$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft File: HQ2sEe2C41wjsMvv--4AYmOwmVc.mft (raw, json) Hash identifier: 4NCHrhwd9oKGinQj0I+iDnMixbd6wkcxLV1MmrfWj8c= Subject key identifier: B8:C5:D7:81:1C:95:A0:B0:B8:FB:7A:F4:71:DB:23:BD:AA:A1:37:10 Authority key identifier: 1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 Certificate issuer: /CN=A91EA9C0/serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft Manifest number: 54 Signing time: Mon 03 Nov 2025 07:12:55 +0000 Manifest this update: Mon 03 Nov 2025 07:12:55 +0000 Manifest next update: Mon 10 Nov 2025 07:12:55 +0000 Files and hashes: 1: HQ2sEe2C41wjsMvv--4AYmOwmVc.crl (hash: pWabIxSk+0ga39Bh4+IrDV6OBAo4EsiJFnuZlBx0MQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:12:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9C0, serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Validity Not Before: Nov 3 07:12:55 2025 GMT Not After : Nov 10 07:12:55 2025 GMT Subject: CN=690855f7-b078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5d:b6:fb:3b:13:6a:71:4b:1a:ba:20:af:0a: 58:5a:c5:2f:66:e1:a5:a9:72:64:6b:fa:89:a7:86: 49:0c:5b:ef:20:7d:f1:2d:30:90:e7:ea:e4:19:2a: fb:0b:bf:37:21:39:c9:be:ce:4b:73:c1:af:7b:f7: f7:21:e7:4a:03:8c:96:ed:42:43:c1:85:cc:57:50: a8:5d:1f:cc:28:6d:47:15:3f:80:d4:28:8d:d2:89: 3a:f8:7f:eb:0c:e1:64:90:47:05:7a:3e:41:75:f8: 95:b1:ca:1e:82:70:eb:47:7f:cf:39:b4:c9:cb:3a: 1e:be:3d:2c:05:4e:95:a6:81:29:a7:43:18:b4:f0: 22:7d:e1:3d:71:0d:48:84:c2:7a:0e:45:a8:4c:57: 18:69:09:eb:d5:42:df:52:8b:2c:56:77:1a:e7:44: 54:75:22:47:8c:3e:f3:f4:9c:44:ce:fd:6d:a2:93: bf:dd:b6:50:52:6c:8a:63:23:d5:d2:0e:08:a3:c6: 66:60:8f:ee:1b:af:34:fe:9e:cd:37:a6:e6:93:97: a2:bc:d1:3b:9f:34:29:31:20:3e:e4:9d:ec:c5:b6: 3a:98:22:bd:a8:cf:bb:1c:58:5b:6e:76:83:c4:b7: c2:1c:da:bb:ff:86:16:35:f0:c8:d5:c4:61:39:ff: f1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:C5:D7:81:1C:95:A0:B0:B8:FB:7A:F4:71:DB:23:BD:AA:A1:37:10 X509v3 Authority Key Identifier: keyid:1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:a6:d9:1d:9a:77:24:0f:87:f3:b3:96:0d:18:67:e2:ab:1b: bf:ac:8f:78:c4:6a:25:47:0c:d5:0e:0c:70:bb:81:3a:f6:5d: bd:d2:18:d5:f1:16:61:19:68:6f:63:7d:3b:58:90:2e:7e:0f: 89:37:10:7d:1f:8c:ba:90:ed:84:61:9b:62:01:ad:a7:ce:96: 51:aa:d1:47:55:e5:5a:a7:32:c3:11:06:fa:05:f8:68:72:a7: 32:36:38:de:e9:ae:cb:e5:e6:15:03:b1:7a:3d:68:5a:03:62: 20:65:fb:e9:d4:3a:43:51:d3:1d:00:2b:16:26:61:26:1b:74: b2:18:af:8b:22:50:f0:d8:2b:2b:09:6f:36:f8:70:dd:97:ed: 01:dd:41:b6:04:4c:11:5b:9b:f0:9a:84:33:d1:60:0c:83:a5: 28:6d:b1:e4:28:76:93:ab:75:69:d8:ca:9d:0b:b5:04:96:25: 25:0e:30:55:c3:9a:47:f1:83:85:1d:d7:9e:aa:6a:22:34:a8: ca:99:fa:7a:d4:5d:50:4a:f1:16:bf:37:5f:37:99:71:2b:92: a7:5f:ed:5b:b5:42:f9:42:80:cd:ee:1d:83:61:50:7b:ea:08: 5d:81:87:dc:44:35:72:a6:10:07:a6:55:92:88:d5:e8:c9:a6: 71:85:02:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTlDMDExMC8GA1UEBRMoMUQwREFDMTFFRDgyRTM1QzIzQjBDQkVGRkJFRTAwNjI2 M0IwOTk1NzAeFw0yNTExMDMwNzEyNTVaFw0yNTExMTAwNzEyNTVaMBgxFjAUBgNV BAMTDTY5MDg1NWY3LWIwNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClXbb7OxNqcUsauiCvClhaxS9m4aWpcmRr+omnhkkMW+8gffEtMJDn6uQZKvsL vzchOcm+zktzwa979/ch50oDjJbtQkPBhcxXUKhdH8wobUcVP4DUKI3SiTr4f+sM 4WSQRwV6PkF1+JWxyh6CcOtHf885tMnLOh6+PSwFTpWmgSmnQxi08CJ94T1xDUiE wnoORahMVxhpCevVQt9SiyxWdxrnRFR1IkeMPvP0nETO/W2ik7/dtlBSbIpjI9XS DgijxmZgj+4brzT+ns03puaTl6K80TufNCkxID7knezFtjqYIr2oz7scWFtudoPE t8Ic2rv/hhY18MjVxGE5//ENAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuMXXgRyV oLC4+3r0cdsjvaqhNxAwHwYDVR0jBBgwFoAUHQ2sEe2C41wjsMvv++4AYmOwmVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBOUMwLzVBRkIxNDhFMzg4 MjExRjA4Q0NCMTg2NkM0RjlBRTAyL0hRMnNFZTJDNDF3anNNdnYtLTRBWW1Pd21W Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFEyc0VlMkM0MXdqc012di0tNEFZbU93bVZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB OUMwLzVBRkIxNDhFMzg4MjExRjA4Q0NCMTg2NkM0RjlBRTAyL0hRMnNFZTJDNDF3 anNNdnYtLTRBWW1Pd21WYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIqm2R2adyQPh/Ozlg0YZ+KrG7+sj3jEaiVHDNUODHC7gTr2Xb3SGNXx FmEZaG9jfTtYkC5+D4k3EH0fjLqQ7YRhm2IBrafOllGq0UdV5VqnMsMRBvoF+Ghy pzI2ON7prsvl5hUDsXo9aFoDYiBl++nUOkNR0x0AKxYmYSYbdLIYr4siUPDYKysJ bzb4cN2X7QHdQbYETBFbm/CahDPRYAyDpShtseQodpOrdWnYyp0LtQSWJSUOMFXD mkfxg4Ud156qaiI0qMqZ+nrUXVBK8Ra/N183mXErkqdf7Vu1QvlCgM3uHYNhUHvq CF2Bh9xENXKmEAemVZKI1ejJpnGFAko= -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:00 2025 by rpki-client