NTgxNEEw OUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hieHhWRFExZlRnQUlCUmtR TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyZ2xqRkpzWGJ4eFZEUTFmVGdBSUJSa1FPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTQ0Ny9EMjA3NTgxNEEwOUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hi eHhWRFExZlRnQUlCUmtRTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOiV4PwFawKAKUgomT8Hg7b8SdGX9oI5HWq/czbOb/Jl5fe2Ob77fq VH5FKRW1J5sl3j8mAKl/z12rM4rW6KH9QlZa3vv7uJjsBQZs4pfNg5w/Rsmr6SeS jZ5u7j+iGXdvBG07Lg8nwdiVYNJKGULPEBRL0AucAD1pMMIOvveYKe0CcLXifqBr T/Yu09wpmXn8RDhj0pbPjajfcPP90SmCa+d/95qhmeWv2Qo31AhtN5EDQssTWV3D KB0n6s4a0AusfGR3I5ZwF6s5DTYdNmHxTKjKKlvE+v65Gj6+IbeKAoU6v1pHB3Ki OMdIm7Tx/noynSW/rGrKzcGcOne6ovnd -----END CERTIFICATE-----Generated at Tue Nov 4 08:19:48 2025 by rpki-client