$ rpki-client -vvf rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft File: HAQwdyQVc864WNlR8CsiBXujluc.mft (raw, json) Hash identifier: 12Ra9raYEZEGIe1z8x6tZp9MLh8ojFqIxD19PMh0OPY= Subject key identifier: 6D:8C:0E:A3:95:4F:A0:4E:15:51:EE:BE:26:F7:8C:6B:EB:39:30:22 Authority key identifier: 1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 Certificate issuer: /CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Certificate serial: 043A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft Manifest number: 0434 Signing time: Wed 05 Nov 2025 00:23:16 +0000 Manifest this update: Wed 05 Nov 2025 00:23:15 +0000 Manifest next update: Wed 12 Nov 2025 00:23:15 +0000 Files and hashes: 1: HAQwdyQVc864WNlR8CsiBXujluc.crl (hash: 521FlYgWp00IzXB+9rErgM9iiazdybN4mu+spPHuoW0=) 2: 4AB730E0800B11EC84B3FA3BC4F9AE02.roa (hash: /pdJUaEubJCV2S3p1KppNWpdc/sERLFGpbX3qSnYD48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1082 (0x43a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D45A2, serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Validity Not Before: Nov 5 00:23:15 2025 GMT Not After : Nov 12 00:23:15 2025 GMT Subject: CN=690a98f3-b8a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b2:bb:57:d1:18:fa:5a:3e:f1:b7:a2:fe:2c: a2:a5:5b:ca:b2:aa:36:f2:d3:ee:19:9a:e3:54:14: f8:1c:1d:2d:06:8e:f5:8c:0e:aa:b0:bd:3b:75:e2: 15:6d:c2:4e:4e:6b:25:97:c7:cd:6b:c9:cb:2f:18: 5d:3a:80:11:0f:a3:ac:51:b4:6f:66:95:28:33:40: 72:34:89:dc:81:21:fb:82:58:d1:20:72:14:c1:1e: a6:59:cf:c8:96:da:02:02:40:16:e0:87:1a:71:1e: 79:12:56:bc:f9:f0:97:43:02:a6:9b:a8:d3:2e:27: a9:49:d2:26:e7:e9:97:28:0e:1c:ef:99:32:42:aa: 9c:6b:53:22:33:91:71:b5:e5:60:63:65:b8:06:38: d3:2b:e9:15:a9:3d:32:50:79:30:92:a5:a6:6f:37: 8d:6e:d3:c5:55:8c:65:22:ea:76:7d:99:8f:53:5c: 82:9f:cb:62:4f:8e:0a:bd:1e:18:53:cb:d5:e0:b5: 82:60:57:15:c2:09:01:00:21:0e:5b:dd:90:1b:0c: 24:d5:f6:3f:a9:dd:89:a1:4c:f2:85:3a:46:58:ee: 7a:c5:73:28:f2:b8:37:4a:d9:41:c5:41:07:8a:8d: 6b:9d:2a:b1:36:2e:c5:f9:b4:b6:63:9e:63:f0:3d: 79:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:8C:0E:A3:95:4F:A0:4E:15:51:EE:BE:26:F7:8C:6B:EB:39:30:22 X509v3 Authority Key Identifier: keyid:1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:21:08:6e:ea:b8:18:4c:eb:ab:49:36:46:9c:34:b1:a2:20: 09:42:c9:d2:c6:e7:1a:be:63:61:fb:46:e2:ce:30:be:fb:76: a5:3d:c6:3a:6f:c4:4e:76:39:39:c4:33:2d:09:d6:8a:b0:01: bc:2d:39:92:08:7f:65:38:a1:6c:db:20:8c:81:b1:e4:9d:1e: e7:87:4c:1f:9e:08:19:c3:f2:75:b1:37:4b:c1:1c:e7:4f:cc: 8d:98:5b:d2:a6:b1:f3:1d:54:0b:90:79:b8:c4:52:65:f1:2d: 26:e7:b2:51:cc:66:c4:9f:88:48:bf:44:88:e3:a2:4b:74:0d: a8:ad:95:66:41:ae:a7:68:94:53:63:26:e5:0f:a4:44:81:3c: f4:19:d9:da:9a:e6:58:f0:f5:ae:11:30:ff:57:3d:57:76:e8: 70:92:f5:a4:15:47:22:57:aa:5f:6b:ab:c8:33:c4:f9:c2:21: d3:3f:62:40:14:74:7b:e0:83:69:8c:00:56:0d:e6:24:a9:9d: ed:1c:64:ed:03:8d:18:d3:e0:9e:1c:03:d0:22:eb:0a:65:19: a0:71:17:c9:ad:0c:7e:b7:4e:54:a2:9a:39:2b:77:b5:06:43: da:6b:a7:4e:f1:e1:d8:48:ad:ac:a4:39:c8:22:b0:dd:ca:a4: e8:31:61:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ1QTIxMTAvBgNVBAUTKDFDMDQzMDc3MjQxNTczQ0VCODU4RDk1MUYwMkIyMjA1 N0JBMzk2RTcwHhcNMjUxMTA1MDAyMzE1WhcNMjUxMTEyMDAyMzE1WjAYMRYwFAYD VQQDEw02OTBhOThmMy1iOGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrK7V9EY+lo+8bei/iyipVvKsqo28tPuGZrjVBT4HB0tBo71jA6qsL07deIV bcJOTmsll8fNa8nLLxhdOoARD6OsUbRvZpUoM0ByNIncgSH7gljRIHIUwR6mWc/I ltoCAkAW4IcacR55Ela8+fCXQwKmm6jTLiepSdIm5+mXKA4c75kyQqqca1MiM5Fx teVgY2W4BjjTK+kVqT0yUHkwkqWmbzeNbtPFVYxlIup2fZmPU1yCn8tiT44KvR4Y U8vV4LWCYFcVwgkBACEOW92QGwwk1fY/qd2JoUzyhTpGWO56xXMo8rg3StlBxUEH io1rnSqxNi7F+bS2Y55j8D155wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2MDqOV T6BOFVHuvib3jGvrOTAiMB8GA1UdIwQYMBaAFBwEMHckFXPOuFjZUfArIgV7o5bn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDVBMi9BM0QyRENBQTgw MDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4NjRXTmxSOENzaUJYdWps dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBUXdkeVFWYzg2NFdObFI4Q3NpQlh1amx1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDVBMi9BM0QyRENBQTgwMDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4 NjRXTmxSOENzaUJYdWpsdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5IQhu6rgYTOurSTZGnDSxoiAJQsnSxucavmNh+0bizjC++3alPcY6 b8ROdjk5xDMtCdaKsAG8LTmSCH9lOKFs2yCMgbHknR7nh0wfnggZw/J1sTdLwRzn T8yNmFvSprHzHVQLkHm4xFJl8S0m57JRzGbEn4hIv0SI46JLdA2orZVmQa6naJRT YyblD6REgTz0GdnamuZY8PWuETD/Vz1XduhwkvWkFUciV6pfa6vIM8T5wiHTP2JA FHR74INpjABWDeYkqZ3tHGTtA40Y0+CeHAPQIusKZRmgcRfJrQx+t05Uopo5K3e1 BkPaa6dO8eHYSK2spDnIIrDdyqToMWFM -----END CERTIFICATE-----Generated at Wed Nov 5 21:42:13 2025 by rpki-client