$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft File: HuygOndlK5BwteEzgJoiODDInPk.mft (raw, json) Hash identifier: SM5AlBNQQrjeh+j5kwfBRqte2HlflB+8cTSpgp46UkA= Subject key identifier: AC:D6:F5:FB:57:3C:5C:8D:14:7E:75:A8:D0:E6:57:DE:F5:5B:1B:57 Authority key identifier: 1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 Certificate issuer: /CN=A91BAD56/serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Certificate serial: 02BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft Manifest number: 02B0 Signing time: Wed 05 Nov 2025 01:36:47 +0000 Manifest this update: Wed 05 Nov 2025 01:36:47 +0000 Manifest next update: Wed 12 Nov 2025 01:36:47 +0000 Files and hashes: 1: HuygOndlK5BwteEzgJoiODDInPk.crl (hash: z5vySzQHLVT/njFEaB1ENuMqGp2E3LK/wzzG93EVBBI=) 2: 9A59F7D670E411F0A8BFEE2AC4F9AE02.roa (hash: Pm7xX1vwf0DPPYIok3OlHUKVD8r7hcmVaxi8mGdbOm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 700 (0x2bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD56, serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Validity Not Before: Nov 5 01:36:47 2025 GMT Not After : Nov 12 01:36:47 2025 GMT Subject: CN=690aaa2f-3370 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:62:38:b7:cd:1c:15:a8:87:b9:d9:d3:80:63: 19:0f:b9:c6:0e:f6:73:18:5e:8e:ec:86:07:52:8c: b2:53:92:66:b8:de:58:94:ec:9c:39:76:f8:66:99: 54:1a:04:29:f0:7c:1d:ee:0c:4f:1d:d9:f5:17:53: 02:28:eb:59:dc:b9:c2:6f:a9:45:47:9c:df:aa:bb: 55:85:09:19:4f:c8:e0:36:c5:51:1e:cc:3c:8e:90: 8c:2b:5b:d6:6e:d1:c4:29:b6:01:76:fc:bb:ea:24: e1:bd:7e:5c:80:1a:82:99:97:95:e8:db:88:c0:3d: 78:51:a5:34:08:08:cf:28:b5:4d:92:b4:66:6e:61: ab:ad:c1:d0:a0:10:42:6e:66:42:f1:f6:b0:95:cc: 22:ce:d1:d1:30:f9:04:01:00:65:e2:5b:21:36:17: 1c:91:e7:b3:8b:aa:9b:24:5a:0b:24:52:ef:1a:fe: 25:ed:29:af:b6:68:85:11:fe:79:e2:5e:ef:92:55: d6:53:19:7c:d7:8f:12:3d:ab:4f:1c:e6:4c:d0:92: c1:e4:03:af:c5:81:b4:5c:cf:37:79:c1:2d:a4:1a: 16:14:c2:09:11:15:62:9a:f8:ec:d3:49:2c:72:5c: 7f:cb:45:5f:f0:86:44:d1:81:cb:57:8a:6f:35:2e: 89:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D6:F5:FB:57:3C:5C:8D:14:7E:75:A8:D0:E6:57:DE:F5:5B:1B:57 X509v3 Authority Key Identifier: keyid:1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:21:4c:4f:64:b0:29:f6:b5:bb:f5:57:32:b7:54:6c:e3:0c: c0:8d:33:18:ea:b8:f0:3f:88:d9:0f:57:53:0b:9b:fe:f5:2e: a0:30:e4:1a:f5:9f:83:58:f2:3d:46:3a:15:5f:88:4e:40:00: ea:a8:37:1d:d4:5e:ea:06:d5:23:dd:f3:2f:a9:40:27:5e:3b: 76:ba:bc:4e:6c:f2:d9:15:33:25:64:bc:da:d0:b7:81:03:ef: f2:f5:22:15:61:93:9d:8d:69:b4:9b:c1:6b:01:7c:b0:59:14: 74:95:ff:9e:4b:58:9e:fb:c0:cc:95:fa:68:f9:79:68:b4:07: 80:3f:1b:8a:6d:25:9c:ed:8a:bb:f4:23:01:fc:a0:a7:5d:f8: f2:ac:ec:73:ca:36:63:ff:ee:ef:c6:ef:0a:36:09:56:31:6d: 99:6d:a8:7a:10:4b:6c:89:5a:a2:69:27:35:5c:2b:53:c1:e6: b3:21:c2:72:b5:20:1f:e9:ba:17:56:29:9b:1c:9c:c5:fc:c1: 71:8c:90:ad:a5:77:e5:d8:b6:c9:9e:ae:56:7d:45:ff:d9:e9: 51:4d:04:4e:b3:da:99:dd:82:ee:ec:8e:93:fe:17:87:bf:54: be:03:fa:fd:6a:cc:3d:a8:f0:82:7b:09:b4:7b:f5:4e:1a:99: e5:91:22:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFENTYxMTAvBgNVBAUTKDFFRUNBMDNBNzc2NTJCOTA3MEI1RTEzMzgwOUEyMjM4 MzBDODlDRjkwHhcNMjUxMTA1MDEzNjQ3WhcNMjUxMTEyMDEzNjQ3WjAYMRYwFAYD VQQDEw02OTBhYWEyZi0zMzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGI4t80cFaiHudnTgGMZD7nGDvZzGF6O7IYHUoyyU5JmuN5YlOycOXb4ZplU GgQp8Hwd7gxPHdn1F1MCKOtZ3LnCb6lFR5zfqrtVhQkZT8jgNsVRHsw8jpCMK1vW btHEKbYBdvy76iThvX5cgBqCmZeV6NuIwD14UaU0CAjPKLVNkrRmbmGrrcHQoBBC bmZC8fawlcwiztHRMPkEAQBl4lshNhcckeezi6qbJFoLJFLvGv4l7SmvtmiFEf55 4l7vklXWUxl8148SPatPHOZM0JLB5AOvxYG0XM83ecEtpBoWFMIJERVimvjs00ks clx/y0Vf8IZE0YHLV4pvNS6JEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKzW9ftX PFyNFH51qNDmV971WxtXMB8GA1UdIwQYMBaAFB7soDp3ZSuQcLXhM4CaIjgwyJz5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQ1Ni84MThCNEQwMjFB QUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1Qnd0ZUV6Z0pvaU9ERElu UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h1eWdPbmRsSzVCd3RlRXpnSm9pT0RESW5Qay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQ1Ni84MThCNEQwMjFBQUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1 Qnd0ZUV6Z0pvaU9EREluUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmIUxPZLAp9rW79Vcyt1Rs4wzAjTMY6rjwP4jZD1dTC5v+9S6gMOQa 9Z+DWPI9RjoVX4hOQADqqDcd1F7qBtUj3fMvqUAnXjt2urxObPLZFTMlZLza0LeB A+/y9SIVYZOdjWm0m8FrAXywWRR0lf+eS1ie+8DMlfpo+XlotAeAPxuKbSWc7Yq7 9CMB/KCnXfjyrOxzyjZj/+7vxu8KNglWMW2Zbah6EEtsiVqiaSc1XCtTweazIcJy tSAf6boXVimbHJzF/MFxjJCtpXfl2LbJnq5WfUX/2elRTQROs9qZ3YLu7I6T/heH v1S+A/r9asw9qPCCewm0e/VOGpnlkSIy -----END CERTIFICATE-----Generated at Wed Nov 5 15:17:19 2025 by rpki-client