$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft File: hHItvUIme93Vm4hBUpklNTHgY2Q.mft (raw, json) Hash identifier: tXxN4ijFZOrCv1FDy+YD9u0uvY1gXHjvhQ1pi7rMnh4= Subject key identifier: DF:44:88:CD:CF:E5:38:9A:15:B6:20:DD:8D:CE:08:06:30:77:BF:0B Authority key identifier: 84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 Certificate issuer: /CN=A918FEF3/serialNumber=84722DBD42267BDDD59B88415299253531E06364 Certificate serial: 1828 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft Manifest number: 1828 Signing time: Tue 04 Nov 2025 16:36:59 +0000 Manifest this update: Tue 04 Nov 2025 16:36:59 +0000 Manifest next update: Tue 11 Nov 2025 16:36:59 +0000 Files and hashes: 1: hHItvUIme93Vm4hBUpklNTHgY2Q.crl (hash: CiJhgeQXMU+CRi+z2SMupmUcvCP/E6JJOx9O44Wk0ho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:36:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6184 (0x1828) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FEF3, serialNumber=84722DBD42267BDDD59B88415299253531E06364 Validity Not Before: Nov 4 16:36:59 2025 GMT Not After : Nov 11 16:36:59 2025 GMT Subject: CN=690a2bab-096c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4e:83:41:1f:55:3c:85:5f:43:b5:bf:31:6b: 24:2b:91:38:53:20:41:74:53:5e:9a:26:b1:09:e3: d1:1e:28:6a:96:c0:f6:0b:d4:b9:cd:d7:d5:23:72: 5c:b9:d1:59:cf:bd:b5:1b:a0:0b:c1:f7:3c:ed:a6: 0c:d0:95:3c:90:74:7e:97:90:d2:08:07:72:2c:41: 98:2e:93:d4:7e:3a:72:28:e0:05:4d:a6:37:4b:79: 7b:6c:66:e9:4c:c2:cd:81:8f:7d:c4:e6:27:fb:7f: 35:e9:51:eb:5b:41:03:b1:67:33:46:dc:b6:c1:b0: d3:66:52:6c:e6:fd:c7:b5:e8:7f:65:08:81:40:5a: 76:5a:76:cd:32:8d:b5:1d:9e:d8:e1:fa:8a:f6:d1: 86:9e:3b:09:32:72:4d:ab:24:b7:ea:46:09:c4:40: 97:94:7e:ee:64:84:eb:f1:dc:dd:59:45:44:38:b4: a2:3e:2a:8d:c5:62:4a:3f:d9:db:58:48:51:76:85: a4:f5:0b:b4:aa:e9:19:74:0a:e9:d9:17:9b:ec:4f: 98:58:50:d5:92:2b:c9:9a:b4:73:bf:39:ec:49:e7: 3c:a3:31:47:b1:fe:af:08:4d:d8:fc:4d:8b:a7:00: 16:19:30:1f:8b:d8:e3:26:4c:b0:3c:dd:2c:a6:02: fa:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:44:88:CD:CF:E5:38:9A:15:B6:20:DD:8D:CE:08:06:30:77:BF:0B X509v3 Authority Key Identifier: keyid:84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:39:3c:5f:31:af:a4:19:ea:0c:9e:d1:c6:f5:83:c2:77:ca: bc:19:3d:1c:c7:22:bc:7c:d6:b6:76:45:fe:94:e4:30:28:ba: e8:e8:f8:a4:9b:ee:10:25:9b:dd:d4:e7:e7:6a:64:0d:4c:44: f8:e4:a1:ac:1c:4e:dc:a2:21:b3:42:b6:13:9d:37:99:86:5a: bc:ab:b9:18:07:6f:d7:ba:05:e3:d0:c2:18:b8:47:a4:ca:72: 06:45:8d:b9:d2:01:59:76:84:2d:58:f8:3f:f1:03:7a:f6:b7: fe:da:42:6f:c3:14:39:34:ac:4a:6e:4f:a4:0c:9d:1e:76:0c: d1:0d:10:82:8e:df:37:bc:13:ae:f3:98:64:6e:51:8c:8a:cb: 6a:1c:6f:dc:13:66:33:c8:ae:9d:53:a1:cc:2f:ec:7e:e1:d3: cf:ab:54:5d:f6:7f:08:13:88:72:15:67:ac:e1:2c:ad:fe:53: d0:3b:8b:e9:1f:dd:15:5e:5b:35:40:30:56:4a:3e:20:85:99: ab:ea:78:ed:83:2f:1e:af:0a:99:65:03:92:4b:ff:f3:0d:14: 20:a0:fa:67:6b:54:db:2c:73:9a:b8:38:1c:ef:eb:c5:3b:4a: 38:a0:7b:db:c0:ba:b6:78:22:06:8e:30:75:6b:0e:02:2f:fd: bf:59:be:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFRjMxMTAvBgNVBAUTKDg0NzIyREJENDIyNjdCRERENTlCODg0MTUyOTkyNTM1 MzFFMDYzNjQwHhcNMjUxMTA0MTYzNjU5WhcNMjUxMTExMTYzNjU5WjAYMRYwFAYD VQQDEw02OTBhMmJhYi0wOTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtE6DQR9VPIVfQ7W/MWskK5E4UyBBdFNemiaxCePRHihqlsD2C9S5zdfVI3Jc udFZz721G6ALwfc87aYM0JU8kHR+l5DSCAdyLEGYLpPUfjpyKOAFTaY3S3l7bGbp TMLNgY99xOYn+3816VHrW0EDsWczRty2wbDTZlJs5v3Hteh/ZQiBQFp2WnbNMo21 HZ7Y4fqK9tGGnjsJMnJNqyS36kYJxECXlH7uZITr8dzdWUVEOLSiPiqNxWJKP9nb WEhRdoWk9Qu0qukZdArp2Reb7E+YWFDVkivJmrRzvznsSec8ozFHsf6vCE3Y/E2L pwAWGTAfi9jjJkywPN0spgL68wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9EiM3P 5TiaFbYg3Y3OCAYwd78LMB8GA1UdIwQYMBaAFIRyLb1CJnvd1ZuIQVKZJTUx4GNk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGMy9FNjMzN0QzMEJE MzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5M1ZtNGhCVXBrbE5USGdZ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hISXR2VUltZTkzVm00aEJVcGtsTlRIZ1kyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkVGMy9FNjMzN0QzMEJEMzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5 M1ZtNGhCVXBrbE5USGdZMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzOTxfMa+kGeoMntHG9YPCd8q8GT0cxyK8fNa2dkX+lOQwKLro6Pik m+4QJZvd1OfnamQNTET45KGsHE7coiGzQrYTnTeZhlq8q7kYB2/XugXj0MIYuEek ynIGRY250gFZdoQtWPg/8QN69rf+2kJvwxQ5NKxKbk+kDJ0edgzRDRCCjt83vBOu 85hkblGMistqHG/cE2YzyK6dU6HML+x+4dPPq1Rd9n8IE4hyFWes4Syt/lPQO4vp H90VXls1QDBWSj4ghZmr6njtgy8erwqZZQOSS//zDRQgoPpna1TbLHOauDgc7+vF O0o4oHvbwLq2eCIGjjB1aw4CL/2/Wb6E -----END CERTIFICATE-----Generated at Wed Nov 5 19:22:48 2025 by rpki-client