$ rpki-client -vvf rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft File: HAQwdyQVc864WNlR8CsiBXujluc.mft (raw, json) Hash identifier: Dg9DbF+MOelJHusCxHe2ZugZBgIcQTKU9cSLZiy9Vjo= Subject key identifier: DD:3E:A8:15:4C:08:24:8E:2B:B1:35:35:A0:ED:10:C7:B9:3A:9F:7C Authority key identifier: 1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 Certificate issuer: /CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Certificate serial: 0432 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft Manifest number: 042C Signing time: Sun 19 Oct 2025 02:13:38 +0000 Manifest this update: Sun 19 Oct 2025 02:13:38 +0000 Manifest next update: Sun 26 Oct 2025 02:13:38 +0000 Files and hashes: 1: HAQwdyQVc864WNlR8CsiBXujluc.crl (hash: OvVPZeV01cCViKfRjzeJIuQGCo270y2XYSF7HqB13gI=) 2: 4AB730E0800B11EC84B3FA3BC4F9AE02.roa (hash: /pdJUaEubJCV2S3p1KppNWpdc/sERLFGpbX3qSnYD48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1074 (0x432) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D45A2, serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Validity Not Before: Oct 19 02:13:38 2025 GMT Not After : Oct 26 02:13:38 2025 GMT Subject: CN=68f44952-c209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:5a:1a:ed:b4:ab:84:b8:82:f7:71:e9:a2:66: cf:f5:78:27:bb:42:d7:93:76:83:0e:1f:04:f7:44: 8d:e9:72:21:3b:01:5f:d0:d9:ab:0f:63:45:b7:ec: b3:d0:14:72:10:2f:2d:8c:b7:07:ff:ea:0b:d6:c3: 75:ff:37:26:cc:cf:df:59:a8:9e:62:3c:ed:18:a0: ed:11:54:87:53:60:cf:b5:60:84:b7:98:31:7f:b1: f5:dd:c6:94:d9:40:ce:10:6d:55:72:f4:5e:e5:63: 52:da:64:11:9c:64:9b:13:e8:f2:88:ad:95:15:14: 49:0c:95:9a:29:b7:df:85:4f:5e:f1:36:27:15:a0: de:85:7f:88:04:b9:8d:14:1c:c0:d1:f1:ed:c8:db: 75:68:a5:8c:5a:41:43:ab:42:47:47:da:c9:ae:bb: 8f:4f:57:36:53:fc:54:a5:84:25:3f:20:80:e1:3c: 18:79:17:27:db:0e:82:e2:23:24:54:0e:3a:80:0c: 30:17:18:d0:80:06:92:f9:62:6a:6d:99:d5:d9:60: 3f:48:dc:96:3c:32:e2:3a:47:27:b4:e7:14:1e:1f: 67:73:cd:ff:5b:f8:24:ae:d3:f6:53:87:3a:19:e2: d7:9c:0e:ab:c2:42:bc:a3:2e:db:66:1e:d8:84:e3: 11:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:3E:A8:15:4C:08:24:8E:2B:B1:35:35:A0:ED:10:C7:B9:3A:9F:7C X509v3 Authority Key Identifier: keyid:1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:5f:d2:cb:6e:75:5e:e4:e5:fe:13:dc:5d:d9:65:e5:06:2a: 0e:32:51:12:62:a2:5f:c2:71:df:34:b1:24:2e:ff:46:b5:f4: c6:6d:60:29:2b:78:5e:1d:2a:c5:9b:3f:18:1c:f8:29:c8:b2: bb:10:04:23:42:ec:90:eb:f7:c8:60:f6:a8:35:c5:49:cf:f5: b8:f9:b6:80:e4:26:ab:70:da:1e:4a:f0:36:4f:6a:1d:05:6e: cf:70:d0:91:e0:ad:31:7b:81:99:d9:4f:dd:c6:32:61:6a:79: e8:ce:ed:f4:e3:13:a6:a4:17:77:c7:17:b9:f3:41:29:76:5e: 01:3c:86:49:77:ce:8c:7d:08:ec:86:26:c0:14:85:07:ca:9f: 54:da:93:87:0f:c7:dc:3d:61:66:fd:b4:38:5a:72:09:75:80: 1f:8e:02:ab:e4:43:ef:18:e9:2a:44:ac:34:5e:e6:3e:a4:74: 60:83:25:cc:66:bf:cd:96:4c:cb:bb:74:34:e0:d0:99:dd:49: d1:0e:d6:8e:84:19:e7:5c:e2:27:e6:43:5a:e0:fc:f3:de:28: c7:c4:0f:d8:50:27:e1:85:3f:6f:2d:5b:fe:d7:3e:04:d0:9a: 1a:e8:0c:03:8f:7c:11:d0:18:c1:57:81:7d:17:a5:7c:46:df: d1:c2:2d:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ1QTIxMTAvBgNVBAUTKDFDMDQzMDc3MjQxNTczQ0VCODU4RDk1MUYwMkIyMjA1 N0JBMzk2RTcwHhcNMjUxMDE5MDIxMzM4WhcNMjUxMDI2MDIxMzM4WjAYMRYwFAYD VQQDEw02OGY0NDk1Mi1jMjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Voa7bSrhLiC93HpombP9Xgnu0LXk3aDDh8E90SN6XIhOwFf0NmrD2NFt+yz 0BRyEC8tjLcH/+oL1sN1/zcmzM/fWaieYjztGKDtEVSHU2DPtWCEt5gxf7H13caU 2UDOEG1VcvRe5WNS2mQRnGSbE+jyiK2VFRRJDJWaKbffhU9e8TYnFaDehX+IBLmN FBzA0fHtyNt1aKWMWkFDq0JHR9rJrruPT1c2U/xUpYQlPyCA4TwYeRcn2w6C4iMk VA46gAwwFxjQgAaS+WJqbZnV2WA/SNyWPDLiOkcntOcUHh9nc83/W/gkrtP2U4c6 GeLXnA6rwkK8oy7bZh7YhOMRZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0+qBVM CCSOK7E1NaDtEMe5Op98MB8GA1UdIwQYMBaAFBwEMHckFXPOuFjZUfArIgV7o5bn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDVBMi9BM0QyRENBQTgw MDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4NjRXTmxSOENzaUJYdWps dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBUXdkeVFWYzg2NFdObFI4Q3NpQlh1amx1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDVBMi9BM0QyRENBQTgwMDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4 NjRXTmxSOENzaUJYdWpsdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxX9LLbnVe5OX+E9xd2WXlBioOMlESYqJfwnHfNLEkLv9GtfTGbWAp K3heHSrFmz8YHPgpyLK7EAQjQuyQ6/fIYPaoNcVJz/W4+baA5CarcNoeSvA2T2od BW7PcNCR4K0xe4GZ2U/dxjJhannozu304xOmpBd3xxe580Epdl4BPIZJd86MfQjs hibAFIUHyp9U2pOHD8fcPWFm/bQ4WnIJdYAfjgKr5EPvGOkqRKw0XuY+pHRggyXM Zr/NlkzLu3Q04NCZ3UnRDtaOhBnnXOIn5kNa4Pzz3ijHxA/YUCfhhT9vLVv+1z4E 0Joa6AwDj3wR0BjBV4F9F6V8Rt/Rwi2z -----END CERTIFICATE-----Generated at Mon Oct 20 08:58:16 2025 by rpki-client