$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft File: HWw-nEchLuSN-fVOZJCpphbUEYk.mft (raw, json) Hash identifier: 5NSzEZKKZgEFn7P487WgYZJmbVEM6q6Libzu2hLPrAM= Subject key identifier: F2:52:9B:12:99:2D:56:EF:B6:20:8E:CD:09:19:80:39:31:18:E3:40 Authority key identifier: 1D:6C:3E:9C:47:21:2E:E4:8D:F9:F5:4E:64:90:A9:A6:16:D4:11:89 Certificate issuer: /CN=A91B6AEE/serialNumber=1D6C3E9C47212EE48DF9F54E6490A9A616D41189 Certificate serial: 0233 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft Manifest number: 022E Signing time: Wed 05 Nov 2025 02:05:15 +0000 Manifest this update: Wed 05 Nov 2025 02:05:15 +0000 Manifest next update: Wed 12 Nov 2025 02:05:15 +0000 Files and hashes: 1: HWw-nEchLuSN-fVOZJCpphbUEYk.crl (hash: kt0ORVN/aN1RU7bnbMyGHj5tVfmUkXbMrn0CjYaxxd8=) 2: 3B7794D2664A11EDB095B812C4F9AE02.roa (hash: 3/Fx9zU+/qcgAJraecgoQhxMCpBayBXQ3IM4m/S+gH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.crl rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:05:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 563 (0x233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6AEE, serialNumber=1D6C3E9C47212EE48DF9F54E6490A9A616D41189 Validity Not Before: Nov 5 02:05:15 2025 GMT Not After : Nov 12 02:05:15 2025 GMT Subject: CN=690ab0db-3c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d4:01:82:7f:05:6b:5c:dc:16:17:17:91:b6: 26:7d:9b:a2:77:9b:7c:45:b0:49:f9:33:54:13:f2: be:6f:d6:2e:25:4d:78:f0:e9:92:74:96:fe:ba:88: 81:f2:79:45:47:68:31:14:2c:c1:54:13:57:83:c3: 4b:57:d0:b7:fe:2b:d0:60:0a:51:27:38:36:e6:d5: d7:dd:51:bf:57:95:54:b4:c6:9c:8a:31:03:6a:c8: a8:ec:b2:f9:11:bf:56:9e:97:0a:63:be:12:9c:b6: 41:2e:72:c4:da:6f:24:15:cd:9f:94:66:61:77:0e: 4b:f5:f9:48:ec:3a:5a:95:f1:9d:86:ba:96:fc:ef: 39:65:be:17:9e:f0:c0:82:85:3a:2a:a7:38:b8:96: ae:18:be:bd:be:93:d5:12:e6:6d:3b:fa:a3:0f:cb: 23:56:09:4c:70:54:c9:a1:91:bf:f6:81:a2:2e:97: 86:dd:92:9a:12:f1:9f:4a:91:04:37:47:0d:d7:39: f7:58:b1:4c:1d:54:cc:7c:81:f8:53:f9:a5:3b:c9: 5b:45:b0:88:d7:28:be:ff:02:a0:e3:94:e0:e1:2c: ea:e0:7c:32:65:3b:38:a1:f9:47:16:ad:bd:14:1a: 37:f4:76:db:0e:cd:9a:f4:31:e9:10:ff:79:d7:21: 82:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:52:9B:12:99:2D:56:EF:B6:20:8E:CD:09:19:80:39:31:18:E3:40 X509v3 Authority Key Identifier: keyid:1D:6C:3E:9C:47:21:2E:E4:8D:F9:F5:4E:64:90:A9:A6:16:D4:11:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:29:83:08:91:dd:ce:fa:8f:63:d2:ba:25:57:21:a1:d0:0d: b5:08:ba:56:16:aa:ae:cc:06:3f:71:94:92:c4:5f:91:5c:bd: a4:c5:72:0d:1d:f3:91:53:0f:b7:d3:d7:ef:68:66:cf:68:5a: 6c:ef:12:1b:12:9f:90:6d:e5:f0:f7:12:8f:2c:48:e2:56:21: f1:53:94:f8:3f:ec:e0:f8:21:2e:0b:f6:77:68:1c:6c:da:35: 28:5a:0a:8d:b8:f4:c7:ca:61:c9:03:b2:2d:8b:e5:65:75:fa: 7c:db:ea:c9:44:85:23:89:49:ae:13:5d:a5:88:40:4d:d3:0b: 95:51:1f:c3:32:f2:ef:a5:97:a7:4e:92:db:3e:67:3a:ce:00: 12:2c:a8:96:a0:b1:14:b3:21:e9:58:3a:e4:a2:b8:a2:68:bf: 94:74:1a:79:6b:ca:33:01:96:d5:20:2e:6d:3d:05:8e:64:49: 5f:bb:71:10:06:96:16:74:6d:d8:0c:37:f5:98:33:3c:50:ee: 4e:27:91:75:3a:7e:79:72:a6:b6:f8:de:87:30:f6:99:01:f3: 75:ab:2a:99:18:54:b6:06:66:58:1a:a7:81:20:67:a1:08:88: 11:66:66:f7:ad:90:cd:fe:09:a5:1d:94:58:20:be:95:14:16: 96:2e:35:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZBRUUxMTAvBgNVBAUTKDFENkMzRTlDNDcyMTJFRTQ4REY5RjU0RTY0OTBBOUE2 MTZENDExODkwHhcNMjUxMTA1MDIwNTE1WhcNMjUxMTEyMDIwNTE1WjAYMRYwFAYD VQQDEw02OTBhYjBkYi0zYzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9QBgn8Fa1zcFhcXkbYmfZuid5t8RbBJ+TNUE/K+b9YuJU148OmSdJb+uoiB 8nlFR2gxFCzBVBNXg8NLV9C3/ivQYApRJzg25tXX3VG/V5VUtMacijEDasio7LL5 Eb9WnpcKY74SnLZBLnLE2m8kFc2flGZhdw5L9flI7DpalfGdhrqW/O85Zb4XnvDA goU6Kqc4uJauGL69vpPVEuZtO/qjD8sjVglMcFTJoZG/9oGiLpeG3ZKaEvGfSpEE N0cN1zn3WLFMHVTMfIH4U/mlO8lbRbCI1yi+/wKg45Tg4Szq4HwyZTs4oflHFq29 FBo39HbbDs2a9DHpEP951yGCxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJSmxKZ LVbvtiCOzQkZgDkxGONAMB8GA1UdIwQYMBaAFB1sPpxHIS7kjfn1TmSQqaYW1BGJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkFFRS80RjMzMjg4MjY2 NDYxMUVEOEQyQzc1MEZDNEY5QUUwMi9IV3ctbkVjaEx1U04tZlZPWkpDcHBoYlVF WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXdy1uRWNoTHVTTi1mVk9aSkNwcGhiVUVZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkFFRS80RjMzMjg4MjY2NDYxMUVEOEQyQzc1MEZDNEY5QUUwMi9IV3ctbkVjaEx1 U04tZlZPWkpDcHBoYlVFWWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFKYMIkd3O+o9j0rolVyGh0A21CLpWFqquzAY/cZSSxF+RXL2kxXIN HfORUw+309fvaGbPaFps7xIbEp+QbeXw9xKPLEjiViHxU5T4P+zg+CEuC/Z3aBxs 2jUoWgqNuPTHymHJA7Iti+Vldfp82+rJRIUjiUmuE12liEBN0wuVUR/DMvLvpZen TpLbPmc6zgASLKiWoLEUsyHpWDrkoriiaL+UdBp5a8ozAZbVIC5tPQWOZElfu3EQ BpYWdG3YDDf1mDM8UO5OJ5F1On55cqa2+N6HMPaZAfN1qyqZGFS2BmZYGqeBIGeh CIgRZmb3rZDN/gmlHZRYIL6VFBaWLjUI -----END CERTIFICATE-----Generated at Wed Nov 5 10:09:23 2025 by rpki-client