$ rpki-client -vvf rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft File: hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft (raw, json) Hash identifier: X/263VvtL/RsWcp0w3lx3nV1ZtKB9YNQtaPoyvahsmI= Subject key identifier: 7D:D6:B2:2D:32:B2:8F:E7:73:39:B8:80:3F:63:EA:0C:6B:54:CD:DE Authority key identifier: 84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D Certificate issuer: /CN=A9198767/serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft Manifest number: 0173 Signing time: Mon 03 Nov 2025 03:52:35 +0000 Manifest this update: Mon 03 Nov 2025 03:52:35 +0000 Manifest next update: Mon 10 Nov 2025 03:52:35 +0000 Files and hashes: 1: hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl (hash: 8s5r91P/fKk+u+dVgO+tYtSFiqk7BTBe9v1L/PVAM08=) 2: 7BABB4BE884C11EE81C71A38C4F9AE02.roa (hash: eDj76E11Nc1+IGlyzMBJDLm0PsvVUG2jJEzd62VT4NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:52:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198767, serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Validity Not Before: Nov 3 03:52:35 2025 GMT Not After : Nov 10 03:52:35 2025 GMT Subject: CN=69082703-f45a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b5:ce:9f:ba:a8:fa:44:6c:5e:34:be:e8:bd: db:49:d1:e0:ef:5f:1b:fb:5e:37:39:a5:e1:10:26: 15:f1:58:94:16:11:0f:ea:90:b3:f1:d1:9d:8b:ae: e2:5e:a6:d4:1e:37:4c:63:d3:7d:b2:12:94:4d:99: a2:2e:ca:ca:bc:5f:dc:44:02:f7:6f:22:88:76:f7: 9e:da:67:ba:92:d9:5f:ae:d4:a7:43:f3:67:89:77: 7f:f3:6c:02:a8:2f:59:bb:07:c7:25:4d:a5:5d:00: ab:ad:85:60:8c:4d:1c:3e:f7:fa:bc:0d:3e:dc:d2: 58:3e:28:83:ca:63:c3:7d:16:5b:0a:18:86:72:6f: 44:85:e3:29:4b:b6:6e:80:80:f4:7d:98:03:91:e8: 9f:14:07:92:f1:c7:e1:47:34:47:bf:64:bc:38:08: d3:d5:02:a3:15:f0:3c:49:39:d6:26:f4:35:14:0c: 56:02:38:5c:5e:33:7d:f4:f4:b8:28:ba:d2:be:d2: 90:9f:89:a2:87:4e:2c:91:b2:bf:9f:54:98:c6:22: f6:35:cb:e2:d2:69:9d:4f:7e:df:c6:68:da:93:b2: 24:00:9f:4e:4a:7a:26:a9:1d:bb:03:fd:e3:b7:5c: 49:a1:2e:11:29:9d:8a:80:bd:04:50:53:f0:1b:74: ab:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:D6:B2:2D:32:B2:8F:E7:73:39:B8:80:3F:63:EA:0C:6B:54:CD:DE X509v3 Authority Key Identifier: keyid:84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:ce:f6:28:c3:7d:b5:88:76:97:62:4b:32:ac:fd:f2:9d:94: db:da:2f:55:57:f7:32:97:9d:a4:23:35:b2:a3:a5:55:b1:15: 67:5e:b0:bb:e7:34:5f:d3:c8:c8:16:41:66:2e:26:a7:3d:6e: 26:a2:42:71:df:bd:59:72:96:6e:dc:ae:60:38:b7:73:57:f9: 11:59:dd:4f:52:26:bb:38:9c:cd:7a:89:4e:78:c7:82:05:50: 31:80:b6:4f:e5:e6:33:89:80:70:7d:90:d4:ed:ce:d5:20:56: 6a:99:c2:d6:ed:af:8d:5f:9d:30:95:98:29:60:b8:90:5d:cb: a8:6e:b4:de:fc:26:7b:0e:9c:1a:a1:8d:52:df:c5:74:32:77: 90:7d:91:b2:13:ff:66:2e:10:52:41:55:33:87:2d:66:b9:51: 7c:99:2c:d0:ff:9b:f4:74:3a:fd:66:0a:cb:bf:f6:e5:f3:c4: 6c:ab:60:90:97:b6:a7:8c:99:52:0e:27:ad:d6:33:25:fa:6b: 70:3d:f6:c7:4f:c1:0c:ae:20:eb:cf:60:46:e6:2d:5b:0f:b3: 2d:90:5a:28:d9:de:ab:2b:30:46:61:3a:7a:6c:97:84:ba:47: d7:1e:45:ba:92:85:dd:4b:ec:44:68:9e:9b:87:c3:62:aa:0e: 19:05:8a:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3NjcxMTAvBgNVBAUTKDg0NjhCMDIxOTdGQzlCNzcwQUY4NDA1NTdCRjQxNUEw QjYxMzgyMEQwHhcNMjUxMTAzMDM1MjM1WhcNMjUxMTEwMDM1MjM1WjAYMRYwFAYD VQQDEw02OTA4MjcwMy1mNDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLXOn7qo+kRsXjS+6L3bSdHg718b+143OaXhECYV8ViUFhEP6pCz8dGdi67i XqbUHjdMY9N9shKUTZmiLsrKvF/cRAL3byKIdvee2me6ktlfrtSnQ/NniXd/82wC qC9ZuwfHJU2lXQCrrYVgjE0cPvf6vA0+3NJYPiiDymPDfRZbChiGcm9EheMpS7Zu gID0fZgDkeifFAeS8cfhRzRHv2S8OAjT1QKjFfA8STnWJvQ1FAxWAjhcXjN99PS4 KLrSvtKQn4mih04skbK/n1SYxiL2Ncvi0mmdT37fxmjak7IkAJ9OSnomqR27A/3j t1xJoS4RKZ2KgL0EUFPwG3SrpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3Wsi0y so/nczm4gD9j6gxrVM3eMB8GA1UdIwQYMBaAFIRosCGX/Jt3CvhAVXv0FaC2E4IN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc2Ny83QkM2MUQ4Mjg4 NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0zY0stRUJWZV9RVm9MWVRn ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hHaXdJWmY4bTNjSy1FQlZlX1FWb0xZVGdnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc2Ny83QkM2MUQ4Mjg4NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0z Y0stRUJWZV9RVm9MWVRnZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7zvYow321iHaXYksyrP3ynZTb2i9VV/cyl52kIzWyo6VVsRVnXrC7 5zRf08jIFkFmLianPW4mokJx371ZcpZu3K5gOLdzV/kRWd1PUia7OJzNeolOeMeC BVAxgLZP5eYziYBwfZDU7c7VIFZqmcLW7a+NX50wlZgpYLiQXcuobrTe/CZ7Dpwa oY1S38V0MneQfZGyE/9mLhBSQVUzhy1muVF8mSzQ/5v0dDr9ZgrLv/bl88Rsq2CQ l7anjJlSDiet1jMl+mtwPfbHT8EMriDrz2BG5i1bD7MtkFoo2d6rKzBGYTp6bJeE ukfXHkW6koXdS+xEaJ6bh8Niqg4ZBYol -----END CERTIFICATE-----Generated at Tue Nov 4 21:32:26 2025 by rpki-client