$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: n3i+ixTt4KGPlaQ9t0q2+Sat5nrE4JvIwqyMu/tWsZU= Subject key identifier: 18:D2:81:67:1E:CB:FC:4E:A2:40:8F:6A:DD:7F:DE:82:F0:A8:F6:42 Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 092D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 0926 Signing time: Fri 24 Oct 2025 21:02:29 +0000 Manifest this update: Fri 24 Oct 2025 21:02:29 +0000 Manifest next update: Fri 31 Oct 2025 21:02:29 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: YQGVP4/lajSoqx5a0bQ1smKwh58JIGvm73gNHBKhdq0=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: iGx2/OJLyjhg1Fasnl64EO8+YlI70PVJOH1c6PHse0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 21:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2349 (0x92d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Oct 24 21:02:29 2025 GMT Not After : Oct 31 21:02:29 2025 GMT Subject: CN=68fbe965-04cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:84:28:93:58:b6:ac:91:13:7c:ad:a9:0b:2b: 98:86:b0:60:38:09:dd:c8:61:f1:35:c8:60:e8:4a: cb:a1:65:84:23:f4:7e:eb:7b:01:25:1e:ce:8d:62: 9d:ea:b6:a2:75:4e:e8:e0:87:8a:bc:10:00:80:22: 4e:73:a9:cc:86:aa:f5:59:87:e4:b3:d6:26:0d:8b: 8d:12:8c:31:62:9a:db:db:62:eb:44:e0:d5:6b:7a: 8a:90:ab:60:b6:f0:64:f8:2f:48:f8:12:1d:14:50: db:4c:7e:11:66:0e:20:7e:06:07:6e:51:fd:90:f1: 5a:b1:a4:ca:45:10:81:b3:d5:9c:cd:ca:b6:be:8f: b8:99:0e:91:5e:35:2b:66:8c:be:d4:30:65:ba:20: 30:ec:6f:70:02:57:1d:fa:63:ce:4f:72:11:7d:21: 8f:db:a4:73:c7:61:72:5b:8e:69:a2:f4:6c:9c:8b: c6:e4:eb:c1:6b:db:07:09:42:67:25:a8:c9:8b:0a: 0e:7e:1e:bd:3b:5d:3f:95:02:19:0e:90:c1:0b:60: 80:be:4b:58:4c:94:04:a3:bf:4f:5b:a0:da:f4:cc: 63:3e:e0:20:f0:d9:e3:59:74:55:20:c1:ca:02:df: ff:7f:1b:03:0c:46:43:ca:2c:ca:08:6e:5f:bb:87: 8b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D2:81:67:1E:CB:FC:4E:A2:40:8F:6A:DD:7F:DE:82:F0:A8:F6:42 X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:ea:8d:a8:b6:eb:03:48:ef:31:b3:13:aa:4e:8c:90:15:6f: 81:21:99:46:02:4f:4a:fe:af:7f:f8:08:ca:4d:48:18:49:ca: f1:cf:04:40:91:5a:f7:cc:88:16:f5:dc:29:fe:10:2e:41:45: 8b:58:1d:b8:2e:64:ce:94:8b:58:db:49:bf:f0:e7:18:bd:85: 5e:1f:ba:a6:1a:4b:f5:b1:8b:20:1b:0b:ef:d6:8d:c2:49:96: dc:ee:d5:03:9b:2b:de:b7:a1:c6:03:67:ff:20:e6:21:f7:89: c7:c9:83:7c:ee:0b:db:d8:86:79:6c:0d:3b:4a:35:46:bc:f5: 7b:1f:aa:72:ba:2c:ee:42:be:38:92:5a:5d:5c:07:61:28:fa: c4:26:65:99:aa:13:30:9d:fc:84:80:9a:36:3c:6b:b0:22:20: 37:56:51:eb:58:b5:6b:75:7c:d1:a0:50:df:9f:58:5a:0a:5c: 7b:75:72:30:fa:00:ab:2b:61:50:90:09:2e:b8:03:a4:e6:0c: d8:57:b2:cb:f9:7b:d3:c3:fa:c3:c3:d6:b1:29:89:58:0e:35: 1f:f5:54:c5:6a:9c:3d:f2:b9:98:5f:d5:85:fe:b7:26:75:6f: 5c:35:37:64:36:73:ec:10:04:26:4e:d3:49:93:66:57:f3:c0: 23:b3:b2:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjUxMDI0MjEwMjI5WhcNMjUxMDMxMjEwMjI5WjAYMRYwFAYD VQQDEw02OGZiZTk2NS0wNGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4Qok1i2rJETfK2pCyuYhrBgOAndyGHxNchg6ErLoWWEI/R+63sBJR7OjWKd 6raidU7o4IeKvBAAgCJOc6nMhqr1WYfks9YmDYuNEowxYprb22LrRODVa3qKkKtg tvBk+C9I+BIdFFDbTH4RZg4gfgYHblH9kPFasaTKRRCBs9Wczcq2vo+4mQ6RXjUr Zoy+1DBluiAw7G9wAlcd+mPOT3IRfSGP26Rzx2FyW45povRsnIvG5OvBa9sHCUJn JajJiwoOfh69O10/lQIZDpDBC2CAvktYTJQEo79PW6Da9MxjPuAg8NnjWXRVIMHK At//fxsDDEZDyizKCG5fu4eLPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjSgWce y/xOokCPat1/3oLwqPZCMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC86o2otusDSO8xsxOqToyQFW+BIZlGAk9K/q9/+AjKTUgYScrxzwRA kVr3zIgW9dwp/hAuQUWLWB24LmTOlItY20m/8OcYvYVeH7qmGkv1sYsgGwvv1o3C SZbc7tUDmyvet6HGA2f/IOYh94nHyYN87gvb2IZ5bA07SjVGvPV7H6pyuizuQr44 klpdXAdhKPrEJmWZqhMwnfyEgJo2PGuwIiA3VlHrWLVrdXzRoFDfn1haClx7dXIw +gCrK2FQkAkuuAOk5gzYV7LL+XvTw/rDw9axKYlYDjUf9VTFapw98rmYX9WF/rcm dW9cNTdkNnPsEAQmTtNJk2ZX88Ajs7L0 -----END CERTIFICATE-----Generated at Sat Oct 25 22:51:43 2025 by rpki-client