$ rpki-client -vvf rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft File: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft (raw, json) Hash identifier: d9Xv1cErOigqXcHZWwlb50ck663pN/B20P4pIT7XJ4g= Subject key identifier: E4:5C:43:9D:0B:D6:AE:C9:4B:99:F2:9D:17:07:20:D4:A6:70:00:0E Authority key identifier: 84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A Certificate issuer: /CN=A918EC78/serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Certificate serial: 0ACF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft Manifest number: 0AC9 Signing time: Sun 02 Nov 2025 19:25:01 +0000 Manifest this update: Sun 02 Nov 2025 19:25:01 +0000 Manifest next update: Sun 09 Nov 2025 19:25:01 +0000 Files and hashes: 1: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl (hash: NcUTVepBLAjVHoYydEH4U32xliTHPuQV2pM8vtp3/60=) 2: BF77D1785DCB11EA880A7643C4F9AE02.roa (hash: H4kc+9yjECNKJF53s7PJuRCRHGgJ3Wfs6TYEVDFyAU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:25:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2767 (0xacf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EC78, serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Validity Not Before: Nov 2 19:25:01 2025 GMT Not After : Nov 9 19:25:01 2025 GMT Subject: CN=6907b00d-b186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:6c:50:d7:c7:76:42:53:1b:86:0d:69:26:ee: 6a:84:73:82:05:f0:b2:7f:0a:0e:9c:da:ae:e8:9c: aa:25:fc:f5:8d:53:66:82:72:ca:23:09:88:22:39: 56:98:f0:c5:29:3d:d2:6c:85:ce:5a:d3:d3:d8:d0: c2:7f:c1:55:6d:0f:0b:0e:73:dd:67:c0:f0:40:62: 20:82:5c:eb:b0:2e:39:31:ff:5d:c1:98:ef:94:b7: 25:cf:dc:a5:39:ae:b5:fa:06:f5:b0:61:4e:fd:59: 3e:6a:20:68:ba:a4:e6:34:5d:f7:cd:ae:35:25:84: e0:16:0e:c5:bc:64:4f:31:0b:7f:96:7c:d9:54:75: d7:06:71:0d:cf:54:9f:46:06:1a:35:7c:79:56:ac: 39:f2:3c:6a:0a:ca:66:b4:09:ea:d4:99:99:4a:60: a9:11:25:f9:06:d0:ec:c8:c8:08:db:a2:bb:c7:19: 13:51:31:52:7c:e2:9a:7c:30:da:b5:05:66:91:bf: 8a:40:28:ce:53:70:7a:9d:42:b6:de:09:c4:b5:fc: fd:be:ff:c0:7c:a7:88:10:62:e8:d5:d5:10:48:b9: 79:e6:d2:5b:97:fe:4d:f1:80:9b:a8:a4:ab:02:a1: 18:af:06:d9:f3:4e:53:28:9f:55:fa:f9:9c:ef:d6: 85:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:5C:43:9D:0B:D6:AE:C9:4B:99:F2:9D:17:07:20:D4:A6:70:00:0E X509v3 Authority Key Identifier: keyid:84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:b7:52:eb:a4:98:71:e4:d2:22:e6:a3:85:f0:55:e0:7f:34: b4:c6:95:ae:5e:ab:c3:65:78:77:43:75:d9:54:e1:45:e9:74: 70:7b:f7:c3:9c:d4:75:c0:0a:d5:fb:92:aa:64:81:8b:f3:49: e5:6f:2b:12:ee:ce:24:99:e3:b4:a1:ca:f2:17:00:2e:ab:51: dd:25:73:8d:81:41:5f:38:62:13:21:c8:a4:ad:da:72:64:ae: 29:1e:c1:da:cb:70:ca:8a:41:c8:6b:54:d1:98:63:b4:93:73: c5:b4:52:c0:73:79:c6:67:3b:18:c3:e4:4f:46:0b:8d:53:3a: 29:7d:ba:a5:b6:04:69:72:47:84:9b:a8:8f:1a:1d:63:fa:19: f4:0c:32:c6:7b:c1:65:ab:d9:c8:e2:e6:d0:71:16:5b:eb:a0: 70:f3:97:c8:15:65:6a:f1:12:8e:a2:e8:12:7e:b5:2f:01:96: 73:90:26:e8:d8:1f:0e:f2:54:c6:21:27:b5:91:18:1e:b5:b2: a9:11:9a:ae:3c:0f:db:b6:df:4e:40:4a:f3:47:34:07:28:1c: 58:2e:21:bd:d7:dd:4e:89:83:20:ba:f7:52:66:de:dc:12:2c: cd:24:2c:71:24:45:3d:2e:1b:68:d7:9e:38:2b:a4:16:f0:b7: e5:3c:f7:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVDNzgxMTAvBgNVBAUTKDg0OEE3OUFCNTA0MUU3MUNFNjIyNTBCNTdGQzFFMEY1 NDk3OEM5M0EwHhcNMjUxMTAyMTkyNTAxWhcNMjUxMTA5MTkyNTAxWjAYMRYwFAYD VQQDEw02OTA3YjAwZC1iMTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk2xQ18d2QlMbhg1pJu5qhHOCBfCyfwoOnNqu6JyqJfz1jVNmgnLKIwmIIjlW mPDFKT3SbIXOWtPT2NDCf8FVbQ8LDnPdZ8DwQGIgglzrsC45Mf9dwZjvlLclz9yl Oa61+gb1sGFO/Vk+aiBouqTmNF33za41JYTgFg7FvGRPMQt/lnzZVHXXBnENz1Sf RgYaNXx5Vqw58jxqCspmtAnq1JmZSmCpESX5BtDsyMgI26K7xxkTUTFSfOKafDDa tQVmkb+KQCjOU3B6nUK23gnEtfz9vv/AfKeIEGLo1dUQSLl55tJbl/5N8YCbqKSr AqEYrwbZ805TKJ9V+vmc79aFjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFORcQ50L 1q7JS5nynRcHINSmcAAOMB8GA1UdIwQYMBaAFISKeatQQecc5iJQtX/B4PVJeMk6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUM3OC8xOTJFRkYwODVE Q0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4em1JbEMxZjhIZzlVbDR5 VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJcDVxMUJCNXh6bUlsQzFmOEhnOVVsNHlUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUM3OC8xOTJFRkYwODVEQ0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4 em1JbEMxZjhIZzlVbDR5VG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADt1LrpJhx5NIi5qOF8FXgfzS0xpWuXqvDZXh3Q3XZVOFF6XRwe/fD nNR1wArV+5KqZIGL80nlbysS7s4kmeO0ocryFwAuq1HdJXONgUFfOGITIcikrdpy ZK4pHsHay3DKikHIa1TRmGO0k3PFtFLAc3nGZzsYw+RPRguNUzopfbqltgRpckeE m6iPGh1j+hn0DDLGe8Flq9nI4ubQcRZb66Bw85fIFWVq8RKOougSfrUvAZZzkCbo 2B8O8lTGISe1kRgetbKpEZquPA/btt9OQErzRzQHKBxYLiG9191OiYMguvdSZt7c EizNJCxxJEU9Lhto1544K6QW8LflPPc/ -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:13 2025 by rpki-client