$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft File: HNLU8yahhKSHvyKs14rVwGj0ZmE.mft (raw, json) Hash identifier: AS1aNdXV28QugTIMs4cwr312gM3GM4DwgRx9L6eAIpc= Subject key identifier: 8B:D0:D8:5C:C6:DC:7E:D0:F0:F7:AC:4D:06:13:D8:D5:E4:81:CA:9F Authority key identifier: 1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 Certificate issuer: /CN=A91F8177/serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft Manifest number: 4C Signing time: Sun 19 Oct 2025 10:47:13 +0000 Manifest this update: Sun 19 Oct 2025 10:47:12 +0000 Manifest next update: Sun 26 Oct 2025 10:47:12 +0000 Files and hashes: 1: HNLU8yahhKSHvyKs14rVwGj0ZmE.crl (hash: XJe7B7E/vQXKGh0dElu9oeuIncqHHKNvvJODBPZhHFA=) 2: 447A88023DDC11F0ACD9F475C4F9AE02.roa (hash: RAa8qDITo259IkIrPotazGyLqrpj79/JGsviOOW/nx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:47:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8177, serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Validity Not Before: Oct 19 10:47:12 2025 GMT Not After : Oct 26 10:47:12 2025 GMT Subject: CN=68f4c1b0-df0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:39:e9:d6:67:16:d1:01:a0:99:a4:a2:e6:8f: 76:25:d4:91:0d:db:2a:0b:20:a3:33:18:27:34:f3: 04:31:73:c0:d2:3c:7e:d3:71:29:38:be:62:69:06: 7f:05:57:68:f0:46:7f:6a:4a:0c:25:82:71:15:46: a0:40:cf:07:5c:48:27:34:e3:02:83:0e:bb:1f:81: 60:45:ad:da:c9:58:e6:03:ca:e8:cb:f6:d0:6f:79: e0:70:31:19:09:fe:21:13:9e:3f:f6:76:8b:7e:b7: 0b:9b:bb:54:38:15:01:f1:1a:07:cf:6f:2c:19:4e: 01:58:99:d9:01:65:94:79:e9:7f:b5:de:55:57:a7: 82:2a:8d:c3:ed:6b:fe:a5:c7:ac:f5:5d:92:56:02: c6:aa:7b:f9:c9:4f:d2:50:23:f3:05:6f:4f:90:5d: b2:74:7f:c3:f6:31:b0:26:a0:3c:1c:8f:11:bf:b5: 4c:ca:2e:f1:04:1c:55:11:d6:7b:83:76:80:a1:88: d9:94:94:55:14:78:79:bc:5e:c2:29:d3:23:88:56: 8c:a6:74:38:2d:36:60:be:e5:0d:65:6b:e9:58:07: 1c:8f:6d:eb:82:bf:d1:f8:cc:35:3b:64:de:50:43: 36:aa:83:4b:95:af:04:e9:98:3f:37:79:ae:b4:bc: 1e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:D0:D8:5C:C6:DC:7E:D0:F0:F7:AC:4D:06:13:D8:D5:E4:81:CA:9F X509v3 Authority Key Identifier: keyid:1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:5c:65:50:8e:4e:bc:a1:5a:b5:f3:7e:a9:b2:37:92:fe:8a: e1:fa:3d:4a:c6:b7:66:71:55:e0:8f:96:46:20:4e:86:39:fe: 09:bd:31:9f:50:e2:d9:f9:9a:d3:3e:41:c7:a2:3f:b2:cf:de: 2f:bc:ca:96:61:41:34:56:ae:fe:f1:df:1d:87:71:e4:c3:a6: f4:45:fc:79:ff:63:3b:55:ea:16:9b:11:ff:d5:38:54:e7:7e: d9:02:98:ea:43:76:80:8c:5d:09:09:8f:5a:e7:a6:e9:73:4e: 7a:47:a6:e7:d1:0f:b1:f8:d3:06:0c:e4:54:47:56:b3:aa:d2: 72:a0:48:1d:b6:db:c3:db:a5:39:40:bd:0d:b3:f0:65:04:e3: 4a:58:32:49:92:ec:f2:49:14:7a:67:73:6a:36:d5:fc:35:f6: 79:34:57:d5:b4:3a:4b:61:ae:6c:61:c9:db:ab:99:4f:5e:07: 48:9a:a6:29:3c:1b:c8:80:aa:0b:f0:e6:ca:2d:35:77:1f:e6: a2:7b:eb:c6:82:ac:53:d4:f6:74:77:3f:ef:60:aa:10:28:65: 9b:17:e3:9e:65:b5:d9:30:61:b8:ab:74:0c:99:f9:3c:08:23: d0:88:28:40:b5:32:16:4d:f8:8e:98:36:d2:81:30:50:54:ef: 95:76:03:2c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODE3NzExMC8GA1UEBRMoMUNEMkQ0RjMyNkExODRBNDg3QkYyMkFDRDc4QUQ1QzA2 OEY0NjY2MTAeFw0yNTEwMTkxMDQ3MTJaFw0yNTEwMjYxMDQ3MTJaMBgxFjAUBgNV BAMTDTY4ZjRjMWIwLWRmMGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtOenWZxbRAaCZpKLmj3Yl1JEN2yoLIKMzGCc08wQxc8DSPH7TcSk4vmJpBn8F V2jwRn9qSgwlgnEVRqBAzwdcSCc04wKDDrsfgWBFrdrJWOYDyujL9tBveeBwMRkJ /iETnj/2dot+twubu1Q4FQHxGgfPbywZTgFYmdkBZZR56X+13lVXp4IqjcPta/6l x6z1XZJWAsaqe/nJT9JQI/MFb0+QXbJ0f8P2MbAmoDwcjxG/tUzKLvEEHFUR1nuD doChiNmUlFUUeHm8XsIp0yOIVoymdDgtNmC+5Q1la+lYBxyPbeuCv9H4zDU7ZN5Q Qzaqg0uVrwTpmD83ea60vB5VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi9DYXMbc ftDw96xNBhPY1eSByp8wHwYDVR0jBBgwFoAUHNLU8yahhKSHvyKs14rVwGj0ZmEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MTc3LzhCQTNEOEM0M0RE QjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtTSHZ5S3MxNHJWd0dqMFpt RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE5MVTh5YWhoS1NIdnlLczE0clZ3R2owWm1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MTc3LzhCQTNEOEM0M0REQjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtT SHZ5S3MxNHJWd0dqMFptRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHxcZVCOTryhWrXzfqmyN5L+iuH6PUrGt2ZxVeCPlkYgToY5/gm9MZ9Q 4tn5mtM+QceiP7LP3i+8ypZhQTRWrv7x3x2HceTDpvRF/Hn/YztV6habEf/VOFTn ftkCmOpDdoCMXQkJj1rnpulzTnpHpufRD7H40wYM5FRHVrOq0nKgSB2228PbpTlA vQ2z8GUE40pYMkmS7PJJFHpnc2o21fw19nk0V9W0OkthrmxhydurmU9eB0iapik8 G8iAqgvw5sotNXcf5qJ768aCrFPU9nR3P+9gqhAoZZsX455ltdkwYbirdAyZ+TwI I9CIKEC1MhZN+I6YNtKBMFBU75V2Ayw= -----END CERTIFICATE-----Generated at Mon Oct 20 19:48:56 2025 by rpki-client