$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: fieBmqas7ZPTpldgrcFygZAvSNszm/aBaKfwin738oQ= Subject key identifier: 69:16:98:B3:00:26:1B:3C:23:E6:6C:D6:B0:07:70:D9:D9:0A:41:0D Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: 71 Signing time: Sun 19 Oct 2025 10:14:50 +0000 Manifest this update: Sun 19 Oct 2025 10:14:49 +0000 Manifest next update: Sun 26 Oct 2025 10:14:49 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: qESttfl/RjfRnsd5+hiRwUSyjXUIkmUpbwetcjTQy3I=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: ysrTnUlxkF1TKTdjUl7uimFokZqxTbeHcLYRk7mAwOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Oct 19 10:14:49 2025 GMT Not After : Oct 26 10:14:49 2025 GMT Subject: CN=68f4ba1a-abf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:53:b6:2a:49:39:2d:d9:2c:30:b6:08:2a:e5: a4:b2:3b:db:d2:cb:f3:86:87:d0:e9:86:56:c1:f1: de:49:ca:9d:0c:2c:e5:dc:80:58:6a:8e:42:da:e7: 8d:b4:6c:50:40:7a:e5:cf:14:a7:69:75:d3:97:60: 5a:8a:ad:da:f1:d3:03:11:48:b0:29:6c:1f:d1:57: 62:d2:10:5b:86:12:22:59:85:7a:24:69:bc:8c:2a: d1:3c:29:04:41:79:c2:c6:7c:e5:9c:c4:34:98:92: 13:25:2f:a8:71:b0:a0:4d:bd:51:c8:69:34:c7:88: 10:aa:92:72:1f:1e:6f:c0:d1:c6:f7:8c:5c:85:a7: 26:8e:0c:81:c3:2b:1e:85:83:18:10:e7:2a:15:da: a4:7f:cb:bd:42:d1:75:61:32:91:7e:11:86:d0:27: 3c:8b:7d:b6:b8:39:44:43:d7:7b:ce:a9:f2:98:60: cf:81:6b:ae:38:ab:83:32:66:ba:2b:6b:13:b1:e5: a9:00:73:7a:d6:55:bf:8d:07:08:48:16:2a:df:7d: 64:6c:59:48:ee:1a:20:9a:e9:90:f0:62:3a:73:d0: 15:aa:05:30:87:76:c4:e8:64:d2:a7:e8:8e:bc:3f: 6e:ee:65:0f:7e:72:c4:e8:b5:c7:9f:32:6c:cd:9a: 94:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:16:98:B3:00:26:1B:3C:23:E6:6C:D6:B0:07:70:D9:D9:0A:41:0D X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:c6:21:b5:30:66:a6:1f:50:f4:38:11:e0:fd:25:49:37:7f: 1a:b2:e2:9a:20:4d:5b:b2:5c:e6:59:d7:ac:6e:60:11:9b:7a: 7a:1d:69:0e:6e:e5:9c:6e:e5:39:77:db:53:3d:99:b7:88:5b: 8c:57:d6:13:d0:c2:81:3f:66:c5:77:cc:d6:4f:e7:b2:f4:5c: d9:03:80:4a:77:3b:96:74:5b:c2:83:fa:93:55:2b:52:c8:71: e7:15:64:8d:dc:36:a5:af:dd:e9:d5:29:ca:5f:ca:60:62:4a: 4c:e5:36:73:ed:be:43:ab:42:90:e3:c2:4c:69:87:58:ae:23: 33:6c:4c:dd:7e:f1:14:bf:9c:a6:61:87:26:14:9c:fa:00:f1: 39:ca:23:43:91:5c:6e:55:b9:4b:8d:23:b8:eb:2a:e8:fc:fe: 3d:13:63:94:a5:fa:1e:f7:5c:31:6a:86:fb:ed:e4:65:df:1e: 7a:24:13:af:bd:6f:7f:76:a3:c4:42:7f:b3:97:0a:46:a5:46: 75:11:e8:39:9a:c6:d8:17:fd:9e:3c:8f:b7:0e:cc:dc:18:80: eb:5c:c2:75:75:0b:6b:58:47:6a:0f:aa:e2:cb:d7:cf:21:26: 34:b8:2b:86:2a:d9:51:61:84:38:35:fa:e6:4d:dc:93:16:43: 6e:03:81:16 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjdGQzExMC8GA1UEBRMoODU3NTA3RjFEOEIzOTE1Qzk1MTBENTA0NzAwRUNFODkw QjA2Njg1RjAeFw0yNTEwMTkxMDE0NDlaFw0yNTEwMjYxMDE0NDlaMBgxFjAUBgNV BAMTDTY4ZjRiYTFhLWFiZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/U7YqSTkt2Swwtggq5aSyO9vSy/OGh9DphlbB8d5Jyp0MLOXcgFhqjkLa5420 bFBAeuXPFKdpddOXYFqKrdrx0wMRSLApbB/RV2LSEFuGEiJZhXokabyMKtE8KQRB ecLGfOWcxDSYkhMlL6hxsKBNvVHIaTTHiBCqknIfHm/A0cb3jFyFpyaODIHDKx6F gxgQ5yoV2qR/y71C0XVhMpF+EYbQJzyLfba4OURD13vOqfKYYM+Ba644q4MyZror axOx5akAc3rWVb+NBwhIFirffWRsWUjuGiCa6ZDwYjpz0BWqBTCHdsToZNKn6I68 P27uZQ9+csTotcefMmzNmpSrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaRaYswAm Gzwj5mzWsAdw2dkKQQ0wHwYDVR0jBBgwFoAUhXUH8dizkVyVENUEcA7OiQsGaF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCN0ZDL0M3M0JBMTY0MDNB NzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaFhVSDhkaXprVnlWRU5VRWNBN09pUXNHYUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZC N0ZDL0M3M0JBMTY0MDNBNzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5 VkVOVUVjQTdPaVFzR2FGOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHTGIbUwZqYfUPQ4EeD9JUk3fxqy4pogTVuyXOZZ16xuYBGbenodaQ5u 5Zxu5Tl321M9mbeIW4xX1hPQwoE/ZsV3zNZP57L0XNkDgEp3O5Z0W8KD+pNVK1LI cecVZI3cNqWv3enVKcpfymBiSkzlNnPtvkOrQpDjwkxph1iuIzNsTN1+8RS/nKZh hyYUnPoA8TnKI0ORXG5VuUuNI7jrKuj8/j0TY5Sl+h73XDFqhvvt5GXfHnokE6+9 b392o8RCf7OXCkalRnUR6DmaxtgX/Z48j7cOzNwYgOtcwnV1C2tYR2oPquLL188h JjS4K4Yq2VFhhDg1+uZN3JMWQ24DgRY= -----END CERTIFICATE-----Generated at Tue Oct 21 00:04:01 2025 by rpki-client