$ rpki-client -vvf rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/HUkvo_OylYBJWmiA1ATuDDcK2SU.mft File: HUkvo_OylYBJWmiA1ATuDDcK2SU.mft (raw, json) Hash identifier: TJ2cQqROePZRwMlBrr8ULGNPrBl4+E7gaL53RErkW2o= Subject key identifier: A9:98:93:D6:E7:47:42:2A:D1:CD:A3:1C:D3:2B:55:58:8D:0C:D8:8C Authority key identifier: 1D:49:2F:A3:F3:B2:95:80:49:5A:68:80:D4:04:EE:0C:37:0A:D9:25 Certificate issuer: /CN=A915D963/serialNumber=1D492FA3F3B29580495A6880D404EE0C370AD925 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUkvo_OylYBJWmiA1ATuDDcK2SU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/HUkvo_OylYBJWmiA1ATuDDcK2SU.mft Manifest number: 07F1 Signing time: Sun 02 Nov 2025 22:28:09 +0000 Manifest this update: Sun 02 Nov 2025 22:28:08 +0000 Manifest next update: Sun 09 Nov 2025 22:28:08 +0000 Files and hashes: 1: HUkvo_OylYBJWmiA1ATuDDcK2SU.crl (hash: dLeCBh6Yw85jFLc11HJNLQg4UxBXQHkZErI0sIpUVVg=) 2: D4163D4A884211EEB8B05013C4F9AE02.roa (hash: q4381xIhqUfIrBCsNyCtqEJ8jJCuGtCH1QNYVJEKVIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/HUkvo_OylYBJWmiA1ATuDDcK2SU.crl rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/HUkvo_OylYBJWmiA1ATuDDcK2SU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUkvo_OylYBJWmiA1ATuDDcK2SU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:28:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D963, serialNumber=1D492FA3F3B29580495A6880D404EE0C370AD925 Validity Not Before: Nov 2 22:28:08 2025 GMT Not After : Nov 9 22:28:08 2025 GMT Subject: CN=6907daf9-64de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2d:fb:66:fe:b6:80:b1:c7:6c:0f:d6:2e:01: 1a:48:d6:f0:29:26:13:fb:6f:e2:c4:9b:46:a8:2e: 81:59:8f:fb:50:8a:76:39:eb:94:93:11:af:ab:e4: b5:d6:64:1d:af:06:57:d4:66:4f:f2:7f:87:33:f8: 27:4b:82:ac:8d:cb:58:70:bb:a7:9b:45:de:0d:3b: 41:ab:1d:a8:ae:a6:b4:f8:f3:90:95:e8:70:2f:27: 1d:91:5f:6c:88:05:90:d6:6b:eb:0a:ca:d2:12:02: 9e:c2:fd:2e:ca:d2:0f:da:e7:be:4e:f9:26:02:0a: 4b:64:ec:d5:b2:a6:97:91:d2:0c:67:b2:ef:fe:70: 34:f2:48:a3:f8:fe:db:56:82:43:12:27:74:3a:c2: c6:1d:30:e7:f0:8a:fe:99:f9:26:f4:16:39:a8:d2: c8:13:5b:92:2b:9b:f5:aa:cc:9c:e7:d3:ca:37:a5: 87:1d:72:a3:08:cb:2c:00:65:ae:7e:69:54:4b:84: b5:4c:50:f2:e9:56:cc:60:34:93:a0:c8:bf:97:d9: 16:48:06:53:5d:dc:a0:de:33:77:a4:42:79:be:22: 21:f4:6b:90:d2:58:de:aa:41:70:8d:fe:72:dc:db: bc:38:30:7d:e5:3e:0b:28:ef:69:02:bc:23:15:b9: 7a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:98:93:D6:E7:47:42:2A:D1:CD:A3:1C:D3:2B:55:58:8D:0C:D8:8C X509v3 Authority Key Identifier: keyid:1D:49:2F:A3:F3:B2:95:80:49:5A:68:80:D4:04:EE:0C:37:0A:D9:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/HUkvo_OylYBJWmiA1ATuDDcK2SU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUkvo_OylYBJWmiA1ATuDDcK2SU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/HUkvo_OylYBJWmiA1ATuDDcK2SU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:50:14:3c:f1:54:e8:de:41:f7:2f:8e:11:e0:89:e8:d3:29: 00:c9:ca:68:5f:d4:62:ad:14:a7:cd:8a:71:1a:29:69:11:58: af:12:8a:98:4c:a6:a7:b4:40:d1:8c:cc:43:47:8e:a4:6b:83: 1d:4e:c0:23:7d:bb:11:e4:c3:35:58:32:f0:ce:09:6c:5b:37: ae:72:12:41:95:bc:46:ac:1f:16:c5:bd:85:99:fd:b4:07:59: cf:d3:d3:e8:3e:3a:5f:61:7d:6a:0e:1c:c8:d5:bf:67:e5:16: cd:32:f8:a4:fb:9b:5f:51:a6:77:de:48:65:3e:9b:55:0b:84: a8:6a:a0:c2:b6:6a:80:31:a5:e9:17:bb:bb:3a:15:9e:ac:cd: 80:c0:e2:8c:2f:e7:61:31:6a:1d:68:1d:ff:ba:10:32:d9:f1: eb:3e:d1:c9:f1:d8:eb:63:2e:31:52:9e:38:c4:0e:17:64:1f: 27:cb:2a:d8:b2:4e:21:6f:53:d9:ef:3f:a6:d9:b9:25:14:14: bf:61:3b:e5:d0:8a:4c:10:fb:9e:14:8c:9b:80:f4:6e:67:e4: 40:ba:cf:fa:33:ef:e8:68:69:87:a6:fd:d8:4e:1e:b1:da:43: 16:7c:f1:85:9a:70:ac:e1:c3:63:19:e8:ad:4a:a0:97:d0:f6: 2c:90:83:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5NjMxMTAvBgNVBAUTKDFENDkyRkEzRjNCMjk1ODA0OTVBNjg4MEQ0MDRFRTBD MzcwQUQ5MjUwHhcNMjUxMTAyMjIyODA4WhcNMjUxMTA5MjIyODA4WjAYMRYwFAYD VQQDEw02OTA3ZGFmOS02NGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3C37Zv62gLHHbA/WLgEaSNbwKSYT+2/ixJtGqC6BWY/7UIp2OeuUkxGvq+S1 1mQdrwZX1GZP8n+HM/gnS4KsjctYcLunm0XeDTtBqx2orqa0+POQlehwLycdkV9s iAWQ1mvrCsrSEgKewv0uytIP2ue+TvkmAgpLZOzVsqaXkdIMZ7Lv/nA08kij+P7b VoJDEid0OsLGHTDn8Ir+mfkm9BY5qNLIE1uSK5v1qsyc59PKN6WHHXKjCMssAGWu fmlUS4S1TFDy6VbMYDSToMi/l9kWSAZTXdyg3jN3pEJ5viIh9GuQ0ljeqkFwjf5y 3Nu8ODB95T4LKO9pArwjFbl6UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmYk9bn R0Iq0c2jHNMrVViNDNiMMB8GA1UdIwQYMBaAFB1JL6PzspWASVpogNQE7gw3Ctkl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk2My85MEU4MEJDODk3 RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9IVWt2b19PeWxZQkpXbWlBMUFUdUREY0sy U1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVa3ZvX095bFlCSldtaUExQVR1RERjSzJTVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDk2My85MEU4MEJDODk3RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9IVWt2b19PeWxZ QkpXbWlBMUFUdUREY0syU1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEUBQ88VTo3kH3L44R4Ino0ykAycpoX9RirRSnzYpxGilpEVivEoqY TKantEDRjMxDR46ka4MdTsAjfbsR5MM1WDLwzglsWzeuchJBlbxGrB8Wxb2Fmf20 B1nP09PoPjpfYX1qDhzI1b9n5RbNMvik+5tfUaZ33khlPptVC4SoaqDCtmqAMaXp F7u7OhWerM2AwOKML+dhMWodaB3/uhAy2fHrPtHJ8djrYy4xUp44xA4XZB8nyyrY sk4hb1PZ7z+m2bklFBS/YTvl0IpMEPueFIybgPRuZ+RAus/6M+/oaGmHpv3YTh6x 2kMWfPGFmnCs4cNjGeitSqCX0PYskINt -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:31 2025 by rpki-client