$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft File: hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft (raw, json) Hash identifier: QVv4ULbUAYZM78NB4PhQR9+fWS5wzZIkOrUxH4xosZc= Subject key identifier: A4:7C:36:8B:FA:C5:96:44:02:41:42:E6:97:B3:00:AC:75:D1:61:E3 Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 0FE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft Manifest number: 0FD3 Signing time: Tue 04 Nov 2025 17:35:22 +0000 Manifest this update: Tue 04 Nov 2025 17:35:21 +0000 Manifest next update: Tue 11 Nov 2025 17:35:21 +0000 Files and hashes: 1: hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl (hash: DX2AugKPozp2ByCf/SymMrqGMwYzWSyBDeB2RxWTesc=) 2: 28DA447C289B11EAA1EA9B53C4F9AE02.roa (hash: xqp4ztY1055hAOWGxzBB8IclFQx9Z0YAGfkQm9qw9nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4073 (0xfe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE, serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: Nov 4 17:35:21 2025 GMT Not After : Nov 11 17:35:21 2025 GMT Subject: CN=690a3959-e4b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:51:11:3a:99:c0:eb:fe:2a:ce:9e:6d:57:f2: 0b:ae:d5:14:12:a2:47:6f:a1:47:8d:74:01:13:75: 98:8d:9e:27:0e:53:97:ad:1d:d9:0b:e7:6a:10:f8: 1d:27:ec:19:3f:94:7c:d9:97:9c:a2:8b:98:6d:e9: c0:5a:7b:f6:c5:34:a4:13:af:93:7c:38:31:a1:4d: dc:72:05:d1:e9:9c:20:33:2d:0e:d7:03:8e:a2:6b: e7:da:87:bd:1d:e8:f0:fc:c2:33:6c:c9:12:57:10: 5e:a7:85:7c:b3:ef:29:d4:37:b3:6f:fe:47:a2:f8: b3:62:66:7a:d5:66:f8:2a:2c:b2:15:ce:fe:e6:41: 3d:6a:57:17:62:ec:f9:eb:a9:c9:2d:a7:f3:7a:70: fc:44:9a:6e:ad:4e:b9:c8:8d:48:71:a6:4c:54:75: 14:e4:0e:d5:cf:4d:05:80:c0:43:83:45:ae:61:a6: 8b:d2:ca:99:8d:e3:2f:b5:bb:c3:94:50:57:50:ed: c3:e0:66:fc:1f:42:f4:3b:b2:4b:fa:a0:a9:39:64: 24:66:d4:ba:50:78:ba:f9:94:d0:d1:36:0c:f2:8e: 7a:96:a6:0c:9d:ce:d2:55:ae:56:2f:2b:f9:69:a1: 52:81:e5:55:b0:4a:b6:2b:89:39:d5:74:f6:a2:1f: 4e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:7C:36:8B:FA:C5:96:44:02:41:42:E6:97:B3:00:AC:75:D1:61:E3 X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:47:5f:01:16:35:57:17:64:66:53:ed:44:63:ae:89:a2:c7: d2:71:fc:b7:2a:b1:74:a0:52:5f:16:65:b1:42:19:6b:9a:ca: 97:95:84:a1:ba:e4:b1:d1:90:46:97:94:a4:3e:8b:35:00:89: fc:c4:c5:6a:74:1a:0c:98:b2:44:9c:b8:2a:2a:24:bd:77:75: aa:80:ec:28:58:d2:ba:37:2a:1f:7c:d3:e5:5b:d3:50:6c:05: e7:26:61:6b:da:f2:f8:48:78:9e:01:a5:83:d6:27:27:f7:84: 17:fc:b9:79:0b:f3:76:4f:4f:d4:d6:04:2b:67:c1:e9:be:25: f2:ee:9f:a4:65:a9:3a:d5:8a:52:d9:37:4e:fa:37:f5:a7:a8: 21:98:77:80:1b:13:71:36:d6:e2:4f:08:84:ae:99:4b:8e:76: 37:fb:a5:b8:d5:32:ca:bf:3a:6a:d0:5c:a6:80:3d:44:de:99: ae:d4:09:58:c3:23:70:3b:13:f7:5d:41:3d:b9:f5:97:18:a3: e2:b4:d2:f5:9e:45:3d:84:33:f1:ba:c3:bb:71:58:21:82:bd: a0:18:8b:82:ce:c4:ab:47:c0:6f:e1:98:d1:60:f4:c9:a6:0f: b3:71:da:3b:95:a0:ec:37:52:51:ac:a8:55:3c:ec:11:49:47: 1c:5d:45:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjUxMTA0MTczNTIxWhcNMjUxMTExMTczNTIxWjAYMRYwFAYD VQQDEw02OTBhMzk1OS1lNGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3VEROpnA6/4qzp5tV/ILrtUUEqJHb6FHjXQBE3WYjZ4nDlOXrR3ZC+dqEPgd J+wZP5R82ZecoouYbenAWnv2xTSkE6+TfDgxoU3ccgXR6ZwgMy0O1wOOomvn2oe9 Hejw/MIzbMkSVxBep4V8s+8p1Dezb/5HovizYmZ61Wb4KiyyFc7+5kE9alcXYuz5 66nJLafzenD8RJpurU65yI1IcaZMVHUU5A7Vz00FgMBDg0WuYaaL0sqZjeMvtbvD lFBXUO3D4Gb8H0L0O7JL+qCpOWQkZtS6UHi6+ZTQ0TYM8o56lqYMnc7SVa5WLyv5 aaFSgeVVsEq2K4k51XT2oh9OPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKR8Nov6 xZZEAkFC5pezAKx10WHjMB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QThCRS85MDE5RDEyMDY0MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZR clpBSHhDQTJkbUpZMVVoV1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBER18BFjVXF2RmU+1EY66JosfScfy3KrF0oFJfFmWxQhlrmsqXlYSh uuSx0ZBGl5SkPos1AIn8xMVqdBoMmLJEnLgqKiS9d3WqgOwoWNK6NyoffNPlW9NQ bAXnJmFr2vL4SHieAaWD1icn94QX/Ll5C/N2T0/U1gQrZ8HpviXy7p+kZak61YpS 2TdO+jf1p6ghmHeAGxNxNtbiTwiErplLjnY3+6W41TLKvzpq0FymgD1E3pmu1AlY wyNwOxP3XUE9ufWXGKPitNL1nkU9hDPxusO7cVghgr2gGIuCzsSrR8Bv4ZjRYPTJ pg+zcdo7laDsN1JRrKhVPOwRSUccXUWU -----END CERTIFICATE-----Generated at Wed Nov 5 05:50:28 2025 by rpki-client