$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft File: HsQsG2nhb183xz2Bv5-rH0ukIyk.mft (raw, json) Hash identifier: RZHJUBBadK8JNA0XwrIlA+U3xPODDjFKieYqeETwyOc= Subject key identifier: E7:9D:68:2D:54:11:49:2F:AC:10:50:AB:39:37:8F:D4:76:34:B6:20 Authority key identifier: 1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 Certificate issuer: /CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Certificate serial: 0AD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft Manifest number: 0A6E Signing time: Sun 02 Nov 2025 19:46:49 +0000 Manifest this update: Sun 02 Nov 2025 19:46:48 +0000 Manifest next update: Sun 09 Nov 2025 19:46:48 +0000 Files and hashes: 1: HsQsG2nhb183xz2Bv5-rH0ukIyk.crl (hash: baiiQmeH8ewV6rqA37IWfs0cciK+cfi4I0tsqbni2xE=) 2: A81364AC4B0611EF91534014C4F9AE02.roa (hash: w/5bZBiXDjvqgxnP7qfHyeDTFEoVXi8DgwG0C4ccn5Q=) 3: D9AFDBC2400111EFBB30C475C4F9AE02.roa (hash: Ve3ejv62M16tRhsxP6f89AusOlZpUFORwV+rrPuD1sg=) 4: 73DC26744B0611EF8698EB13C4F9AE02.roa (hash: ybrtkQR3uxqIC7ty9/ANRKrx+CuUtT0biIda1i5SZAg=) 5: B8D18508EDE011EF88407251C4F9AE02.roa (hash: 7FKsDT71I8DwEjcBpbCZQH8HmSgZkJ2Kdkp2VjtHRzA=) 6: 6C68485C5A1D11EFA9989052C4F9AE02.roa (hash: eMC9itpv3oFgg3wC16WZV3uYeAr5DZklaR+zjZUUL1Q=) 7: A7A72BF24B0611EF91534014C4F9AE02.roa (hash: 5X86twqvrwj9rAMXwE7dxiHPJmnmzTIw/q2mjxKYTMU=) 8: D42F0D06B51611EEADC7924BC4F9AE02.roa (hash: 74YlPjSTLEaBRhMrN5akas7kNpehqYE1ysoQhZlJDuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:46:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2768 (0xad0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661, serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Validity Not Before: Nov 2 19:46:48 2025 GMT Not After : Nov 9 19:46:48 2025 GMT Subject: CN=6907b528-e80c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:85:12:21:fd:77:5d:0f:6e:76:94:33:30:36: 2e:21:0d:9a:d1:58:2a:ae:bb:51:28:be:21:c0:7c: 74:3e:41:08:9e:46:0b:06:16:a6:af:ff:b0:af:a0: 5f:2c:f0:f8:d0:46:cf:70:43:b1:f8:07:16:e9:87: 56:44:f9:8e:85:5d:00:f7:f0:7e:fd:55:3e:43:ad: 7d:8f:13:14:45:63:97:5b:0e:e2:1b:85:5e:14:f7: 74:62:84:b8:7a:2e:e5:d0:51:02:18:0c:f3:e5:e3: 68:e7:a7:87:a5:ef:e3:f3:ca:44:df:c0:d7:d8:2f: 41:18:cf:fc:b6:9a:1e:fa:15:c7:99:31:1a:d8:d9: 94:05:6d:74:2d:ba:cb:91:6d:b6:a9:a3:41:30:39: 00:aa:40:38:64:1f:40:aa:c6:d0:03:01:4e:fe:81: 6a:de:65:67:a9:30:87:8d:9e:e9:e2:c0:5a:b9:c1: ca:c1:d1:97:07:3e:36:98:5d:77:38:64:06:bb:18: 4e:48:b6:0c:96:d4:c9:c5:f5:2f:f8:51:7d:ce:78: 47:a3:dc:75:05:10:54:23:fa:6b:4d:dd:cb:f2:95: 49:ff:ef:70:b9:36:c6:57:7b:16:82:b6:71:9a:ab: 1d:8e:8c:9b:8e:f5:0c:55:33:fe:55:ec:75:da:ae: 2b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:9D:68:2D:54:11:49:2F:AC:10:50:AB:39:37:8F:D4:76:34:B6:20 X509v3 Authority Key Identifier: keyid:1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:46:7c:13:bb:21:00:4d:92:7b:f6:96:71:7d:42:c3:28:06: 44:dc:f3:d1:13:a0:ed:1d:73:8e:0c:47:f4:6e:27:e4:c8:14: ab:5d:b2:79:4d:07:7e:69:fc:b7:a4:6a:fb:c0:70:82:a1:18: 0d:a5:5b:54:58:ec:8c:06:0a:c3:2a:8d:a3:55:55:a3:85:de: 54:ea:35:52:d0:b0:3f:40:c0:bf:bc:97:e2:42:e1:7e:d4:32: 55:27:8c:68:cb:de:fd:8f:2d:b2:1f:e2:d9:62:b5:e9:45:4a: 72:04:ff:8b:9e:e4:34:a6:a6:67:60:c1:6b:7c:f9:34:39:30: 3a:c0:9b:27:10:c3:58:55:0a:9d:12:45:05:4f:61:21:6c:c1: ff:7b:ac:ac:57:dd:dc:49:d6:7a:58:f5:17:dc:59:6a:9b:73: a6:98:9d:84:6e:09:09:89:2b:6b:aa:9a:06:60:d5:21:b9:6b: 70:90:a0:8c:ea:14:65:3a:9b:6a:20:92:e4:f2:d5:87:4a:c9: 9c:69:a1:a4:d6:1f:44:91:66:92:91:5f:5f:2d:af:90:a3:85: b9:a1:fd:cf:b4:fc:7d:7c:95:b6:27:c9:0e:81:d5:5b:40:d4: d5:63:94:6f:41:5a:3f:b7:c3:97:3b:11:cc:26:f6:c1:dd:76: ca:9d:cf:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDFFQzQyQzFCNjlFMTZGNUYzN0M3M0Q4MUJGOUZBQjFG NEJBNDIzMjkwHhcNMjUxMTAyMTk0NjQ4WhcNMjUxMTA5MTk0NjQ4WjAYMRYwFAYD VQQDEw02OTA3YjUyOC1lODBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIUSIf13XQ9udpQzMDYuIQ2a0VgqrrtRKL4hwHx0PkEInkYLBhamr/+wr6Bf LPD40EbPcEOx+AcW6YdWRPmOhV0A9/B+/VU+Q619jxMURWOXWw7iG4VeFPd0YoS4 ei7l0FECGAzz5eNo56eHpe/j88pE38DX2C9BGM/8tpoe+hXHmTEa2NmUBW10LbrL kW22qaNBMDkAqkA4ZB9AqsbQAwFO/oFq3mVnqTCHjZ7p4sBaucHKwdGXBz42mF13 OGQGuxhOSLYMltTJxfUv+FF9znhHo9x1BRBUI/prTd3L8pVJ/+9wuTbGV3sWgrZx mqsdjoybjvUMVTP+Vex12q4rvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOedaC1U EUkvrBBQqzk3j9R2NLYgMB8GA1UdIwQYMBaAFB7ELBtp4W9fN8c9gb+fqx9LpCMp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wQkJEOUVBMjgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIxODN4ejJCdjUtckgwdWtJ eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hzUXNHMm5oYjE4M3h6MkJ2NS1ySDB1a0l5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzY2MS8wQkJEOUVBMjgzNkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIx ODN4ejJCdjUtckgwdWtJeWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrRnwTuyEATZJ79pZxfULDKAZE3PPRE6DtHXOODEf0bifkyBSrXbJ5 TQd+afy3pGr7wHCCoRgNpVtUWOyMBgrDKo2jVVWjhd5U6jVS0LA/QMC/vJfiQuF+ 1DJVJ4xoy979jy2yH+LZYrXpRUpyBP+LnuQ0pqZnYMFrfPk0OTA6wJsnEMNYVQqd EkUFT2EhbMH/e6ysV93cSdZ6WPUX3Flqm3OmmJ2EbgkJiStrqpoGYNUhuWtwkKCM 6hRlOptqIJLk8tWHSsmcaaGk1h9EkWaSkV9fLa+Qo4W5of3PtPx9fJW2J8kOgdVb QNTVY5RvQVo/t8OXOxHMJvbB3XbKnc/d -----END CERTIFICATE-----Generated at Tue Nov 4 08:19:58 2025 by rpki-client