$ rpki-client -vvf rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft File: hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft (raw, json) Hash identifier: LxmDvjP7AlWp5owaMwWcEIxcYAkKwQCu3w+L7u5VQ+0= Subject key identifier: 55:19:58:CD:F1:C0:A4:EB:33:01:3B:DB:65:58:8B:DD:AD:4D:8E:72 Authority key identifier: 86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 Certificate issuer: /CN=A91973D2/serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Certificate serial: 05FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft Manifest number: 05F4 Signing time: Fri 22 Aug 2025 23:07:51 +0000 Manifest this update: Fri 22 Aug 2025 23:07:50 +0000 Manifest next update: Fri 29 Aug 2025 23:07:50 +0000 Files and hashes: 1: hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl (hash: 6vKONX3ZARbRWFviu09G5rIi2yyp/zrrL1eiaqaZQXM=) 2: 6959BDA8C05B11EB9540776AC4F9AE02.roa (hash: an7WXAxX+jv7oF31g7hZpPAQEGzXt/L0AOIi2ZabL2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:07:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1531 (0x5fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91973D2, serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Validity Not Before: Aug 22 23:07:50 2025 GMT Not After : Aug 29 23:07:50 2025 GMT Subject: CN=68a8f846-bbb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:01:fd:f0:bb:ab:a3:12:8e:64:1c:67:32:27: 2b:fa:bc:6d:3c:cf:83:87:dd:62:2f:d4:61:24:0c: 71:01:42:7a:d8:4c:60:ed:6c:23:8e:7c:87:37:ea: 01:03:d9:88:6e:a1:17:a1:62:7f:38:27:90:f2:ed: 82:50:08:b0:83:81:30:fa:ce:86:54:c7:4c:9a:bb: 8b:bc:02:e5:dd:d5:0a:41:32:ce:31:25:79:65:e5: 6d:32:e9:6b:03:bd:0b:e6:b0:a5:2d:69:e1:f4:c9: 7c:c8:c4:0f:43:62:a2:27:ac:9c:ac:02:80:be:0c: c9:a5:d8:48:fb:f2:67:6a:4a:37:ac:56:08:a1:fe: 62:83:60:4b:80:14:45:cc:78:bf:56:ca:08:a8:fd: 52:e0:7c:cc:7e:7d:bb:2f:07:a7:d7:af:38:59:dd: 02:b0:e4:f1:16:85:31:61:55:d8:29:cb:01:fc:fd: 94:e3:f0:2d:19:5a:5e:9c:22:d3:26:f7:66:43:9b: 72:c5:1f:59:77:e7:36:b4:b1:8b:3d:41:13:2b:05: d4:94:74:55:0d:d5:0d:87:73:af:98:fb:14:3a:f4: 0a:46:35:64:d8:1c:7b:76:01:ed:be:46:ae:f8:c1: 1f:40:6e:34:97:a3:5e:55:3c:6a:7b:97:02:84:94: 30:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:19:58:CD:F1:C0:A4:EB:33:01:3B:DB:65:58:8B:DD:AD:4D:8E:72 X509v3 Authority Key Identifier: keyid:86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ad:68:da:d4:53:23:a7:ee:15:50:3f:30:1f:61:2c:da:e6: 74:28:71:2b:0a:1a:c4:88:a6:7d:58:a9:0c:f9:1b:39:7d:68: a9:c3:b1:f4:67:ab:e1:0c:73:65:4f:85:de:99:25:ae:75:cc: 9b:cd:b3:e7:4a:09:f3:4b:83:00:ce:73:66:c6:b2:17:2a:0f: c2:8d:f0:ed:0a:d3:f0:0c:60:44:34:88:8b:a6:8a:53:54:a3: cc:cb:02:d7:6c:81:72:bb:01:6e:11:d0:d8:29:5c:68:28:56: b4:65:65:43:52:01:5d:1d:af:52:bf:a8:b1:73:c4:52:bb:e3: ee:86:d5:ac:7e:14:56:76:83:f4:e1:67:b2:27:2e:50:83:0c: 05:93:10:a1:62:0b:d1:80:53:d5:13:0d:82:62:3a:36:12:f7: 1a:b2:a3:ab:9f:87:be:5a:d4:4a:f8:2f:bc:a6:cd:45:8c:ed: 82:f2:51:fe:48:50:87:a3:43:43:b6:14:21:2e:61:aa:bf:89: 00:ed:9f:68:52:a0:c3:ab:b0:88:ef:8b:6c:bb:dc:b5:10:03: ed:71:98:73:f1:55:1d:0e:66:a5:78:00:d2:57:2e:29:27:4f: c8:20:44:aa:22:e8:b2:fc:4f:d6:bb:b5:ae:3c:dd:8a:5d:9b: fd:6c:3a:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczRDIxMTAvBgNVBAUTKDg2QUIzRUJEN0M0MUU2NTZDQ0VFQ0RCNUE4NTBDN0E0 QjFFMjY3RTMwHhcNMjUwODIyMjMwNzUwWhcNMjUwODI5MjMwNzUwWjAYMRYwFAYD VQQDEw02OGE4Zjg0Ni1iYmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwH98LuroxKOZBxnMicr+rxtPM+Dh91iL9RhJAxxAUJ62Exg7WwjjnyHN+oB A9mIbqEXoWJ/OCeQ8u2CUAiwg4Ew+s6GVMdMmruLvALl3dUKQTLOMSV5ZeVtMulr A70L5rClLWnh9Ml8yMQPQ2KiJ6ycrAKAvgzJpdhI+/Jnako3rFYIof5ig2BLgBRF zHi/VsoIqP1S4HzMfn27Lwen1684Wd0CsOTxFoUxYVXYKcsB/P2U4/AtGVpenCLT JvdmQ5tyxR9Zd+c2tLGLPUETKwXUlHRVDdUNh3OvmPsUOvQKRjVk2Bx7dgHtvkau +MEfQG40l6NeVTxqe5cChJQwiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUZWM3x wKTrMwE722VYi92tTY5yMB8GA1UdIwQYMBaAFIarPr18QeZWzO7NtahQx6Sx4mfj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzNEMi9EQTgzOUM5NEJG QzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVsYk03czIxcUZESHBMSGla LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hxcy12WHhCNWxiTTdzMjFxRkRIcExIaVotTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzNEMi9EQTgzOUM5NEJGQzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVs Yk03czIxcUZESHBMSGlaLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAerWja1FMjp+4VUD8wH2Es2uZ0KHErChrEiKZ9WKkM+Rs5fWipw7H0 Z6vhDHNlT4XemSWudcybzbPnSgnzS4MAznNmxrIXKg/CjfDtCtPwDGBENIiLpopT VKPMywLXbIFyuwFuEdDYKVxoKFa0ZWVDUgFdHa9Sv6ixc8RSu+PuhtWsfhRWdoP0 4WeyJy5QgwwFkxChYgvRgFPVEw2CYjo2EvcasqOrn4e+WtRK+C+8ps1FjO2C8lH+ SFCHo0NDthQhLmGqv4kA7Z9oUqDDq7CI74tsu9y1EAPtcZhz8VUdDmaleADSVy4p J0/IIESqIuiy/E/Wu7WuPN2KXZv9bDrh -----END CERTIFICATE-----Generated at Sat Aug 23 16:38:49 2025 by rpki-client