$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft File: HUA-MjAeWHgKBwV8syty7K9G19k.mft (raw, json) Hash identifier: iHZiWIJF1kV1f77BYuqVWkyOCweuU1pHtCH2jQAyqgw= Subject key identifier: AA:44:CE:49:FB:A5:2D:3E:F1:74:0F:44:B2:CC:AB:62:4A:26:A6:20 Authority key identifier: 1D:40:3E:32:30:1E:58:78:0A:07:05:7C:B3:2B:72:EC:AF:46:D7:D9 Certificate issuer: /CN=A91FA645/serialNumber=1D403E32301E58780A07057CB32B72ECAF46D7D9 Certificate serial: 041E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUA-MjAeWHgKBwV8syty7K9G19k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft Manifest number: 0413 Signing time: Mon 03 Nov 2025 00:21:59 +0000 Manifest this update: Mon 03 Nov 2025 00:21:58 +0000 Manifest next update: Mon 10 Nov 2025 00:21:58 +0000 Files and hashes: 1: HUA-MjAeWHgKBwV8syty7K9G19k.crl (hash: ZYREQ0NPHsn7XPhqTIS8z/q74dHkAwiRsCPMKG7KgRo=) 2: F4639D76356211F09A66C487C4F9AE02.roa (hash: PHU5aUvAOrBIKy7huYHffiKA6xh2xWAfjAUu0W1+Jtw=) 3: 76EBCD3E8C9911ECB051A327C4F9AE02.roa (hash: XE/ZbmFKgtcJ8d/T46yRFJ9hkQIFqFEENN93aFpVlI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.crl rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUA-MjAeWHgKBwV8syty7K9G19k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:21:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1054 (0x41e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA645, serialNumber=1D403E32301E58780A07057CB32B72ECAF46D7D9 Validity Not Before: Nov 3 00:21:58 2025 GMT Not After : Nov 10 00:21:58 2025 GMT Subject: CN=6907f5a7-f936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f6:e7:27:52:14:17:51:fc:15:87:a9:f8:7c: 66:77:11:91:69:4d:81:ab:c0:57:01:55:b9:0c:60: 70:3d:44:c2:68:75:2c:09:61:2f:28:cd:5b:6f:bf: d1:63:e8:a7:18:ec:22:e7:b5:8a:ed:93:0e:8f:bd: cb:f3:9d:7a:53:20:e8:c1:2f:1f:99:69:9d:bb:f4: ca:c4:73:d9:9e:09:e4:84:ea:7e:70:bd:a6:f2:d2: cd:43:34:8c:6b:f8:4a:ea:7d:49:12:0c:b5:1b:1e: f7:43:ca:8c:a5:8e:c0:05:c4:10:09:fc:80:28:60: b2:9d:d4:c3:e7:df:ba:28:c6:b0:a9:ba:9a:09:dc: 7d:e9:20:49:68:b4:8c:43:72:bf:1c:24:fb:a6:e6: 53:32:a4:5c:40:62:6e:89:f9:17:6c:60:e1:14:7e: cd:27:90:d9:dd:ac:8d:a0:5f:c6:37:4a:f9:be:26: 8b:7d:bc:91:a8:e1:c7:9c:8d:ca:96:29:a2:3d:f1: 6d:a7:7b:64:38:e6:8b:53:db:35:e1:9e:47:2d:40: 3f:69:f0:16:ea:58:04:36:95:83:6b:fc:96:8d:45: ad:2b:7b:6d:9f:b0:3a:38:40:80:29:ba:68:3a:36: 2f:91:e7:21:56:bf:d8:99:10:ec:85:9f:02:bd:76: 39:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:44:CE:49:FB:A5:2D:3E:F1:74:0F:44:B2:CC:AB:62:4A:26:A6:20 X509v3 Authority Key Identifier: keyid:1D:40:3E:32:30:1E:58:78:0A:07:05:7C:B3:2B:72:EC:AF:46:D7:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUA-MjAeWHgKBwV8syty7K9G19k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:91:29:c8:fd:0e:d8:cb:0a:ce:06:81:d4:12:cb:c9:66:c8: 21:8e:14:20:57:c3:39:0d:69:6d:37:96:9a:16:f8:da:06:20: 9d:42:34:6e:d7:24:5a:96:95:36:83:19:f0:e3:d9:38:b4:6f: b3:93:9d:3c:b7:8f:d6:71:52:56:1c:49:38:4c:ad:da:65:c4: 4f:bf:0d:91:5e:8c:90:59:35:3b:bb:9b:d3:8b:20:88:26:0e: 4f:e0:82:fb:af:02:01:17:f2:c3:bc:3e:78:2d:01:e8:88:1d: ea:39:38:04:29:c6:c1:61:1e:15:c8:3f:34:88:60:07:61:0c: 60:5d:1d:c8:6e:2d:0e:3e:60:80:3b:ea:53:4d:5d:c9:8f:3d: 01:85:c3:2a:ea:e8:94:80:2c:30:1c:71:a2:b3:56:53:b6:63: f1:b7:92:23:71:d0:61:73:9d:45:06:ee:68:ee:84:23:46:8e: c0:62:88:76:3f:3d:f6:f7:2a:10:79:1b:6f:d9:9e:7b:de:a2: 98:75:ea:9c:1f:35:8e:03:6b:94:56:f1:bf:18:20:18:3f:af: 46:a9:20:8c:76:fa:1b:ab:fe:a9:ca:49:c0:68:f3:cd:19:e0: 3c:fb:b7:8e:e8:73:0f:09:fd:55:05:6c:53:ac:4f:9e:37:59: a7:d7:1e:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NDUxMTAvBgNVBAUTKDFENDAzRTMyMzAxRTU4NzgwQTA3MDU3Q0IzMkI3MkVD QUY0NkQ3RDkwHhcNMjUxMTAzMDAyMTU4WhcNMjUxMTEwMDAyMTU4WjAYMRYwFAYD VQQDEw02OTA3ZjVhNy1mOTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvbnJ1IUF1H8FYep+HxmdxGRaU2Bq8BXAVW5DGBwPUTCaHUsCWEvKM1bb7/R Y+inGOwi57WK7ZMOj73L8516UyDowS8fmWmdu/TKxHPZngnkhOp+cL2m8tLNQzSM a/hK6n1JEgy1Gx73Q8qMpY7ABcQQCfyAKGCyndTD59+6KMawqbqaCdx96SBJaLSM Q3K/HCT7puZTMqRcQGJuifkXbGDhFH7NJ5DZ3ayNoF/GN0r5viaLfbyRqOHHnI3K limiPfFtp3tkOOaLU9s14Z5HLUA/afAW6lgENpWDa/yWjUWtK3ttn7A6OECAKbpo OjYvkechVr/YmRDshZ8CvXY54wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpEzkn7 pS0+8XQPRLLMq2JKJqYgMB8GA1UdIwQYMBaAFB1APjIwHlh4CgcFfLMrcuyvRtfZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0NS9FMEQ5RjM2NDhD OTUxMUVDQUU0RjFEMjNDNEY5QUUwMi9IVUEtTWpBZVdIZ0tCd1Y4c3l0eTdLOUcx OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVQS1NakFlV0hnS0J3VjhzeXR5N0s5RzE5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0NS9FMEQ5RjM2NDhDOTUxMUVDQUU0RjFEMjNDNEY5QUUwMi9IVUEtTWpBZVdI Z0tCd1Y4c3l0eTdLOUcxOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzkSnI/Q7YywrOBoHUEsvJZsghjhQgV8M5DWltN5aaFvjaBiCdQjRu 1yRalpU2gxnw49k4tG+zk508t4/WcVJWHEk4TK3aZcRPvw2RXoyQWTU7u5vTiyCI Jg5P4IL7rwIBF/LDvD54LQHoiB3qOTgEKcbBYR4VyD80iGAHYQxgXR3Ibi0OPmCA O+pTTV3Jjz0BhcMq6uiUgCwwHHGis1ZTtmPxt5IjcdBhc51FBu5o7oQjRo7AYoh2 Pz329yoQeRtv2Z573qKYdeqcHzWOA2uUVvG/GCAYP69GqSCMdvobq/6pyknAaPPN GeA8+7eO6HMPCf1VBWxTrE+eN1mn1x4J -----END CERTIFICATE-----Generated at Tue Nov 4 16:32:50 2025 by rpki-client