$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft File: HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft (raw, json) Hash identifier: 9yEq31rgYdEmNl+pKJ93PoJ11PaSncBqrRzRoCFxXl4= Subject key identifier: CB:4C:6F:87:82:B3:DB:BB:BF:C5:D9:4F:42:39:58:DA:B7:D1:F9:A5 Authority key identifier: 1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 Certificate issuer: /CN=A919EF2B/serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Certificate serial: 0322 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft Manifest number: 031E Signing time: Mon 03 Nov 2025 01:03:48 +0000 Manifest this update: Mon 03 Nov 2025 01:03:48 +0000 Manifest next update: Mon 10 Nov 2025 01:03:48 +0000 Files and hashes: 1: HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl (hash: rhrQFPuKsaE8TyEjM3Jz1FWqBLxb5FKmb/VOdUJfj3g=) 2: 830C9F90EBCA11ECA2A1747EC4F9AE02.roa (hash: i5bEFhc7shjBgj4Fert4VleTijIxiv1ZRXXWoyNF05s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:03:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 802 (0x322) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF2B, serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Validity Not Before: Nov 3 01:03:48 2025 GMT Not After : Nov 10 01:03:48 2025 GMT Subject: CN=6907ff74-e31b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c7:72:78:91:09:e4:d7:84:21:59:b8:11:3d: fb:5d:63:8d:0c:01:6c:76:85:ef:24:ae:5b:07:f0: 49:97:2a:34:09:fc:ab:fb:70:bd:a0:f3:0a:e0:77: f1:31:63:1c:34:3b:2c:a8:b4:e8:ae:b5:bb:fb:98: 1d:89:4d:96:1a:fd:2c:57:2e:03:e1:bc:d4:ea:3b: 51:c9:f3:72:1c:28:bc:24:17:c1:53:93:25:74:c8: 58:6e:d0:6d:d0:ea:a9:62:04:1c:db:bf:6f:b4:85: 91:38:77:1a:3b:c0:3d:8e:1d:ce:48:78:44:02:0c: 85:92:e3:14:7c:31:63:f4:c9:6a:dd:9d:45:d5:7a: 73:f0:ef:7c:d6:13:13:f8:38:9b:01:0c:fd:b2:7e: 17:9a:17:a0:0f:e8:d8:eb:91:1b:c9:d7:49:2c:58: 60:59:a7:19:57:ed:01:b1:23:2f:3f:24:56:09:7f: 3b:48:de:85:75:45:76:64:7e:e0:ec:21:1d:35:28: 64:10:b9:94:d1:85:46:5f:15:60:0f:87:e9:ff:65: 9e:fc:b2:4b:a7:81:83:6b:9a:df:a4:98:c0:22:92: da:9a:d6:bf:e0:75:85:63:c7:f3:01:2a:c3:47:7f: 73:a9:6e:c8:d1:d8:2f:b0:ed:99:69:28:58:f9:c8: 7c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:4C:6F:87:82:B3:DB:BB:BF:C5:D9:4F:42:39:58:DA:B7:D1:F9:A5 X509v3 Authority Key Identifier: keyid:1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:11:23:6b:0d:b8:89:56:87:13:95:73:2f:60:3b:b8:f4:63: 54:06:fc:6d:03:9a:e7:b3:8d:6c:a0:ba:80:cb:c3:eb:2f:fc: 58:f7:e1:ac:46:7c:06:69:eb:ba:23:2a:49:77:23:2a:03:d1: 1c:e7:c2:ce:8b:b0:d8:e8:e0:e8:09:6d:68:ed:cd:89:ef:a0: 67:54:47:b9:13:58:30:23:5d:c4:20:d6:31:ed:f4:cf:26:c5: c2:c8:76:a8:cb:59:3a:83:d9:fb:b4:e8:a6:12:76:26:b0:d4: 87:79:3d:36:97:ac:c2:87:30:ac:55:60:ba:2c:e9:65:ab:15: ac:53:cd:bf:70:52:8e:d9:10:2e:57:7b:fb:86:69:bd:94:34: c0:59:1f:b6:05:b9:a5:3c:44:6b:bd:1b:4b:c3:79:be:84:3b: 24:b0:ec:dd:96:73:f0:ab:ac:4f:0a:29:3b:2c:4d:28:7e:c7: ea:2e:a3:d2:98:52:d9:b2:2d:19:3d:2c:11:5d:e4:6d:23:f3: 58:83:1d:be:04:06:4b:16:36:dd:9d:78:54:d2:6e:cd:28:e2: a1:82:98:32:c3:0c:d0:7f:55:cd:85:34:71:ff:5b:f4:2a:49: b6:d1:d8:66:01:17:a8:d9:03:58:14:0a:9f:e2:3f:29:e0:68: 18:13:ab:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGMkIxMTAvBgNVBAUTKDFDQkE4RDNEQUE4MDQ4ODkzMEE5OTI4QjE5NkVERUUw NzVGNDA5QTQwHhcNMjUxMTAzMDEwMzQ4WhcNMjUxMTEwMDEwMzQ4WjAYMRYwFAYD VQQDEw02OTA3ZmY3NC1lMzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMdyeJEJ5NeEIVm4ET37XWONDAFsdoXvJK5bB/BJlyo0Cfyr+3C9oPMK4Hfx MWMcNDssqLTorrW7+5gdiU2WGv0sVy4D4bzU6jtRyfNyHCi8JBfBU5MldMhYbtBt 0OqpYgQc279vtIWROHcaO8A9jh3OSHhEAgyFkuMUfDFj9Mlq3Z1F1Xpz8O981hMT +DibAQz9sn4XmhegD+jY65EbyddJLFhgWacZV+0BsSMvPyRWCX87SN6FdUV2ZH7g 7CEdNShkELmU0YVGXxVgD4fp/2We/LJLp4GDa5rfpJjAIpLamta/4HWFY8fzASrD R39zqW7I0dgvsO2ZaShY+ch8FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtMb4eC s9u7v8XZT0I5WNq30fmlMB8GA1UdIwQYMBaAFBy6jT2qgEiJMKmSixlu3uB19Amk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUYyQi81MzczMjJGQUVC QzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJa3dxWktMR1c3ZTRIWDBD YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMcU5QYXFBU0lrd3FaS0xHVzdlNEhYMENhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUYyQi81MzczMjJGQUVCQzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJ a3dxWktMR1c3ZTRIWDBDYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXESNrDbiJVocTlXMvYDu49GNUBvxtA5rns41soLqAy8PrL/xY9+Gs RnwGaeu6IypJdyMqA9Ec58LOi7DY6ODoCW1o7c2J76BnVEe5E1gwI13EINYx7fTP JsXCyHaoy1k6g9n7tOimEnYmsNSHeT02l6zChzCsVWC6LOllqxWsU82/cFKO2RAu V3v7hmm9lDTAWR+2BbmlPERrvRtLw3m+hDsksOzdlnPwq6xPCik7LE0ofsfqLqPS mFLZsi0ZPSwRXeRtI/NYgx2+BAZLFjbdnXhU0m7NKOKhgpgywwzQf1XNhTRx/1v0 Kkm20dhmAReo2QNYFAqf4j8p4GgYE6u6 -----END CERTIFICATE-----Generated at Tue Nov 4 16:32:47 2025 by rpki-client