$ rpki-client -vvf rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft File: hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft (raw, json) Hash identifier: TAeb9RmfXKjnL2SeeiolJpWVt41JoFETpZY/iFWXZPY= Subject key identifier: 8D:67:CF:24:9A:E2:DE:AE:AD:11:B8:C4:AF:85:1A:09:E2:58:0B:7B Authority key identifier: 86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 Certificate issuer: /CN=A91973D2/serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Certificate serial: 0613 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft Manifest number: 060C Signing time: Wed 08 Oct 2025 22:46:34 +0000 Manifest this update: Wed 08 Oct 2025 22:46:34 +0000 Manifest next update: Wed 15 Oct 2025 22:46:34 +0000 Files and hashes: 1: hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl (hash: 9jSzZyf9gvqe8sR2xe9aKcetwQ62iZ+R3XyASx1gziM=) 2: 6959BDA8C05B11EB9540776AC4F9AE02.roa (hash: an7WXAxX+jv7oF31g7hZpPAQEGzXt/L0AOIi2ZabL2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Oct 2025 22:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1555 (0x613) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91973D2, serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Validity Not Before: Oct 8 22:46:34 2025 GMT Not After : Oct 15 22:46:34 2025 GMT Subject: CN=68e6e9ca-cfff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:89:ee:07:3a:b1:38:d7:92:68:f2:43:ab:2b: 71:53:7d:35:c3:dc:06:3a:2d:55:15:24:98:f9:09: 81:65:f5:f5:35:a1:83:61:a0:8f:6e:24:81:1c:33: 55:72:f8:ff:7f:a3:48:d0:4e:ea:b7:02:eb:bb:21: 78:dd:71:77:7c:1a:f7:0a:a7:60:98:b5:e4:8a:94: 7c:cd:c1:07:e9:25:7c:08:13:89:99:50:96:1e:2b: 17:07:97:74:10:89:cb:88:8f:75:0c:db:0a:6f:2d: cd:14:bc:e0:a0:5d:f9:f5:e9:79:83:99:0e:0b:bf: 55:62:f9:48:4c:1a:18:e7:0f:d4:70:96:45:38:64: 2b:4b:92:6d:aa:17:91:5e:9c:5f:c7:e9:f6:71:0f: 19:49:5c:71:0f:ed:e5:6e:77:ae:28:9e:ec:4f:45: d9:52:92:ca:bb:a2:38:07:48:34:93:f8:02:f7:26: 20:50:fe:9e:04:9a:02:a4:fb:8a:d7:16:d5:7b:ec: cc:69:31:77:60:20:6e:a8:34:44:4a:4c:45:18:ca: a7:38:f5:16:dc:08:ab:02:72:bc:4d:a4:20:a9:aa: 69:bb:ff:5d:bb:f2:7d:d9:e1:b2:58:f9:4e:b9:57: 65:65:4e:2b:78:c2:6a:0c:a0:04:4e:1a:86:15:4b: 19:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:67:CF:24:9A:E2:DE:AE:AD:11:B8:C4:AF:85:1A:09:E2:58:0B:7B X509v3 Authority Key Identifier: keyid:86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:de:84:30:ac:b7:ba:6f:48:e0:76:b0:c1:6d:16:83:d7:53: d8:af:c1:77:73:58:ce:b0:6a:40:a1:08:60:c7:e4:62:95:5e: f1:af:62:3b:7d:7a:d2:d7:71:0b:4c:3e:89:1f:6a:86:4d:db: 08:c6:8d:00:b6:2e:e8:6c:01:d2:47:7f:25:6c:6d:82:a6:d0: c9:4e:47:29:6d:29:91:93:3a:d0:f4:47:f4:ae:a8:c4:e1:94: 17:8a:89:62:4e:f3:c1:94:c9:1a:21:44:d4:6e:86:54:e5:57: 72:0f:3a:aa:b7:fa:56:62:bc:15:46:61:f4:30:ef:7d:3f:73: 4d:f2:42:34:41:1a:54:b5:c0:17:06:1c:0e:0d:3b:b1:2a:7c: bb:70:27:ed:b4:60:a3:00:5e:2e:e3:47:ae:60:5b:23:63:bc: e9:87:d0:57:41:51:d7:63:7f:b6:ac:60:37:bb:e7:ff:52:af: 9d:77:80:48:01:ec:02:84:b4:d3:f0:7e:7e:68:3d:25:ee:43: 51:2d:d3:56:52:e5:7b:f8:a9:72:1b:1e:d3:58:92:e9:13:fe: b9:7a:f9:31:2a:9b:a2:14:8c:11:bb:1c:ec:22:17:18:17:72: a1:8b:b5:eb:6e:82:dd:fb:cf:06:82:0c:56:36:b2:ed:2e:6b: 41:45:f5:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczRDIxMTAvBgNVBAUTKDg2QUIzRUJEN0M0MUU2NTZDQ0VFQ0RCNUE4NTBDN0E0 QjFFMjY3RTMwHhcNMjUxMDA4MjI0NjM0WhcNMjUxMDE1MjI0NjM0WjAYMRYwFAYD VQQDEw02OGU2ZTljYS1jZmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3YnuBzqxONeSaPJDqytxU301w9wGOi1VFSSY+QmBZfX1NaGDYaCPbiSBHDNV cvj/f6NI0E7qtwLruyF43XF3fBr3CqdgmLXkipR8zcEH6SV8CBOJmVCWHisXB5d0 EInLiI91DNsKby3NFLzgoF359el5g5kOC79VYvlITBoY5w/UcJZFOGQrS5JtqheR Xpxfx+n2cQ8ZSVxxD+3lbneuKJ7sT0XZUpLKu6I4B0g0k/gC9yYgUP6eBJoCpPuK 1xbVe+zMaTF3YCBuqDRESkxFGMqnOPUW3AirAnK8TaQgqappu/9du/J92eGyWPlO uVdlZU4reMJqDKAEThqGFUsZIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1nzySa 4t6urRG4xK+FGgniWAt7MB8GA1UdIwQYMBaAFIarPr18QeZWzO7NtahQx6Sx4mfj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzNEMi9EQTgzOUM5NEJG QzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVsYk03czIxcUZESHBMSGla LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hxcy12WHhCNWxiTTdzMjFxRkRIcExIaVotTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzNEMi9EQTgzOUM5NEJGQzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVs Yk03czIxcUZESHBMSGlaLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL3oQwrLe6b0jgdrDBbRaD11PYr8F3c1jOsGpAoQhgx+RilV7xr2I7 fXrS13ELTD6JH2qGTdsIxo0Ati7obAHSR38lbG2CptDJTkcpbSmRkzrQ9Ef0rqjE 4ZQXioliTvPBlMkaIUTUboZU5VdyDzqqt/pWYrwVRmH0MO99P3NN8kI0QRpUtcAX BhwODTuxKny7cCfttGCjAF4u40euYFsjY7zph9BXQVHXY3+2rGA3u+f/Uq+dd4BI AewChLTT8H5+aD0l7kNRLdNWUuV7+KlyGx7TWJLpE/65evkxKpuiFIwRuxzsIhcY F3Khi7XrboLd+88GggxWNrLtLmtBRfWn -----END CERTIFICATE-----Generated at Thu Oct 9 15:06:56 2025 by rpki-client