$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft File: HLQwTtZoyPcWQT79ZhdMOGcMics.mft (raw, json) Hash identifier: vqzauHizCCSOWEU5zQe108HgtRc6YEL/QfLH+q2qipg= Subject key identifier: E3:58:16:C9:9D:76:42:81:17:BF:D1:A2:09:31:78:C4:65:62:A2:5B Authority key identifier: 1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB Certificate issuer: /CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Certificate serial: 1453 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft Manifest number: 144A Signing time: Sat 18 Oct 2025 17:22:39 +0000 Manifest this update: Sat 18 Oct 2025 17:22:37 +0000 Manifest next update: Sat 25 Oct 2025 17:22:37 +0000 Files and hashes: 1: HLQwTtZoyPcWQT79ZhdMOGcMics.crl (hash: G25cLAPxB0YYSF3ZSrGy4F0o1ILShTLGTHczwohxKys=) 2: 1CA71D84493D11EAAB30C638C4F9AE02.roa (hash: Namfm+gMj3DTGbqctWwU+VBkFxpSXUjfjiuK5KjjSb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5203 (0x1453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4286, serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Validity Not Before: Oct 18 17:22:37 2025 GMT Not After : Oct 25 17:22:37 2025 GMT Subject: CN=68f3ccde-ac71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:17:5a:ce:99:3f:83:5a:b5:8f:e1:bf:ba:1a: b6:e3:2c:b8:3e:41:91:64:92:85:81:8f:25:ce:68: 19:6f:49:a9:45:17:93:5a:ce:5d:b8:25:81:c8:53: 83:d6:90:68:c9:d9:b1:b2:9e:30:4e:d7:ed:65:ba: 5a:48:c9:7f:48:ff:d5:dc:b2:79:ea:c5:fb:ce:8c: 41:6a:00:91:1a:90:45:49:00:d1:77:3c:1a:08:d8: 35:5d:8a:e0:38:ab:1e:db:3a:06:45:b2:7f:e0:0d: 86:10:b3:24:c3:a1:4a:eb:b4:09:50:9c:43:a5:99: de:96:32:49:81:b5:a8:3f:e7:52:f4:56:fb:cf:93: 5d:f0:e7:e2:de:44:66:69:df:b0:33:fa:ad:2d:c2: fe:fb:b1:b5:0f:44:a8:59:48:6c:a9:2f:c0:a4:c8: 1b:62:9e:5f:bc:9a:48:65:f0:2e:13:f7:16:7e:fc: d8:40:98:38:a1:7d:ab:ad:b3:68:71:f7:94:70:e3: 16:a1:39:5b:be:21:30:12:79:d8:b3:db:a3:1f:28: 23:a7:60:56:11:50:1e:f5:2c:c0:af:f5:b1:8c:5d: 41:65:ae:33:9a:93:1a:41:3c:2e:5a:dc:71:34:1d: 56:e7:02:90:ea:07:3f:5a:ae:6d:32:3e:12:52:4b: 78:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:58:16:C9:9D:76:42:81:17:BF:D1:A2:09:31:78:C4:65:62:A2:5B X509v3 Authority Key Identifier: keyid:1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:c2:90:f4:7f:34:0b:74:b4:e3:40:e4:39:7b:e9:9f:e8:ac: 39:af:b5:a0:53:86:b9:de:1d:0d:95:d5:f2:6a:55:d5:5c:03: a1:e0:63:77:c8:68:4b:99:b2:59:d5:10:0e:f7:67:ee:52:d3: 5d:bd:d5:d5:74:f3:07:65:0d:30:60:f9:30:2b:5c:53:40:4c: f4:9d:cc:b3:34:b4:4c:e4:d3:7b:fd:72:27:db:9b:1f:d8:99: e6:a7:ad:69:6e:13:08:6e:ad:0d:b8:37:b5:62:13:93:70:14: 2d:9b:02:59:a0:4e:9c:70:38:65:78:cd:fd:8c:8e:fe:74:f4: 91:92:99:14:0b:96:58:0c:d1:4c:f6:6b:f4:48:46:17:8b:7c: 27:43:a9:17:d0:fb:c2:eb:54:45:11:20:71:5a:34:90:5a:13: 11:00:60:f5:13:50:70:5b:7a:85:5d:5e:c7:27:d7:1b:c9:2c: 4d:26:8b:c9:ea:ff:3e:5e:56:5c:91:83:ed:a6:44:58:9f:77: 00:69:ee:9f:71:df:d8:8b:ec:78:d7:8a:8e:fb:17:ad:a7:31: 32:7b:11:04:30:84:ff:ea:0e:2e:e2:15:a2:6b:d4:99:e2:6b: c1:0d:65:7b:31:21:e3:f8:51:15:3d:27:75:37:38:dc:f1:15: d4:f8:d0:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyODYxMTAvBgNVBAUTKDFDQjQzMDRFRDY2OEM4RjcxNjQxM0VGRDY2MTc0QzM4 NjcwQzg5Q0IwHhcNMjUxMDE4MTcyMjM3WhcNMjUxMDI1MTcyMjM3WjAYMRYwFAYD VQQDEw02OGYzY2NkZS1hYzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxdazpk/g1q1j+G/uhq24yy4PkGRZJKFgY8lzmgZb0mpRReTWs5duCWByFOD 1pBoydmxsp4wTtftZbpaSMl/SP/V3LJ56sX7zoxBagCRGpBFSQDRdzwaCNg1XYrg OKse2zoGRbJ/4A2GELMkw6FK67QJUJxDpZneljJJgbWoP+dS9Fb7z5Nd8Ofi3kRm ad+wM/qtLcL++7G1D0SoWUhsqS/ApMgbYp5fvJpIZfAuE/cWfvzYQJg4oX2rrbNo cfeUcOMWoTlbviEwEnnYs9ujHygjp2BWEVAe9SzAr/WxjF1BZa4zmpMaQTwuWtxx NB1W5wKQ6gc/Wq5tMj4SUkt4TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONYFsmd dkKBF7/RogkxeMRlYqJbMB8GA1UdIwQYMBaAFBy0ME7WaMj3FkE+/WYXTDhnDInL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Ni9CMjFBQTA5NDdG NDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQY1dRVDc5WmhkTU9HY01p Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMUXdUdFpveVBjV1FUNzlaaGRNT0djTWljcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Ni9CMjFBQTA5NDdGNDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQ Y1dRVDc5WmhkTU9HY01pY3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHwpD0fzQLdLTjQOQ5e+mf6Kw5r7WgU4a53h0NldXyalXVXAOh4GN3 yGhLmbJZ1RAO92fuUtNdvdXVdPMHZQ0wYPkwK1xTQEz0ncyzNLRM5NN7/XIn25sf 2Jnmp61pbhMIbq0NuDe1YhOTcBQtmwJZoE6ccDhleM39jI7+dPSRkpkUC5ZYDNFM 9mv0SEYXi3wnQ6kX0PvC61RFESBxWjSQWhMRAGD1E1BwW3qFXV7HJ9cbySxNJovJ 6v8+XlZckYPtpkRYn3cAae6fcd/Yi+x414qO+xetpzEyexEEMIT/6g4u4hWia9SZ 4mvBDWV7MSHj+FEVPSd1Nzjc8RXU+NAq -----END CERTIFICATE-----Generated at Mon Oct 20 16:04:58 2025 by rpki-client