$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft File: HSpVFaipmzCyHRhxvPr9J-saEyo.mft (raw, json) Hash identifier: aAKIhfXTWAKAbghE/or4QHboAPAkIitS5TNwCkbugKY= Subject key identifier: A8:AE:E1:89:77:36:10:1A:9E:BB:CA:F0:53:8F:E4:14:F7:C4:EA:13 Authority key identifier: 1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A Certificate issuer: /CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Certificate serial: 02AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft Manifest number: 02AB Signing time: Wed 05 Nov 2025 01:36:20 +0000 Manifest this update: Wed 05 Nov 2025 01:36:20 +0000 Manifest next update: Wed 12 Nov 2025 01:36:20 +0000 Files and hashes: 1: HSpVFaipmzCyHRhxvPr9J-saEyo.crl (hash: TdVXxeML/DMiPXgTFf2oM1pU/cuW6tgy+nl+vpURD1E=) 2: D6E7D65C192E11ED927BF512C4F9AE02.roa (hash: AYJESnvrL0xf2cFi0STIbVetOH/3woitG40ANaAhl6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:36:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 687 (0x2af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B30, serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Validity Not Before: Nov 5 01:36:20 2025 GMT Not After : Nov 12 01:36:20 2025 GMT Subject: CN=690aaa14-159f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:f2:fc:8b:26:1a:b0:44:bf:0a:b1:36:99:3c: 5f:12:ab:9e:46:10:2b:16:47:d3:28:59:14:9f:3f: 23:ee:a7:af:fd:33:a8:19:7a:cf:af:7d:76:9b:88: 29:19:77:5c:73:0d:c7:b6:5e:f4:00:ce:2b:69:16: 49:89:5f:08:a0:16:10:1d:db:5b:b3:64:2e:f1:81: b3:29:a4:08:e7:7b:e0:ec:7b:22:af:e1:fb:fd:91: ed:13:da:85:40:bb:4a:34:3c:a4:2d:34:65:12:ae: d1:14:b2:b5:a8:d8:de:95:e5:54:bc:2b:a5:e8:54: ca:d7:87:5e:15:77:3f:67:80:1a:3e:81:62:60:0e: 81:3e:b4:d4:22:a4:c1:c8:e2:b6:40:e2:e1:39:d6: 8c:f4:c1:87:c4:59:6b:12:d8:00:ee:be:ac:a8:aa: 9d:9f:e3:6f:41:80:41:f3:e5:10:2b:99:a5:30:17: 73:95:ca:62:ce:08:03:99:3c:5a:4a:8f:0a:a8:2d: 72:ad:13:52:f1:6f:b2:93:a3:cf:01:0c:f2:86:f5: aa:0d:a9:33:58:db:a5:95:56:c3:84:e7:ff:c3:a8: 86:e1:fb:91:ad:93:b2:4d:e7:6b:6b:48:0d:55:8b: 93:5f:37:33:eb:c7:df:44:51:41:e5:b6:a7:d2:0b: 21:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:AE:E1:89:77:36:10:1A:9E:BB:CA:F0:53:8F:E4:14:F7:C4:EA:13 X509v3 Authority Key Identifier: keyid:1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:a5:03:37:c3:ea:d7:7d:c2:0b:a8:7c:8e:ca:13:94:b6:8b: 37:d5:81:5c:29:59:41:13:5b:74:18:4f:3b:22:0e:c6:53:e0: ed:53:e6:6e:31:e8:b9:46:f2:91:cd:eb:89:c1:ec:5f:9e:96: 7b:87:cf:41:36:a5:0f:58:af:c4:6b:f2:f7:dd:25:65:91:bf: a0:78:21:ad:9b:80:98:b1:68:98:fe:90:5f:5e:fd:94:d7:dd: 1b:b8:7c:50:a3:e2:8a:99:bf:a3:9d:dc:f7:22:c4:18:c7:10: f1:cc:ab:97:79:3e:b5:84:c0:05:dd:a6:9a:e4:bd:69:73:7c: 5d:df:91:10:39:a7:2f:ea:b1:75:d9:0a:61:cc:3d:d1:d8:56: 5a:7b:81:6a:14:99:d9:26:e3:65:88:89:2c:5b:8c:9b:85:50: 12:fa:5e:49:4b:6d:26:b2:d1:db:bf:e8:a1:0b:c1:a7:ac:ff: 8b:5a:e8:02:44:27:4d:d3:bf:73:4a:27:15:df:ff:5b:fb:04: e9:36:59:c2:05:39:bd:3d:51:89:d3:93:a1:15:eb:6f:9b:a8: 46:41:c9:9d:83:29:7e:08:59:7f:8a:bd:d4:03:f2:86:a2:e5: 28:d5:16:7c:a4:4c:61:ba:67:aa:bf:4e:02:a1:5a:f1:f0:ef: 34:f8:7d:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMzAxMTAvBgNVBAUTKDFEMkE1NTE1QThBOTlCMzBCMjFEMTg3MUJDRkFGRDI3 RUIxQTEzMkEwHhcNMjUxMTA1MDEzNjIwWhcNMjUxMTEyMDEzNjIwWjAYMRYwFAYD VQQDEw02OTBhYWExNC0xNTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7fL8iyYasES/CrE2mTxfEqueRhArFkfTKFkUnz8j7qev/TOoGXrPr312m4gp GXdccw3Htl70AM4raRZJiV8IoBYQHdtbs2Qu8YGzKaQI53vg7Hsir+H7/ZHtE9qF QLtKNDykLTRlEq7RFLK1qNjeleVUvCul6FTK14deFXc/Z4AaPoFiYA6BPrTUIqTB yOK2QOLhOdaM9MGHxFlrEtgA7r6sqKqdn+NvQYBB8+UQK5mlMBdzlcpizggDmTxa So8KqC1yrRNS8W+yk6PPAQzyhvWqDakzWNullVbDhOf/w6iG4fuRrZOyTedra0gN VYuTXzcz68ffRFFB5ban0gsheQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKiu4Yl3 NhAanrvK8FOP5BT3xOoTMB8GA1UdIwQYMBaAFB0qVRWoqZswsh0Ycbz6/SfrGhMq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIzMC84OTc3QzY3NDE5 MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16Q3lIUmh4dlByOUotc2FF eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hTcFZGYWlwbXpDeUhSaHh2UHI5Si1zYUV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIzMC84OTc3QzY3NDE5MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16 Q3lIUmh4dlByOUotc2FFeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTpQM3w+rXfcILqHyOyhOUtos31YFcKVlBE1t0GE87Ig7GU+DtU+Zu Mei5RvKRzeuJwexfnpZ7h89BNqUPWK/Ea/L33SVlkb+geCGtm4CYsWiY/pBfXv2U 190buHxQo+KKmb+jndz3IsQYxxDxzKuXeT61hMAF3aaa5L1pc3xd35EQOacv6rF1 2QphzD3R2FZae4FqFJnZJuNliIksW4ybhVAS+l5JS20mstHbv+ihC8GnrP+LWugC RCdN079zSicV3/9b+wTpNlnCBTm9PVGJ05OhFetvm6hGQcmdgyl+CFl/ir3UA/KG ouUo1RZ8pExhumeqv04CoVrx8O80+H0S -----END CERTIFICATE-----Generated at Wed Nov 5 05:49:57 2025 by rpki-client