$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft File: HNLU8yahhKSHvyKs14rVwGj0ZmE.mft (raw, json) Hash identifier: thhSDousbUzc1JOuI4mQoacUFUSPlqVTPAq6ONiHJGc= Subject key identifier: 22:C9:B5:70:E6:CF:48:CC:12:CE:63:BB:1B:94:66:2A:F0:09:20:03 Authority key identifier: 1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 Certificate issuer: /CN=A91F8177/serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft Manifest number: 53 Signing time: Mon 03 Nov 2025 07:15:40 +0000 Manifest this update: Mon 03 Nov 2025 07:15:40 +0000 Manifest next update: Mon 10 Nov 2025 07:15:40 +0000 Files and hashes: 1: HNLU8yahhKSHvyKs14rVwGj0ZmE.crl (hash: K3wDzQbK8FmMxYkLirnUAhuTRQtUUIY7DAUiQcQatj8=) 2: 447A88023DDC11F0ACD9F475C4F9AE02.roa (hash: RAa8qDITo259IkIrPotazGyLqrpj79/JGsviOOW/nx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:15:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8177, serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Validity Not Before: Nov 3 07:15:40 2025 GMT Not After : Nov 10 07:15:40 2025 GMT Subject: CN=6908569c-d7b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:59:4f:ed:ec:a5:75:68:ae:30:df:b7:0a:8b: 04:cd:b0:9b:04:c8:ca:f9:0d:da:a4:86:19:dd:0a: 3a:20:1a:79:ab:75:36:2d:92:c4:38:91:ff:d8:32: 79:03:c0:26:0b:c9:85:06:a7:e8:76:2c:17:a7:bd: bf:53:09:30:ce:fc:28:23:0f:a7:90:b9:45:b8:77: a7:28:51:e0:e1:77:6d:41:35:93:79:d1:88:a0:68: 31:8e:15:00:a6:0f:aa:35:37:51:09:d4:17:8c:d6: 65:67:1c:89:36:6d:0f:09:0e:b3:81:52:5b:a7:9a: c2:2c:31:72:4f:f4:db:ab:c3:42:24:4d:6c:43:be: 95:ca:e9:79:4c:ed:d4:29:4c:b3:78:c5:e4:49:4d: 86:3d:e5:4b:06:30:3a:4e:7f:2c:9c:f5:a3:82:29: d9:59:1c:c5:2b:96:ee:5a:c8:00:76:7f:8f:09:1c: bf:ba:70:d8:c8:b1:10:cf:df:63:79:dd:be:9c:8f: a5:b2:b4:94:05:2d:9b:89:62:e6:2f:5c:ae:64:27: 35:29:43:4c:fb:c0:a8:ab:90:1f:b2:74:29:9f:5a: 80:3a:4b:26:66:b7:e0:86:d8:58:a1:0c:65:92:e7: f1:3a:2e:ea:16:77:8b:a4:6b:c4:c8:5f:18:1b:60: 0a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:C9:B5:70:E6:CF:48:CC:12:CE:63:BB:1B:94:66:2A:F0:09:20:03 X509v3 Authority Key Identifier: keyid:1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:91:d7:65:4e:67:53:20:59:c1:f7:e7:5f:41:3e:2b:91:e9: dc:61:83:f6:f2:88:54:1a:04:17:b8:05:78:37:2d:a1:b9:51: 63:69:ea:86:83:d9:66:97:66:e0:9d:d0:80:3c:03:3b:16:9e: 0d:54:f6:91:56:07:cc:90:d2:05:b7:eb:42:2f:8a:84:44:72: 7f:bd:6c:a4:72:0c:f5:78:99:fe:b2:9a:77:05:9c:b0:49:5e: d9:8b:a0:d6:41:23:9a:aa:cd:3f:d4:15:1d:e2:29:a3:d2:06: 95:bc:ca:5e:25:ac:0a:95:57:25:95:6c:1c:7c:d5:e8:1f:79: 14:db:29:b1:0b:fd:67:89:b6:25:b9:c7:8e:e6:46:f4:b8:93: 12:0e:54:22:8c:00:b5:39:0b:ac:ce:6e:8a:c9:38:c3:10:6e: 7b:6d:11:cc:a9:24:e2:3e:34:e7:1d:8a:80:7d:2c:93:8e:b3: 1f:8b:2b:ff:a4:ed:e3:56:da:94:55:cc:ce:77:76:17:35:e0: dc:a8:dc:a3:2e:6d:61:e5:3d:2f:2e:89:62:0d:06:34:49:a6: 76:03:2d:e5:7f:eb:c5:6a:6d:4f:e6:54:7f:ed:42:15:24:07: 7d:a1:4c:79:0b:e1:d3:47:cc:d3:09:ae:d6:75:62:55:32:a1: c5:25:1b:13 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODE3NzExMC8GA1UEBRMoMUNEMkQ0RjMyNkExODRBNDg3QkYyMkFDRDc4QUQ1QzA2 OEY0NjY2MTAeFw0yNTExMDMwNzE1NDBaFw0yNTExMTAwNzE1NDBaMBgxFjAUBgNV BAMTDTY5MDg1NjljLWQ3YjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbWU/t7KV1aK4w37cKiwTNsJsEyMr5DdqkhhndCjogGnmrdTYtksQ4kf/YMnkD wCYLyYUGp+h2LBenvb9TCTDO/CgjD6eQuUW4d6coUeDhd21BNZN50YigaDGOFQCm D6o1N1EJ1BeM1mVnHIk2bQ8JDrOBUlunmsIsMXJP9Nurw0IkTWxDvpXK6XlM7dQp TLN4xeRJTYY95UsGMDpOfyyc9aOCKdlZHMUrlu5ayAB2f48JHL+6cNjIsRDP32N5 3b6cj6WytJQFLZuJYuYvXK5kJzUpQ0z7wKirkB+ydCmfWoA6SyZmt+CG2FihDGWS 5/E6LuoWd4uka8TIXxgbYAopAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIsm1cObP SMwSzmO7G5RmKvAJIAMwHwYDVR0jBBgwFoAUHNLU8yahhKSHvyKs14rVwGj0ZmEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MTc3LzhCQTNEOEM0M0RE QjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtTSHZ5S3MxNHJWd0dqMFpt RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE5MVTh5YWhoS1NIdnlLczE0clZ3R2owWm1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MTc3LzhCQTNEOEM0M0REQjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtT SHZ5S3MxNHJWd0dqMFptRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABqR12VOZ1MgWcH3519BPiuR6dxhg/byiFQaBBe4BXg3LaG5UWNp6oaD 2WaXZuCd0IA8AzsWng1U9pFWB8yQ0gW360IvioREcn+9bKRyDPV4mf6ymncFnLBJ XtmLoNZBI5qqzT/UFR3iKaPSBpW8yl4lrAqVVyWVbBx81egfeRTbKbEL/WeJtiW5 x47mRvS4kxIOVCKMALU5C6zOborJOMMQbnttEcypJOI+NOcdioB9LJOOsx+LK/+k 7eNW2pRVzM53dhc14Nyo3KMubWHlPS8uiWINBjRJpnYDLeV/68VqbU/mVH/tQhUk B32hTHkL4dNHzNMJrtZ1YlUyocUlGxM= -----END CERTIFICATE-----Generated at Tue Nov 4 08:16:15 2025 by rpki-client