$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: Qui1RfIFiRIkOqoFU6mGvZsaKsQ1kUJQccCasnU/hFw= Subject key identifier: 4C:02:12:F2:6D:15:36:11:14:60:33:CD:69:B5:FE:7D:C7:B8:A1:8E Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 0828 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 0818 Signing time: Sun 02 Nov 2025 20:52:39 +0000 Manifest this update: Sun 02 Nov 2025 20:52:39 +0000 Manifest next update: Sun 09 Nov 2025 20:52:39 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: b8lw8qoOUMjel10abJrhwFwWw205DM8LVSEVsjBMwiQ=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: +VXknte/mN+kJG0OMjeV9YUPJK6A2pn0gyb+jl0GEBE=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: rWjXWilCzwscxUrzYHy2y+RbO91zzbJS7wnbS9Z8TVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2088 (0x828) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Nov 2 20:52:39 2025 GMT Not After : Nov 9 20:52:39 2025 GMT Subject: CN=6907c497-acf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a7:58:50:5d:64:d9:43:ff:ba:87:87:31:47: d6:56:02:85:a6:69:e9:41:78:e8:5b:fe:97:66:6b: 83:34:9a:13:83:d5:e4:ca:5b:b8:06:63:79:06:69: ad:9d:72:7a:83:42:1c:96:4f:af:e0:36:c4:d1:af: 6b:81:d4:0a:43:62:78:fa:ab:f5:9a:94:c0:d2:0b: fe:1c:8f:fb:0d:91:5d:49:00:40:e1:26:a8:18:d1: 0e:1c:3c:99:f9:5b:5a:89:58:bd:67:9e:7b:b4:38: 91:b1:31:42:e4:cf:a7:8f:83:96:5c:b0:12:9b:a2: f2:c9:95:f9:08:f8:4f:55:e8:36:fd:32:a8:9f:64: e3:42:83:2b:09:30:45:2e:34:3a:8f:6d:da:b1:74: 01:ac:fc:1e:a0:33:65:bd:eb:a6:bb:2b:54:1b:0d: cd:d4:c4:03:55:73:74:31:ce:c7:a8:ea:2d:f4:ed: 8f:f1:56:5b:96:6e:a4:38:68:b7:9d:b7:41:93:9f: f5:6f:06:b9:02:0f:24:fd:dc:4c:42:6f:d4:7b:fe: 2b:4c:54:1b:8b:07:cb:05:92:1c:49:73:4e:ed:16: a2:40:b8:2a:78:bf:7a:a4:ea:2c:76:fd:35:6c:d9: 37:96:7a:68:09:7e:af:b2:e5:39:14:94:04:a5:92: 4c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:02:12:F2:6D:15:36:11:14:60:33:CD:69:B5:FE:7D:C7:B8:A1:8E X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:f2:f2:83:95:df:61:26:89:3c:fc:9e:e8:d6:af:95:c4:0f: 7b:a3:87:80:89:dc:6b:cd:e9:8b:94:00:33:8a:77:08:91:34: df:e0:1b:8b:f6:21:f5:8e:b8:72:d1:03:05:c9:3e:ab:ef:04: 10:d1:97:74:70:cb:9e:9f:2e:5c:91:03:0f:26:03:cc:5e:dc: 04:a8:12:20:dc:01:7b:34:86:6f:37:ac:82:40:9a:e4:20:d9: cd:ff:df:fe:81:2f:78:a1:ba:e2:17:be:35:2c:5a:a9:65:c9: d8:f1:9c:c8:07:a8:5b:8f:4d:24:69:0d:64:54:30:c2:5e:7c: ff:79:ce:33:14:4b:03:5e:90:bc:b0:b8:39:bd:74:d6:6b:d2: 29:aa:52:f0:27:fd:66:26:9e:25:35:3e:fc:fa:e1:d3:58:e9: ed:cc:65:ba:b5:92:7e:38:69:64:5c:20:30:2b:05:d6:e2:59: 38:32:78:f9:6f:33:a3:89:9f:a6:04:13:32:51:b5:c8:7c:94: b2:e3:17:72:e3:d6:93:2e:aa:30:5a:5e:bf:76:83:7f:1c:12: 22:3a:ea:a9:a1:83:f9:84:34:62:6e:7b:b0:ca:14:f1:3d:be: 94:e3:e9:e6:dd:fb:db:39:5a:26:3d:a6:9d:9c:07:cd:cc:e6: 3a:1f:f4:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjUxMTAyMjA1MjM5WhcNMjUxMTA5MjA1MjM5WjAYMRYwFAYD VQQDEw02OTA3YzQ5Ny1hY2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKdYUF1k2UP/uoeHMUfWVgKFpmnpQXjoW/6XZmuDNJoTg9Xkylu4BmN5Bmmt nXJ6g0Iclk+v4DbE0a9rgdQKQ2J4+qv1mpTA0gv+HI/7DZFdSQBA4SaoGNEOHDyZ +VtaiVi9Z557tDiRsTFC5M+nj4OWXLASm6LyyZX5CPhPVeg2/TKon2TjQoMrCTBF LjQ6j23asXQBrPweoDNlveumuytUGw3N1MQDVXN0Mc7HqOot9O2P8VZblm6kOGi3 nbdBk5/1bwa5Ag8k/dxMQm/Ue/4rTFQbiwfLBZIcSXNO7RaiQLgqeL96pOosdv01 bNk3lnpoCX6vsuU5FJQEpZJMJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwCEvJt FTYRFGAzzWm1/n3HuKGOMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV8vKDld9hJok8/J7o1q+VxA97o4eAidxrzemLlAAzincIkTTf4BuL 9iH1jrhy0QMFyT6r7wQQ0Zd0cMueny5ckQMPJgPMXtwEqBIg3AF7NIZvN6yCQJrk INnN/9/+gS94obriF741LFqpZcnY8ZzIB6hbj00kaQ1kVDDCXnz/ec4zFEsDXpC8 sLg5vXTWa9IpqlLwJ/1mJp4lNT78+uHTWOntzGW6tZJ+OGlkXCAwKwXW4lk4Mnj5 bzOjiZ+mBBMyUbXIfJSy4xdy49aTLqowWl6/doN/HBIiOuqpoYP5hDRibnuwyhTx Pb6U4+nm3fvbOVomPaadnAfNzOY6H/TY -----END CERTIFICATE-----Generated at Tue Nov 4 16:13:25 2025 by rpki-client