$ rpki-client -vvf rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft File: HA0tulqzbC-WcsFN2He57qBsysc.mft (raw, json) Hash identifier: SH6GbtoRtWA1BEr6x2b3VPWtYqaGea08bCqceHKIh1E= Subject key identifier: 9F:15:BC:FB:E5:CC:34:73:B9:8A:73:44:36:31:D7:78:A8:27:FB:BE Authority key identifier: 1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 Certificate issuer: /CN=A91E11B4/serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Certificate serial: 08EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft Manifest number: 08E0 Signing time: Sat 18 Oct 2025 21:30:19 +0000 Manifest this update: Sat 18 Oct 2025 21:30:18 +0000 Manifest next update: Sat 25 Oct 2025 21:30:18 +0000 Files and hashes: 1: HA0tulqzbC-WcsFN2He57qBsysc.crl (hash: /dmpiM4KgmCtFrnYNsc2ZGxOdjahqVzQlkeHmc+fUX4=) 2: BB250202BC2C11EA96657B4BC4F9AE02.roa (hash: +c2DPE0WaPr48QApZCLfEPaMsExO+TZ/BLuuQJmn+Mg=) 3: BA69B6FABC2C11EA96657B4BC4F9AE02.roa (hash: /qSqUUquW8P34EzhMbBxrdao9SE8qOtCjPceo9nPsLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:30:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2286 (0x8ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E11B4, serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Validity Not Before: Oct 18 21:30:18 2025 GMT Not After : Oct 25 21:30:18 2025 GMT Subject: CN=68f406eb-17f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e1:7b:da:7a:fd:a6:c2:86:a9:ce:b5:0b:cf: f1:5a:bd:27:9a:43:a7:b3:75:91:33:2d:5c:8d:75: 44:6b:19:95:2a:71:7a:b5:76:59:a8:23:2f:58:f2: 7f:27:f6:40:88:66:9d:39:a7:ad:56:42:a5:62:66: c3:61:b8:fe:76:4d:c1:cb:67:b0:88:06:c5:b7:f0: 82:67:e1:f7:79:a2:d1:65:25:d1:68:03:a4:37:d4: 58:40:2e:a1:f4:a5:67:45:dc:0d:67:17:41:73:cb: bc:3d:d9:fc:93:ac:df:33:07:34:c2:b4:af:dd:0b: 7a:dc:fc:8f:4c:03:68:07:b7:14:eb:1e:1a:70:a1: 2a:a3:3a:5c:0e:77:0b:79:59:73:08:cf:d1:99:ea: ff:fd:ae:70:f5:f2:d2:9f:4f:1c:ec:58:a2:1c:f0: 99:1f:18:1b:f5:b5:4f:c3:01:77:3a:20:8c:a3:7e: 17:ed:a7:f5:6a:6c:e0:7a:6c:e2:7a:39:a4:6f:85: 70:e4:38:c4:92:40:20:f3:81:46:f4:23:f8:5c:c8: a0:43:79:6b:2a:13:0b:05:c4:01:d8:c4:bd:20:43: 42:88:ef:57:84:e2:80:93:46:27:51:4b:16:86:67: 89:be:76:c9:f4:4c:f6:36:5a:0d:3c:f7:2d:09:c6: f9:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:15:BC:FB:E5:CC:34:73:B9:8A:73:44:36:31:D7:78:A8:27:FB:BE X509v3 Authority Key Identifier: keyid:1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:2d:72:aa:c4:c3:cc:11:34:0a:38:5d:fa:57:9d:a9:3d:88: 88:ee:97:c5:5d:be:c6:a1:d6:7c:e9:2f:24:a0:7c:68:0d:b6: 3e:7d:f0:28:96:f9:59:7d:fc:58:00:f4:aa:7d:d9:7c:b4:d7: a9:df:59:04:9d:ab:91:0f:a3:61:84:ec:c7:b8:fe:e6:3b:e9: 9b:ad:36:ba:9b:77:57:b2:d8:3a:fd:3e:f4:f5:36:3a:1f:2a: 7d:3e:f1:22:e8:55:72:60:74:e0:7f:24:3d:2b:fe:e4:f1:bc: 9d:d3:13:c3:9a:f5:48:bd:bc:af:a1:87:e3:2d:17:03:eb:4e: af:0f:97:80:d1:11:d6:cd:d6:c8:2a:5c:62:f5:43:9c:27:5d: 4f:f5:86:d2:a1:5e:33:f9:d1:12:4a:09:08:d2:f8:e0:13:b2: 85:29:53:8e:1c:ae:4c:82:14:ad:4a:1d:f1:fb:04:ac:6c:6a: 94:7a:75:06:3a:46:fb:58:3a:31:4e:19:44:d8:08:f5:1e:88: a1:7b:04:92:df:80:ec:40:c9:34:46:30:32:b3:35:83:3a:ff: 85:e3:be:f0:7a:eb:38:7a:9d:ed:f9:3d:ab:bd:db:42:06:e0: b6:78:b5:61:29:07:a7:56:40:b5:b7:94:1c:bc:7a:b1:3c:16: 77:4b:45:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExQjQxMTAvBgNVBAUTKDFDMEQyREJBNUFCMzZDMkY5NjcyQzE0REQ4NzdCOUVF QTA2Q0NBQzcwHhcNMjUxMDE4MjEzMDE4WhcNMjUxMDI1MjEzMDE4WjAYMRYwFAYD VQQDEw02OGY0MDZlYi0xN2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+F72nr9psKGqc61C8/xWr0nmkOns3WRMy1cjXVEaxmVKnF6tXZZqCMvWPJ/ J/ZAiGadOaetVkKlYmbDYbj+dk3By2ewiAbFt/CCZ+H3eaLRZSXRaAOkN9RYQC6h 9KVnRdwNZxdBc8u8Pdn8k6zfMwc0wrSv3Qt63PyPTANoB7cU6x4acKEqozpcDncL eVlzCM/Rmer//a5w9fLSn08c7FiiHPCZHxgb9bVPwwF3OiCMo34X7af1amzgemzi ejmkb4Vw5DjEkkAg84FG9CP4XMigQ3lrKhMLBcQB2MS9IENCiO9XhOKAk0YnUUsW hmeJvnbJ9Ez2NloNPPctCcb5TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8VvPvl zDRzuYpzRDYx13ioJ/u+MB8GA1UdIwQYMBaAFBwNLbpas2wvlnLBTdh3ue6gbMrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTFCNC9CMTk5M0M0MEJD MkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJDLVdjc0ZOMkhlNTdxQnN5 c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBMHR1bHF6YkMtV2NzRk4ySGU1N3FCc3lzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTFCNC9CMTk5M0M0MEJDMkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJD LVdjc0ZOMkhlNTdxQnN5c2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCULXKqxMPMETQKOF36V52pPYiI7pfFXb7GodZ86S8koHxoDbY+ffAo lvlZffxYAPSqfdl8tNep31kEnauRD6NhhOzHuP7mO+mbrTa6m3dXstg6/T709TY6 Hyp9PvEi6FVyYHTgfyQ9K/7k8byd0xPDmvVIvbyvoYfjLRcD606vD5eA0RHWzdbI Klxi9UOcJ11P9YbSoV4z+dESSgkI0vjgE7KFKVOOHK5MghStSh3x+wSsbGqUenUG Okb7WDoxThlE2Aj1HoihewSS34DsQMk0RjAyszWDOv+F477weus4ep3t+T2rvdtC BuC2eLVhKQenVkC1t5QcvHqxPBZ3S0Vg -----END CERTIFICATE-----Generated at Mon Oct 20 15:01:38 2025 by rpki-client