$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft File: HLQwTtZoyPcWQT79ZhdMOGcMics.mft (raw, json) Hash identifier: qySDHAT7QVlcR6AkQnGZhH7TEcanEFWlLEgcQwmBo5c= Subject key identifier: 2A:BA:84:91:99:D5:28:48:F8:9C:F3:A6:09:C2:17:81:88:C1:1F:82 Authority key identifier: 1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB Certificate issuer: /CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Certificate serial: 145B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft Manifest number: 1452 Signing time: Sun 02 Nov 2025 16:53:48 +0000 Manifest this update: Sun 02 Nov 2025 16:53:48 +0000 Manifest next update: Sun 09 Nov 2025 16:53:48 +0000 Files and hashes: 1: HLQwTtZoyPcWQT79ZhdMOGcMics.crl (hash: M9Iji93UifrAFi1HmCxW3+fodSO5F07pd8jIQTG4uOA=) 2: 1CA71D84493D11EAAB30C638C4F9AE02.roa (hash: Namfm+gMj3DTGbqctWwU+VBkFxpSXUjfjiuK5KjjSb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:53:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5211 (0x145b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4286, serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Validity Not Before: Nov 2 16:53:48 2025 GMT Not After : Nov 9 16:53:48 2025 GMT Subject: CN=69078c9c-5f31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:0e:bf:45:20:af:f2:83:7f:3f:07:7d:33:6b: 1a:bf:5d:b3:da:47:05:c2:21:fd:67:48:69:0c:db: 62:2a:87:8c:1e:34:24:18:3a:c2:6a:1f:1f:dd:1b: e7:1d:64:fb:dd:81:bd:68:0b:e0:79:d6:23:97:62: 71:1a:e8:2e:03:d6:fb:7a:67:8e:e9:26:1c:e7:8e: 65:38:9b:f2:5b:88:6e:38:0d:62:d3:3e:cf:a9:29: ea:99:5c:eb:39:43:0c:c9:6d:1e:84:94:c8:48:e0: 6f:2a:5e:6f:c9:63:57:ba:3d:b4:18:74:f8:9b:33: 94:a7:d6:36:6b:12:15:a4:a6:77:a0:2a:ed:ed:1b: b7:12:fb:2d:4b:9b:ea:62:f9:34:f1:71:1d:6f:c2: 87:b4:75:0f:5d:6a:ad:22:b5:3b:a1:6d:c1:7f:53: 7c:c8:3a:2f:9c:8f:68:d4:de:d8:ab:e1:b8:f7:74: 6b:2d:cb:d1:22:25:68:fd:50:ce:bb:87:9a:53:0a: d0:49:57:8f:97:03:2f:95:a6:fd:06:fe:18:b6:45: 79:07:b6:34:62:e2:48:10:a6:e7:4b:1d:74:ea:ef: df:cb:11:5c:83:49:e1:ff:bc:fc:13:39:6a:a3:62: 5a:02:c4:57:ba:fe:71:8e:ea:33:a4:d2:7e:ff:f0: 8d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:BA:84:91:99:D5:28:48:F8:9C:F3:A6:09:C2:17:81:88:C1:1F:82 X509v3 Authority Key Identifier: keyid:1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:3e:20:0b:2c:18:27:38:f0:7d:5f:cf:ec:12:43:69:0c:7f: 72:80:91:a3:3d:55:c1:44:31:a1:9e:7c:2f:41:49:76:a2:a5: 77:bb:a1:c8:75:18:24:d7:3c:a1:d2:a5:f1:98:a2:7c:fc:84: e2:b8:3f:8d:b0:0f:f6:da:04:ed:1f:3d:6c:22:22:02:2f:e5: 94:de:d8:8b:e1:cb:b3:d6:b8:32:3c:14:40:df:8a:3c:bd:96: f5:af:92:c3:2a:62:07:d3:8c:f1:e8:f4:83:2c:71:a5:82:63: 70:84:a7:3e:d0:4a:30:21:16:7f:bc:58:bb:2b:76:0e:fa:f3: 8e:a0:31:0f:48:90:0a:1f:9d:32:22:c3:30:25:c7:d0:63:10: e4:76:05:88:97:d2:1a:7f:8a:dc:5b:68:68:18:c9:6f:2a:6a: 57:70:a0:9c:0b:c4:4f:1f:52:04:5c:d2:aa:06:51:9c:36:68: c2:3e:f6:04:d4:1d:33:7b:e6:08:2b:c5:23:fb:08:f4:cf:68: c9:9b:63:da:18:e8:5c:0d:15:6b:e3:28:48:95:8b:13:87:bd: 7e:a4:0b:c4:ae:6f:80:ac:41:58:89:63:27:87:b9:9f:e2:ff: 7e:a5:54:b7:90:f1:2f:db:ac:46:1c:27:47:29:7e:ab:30:f0: 4e:50:f2:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyODYxMTAvBgNVBAUTKDFDQjQzMDRFRDY2OEM4RjcxNjQxM0VGRDY2MTc0QzM4 NjcwQzg5Q0IwHhcNMjUxMTAyMTY1MzQ4WhcNMjUxMTA5MTY1MzQ4WjAYMRYwFAYD VQQDEw02OTA3OGM5Yy01ZjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoA6/RSCv8oN/Pwd9M2sav12z2kcFwiH9Z0hpDNtiKoeMHjQkGDrCah8f3Rvn HWT73YG9aAvgedYjl2JxGuguA9b7emeO6SYc545lOJvyW4huOA1i0z7PqSnqmVzr OUMMyW0ehJTISOBvKl5vyWNXuj20GHT4mzOUp9Y2axIVpKZ3oCrt7Ru3EvstS5vq Yvk08XEdb8KHtHUPXWqtIrU7oW3Bf1N8yDovnI9o1N7Yq+G493RrLcvRIiVo/VDO u4eaUwrQSVePlwMvlab9Bv4YtkV5B7Y0YuJIEKbnSx106u/fyxFcg0nh/7z8Ezlq o2JaAsRXuv5xjuozpNJ+//CN6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCq6hJGZ 1ShI+JzzpgnCF4GIwR+CMB8GA1UdIwQYMBaAFBy0ME7WaMj3FkE+/WYXTDhnDInL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Ni9CMjFBQTA5NDdG NDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQY1dRVDc5WmhkTU9HY01p Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMUXdUdFpveVBjV1FUNzlaaGRNT0djTWljcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Ni9CMjFBQTA5NDdGNDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQ Y1dRVDc5WmhkTU9HY01pY3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGPiALLBgnOPB9X8/sEkNpDH9ygJGjPVXBRDGhnnwvQUl2oqV3u6HI dRgk1zyh0qXxmKJ8/ITiuD+NsA/22gTtHz1sIiICL+WU3tiL4cuz1rgyPBRA34o8 vZb1r5LDKmIH04zx6PSDLHGlgmNwhKc+0EowIRZ/vFi7K3YO+vOOoDEPSJAKH50y IsMwJcfQYxDkdgWIl9Iaf4rcW2hoGMlvKmpXcKCcC8RPH1IEXNKqBlGcNmjCPvYE 1B0ze+YIK8Uj+wj0z2jJm2PaGOhcDRVr4yhIlYsTh71+pAvErm+ArEFYiWMnh7mf 4v9+pVS3kPEv26xGHCdHKX6rMPBOUPLb -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:44 2025 by rpki-client