$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft File: HAF157M3En5uwlH0Og0qxhMRv04.mft (raw, json) Hash identifier: m3tdRmy0dEedpsc/IlZ+yR8GTFq3HuaeVnwwPZYl1rw= Subject key identifier: 5B:62:14:37:DE:D9:88:0D:66:49:1B:D5:25:2A:D1:37:7C:6C:E3:5F Authority key identifier: 1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E Certificate issuer: /CN=A91E3584/serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Certificate serial: 34D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft Manifest number: 34D4 Signing time: Tue 04 Nov 2025 14:27:36 +0000 Manifest this update: Tue 04 Nov 2025 14:27:36 +0000 Manifest next update: Tue 11 Nov 2025 14:27:36 +0000 Files and hashes: 1: HAF157M3En5uwlH0Og0qxhMRv04.crl (hash: SCXubVH0VfPt48H65BBnrQroZhZUe5h6GDr2WyeI9Sc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:27:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13527 (0x34d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3584, serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Validity Not Before: Nov 4 14:27:36 2025 GMT Not After : Nov 11 14:27:36 2025 GMT Subject: CN=690a0d58-e7b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ef:f5:09:9e:bf:20:84:04:75:b4:30:73:20: 30:40:37:ad:de:b8:6c:eb:9b:a2:94:95:4e:13:9e: 56:09:ff:36:64:56:b6:a1:08:10:00:17:62:4d:be: 37:ea:4c:7b:5e:2e:0d:55:10:29:2b:79:0a:fe:71: 55:32:3d:5d:cc:4f:53:a5:79:f1:c2:2f:94:22:74: f2:72:f7:b2:b3:96:db:4a:91:53:e3:08:51:45:f4: 1d:b8:e4:01:d6:a4:8d:b8:13:6b:ed:a9:73:29:1f: 94:2c:46:ed:ca:46:6d:d1:7d:9a:0d:5c:81:16:50: 13:d5:07:45:c8:bb:79:7e:fa:fe:29:4e:38:ca:27: d4:2d:21:55:b6:60:c7:61:fa:12:69:0d:66:f2:de: 37:18:c2:35:60:d4:ba:a0:2c:01:d1:54:75:46:0e: 4a:7c:72:94:36:d4:eb:8c:66:d3:45:bf:24:96:32: 90:99:b2:31:0b:a2:ca:19:83:51:08:12:6b:b9:75: 90:4d:ee:23:47:ef:63:e1:84:f3:5d:cf:11:5b:0f: 02:8f:6d:31:e9:f5:e4:10:05:77:9d:8d:f1:94:46: ee:2d:f4:92:ab:47:06:e0:6e:45:24:4e:32:df:6e: ff:17:dc:f7:db:ad:7b:c8:e4:aa:b4:20:81:de:b1: 9d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:62:14:37:DE:D9:88:0D:66:49:1B:D5:25:2A:D1:37:7C:6C:E3:5F X509v3 Authority Key Identifier: keyid:1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:e5:35:50:27:03:c2:59:c8:33:b6:07:20:32:8d:5d:71:f9: 0a:43:b5:1a:e4:6e:0f:7b:04:48:55:31:bc:a5:59:85:45:a7: c5:9a:89:9b:d8:4c:bd:3b:0f:08:3a:5d:1d:01:23:2d:7a:f6: 09:4d:3d:53:20:93:ef:57:c8:fd:ac:e2:dd:bf:0c:5d:d6:a4: 6d:91:a7:6d:bf:76:c6:69:a8:ca:65:33:84:b6:35:2b:89:46: a8:7e:ee:b1:64:27:3a:2c:6e:11:55:45:21:2f:78:e5:de:d5: c2:64:c1:db:bf:5c:a6:fc:07:e6:b0:6c:45:08:77:1f:e9:b7: 82:8a:a8:bd:5b:54:a5:03:3e:2e:68:34:3e:b4:05:d4:45:01: 52:6c:48:5a:dc:5d:bf:8a:b5:60:97:cc:ce:60:f5:2a:fa:1e: 05:bf:61:d2:51:00:a5:fd:2b:54:25:d1:3a:3e:4f:cf:16:71: 22:5c:c7:13:03:30:d3:59:cb:99:df:87:3b:98:30:6e:d6:97: 5d:e9:02:9f:36:51:e6:ce:e7:a9:bb:fe:bb:11:b2:82:30:41: 54:58:98:b5:45:6f:30:26:57:97:46:2f:0b:18:0e:1b:23:18: 7b:40:a4:32:c6:02:71:f2:16:a1:d9:0b:f9:2c:2e:40:9f:fe: 3c:ff:e1:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM1ODQxMTAvBgNVBAUTKDFDMDE3NUU3QjMzNzEyN0U2RUMyNTFGNDNBMEQyQUM2 MTMxMUJGNEUwHhcNMjUxMTA0MTQyNzM2WhcNMjUxMTExMTQyNzM2WjAYMRYwFAYD VQQDEw02OTBhMGQ1OC1lN2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5O/1CZ6/IIQEdbQwcyAwQDet3rhs65uilJVOE55WCf82ZFa2oQgQABdiTb43 6kx7Xi4NVRApK3kK/nFVMj1dzE9TpXnxwi+UInTycveys5bbSpFT4whRRfQduOQB 1qSNuBNr7alzKR+ULEbtykZt0X2aDVyBFlAT1QdFyLt5fvr+KU44yifULSFVtmDH YfoSaQ1m8t43GMI1YNS6oCwB0VR1Rg5KfHKUNtTrjGbTRb8kljKQmbIxC6LKGYNR CBJruXWQTe4jR+9j4YTzXc8RWw8Cj20x6fXkEAV3nY3xlEbuLfSSq0cG4G5FJE4y 327/F9z32617yOSqtCCB3rGd5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtiFDfe 2YgNZkkb1SUq0Td8bONfMB8GA1UdIwQYMBaAFBwBdeezNxJ+bsJR9DoNKsYTEb9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzU4NC9EMUExMjk0NjFE ODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0VuNXV3bEgwT2cwcXhoTVJ2 MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBRjE1N00zRW41dXdsSDBPZzBxeGhNUnYwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzU4NC9EMUExMjk0NjFEODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0Vu NXV3bEgwT2cwcXhoTVJ2MDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC45TVQJwPCWcgztgcgMo1dcfkKQ7Ua5G4PewRIVTG8pVmFRafFmomb 2Ey9Ow8IOl0dASMtevYJTT1TIJPvV8j9rOLdvwxd1qRtkadtv3bGaajKZTOEtjUr iUaofu6xZCc6LG4RVUUhL3jl3tXCZMHbv1ym/AfmsGxFCHcf6beCiqi9W1SlAz4u aDQ+tAXURQFSbEha3F2/irVgl8zOYPUq+h4Fv2HSUQCl/StUJdE6Pk/PFnEiXMcT AzDTWcuZ34c7mDBu1pdd6QKfNlHmzuepu/67EbKCMEFUWJi1RW8wJleXRi8LGA4b Ixh7QKQyxgJx8hah2Qv5LC5An/48/+Eg -----END CERTIFICATE-----Generated at Wed Nov 5 00:56:55 2025 by rpki-client