$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: XFHjL7pyaAO/mU3Yi1WOXdDEt+1TSn6fn0ebNP7cG0M= Subject key identifier: CA:62:2C:85:41:1F:53:3F:1C:B0:CC:6B:19:64:AF:B6:AE:A3:4D:3C Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 0932 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 092B Signing time: Sun 02 Nov 2025 20:11:46 +0000 Manifest this update: Sun 02 Nov 2025 20:11:46 +0000 Manifest next update: Sun 09 Nov 2025 20:11:46 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: Kt5pOZgplgYod53sKcq/NS/2/eKH79CY/ubj5vD9pPY=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: iGx2/OJLyjhg1Fasnl64EO8+YlI70PVJOH1c6PHse0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2354 (0x932) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Nov 2 20:11:46 2025 GMT Not After : Nov 9 20:11:46 2025 GMT Subject: CN=6907bb02-0b8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:04:c7:2c:26:44:0b:97:48:94:5d:0d:9d:d3: a4:6a:a4:6e:31:9b:5e:73:d9:84:0c:f5:b6:2d:e8: 1f:03:fd:19:20:fb:17:a7:f7:1a:23:20:7b:bb:31: b5:e0:3c:db:06:47:d0:2d:06:93:f9:46:d9:01:4d: 64:f9:fe:4a:73:e8:05:b6:de:a8:56:92:c8:d3:38: 63:68:92:a5:2c:0d:52:e3:de:00:8d:9f:70:6c:9e: 0e:72:16:80:81:6a:0f:02:35:f0:56:32:c6:d7:a0: 81:ff:bd:64:ec:cf:8b:9b:f5:9e:29:de:b0:78:ff: d8:1d:0b:1b:21:de:a4:30:69:e6:1a:d4:d5:54:d2: ee:a4:fb:4e:4f:e9:a7:df:1e:be:74:6b:59:11:07: ee:48:ab:07:4c:d9:cc:58:65:ab:f9:b3:8d:67:74: e6:1f:2d:f6:0c:a2:4f:bc:0e:c1:4f:8b:d8:35:4e: 30:d9:91:6d:6e:33:ef:73:11:32:bd:05:57:ec:25: 57:ae:42:f3:88:70:be:1d:27:e7:bc:38:4b:a4:11: e2:46:fe:13:72:20:2b:cb:03:ae:35:2a:69:55:7d: 4a:aa:48:3a:d7:a7:5d:76:87:dd:ba:bb:0e:4a:f5: eb:57:2a:bb:a2:9d:60:3a:68:cf:9d:7f:d8:2a:9c: 4d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:62:2C:85:41:1F:53:3F:1C:B0:CC:6B:19:64:AF:B6:AE:A3:4D:3C X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:92:77:bb:0c:54:b8:af:36:f3:0e:77:cc:3e:07:9f:e7:b7: 42:63:6e:d3:cc:67:4f:da:73:b3:96:88:06:dd:65:fe:d8:7f: 7f:16:f9:1a:b8:b3:72:ca:b5:ab:73:a5:df:68:31:3c:34:f4: 6f:df:ec:2c:ef:0a:2f:f1:3f:79:3e:c3:89:94:b2:9c:a6:e0: 12:2e:88:0b:f0:6f:ce:a3:7b:31:eb:76:73:47:0a:75:d0:6e: f7:1c:98:3f:53:4e:fe:36:b5:b3:24:8b:99:31:d9:9a:95:d7: a1:2e:65:34:33:53:e5:59:48:2c:80:b8:f0:69:ea:d8:c1:28: b3:7d:76:d8:69:09:05:e9:41:3d:79:a9:43:51:89:1c:c9:c3: 08:48:2f:3b:9b:5a:fc:27:80:8e:8d:d7:8f:58:e0:dc:e7:10: 79:42:cc:a3:84:d2:35:56:48:ef:fe:be:a3:65:9f:80:a4:7b: 70:9a:83:e9:a9:f2:82:da:85:df:fc:3f:fa:af:fe:bf:31:63: 73:5f:37:85:67:a0:ed:92:b7:27:b9:48:b5:d8:db:77:8d:df: b2:40:9e:d2:9b:a7:f2:22:05:ad:06:3c:9a:20:1d:79:3f:f2: ee:ce:fd:16:24:7e:5f:09:8b:25:d2:56:49:98:98:3d:b1:93: 62:20:3c:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjUxMTAyMjAxMTQ2WhcNMjUxMTA5MjAxMTQ2WjAYMRYwFAYD VQQDEw02OTA3YmIwMi0wYjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7gTHLCZEC5dIlF0NndOkaqRuMZtec9mEDPW2LegfA/0ZIPsXp/caIyB7uzG1 4DzbBkfQLQaT+UbZAU1k+f5Kc+gFtt6oVpLI0zhjaJKlLA1S494AjZ9wbJ4OchaA gWoPAjXwVjLG16CB/71k7M+Lm/WeKd6weP/YHQsbId6kMGnmGtTVVNLupPtOT+mn 3x6+dGtZEQfuSKsHTNnMWGWr+bONZ3TmHy32DKJPvA7BT4vYNU4w2ZFtbjPvcxEy vQVX7CVXrkLziHC+HSfnvDhLpBHiRv4TciArywOuNSppVX1Kqkg616dddofdursO SvXrVyq7op1gOmjPnX/YKpxNhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpiLIVB H1M/HLDMaxlkr7auo008MB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCukne7DFS4rzbzDnfMPgef57dCY27TzGdP2nOzlogG3WX+2H9/Fvka uLNyyrWrc6XfaDE8NPRv3+ws7wov8T95PsOJlLKcpuASLogL8G/Oo3sx63ZzRwp1 0G73HJg/U07+NrWzJIuZMdmaldehLmU0M1PlWUgsgLjwaerYwSizfXbYaQkF6UE9 ealDUYkcycMISC87m1r8J4COjdePWODc5xB5QsyjhNI1Vkjv/r6jZZ+ApHtwmoPp qfKC2oXf/D/6r/6/MWNzXzeFZ6DtkrcnuUi12Nt3jd+yQJ7Sm6fyIgWtBjyaIB15 P/Luzv0WJH5fCYsl0lZJmJg9sZNiIDyY -----END CERTIFICATE-----Generated at Tue Nov 4 19:01:25 2025 by rpki-client