$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft File: HNLU8yahhKSHvyKs14rVwGj0ZmE.mft (raw, json) Hash identifier: ogkKD/hkuMroga3f7Q+d6FJOq/Ax10CRiTu3/Znk4cQ= Subject key identifier: F8:64:05:4F:01:E3:F3:84:BF:8C:C2:80:F5:1B:1F:EE:87:58:D1:38 Authority key identifier: 1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 Certificate issuer: /CN=A91F8177/serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft Manifest number: 4D Signing time: Thu 23 Oct 2025 09:30:41 +0000 Manifest this update: Thu 23 Oct 2025 09:30:40 +0000 Manifest next update: Thu 30 Oct 2025 09:30:40 +0000 Files and hashes: 1: HNLU8yahhKSHvyKs14rVwGj0ZmE.crl (hash: o84Cro9qYTrqBBLUwG9mGOJBic3nHJ9KzG3VhoTAC1A=) 2: 447A88023DDC11F0ACD9F475C4F9AE02.roa (hash: RAa8qDITo259IkIrPotazGyLqrpj79/JGsviOOW/nx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 09:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8177, serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Validity Not Before: Oct 23 09:30:40 2025 GMT Not After : Oct 30 09:30:40 2025 GMT Subject: CN=68f9f5c0-9959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5c:cb:df:e7:c4:42:26:6b:70:68:62:2e:15: 8c:66:22:96:1b:1f:12:6e:eb:b7:cc:f9:31:ac:8c: 62:3a:31:eb:b7:64:e4:a5:f9:ec:90:61:4b:3d:17: d9:eb:8b:cb:03:7b:03:c8:48:a7:94:5a:47:88:09: c0:ca:a6:af:df:c1:38:f0:86:d6:4c:4c:34:ad:19: 32:0b:b2:d7:c9:dc:40:88:68:e2:3c:c6:33:12:2b: 25:b2:cd:7c:6e:df:00:0f:ff:98:50:97:55:3a:68: a9:ba:78:e6:87:a3:52:9b:d4:de:29:c8:d9:44:51: be:c4:25:7b:21:3d:e6:36:79:e4:e9:af:56:b1:63: 3a:60:7f:9c:c2:72:02:14:a6:50:0c:6b:20:c4:8b: 0a:9d:19:94:87:2a:a9:18:0b:08:a0:db:89:03:74: 4b:ae:79:9d:f7:d8:05:06:ce:93:a7:b0:9f:7e:07: e8:d8:ae:87:64:5e:63:6c:b9:3a:22:13:de:f9:e7: 85:33:fd:a2:c5:34:e8:a5:b0:8b:21:18:9f:55:60: 79:8a:49:63:b2:19:a2:1d:62:4c:7d:c8:16:b9:25: 5e:bc:9c:b4:e3:0c:c2:8f:4d:f9:fe:72:83:65:66: 8f:21:07:3d:f4:91:c5:85:e4:2d:9b:a2:b1:a9:e7: 77:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:64:05:4F:01:E3:F3:84:BF:8C:C2:80:F5:1B:1F:EE:87:58:D1:38 X509v3 Authority Key Identifier: keyid:1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:c8:e0:0f:2f:eb:4a:e3:4a:2e:0f:13:a7:9d:1a:ee:c1:b1: 88:5f:ab:9c:3e:7b:7d:30:b1:1b:e5:19:7b:be:6b:5b:96:73: 2a:3b:52:06:44:d8:f5:b5:e4:54:46:6d:c2:a0:e8:e3:2a:02: 81:fd:64:cc:3a:23:7c:a4:75:74:a3:98:95:52:76:18:ce:e2: 05:86:eb:92:35:01:22:17:c5:94:2e:d7:52:46:a4:0d:d9:66: 68:73:92:48:a4:57:e5:b3:b8:e4:c8:06:5a:e6:a7:91:1f:0c: 3e:bc:09:42:72:f6:4a:b3:ce:71:94:b2:7a:f9:03:fe:62:ab: e0:e0:6a:a5:2e:b5:f0:73:01:d8:ba:da:11:f5:8f:04:19:8f: 70:89:f2:df:37:98:39:2c:5c:db:90:47:6a:08:39:58:67:cf: 14:65:3e:d3:6c:01:bb:2d:79:30:cd:de:72:c1:a2:f2:6a:93: 8e:69:35:a5:d6:92:86:65:eb:77:69:8c:66:54:6f:3a:f1:8c: 1f:fe:95:0a:1d:a5:eb:37:d4:d0:4b:1f:00:81:e4:45:53:b4: 28:80:d0:c2:89:d3:a5:48:1a:9b:d7:73:14:ca:2f:ee:66:0a: 40:0a:8f:2a:46:3f:e6:4b:23:f1:70:b5:be:86:36:ab:a8:06: 96:69:af:12 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODE3NzExMC8GA1UEBRMoMUNEMkQ0RjMyNkExODRBNDg3QkYyMkFDRDc4QUQ1QzA2 OEY0NjY2MTAeFw0yNTEwMjMwOTMwNDBaFw0yNTEwMzAwOTMwNDBaMBgxFjAUBgNV BAMTDTY4ZjlmNWMwLTk5NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjXMvf58RCJmtwaGIuFYxmIpYbHxJu67fM+TGsjGI6Meu3ZOSl+eyQYUs9F9nr i8sDewPISKeUWkeICcDKpq/fwTjwhtZMTDStGTILstfJ3ECIaOI8xjMSKyWyzXxu 3wAP/5hQl1U6aKm6eOaHo1Kb1N4pyNlEUb7EJXshPeY2eeTpr1axYzpgf5zCcgIU plAMayDEiwqdGZSHKqkYCwig24kDdEuueZ332AUGzpOnsJ9+B+jYrodkXmNsuToi E97554Uz/aLFNOilsIshGJ9VYHmKSWOyGaIdYkx9yBa5JV68nLTjDMKPTfn+coNl Zo8hBz30kcWF5C2borGp53flAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+GQFTwHj 84S/jMKA9Rsf7odY0TgwHwYDVR0jBBgwFoAUHNLU8yahhKSHvyKs14rVwGj0ZmEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MTc3LzhCQTNEOEM0M0RE QjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtTSHZ5S3MxNHJWd0dqMFpt RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE5MVTh5YWhoS1NIdnlLczE0clZ3R2owWm1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MTc3LzhCQTNEOEM0M0REQjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtT SHZ5S3MxNHJWd0dqMFptRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGDI4A8v60rjSi4PE6edGu7BsYhfq5w+e30wsRvlGXu+a1uWcyo7UgZE 2PW15FRGbcKg6OMqAoH9ZMw6I3ykdXSjmJVSdhjO4gWG65I1ASIXxZQu11JGpA3Z ZmhzkkikV+WzuOTIBlrmp5EfDD68CUJy9kqzznGUsnr5A/5iq+DgaqUutfBzAdi6 2hH1jwQZj3CJ8t83mDksXNuQR2oIOVhnzxRlPtNsAbsteTDN3nLBovJqk45pNaXW koZl63dpjGZUbzrxjB/+lQodpes31NBLHwCB5EVTtCiA0MKJ06VIGpvXcxTKL+5m CkAKjypGP+ZLI/Fwtb6GNquoBpZprxI= -----END CERTIFICATE-----Generated at Thu Oct 23 20:32:25 2025 by rpki-client