$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft File: HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft (raw, json) Hash identifier: ecf3v2pHqyeOahzh7mUxD/qBNI2dJCqaPcUUP14BmBo= Subject key identifier: 53:FB:4D:7D:0F:F2:71:07:7E:C9:D5:49:EB:1A:5F:9B:29:3D:F1:B6 Authority key identifier: 1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB Certificate issuer: /CN=A91B0770/serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Certificate serial: 356A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft Manifest number: 3521 Signing time: Sat 18 Oct 2025 14:43:29 +0000 Manifest this update: Sat 18 Oct 2025 14:43:28 +0000 Manifest next update: Sat 25 Oct 2025 14:43:28 +0000 Files and hashes: 1: HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl (hash: ica3ZfQEjrZRfQPUTEyhxHHLZSPjyO+F2d73eLX9A/I=) 2: 87EFB95AC01811EF90CE8B0EC4F9AE02.roa (hash: qZJPfG2amv1YRehnUzdlHxLOWwvXz8+dMtqCKRYUJpM=) 3: 725D1810BD0E11EA8CEF0681C4F9AE02.roa (hash: uxN4zJEmGXmB/qpIp2ey6SpNrf4s6W/tukdRHW9gvLc=) 4: 0FCDEA68113B11F09E3A4157C4F9AE02.roa (hash: HhPaW5eoa8YAXMCyUgrMCG4GBbrYuP09obNUWTvTJmo=) 5: 2B622E1282F511EF9090F681C4F9AE02.roa (hash: o+SVOkw4B+Pgr5TLQfMcQYEp6f3Jn3P38kWJLEEf/tQ=) 6: C2DFDA20DE0611EF9DC6A135C4F9AE02.roa (hash: Kgqe2j6IHwMDhGgmbFi5UiveUmKiCe0XXLEEC0ovFyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13674 (0x356a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0770, serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Validity Not Before: Oct 18 14:43:28 2025 GMT Not After : Oct 25 14:43:28 2025 GMT Subject: CN=68f3a790-1aa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4d:77:cb:04:6f:76:ad:f0:39:2d:8f:8c:7a: e5:ff:45:14:88:03:a5:d4:f7:50:c7:af:3f:cc:07: 74:3a:d3:85:1c:ef:61:e6:0e:73:28:3b:67:4c:a0: 93:18:24:c7:6d:3c:01:2b:4c:0c:50:7b:6d:c3:48: c7:f9:b6:f2:f7:70:33:90:10:c8:5b:91:5c:1d:85: e4:e3:70:c0:59:33:5f:cb:9b:40:18:43:c7:2e:89: d4:ae:cb:9a:a6:b7:93:e4:20:1f:01:74:65:08:b4: fd:dd:29:a9:c8:99:84:01:88:ab:f8:70:8c:5b:24: 20:f8:fb:73:a3:dc:e6:c0:99:15:d7:92:07:8f:f7: 7a:86:42:b6:74:ae:f6:66:93:17:5f:a6:69:0f:87: 22:f0:7c:92:ef:57:2a:15:4a:59:cd:f6:64:b8:39: 52:19:40:e1:e8:af:53:11:38:a7:c1:8d:6f:05:6d: ed:2b:4a:28:1a:ca:f1:16:66:41:2a:46:aa:4e:6e: 8b:ac:a5:55:74:f6:1e:44:8f:ce:ad:4d:a5:81:99: 2f:90:03:87:00:b4:38:09:7c:f0:8a:21:63:f0:55: ed:03:8a:5a:e1:60:fd:c7:aa:93:3c:8b:29:9d:14: de:2a:39:e5:7c:17:6c:3c:c5:36:f5:e6:40:31:f7: f7:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:FB:4D:7D:0F:F2:71:07:7E:C9:D5:49:EB:1A:5F:9B:29:3D:F1:B6 X509v3 Authority Key Identifier: keyid:1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:d6:2d:0f:c3:2c:b0:e2:7d:6f:a5:44:16:2c:35:56:0b:ea: 57:37:54:a0:f8:61:34:b6:1b:7d:85:65:9c:8a:82:7b:29:0f: 6c:03:06:6c:92:32:58:e7:65:ec:9f:0e:53:3c:e4:33:82:ba: 3a:e9:61:7f:e9:95:ed:93:80:f9:28:bb:0e:57:2b:d7:af:2e: c6:57:27:ca:8e:70:cd:14:b1:0a:5d:b9:f7:0d:75:0d:e3:62: fd:b7:07:69:24:0f:79:3e:54:7f:8d:84:cf:ae:a3:05:5b:67: 12:aa:d9:01:4c:4c:87:51:44:87:c5:d1:b3:1e:a3:cb:48:9e: 04:d3:5d:6b:5f:30:bd:2b:ed:ad:e5:a4:79:55:09:b5:be:e1: 14:95:34:43:4c:6c:d4:8f:81:75:75:6a:2c:8d:87:29:5d:55: 1d:71:5a:ff:d9:61:62:94:5d:1b:4c:fb:77:04:6b:f6:db:cc: b9:0c:ee:e5:3b:2b:d8:fa:5c:b4:b7:9a:8f:3a:59:ec:c6:b6: 40:e7:8c:d6:f3:73:0b:df:a7:a0:ed:c9:a6:0f:07:35:65:10: 75:ce:a6:d0:fc:bf:b9:56:42:cc:a4:51:81:76:27:92:c4:bd: 77:02:44:98:b1:2a:e7:2f:33:b5:22:50:8a:aa:74:70:59:ef: fd:c6:03:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NzAxMTAvBgNVBAUTKDFENjIyNUFEOTQzRUNBMzg5RkE0QjY2QzE5NzQzNTFF MzRDNDI4RkIwHhcNMjUxMDE4MTQ0MzI4WhcNMjUxMDI1MTQ0MzI4WjAYMRYwFAYD VQQDEw02OGYzYTc5MC0xYWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4013ywRvdq3wOS2PjHrl/0UUiAOl1PdQx68/zAd0OtOFHO9h5g5zKDtnTKCT GCTHbTwBK0wMUHttw0jH+bby93AzkBDIW5FcHYXk43DAWTNfy5tAGEPHLonUrsua preT5CAfAXRlCLT93SmpyJmEAYir+HCMWyQg+Ptzo9zmwJkV15IHj/d6hkK2dK72 ZpMXX6ZpD4ci8HyS71cqFUpZzfZkuDlSGUDh6K9TETinwY1vBW3tK0ooGsrxFmZB KkaqTm6LrKVVdPYeRI/OrU2lgZkvkAOHALQ4CXzwiiFj8FXtA4pa4WD9x6qTPIsp nRTeKjnlfBdsPMU29eZAMff38wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFP7TX0P 8nEHfsnVSesaX5spPfG2MB8GA1UdIwQYMBaAFB1iJa2UPso4n6S2bBl0NR40xCj7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc3MC9DMzM2ODNCNjFE OEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlqaWZwTFpzR1hRMUhqVEVL UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXSWxyWlEteWppZnBMWnNHWFExSGpURUtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDc3MC9DMzM2ODNCNjFEOEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlq aWZwTFpzR1hRMUhqVEVLUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO1i0Pwyyw4n1vpUQWLDVWC+pXN1Sg+GE0tht9hWWcioJ7KQ9sAwZs kjJY52Xsnw5TPOQzgro66WF/6ZXtk4D5KLsOVyvXry7GVyfKjnDNFLEKXbn3DXUN 42L9twdpJA95PlR/jYTPrqMFW2cSqtkBTEyHUUSHxdGzHqPLSJ4E011rXzC9K+2t 5aR5VQm1vuEUlTRDTGzUj4F1dWosjYcpXVUdcVr/2WFilF0bTPt3BGv228y5DO7l OyvY+ly0t5qPOlnsxrZA54zW83ML36eg7cmmDwc1ZRB1zqbQ/L+5VkLMpFGBdieS xL13AkSYsSrnLzO1IlCKqnRwWe/9xgOA -----END CERTIFICATE-----Generated at Mon Oct 20 14:11:12 2025 by rpki-client