$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft File: HQ2sEe2C41wjsMvv--4AYmOwmVc.mft (raw, json) Hash identifier: 1n2NUOU3cPa3lV8Tvw41paGNnOKRMSApuQDJpbVgNKw= Subject key identifier: AC:0B:43:4C:11:E2:24:2D:83:B6:94:95:6B:B6:44:77:28:84:83:D4 Authority key identifier: 1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 Certificate issuer: /CN=A91EA9C0/serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft Manifest number: 55 Signing time: Wed 05 Nov 2025 07:24:21 +0000 Manifest this update: Wed 05 Nov 2025 07:24:21 +0000 Manifest next update: Wed 12 Nov 2025 07:24:21 +0000 Files and hashes: 1: HQ2sEe2C41wjsMvv--4AYmOwmVc.crl (hash: Ux0HwcqljDdbRRYtsOnD7/c2kJTZ5x+ExWT3y+vJs6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9C0, serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Validity Not Before: Nov 5 07:24:21 2025 GMT Not After : Nov 12 07:24:21 2025 GMT Subject: CN=690afba5-ae2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e5:f0:fe:1c:53:81:a9:b2:11:f3:d9:b4:cc: 64:d0:e9:29:59:0a:f7:41:04:a0:57:ac:0b:d3:28: 2b:a5:8f:b8:a2:2c:2e:dc:21:f0:15:ff:24:c9:3f: d7:a9:c4:ce:cc:64:1e:e5:99:03:d8:6d:e4:03:9a: 3f:9b:d1:00:63:69:07:fa:80:13:67:56:2f:bc:a3: 58:7e:fc:04:6b:d4:6a:ae:e9:52:ad:81:82:a3:ee: 3e:a5:26:91:a8:bd:bb:86:01:a6:0b:93:99:5e:36: c2:e2:be:c9:71:cf:38:f8:72:27:f3:13:6a:1e:97: bf:e7:3a:66:f9:72:b2:c9:fa:08:22:4a:04:de:dc: 4d:41:fa:1d:7c:6c:75:e4:ec:ac:72:61:fa:0d:4e: 24:66:44:18:d4:5c:03:08:16:9b:9a:46:aa:bf:35: 75:32:a1:07:0d:9d:8f:43:71:d2:f7:72:1f:5e:1f: 6a:99:8e:52:17:97:cc:21:16:09:39:f9:c1:66:4f: ff:ad:46:ea:41:62:70:e5:c0:f2:25:13:a8:3d:77: 82:a7:ad:9f:57:a6:e4:21:71:13:56:57:f3:a4:b8: cc:83:1b:64:d6:cb:cd:43:6e:31:41:5f:d1:0b:cc: f6:6d:df:51:ea:eb:c3:6e:c9:17:5f:d1:bd:47:e0: dc:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:0B:43:4C:11:E2:24:2D:83:B6:94:95:6B:B6:44:77:28:84:83:D4 X509v3 Authority Key Identifier: keyid:1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:8f:fc:0c:a1:aa:83:93:da:6a:ad:71:3e:67:8e:66:68:13: 2d:94:c6:0e:d0:23:a4:44:c6:00:3b:92:4e:d5:a6:b5:72:b7: 1e:e0:15:22:df:9c:79:3b:61:32:df:98:57:03:80:d0:89:2a: bc:46:96:59:ed:d7:14:79:bb:39:c3:42:f3:28:a0:fe:d0:ff: 31:5d:14:6d:c3:0f:63:e7:42:5c:78:61:33:a1:48:9d:52:9a: 2b:82:24:e4:a5:f9:97:de:86:12:11:3a:3b:62:10:cd:e1:ed: 7b:68:0c:0f:09:fd:83:94:d5:67:0a:35:e1:a2:62:10:90:6e: 79:da:4d:65:e2:51:1f:56:06:87:ce:c6:b7:d2:fc:5b:61:4d: 47:87:fb:ac:97:c0:30:31:98:c5:30:4e:36:89:e9:2c:20:af: 7c:85:1a:f5:2c:15:75:a4:bf:0f:0b:08:9e:20:df:76:13:5a: 1a:98:70:26:21:85:97:ef:12:bf:d8:3f:13:ab:c5:94:42:06: 53:96:46:78:62:70:fd:33:4c:95:e5:0b:7c:bf:da:69:69:13: 98:33:db:85:06:2c:7a:fc:00:20:9b:aa:2b:ec:67:fe:8b:e4: c4:bf:3d:ee:7c:af:69:6d:51:c7:5b:12:91:f1:d1:0c:c5:5c: 91:d0:a0:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTlDMDExMC8GA1UEBRMoMUQwREFDMTFFRDgyRTM1QzIzQjBDQkVGRkJFRTAwNjI2 M0IwOTk1NzAeFw0yNTExMDUwNzI0MjFaFw0yNTExMTIwNzI0MjFaMBgxFjAUBgNV BAMTDTY5MGFmYmE1LWFlMmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDR5fD+HFOBqbIR89m0zGTQ6SlZCvdBBKBXrAvTKCulj7iiLC7cIfAV/yTJP9ep xM7MZB7lmQPYbeQDmj+b0QBjaQf6gBNnVi+8o1h+/ARr1Gqu6VKtgYKj7j6lJpGo vbuGAaYLk5leNsLivslxzzj4cifzE2oel7/nOmb5crLJ+ggiSgTe3E1B+h18bHXk 7KxyYfoNTiRmRBjUXAMIFpuaRqq/NXUyoQcNnY9DcdL3ch9eH2qZjlIXl8whFgk5 +cFmT/+tRupBYnDlwPIlE6g9d4KnrZ9XpuQhcRNWV/OkuMyDG2TWy81DbjFBX9EL zPZt31Hq68NuyRdf0b1H4NzZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrAtDTBHi JC2DtpSVa7ZEdyiEg9QwHwYDVR0jBBgwFoAUHQ2sEe2C41wjsMvv++4AYmOwmVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBOUMwLzVBRkIxNDhFMzg4 MjExRjA4Q0NCMTg2NkM0RjlBRTAyL0hRMnNFZTJDNDF3anNNdnYtLTRBWW1Pd21W Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFEyc0VlMkM0MXdqc012di0tNEFZbU93bVZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB OUMwLzVBRkIxNDhFMzg4MjExRjA4Q0NCMTg2NkM0RjlBRTAyL0hRMnNFZTJDNDF3 anNNdnYtLTRBWW1Pd21WYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHGP/AyhqoOT2mqtcT5njmZoEy2Uxg7QI6RExgA7kk7VprVytx7gFSLf nHk7YTLfmFcDgNCJKrxGllnt1xR5uznDQvMooP7Q/zFdFG3DD2PnQlx4YTOhSJ1S miuCJOSl+ZfehhIROjtiEM3h7XtoDA8J/YOU1WcKNeGiYhCQbnnaTWXiUR9WBofO xrfS/FthTUeH+6yXwDAxmMUwTjaJ6Swgr3yFGvUsFXWkvw8LCJ4g33YTWhqYcCYh hZfvEr/YPxOrxZRCBlOWRnhicP0zTJXlC3y/2mlpE5gz24UGLHr8ACCbqivsZ/6L 5MS/Pe58r2ltUcdbEpHx0QzFXJHQoFQ= -----END CERTIFICATE-----Generated at Wed Nov 5 10:28:51 2025 by rpki-client