$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft File: HLQwTtZoyPcWQT79ZhdMOGcMics.mft (raw, json) Hash identifier: 2lr/iajAUTiyf2gU6y8wHKuUD6fIOQdjCwx1iSrc27k= Subject key identifier: 13:9D:EC:35:94:F5:5D:DD:85:90:D8:D4:29:3F:0D:71:E5:F4:D6:92 Authority key identifier: 1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB Certificate issuer: /CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Certificate serial: 1444 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft Manifest number: 143B Signing time: Thu 18 Sep 2025 17:02:21 +0000 Manifest this update: Thu 18 Sep 2025 17:02:20 +0000 Manifest next update: Thu 25 Sep 2025 17:02:20 +0000 Files and hashes: 1: HLQwTtZoyPcWQT79ZhdMOGcMics.crl (hash: 7RBpxXGM39IHkjno2pLcYxm86MYHXP9ZkAoMf1LK+A4=) 2: 1CA71D84493D11EAAB30C638C4F9AE02.roa (hash: Namfm+gMj3DTGbqctWwU+VBkFxpSXUjfjiuK5KjjSb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5188 (0x1444) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4286, serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Validity Not Before: Sep 18 17:02:20 2025 GMT Not After : Sep 25 17:02:20 2025 GMT Subject: CN=68cc3b1d-fbd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:fe:1b:67:4f:5b:fd:49:c1:78:1d:90:ee:e9: 1d:67:1a:80:6b:39:00:bb:75:58:b1:74:78:25:b1: b4:6e:50:fb:71:72:4d:bc:2e:b5:31:34:ad:67:f1: 90:1a:98:d4:e8:51:ca:4c:3c:1c:6f:83:48:fa:0b: e6:74:1b:59:25:44:d3:92:62:f7:ea:c6:36:22:5a: 5d:7b:53:be:4f:10:0f:78:13:3f:79:7a:5d:73:30: 45:af:13:ac:ea:46:6f:c0:dd:17:15:2d:89:1a:ed: 94:b6:a1:f5:46:ce:71:50:f6:85:cf:6d:cf:3a:de: 5e:9f:ed:91:f3:c9:9f:6f:1a:f8:a5:35:a6:a7:22: 04:95:70:ce:77:92:63:7c:13:26:82:a4:bf:18:45: 40:09:ec:ef:d9:90:e1:7b:bd:2c:6e:f4:13:c5:47: 42:c4:ec:f1:79:d1:87:a5:fb:05:2a:8a:0f:2a:33: 02:b2:0a:70:35:05:79:ac:de:0b:db:cd:73:d6:7d: 68:44:d9:7b:b8:ef:5f:7d:db:d5:12:c7:32:d9:62: 15:16:e8:10:07:86:43:d5:be:45:9c:8b:82:a5:71: 79:53:85:d3:b6:81:af:87:27:93:36:e7:8a:33:55: 7d:55:23:49:33:34:00:de:b0:75:13:ac:89:25:5f: d5:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:9D:EC:35:94:F5:5D:DD:85:90:D8:D4:29:3F:0D:71:E5:F4:D6:92 X509v3 Authority Key Identifier: keyid:1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:3a:1a:a7:05:41:f8:8f:8a:ba:2a:cd:20:f6:80:7e:bb:4d: c2:dc:f6:8a:51:3b:96:a4:b6:8a:b3:f2:f8:1a:5c:05:c3:31: fc:f8:7c:cc:d3:78:0a:28:5d:74:b6:a1:3b:cd:eb:1a:a5:98: 89:cd:d9:08:f9:04:69:1f:c2:42:6d:fc:80:eb:ff:a5:5b:44: c6:b3:30:3d:c6:0f:df:e2:ac:42:fa:1b:c1:ce:2e:4d:a3:0c: a9:a9:25:1a:ee:4c:d9:2c:f0:fe:e6:80:55:cc:da:b8:f4:fd: d8:fb:b3:1a:17:63:70:06:bc:92:a6:66:10:01:6e:c3:7f:8e: ef:ce:58:ce:5d:57:34:02:c8:18:b1:54:99:84:6c:09:55:54: bd:63:2d:90:05:97:91:97:27:8c:dd:ed:f2:7e:08:d2:7a:71: b3:52:8a:6f:c5:2c:22:9a:30:6e:f1:e0:14:ba:f8:03:5e:fe: 19:e9:11:86:09:bc:ac:39:a0:b4:fc:1c:64:36:30:5b:2e:dd: 4f:7c:71:e3:05:ad:2c:81:75:eb:80:a0:d2:5d:d6:eb:f0:28: 0d:fc:54:b7:9a:e9:89:ac:f4:82:3d:d8:3f:f8:ca:01:9e:10: 89:65:9e:4e:34:b4:1f:01:14:91:e3:fb:c4:49:60:51:6f:8b: b0:3b:c3:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyODYxMTAvBgNVBAUTKDFDQjQzMDRFRDY2OEM4RjcxNjQxM0VGRDY2MTc0QzM4 NjcwQzg5Q0IwHhcNMjUwOTE4MTcwMjIwWhcNMjUwOTI1MTcwMjIwWjAYMRYwFAYD VQQDEw02OGNjM2IxZC1mYmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl/4bZ09b/UnBeB2Q7ukdZxqAazkAu3VYsXR4JbG0blD7cXJNvC61MTStZ/GQ GpjU6FHKTDwcb4NI+gvmdBtZJUTTkmL36sY2Ilpde1O+TxAPeBM/eXpdczBFrxOs 6kZvwN0XFS2JGu2UtqH1Rs5xUPaFz23POt5en+2R88mfbxr4pTWmpyIElXDOd5Jj fBMmgqS/GEVACezv2ZDhe70sbvQTxUdCxOzxedGHpfsFKooPKjMCsgpwNQV5rN4L 281z1n1oRNl7uO9ffdvVEscy2WIVFugQB4ZD1b5FnIuCpXF5U4XTtoGvhyeTNueK M1V9VSNJMzQA3rB1E6yJJV/VEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOd7DWU 9V3dhZDY1Ck/DXHl9NaSMB8GA1UdIwQYMBaAFBy0ME7WaMj3FkE+/WYXTDhnDInL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Ni9CMjFBQTA5NDdG NDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQY1dRVDc5WmhkTU9HY01p Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMUXdUdFpveVBjV1FUNzlaaGRNT0djTWljcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Ni9CMjFBQTA5NDdGNDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQ Y1dRVDc5WmhkTU9HY01pY3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNOhqnBUH4j4q6Ks0g9oB+u03C3PaKUTuWpLaKs/L4GlwFwzH8+HzM 03gKKF10tqE7zesapZiJzdkI+QRpH8JCbfyA6/+lW0TGszA9xg/f4qxC+hvBzi5N owypqSUa7kzZLPD+5oBVzNq49P3Y+7MaF2NwBrySpmYQAW7Df47vzljOXVc0AsgY sVSZhGwJVVS9Yy2QBZeRlyeM3e3yfgjSenGzUopvxSwimjBu8eAUuvgDXv4Z6RGG CbysOaC0/BxkNjBbLt1PfHHjBa0sgXXrgKDSXdbr8CgN/FS3mumJrPSCPdg/+MoB nhCJZZ5ONLQfARSR4/vESWBRb4uwO8Mq -----END CERTIFICATE-----Generated at Thu Sep 18 20:52:01 2025 by rpki-client