$ rpki-client -vvf rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft File: hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft (raw, json) Hash identifier: +5idme4TFqfiiCNPBtP8IVlotT0Ngw0NJt/OSis8Hpo= Subject key identifier: EC:74:97:D9:F9:90:A3:74:ED:D8:B5:25:7B:45:AE:02:0A:84:41:7C Authority key identifier: 86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 Certificate issuer: /CN=A91973D2/serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Certificate serial: 0618 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft Manifest number: 0611 Signing time: Sun 19 Oct 2025 00:28:19 +0000 Manifest this update: Sun 19 Oct 2025 00:28:19 +0000 Manifest next update: Sun 26 Oct 2025 00:28:19 +0000 Files and hashes: 1: hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl (hash: iJqULKup3Gc47C9Ho0ULXsi+xwIM7XRjmqFj81DTCiw=) 2: 6959BDA8C05B11EB9540776AC4F9AE02.roa (hash: an7WXAxX+jv7oF31g7hZpPAQEGzXt/L0AOIi2ZabL2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1560 (0x618) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91973D2, serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Validity Not Before: Oct 19 00:28:19 2025 GMT Not After : Oct 26 00:28:19 2025 GMT Subject: CN=68f430a3-491a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:7c:58:18:1b:62:7a:d0:98:ce:07:bf:30:a1: 10:d0:bc:0d:8c:0b:ca:1c:3b:9b:36:55:0e:4b:e5: 0a:b6:1e:00:f0:ff:dc:16:ad:53:3d:24:37:1f:7e: b8:63:13:a3:62:b9:f8:64:23:16:e5:cb:89:27:22: c7:76:49:09:7d:1e:79:c7:ec:e2:38:c7:15:01:28: 92:4a:2e:cf:e7:6a:54:cd:86:a2:53:04:04:69:a9: ec:dc:1a:a7:5e:e3:52:79:94:81:76:1a:61:db:50: 58:4c:f7:1f:fb:e8:d2:1c:f0:d2:0e:3b:c7:57:ad: d0:f7:54:99:e1:2f:d2:25:5f:d9:ba:f2:9e:03:01: 05:a5:d1:fe:82:7e:ad:c1:95:51:64:ac:80:f8:b1: 78:ff:60:88:ff:e0:7d:21:e4:1a:a2:ed:f9:9a:73: 4c:a7:fd:2b:af:5e:5c:fa:d2:ef:5f:d5:8b:ab:42: a0:c2:7d:2d:1a:a3:69:0a:c1:ff:5e:51:93:0f:8c: 97:16:81:64:dc:06:0c:86:2b:37:bf:47:18:d5:0f: 4d:d4:16:5e:98:08:19:41:18:c3:40:03:c0:38:49: 47:b4:a8:1f:d0:ba:3c:27:6d:68:ad:8f:19:25:60: 88:63:bb:cb:96:af:65:58:cd:fd:2c:02:e0:51:5d: 3a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:74:97:D9:F9:90:A3:74:ED:D8:B5:25:7B:45:AE:02:0A:84:41:7C X509v3 Authority Key Identifier: keyid:86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:9c:cc:69:07:7b:03:fd:fc:72:1c:b9:0b:72:90:0a:1f:4b: cf:bb:ef:c5:af:ea:91:42:ea:4b:f4:2e:11:17:a1:cb:37:2e: 23:6e:5f:af:0e:9e:50:00:c3:00:4b:b1:d8:27:10:c0:b2:c1: 9a:49:3e:33:d4:e5:1f:2b:09:15:f5:61:06:37:35:4c:b5:a1: 28:a4:f1:a7:81:ee:c1:63:6f:1f:1c:5b:54:fc:c5:52:c9:81: 37:d4:6e:91:72:89:a4:9e:ee:5b:31:b1:90:3e:ff:1a:51:4c: e9:b6:8c:ab:73:c3:38:8d:5d:a8:b0:1e:1e:68:38:3d:55:9c: bd:83:79:a6:77:e4:17:66:7b:33:10:7f:ce:ef:f7:25:12:eb: 8b:bb:d0:30:7a:c8:29:73:43:36:9d:d0:1c:5a:3c:7a:30:97: 8c:24:58:53:60:98:3d:6e:d9:ed:86:55:21:07:7d:4c:dc:41: 7a:a5:0e:72:d6:6f:a9:74:8f:92:4b:53:37:06:9c:b2:9d:7b: 75:63:d3:db:3c:0e:7d:b7:1c:7a:4b:99:f9:2f:72:b2:29:34: 21:e2:a4:ec:a0:ad:6e:e8:b5:17:d6:52:a7:b1:f8:f8:5d:e3: 79:61:09:cc:f6:6e:a7:fe:44:1a:2c:c5:0a:26:64:1e:37:54: e7:ce:28:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczRDIxMTAvBgNVBAUTKDg2QUIzRUJEN0M0MUU2NTZDQ0VFQ0RCNUE4NTBDN0E0 QjFFMjY3RTMwHhcNMjUxMDE5MDAyODE5WhcNMjUxMDI2MDAyODE5WjAYMRYwFAYD VQQDEw02OGY0MzBhMy00OTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6nxYGBtietCYzge/MKEQ0LwNjAvKHDubNlUOS+UKth4A8P/cFq1TPSQ3H364 YxOjYrn4ZCMW5cuJJyLHdkkJfR55x+ziOMcVASiSSi7P52pUzYaiUwQEaans3Bqn XuNSeZSBdhph21BYTPcf++jSHPDSDjvHV63Q91SZ4S/SJV/ZuvKeAwEFpdH+gn6t wZVRZKyA+LF4/2CI/+B9IeQaou35mnNMp/0rr15c+tLvX9WLq0Kgwn0tGqNpCsH/ XlGTD4yXFoFk3AYMhis3v0cY1Q9N1BZemAgZQRjDQAPAOElHtKgf0Lo8J21orY8Z JWCIY7vLlq9lWM39LALgUV065wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOx0l9n5 kKN07di1JXtFrgIKhEF8MB8GA1UdIwQYMBaAFIarPr18QeZWzO7NtahQx6Sx4mfj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzNEMi9EQTgzOUM5NEJG QzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVsYk03czIxcUZESHBMSGla LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hxcy12WHhCNWxiTTdzMjFxRkRIcExIaVotTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzNEMi9EQTgzOUM5NEJGQzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVs Yk03czIxcUZESHBMSGlaLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPnMxpB3sD/fxyHLkLcpAKH0vPu+/Fr+qRQupL9C4RF6HLNy4jbl+v Dp5QAMMAS7HYJxDAssGaST4z1OUfKwkV9WEGNzVMtaEopPGnge7BY28fHFtU/MVS yYE31G6Rcomknu5bMbGQPv8aUUzptoyrc8M4jV2osB4eaDg9VZy9g3mmd+QXZnsz EH/O7/clEuuLu9Awesgpc0M2ndAcWjx6MJeMJFhTYJg9btnthlUhB31M3EF6pQ5y 1m+pdI+SS1M3BpyynXt1Y9PbPA59txx6S5n5L3KyKTQh4qTsoK1u6LUX1lKnsfj4 XeN5YQnM9m6n/kQaLMUKJmQeN1Tnzigw -----END CERTIFICATE-----Generated at Mon Oct 20 10:47:51 2025 by rpki-client