$ rpki-client -vvf rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft File: hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft (raw, json) Hash identifier: 3sqOVljSaJqDFn8dCNm4tamniOGB898ppfSgwOfne50= Subject key identifier: DC:A9:A0:D3:CF:DB:4C:AF:38:FA:DA:9A:49:D1:86:47:AF:DA:16:7A Authority key identifier: 86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 Certificate issuer: /CN=A91973D2/serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Certificate serial: 05FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft Manifest number: 05F3 Signing time: Wed 20 Aug 2025 23:03:13 +0000 Manifest this update: Wed 20 Aug 2025 23:03:13 +0000 Manifest next update: Wed 27 Aug 2025 23:03:13 +0000 Files and hashes: 1: hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl (hash: 076+vxL/1aekK05rA06ASdYonxmz2+WW3/zc86y7tbo=) 2: 6959BDA8C05B11EB9540776AC4F9AE02.roa (hash: an7WXAxX+jv7oF31g7hZpPAQEGzXt/L0AOIi2ZabL2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 23:03:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1530 (0x5fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91973D2, serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Validity Not Before: Aug 20 23:03:13 2025 GMT Not After : Aug 27 23:03:13 2025 GMT Subject: CN=68a65431-6ce4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:94:87:36:76:59:35:40:03:11:f9:38:a4:f9: 8b:b8:43:f9:cb:2c:9f:d5:5e:65:1c:d1:b1:53:a5: a3:f0:dc:95:81:26:74:f4:af:3d:ba:ca:56:7c:cc: 7a:33:55:f2:07:2f:b4:49:d3:d6:ec:aa:df:69:64: 1f:b9:e6:07:c8:63:1b:8c:b1:7b:e8:45:ff:cd:b7: 5e:3d:9f:af:88:89:ac:7e:d6:62:e2:d5:73:31:d3: 6a:e7:43:c8:aa:52:6a:31:2b:2b:2a:82:ab:81:11: c2:dc:a1:8a:cb:82:82:58:d0:58:0d:25:e7:37:ed: 42:59:35:93:53:cd:5a:95:c3:4d:6f:fc:ca:86:a0: 48:2e:50:65:51:5f:37:91:59:5d:78:e5:7f:8d:77: d0:81:e9:aa:d1:47:14:22:1b:26:11:98:09:b1:29: 07:f7:c8:ff:17:1c:4d:9d:51:d7:7b:58:59:43:9a: 98:14:cf:54:ae:96:5a:61:8f:a7:e5:75:76:b5:56: b4:54:1b:07:c1:c1:4a:c1:e3:95:d8:f4:72:c2:98: 2e:22:76:65:dc:6f:1e:1c:42:c0:10:bb:05:b7:8a: 13:28:dd:de:aa:cf:d4:29:7b:a6:5f:7c:1d:03:0b: f0:77:cc:a2:22:47:03:6e:50:33:d9:29:eb:56:a0: 78:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:A9:A0:D3:CF:DB:4C:AF:38:FA:DA:9A:49:D1:86:47:AF:DA:16:7A X509v3 Authority Key Identifier: keyid:86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:85:08:14:00:64:c3:32:14:75:b2:b6:00:0d:e8:59:c0:44: 04:56:39:1b:51:fb:65:99:17:67:c4:72:cd:df:e6:cc:ec:58: 52:b9:be:08:89:f0:42:65:cf:c5:60:66:24:1c:cc:34:e3:a2: 54:41:03:8d:ab:4c:0d:70:ad:6c:a4:f0:c5:2a:c3:2a:93:15: 1c:65:a8:f2:a7:3b:a1:ff:7f:1b:68:8f:35:74:3a:35:ae:bc: 66:af:44:a7:fd:59:ba:a1:4f:6b:92:0e:13:65:bf:67:38:ce: a7:fb:48:02:5b:41:21:bd:31:13:d7:31:f8:14:b6:31:8b:a0: 59:05:04:f9:ef:6d:96:a9:47:e6:ca:11:b1:b8:65:6f:d9:e1: b0:71:3c:2f:ab:9d:c2:e1:21:7f:3e:73:7c:67:49:29:7f:49: a5:a5:2d:a5:94:3d:09:8d:9f:94:ae:fe:cd:2f:97:88:69:cb: 17:32:01:c8:3f:ff:6a:f4:b7:d1:12:64:46:b5:f2:92:c4:8b: b4:42:42:4a:59:8d:3f:c3:44:7d:53:dc:ba:e7:4a:14:3c:f7: 76:b9:a9:03:79:da:c7:05:e0:21:66:16:94:b3:be:24:1a:44: 9e:d7:40:b7:4d:5c:94:93:02:57:39:e3:34:24:26:13:83:85: fa:61:c1:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczRDIxMTAvBgNVBAUTKDg2QUIzRUJEN0M0MUU2NTZDQ0VFQ0RCNUE4NTBDN0E0 QjFFMjY3RTMwHhcNMjUwODIwMjMwMzEzWhcNMjUwODI3MjMwMzEzWjAYMRYwFAYD VQQDEw02OGE2NTQzMS02Y2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5SHNnZZNUADEfk4pPmLuEP5yyyf1V5lHNGxU6Wj8NyVgSZ09K89uspWfMx6 M1XyBy+0SdPW7KrfaWQfueYHyGMbjLF76EX/zbdePZ+viImsftZi4tVzMdNq50PI qlJqMSsrKoKrgRHC3KGKy4KCWNBYDSXnN+1CWTWTU81alcNNb/zKhqBILlBlUV83 kVldeOV/jXfQgemq0UcUIhsmEZgJsSkH98j/FxxNnVHXe1hZQ5qYFM9UrpZaYY+n 5XV2tVa0VBsHwcFKweOV2PRywpguInZl3G8eHELAELsFt4oTKN3eqs/UKXumX3wd Awvwd8yiIkcDblAz2SnrVqB4lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNypoNPP 20yvOPramknRhkev2hZ6MB8GA1UdIwQYMBaAFIarPr18QeZWzO7NtahQx6Sx4mfj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzNEMi9EQTgzOUM5NEJG QzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVsYk03czIxcUZESHBMSGla LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hxcy12WHhCNWxiTTdzMjFxRkRIcExIaVotTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzNEMi9EQTgzOUM5NEJGQzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVs Yk03czIxcUZESHBMSGlaLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjhQgUAGTDMhR1srYADehZwEQEVjkbUftlmRdnxHLN3+bM7FhSub4I ifBCZc/FYGYkHMw046JUQQONq0wNcK1spPDFKsMqkxUcZajypzuh/38baI81dDo1 rrxmr0Sn/Vm6oU9rkg4TZb9nOM6n+0gCW0EhvTET1zH4FLYxi6BZBQT5722WqUfm yhGxuGVv2eGwcTwvq53C4SF/PnN8Z0kpf0mlpS2llD0JjZ+Urv7NL5eIacsXMgHI P/9q9LfREmRGtfKSxIu0QkJKWY0/w0R9U9y650oUPPd2uakDedrHBeAhZhaUs74k GkSe10C3TVyUkwJXOeM0JCYTg4X6YcGK -----END CERTIFICATE-----Generated at Thu Aug 21 19:00:42 2025 by rpki-client