$ rpki-client -vvf rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft File: hlMymlHbxnnxvxfXkdg-x2ib564.mft (raw, json) Hash identifier: iPb+gqYjG5FI52SYLGzwU8IW6CXw85s8/SyAU+4GmnI= Subject key identifier: 73:A9:B7:E0:A9:77:08:92:E1:1C:9E:1C:3E:FE:16:E6:27:72:C0:64 Authority key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE Certificate issuer: /CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Certificate serial: 0879 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft Manifest number: 0872 Signing time: Sat 18 Oct 2025 21:46:34 +0000 Manifest this update: Sat 18 Oct 2025 21:46:33 +0000 Manifest next update: Sat 25 Oct 2025 21:46:33 +0000 Files and hashes: 1: hlMymlHbxnnxvxfXkdg-x2ib564.crl (hash: NmMVIH8Mpf6+N0ffvauoGF0Trfdw+WMJJotDdWUAKhI=) 2: 2611C806D1AA11EA82C4313FC4F9AE02.roa (hash: 8ta9HVc8kWnLyV4rQM+6TAEQnoWOLIl1eGvxCBdphDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2169 (0x879) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91177D4, serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Validity Not Before: Oct 18 21:46:33 2025 GMT Not After : Oct 25 21:46:33 2025 GMT Subject: CN=68f40aba-62bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bf:4c:19:c6:cd:82:0f:f2:11:10:34:42:e4: fb:d5:52:4f:41:98:c6:37:ae:48:44:f6:6c:d1:d3: 1e:44:e4:72:d4:f9:f2:c6:b1:85:e5:a0:ea:e2:be: ea:84:f9:24:d3:85:63:aa:5a:27:e4:3d:bf:10:ab: e5:b9:c8:9c:98:11:bc:c1:48:b2:c6:81:1f:2f:b3: 0d:cc:ff:0d:c5:9e:20:f8:c7:82:8d:91:53:59:8d: 22:68:ce:19:01:d6:42:1d:e4:8f:7e:bc:f7:46:0b: 69:9f:b1:c2:31:e3:74:f7:fa:2d:03:7b:94:37:fb: b1:d4:81:9e:d2:ff:81:da:a2:b0:fb:9d:18:3a:67: 5e:ed:67:34:22:81:cb:c7:54:68:d9:15:8e:5c:b0: 36:c1:29:85:4b:a3:76:b2:6f:7f:f8:02:1e:b7:1f: 34:20:88:42:fd:9a:10:d1:fc:8c:99:a4:13:be:e6: f8:b2:33:8f:06:53:48:89:60:bb:4d:86:95:93:46: 4c:a8:63:d9:72:7b:39:fa:b4:77:4b:c0:09:12:50: 07:83:76:93:a8:99:7d:fc:d7:20:30:29:8c:c8:ca: cd:e9:98:89:41:64:b9:00:77:07:a4:d2:41:a2:83: 06:96:0b:61:c7:ef:70:ff:37:28:81:f3:77:a5:ed: a7:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A9:B7:E0:A9:77:08:92:E1:1C:9E:1C:3E:FE:16:E6:27:72:C0:64 X509v3 Authority Key Identifier: keyid:86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:29:9e:0b:21:5c:25:37:ef:fd:cc:50:f2:17:83:28:fa:0e: 44:29:66:4d:7e:97:c2:bf:a6:2b:59:d4:ba:18:e1:9c:4e:9c: 19:4f:62:7b:a5:70:db:9b:b3:9f:d3:9c:4d:6b:0b:cd:99:84: 7e:cb:00:4e:f9:97:a0:d9:c2:65:4f:80:18:d8:36:ea:c5:93: c1:00:5d:73:e2:8c:36:cd:75:76:2c:ff:56:ab:90:22:15:2e: fe:0c:2b:cc:cd:87:83:38:36:a1:1c:88:79:95:68:fa:69:12: 38:e3:ab:04:42:a6:c2:52:c8:01:82:8a:bd:93:b0:4d:71:c0: 6b:ca:b6:ab:62:73:fa:53:af:02:49:a9:29:1a:54:c3:21:8b: e5:b9:81:5a:36:b5:b0:a2:f1:f4:8f:a0:0e:30:b5:cd:25:d0: 92:4d:30:d4:f8:08:f6:3c:96:f8:5d:71:9a:30:f7:77:84:2a: 25:c5:65:ae:33:9f:1f:33:88:5a:c8:10:70:5e:e3:89:3d:01: 8f:20:ec:de:09:ef:2f:f9:3c:56:51:cc:15:d3:6f:fd:47:4d: 41:e9:ed:a3:da:4b:14:21:b1:cf:cc:f6:74:ce:23:2e:1e:1a: 4b:dc:ff:e6:07:32:e3:36:4f:5f:37:2b:8b:0c:6e:20:99:b1: 39:33:ad:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdENzkxRDgzRUM3 Njg5QkU3QUUwHhcNMjUxMDE4MjE0NjMzWhcNMjUxMDI1MjE0NjMzWjAYMRYwFAYD VQQDEw02OGY0MGFiYS02MmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz79MGcbNgg/yERA0QuT71VJPQZjGN65IRPZs0dMeRORy1PnyxrGF5aDq4r7q hPkk04Vjqlon5D2/EKvlucicmBG8wUiyxoEfL7MNzP8NxZ4g+MeCjZFTWY0iaM4Z AdZCHeSPfrz3Rgtpn7HCMeN09/otA3uUN/ux1IGe0v+B2qKw+50YOmde7Wc0IoHL x1Ro2RWOXLA2wSmFS6N2sm9/+AIetx80IIhC/ZoQ0fyMmaQTvub4sjOPBlNIiWC7 TYaVk0ZMqGPZcns5+rR3S8AJElAHg3aTqJl9/NcgMCmMyMrN6ZiJQWS5AHcHpNJB ooMGlgthx+9w/zcogfN3pe2n4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOpt+Cp dwiS4RyeHD7+FuYncsBkMB8GA1UdIwQYMBaAFIZTMppR28Z58b8X15HYPsdom+eu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzdENC8yQ0VFRkUzNEQx QTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhubnh2eGZYa2RnLXgyaWI1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hsTXltbEhieG5ueHZ4ZlhrZGcteDJpYjU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzdENC8yQ0VFRkUzNEQxQTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhu bnh2eGZYa2RnLXgyaWI1NjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsKZ4LIVwlN+/9zFDyF4Mo+g5EKWZNfpfCv6YrWdS6GOGcTpwZT2J7 pXDbm7Of05xNawvNmYR+ywBO+Zeg2cJlT4AY2DbqxZPBAF1z4ow2zXV2LP9Wq5Ai FS7+DCvMzYeDODahHIh5lWj6aRI446sEQqbCUsgBgoq9k7BNccBryrarYnP6U68C SakpGlTDIYvluYFaNrWwovH0j6AOMLXNJdCSTTDU+Aj2PJb4XXGaMPd3hColxWWu M58fM4hayBBwXuOJPQGPIOzeCe8v+TxWUcwV02/9R01B6e2j2ksUIbHPzPZ0ziMu HhpL3P/mBzLjNk9fNyuLDG4gmbE5M60D -----END CERTIFICATE-----Generated at Mon Oct 20 10:43:31 2025 by rpki-client