$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft File: hsjX-0IuFSejmUSD0fne8sYKMHI.mft (raw, json) Hash identifier: NRvxO8Be+NPwgiBdB3Ypc0GKMmDpHdY9UzikyXv/94Y= Subject key identifier: 69:3A:2F:62:4C:EF:3E:46:0A:F4:8A:80:3A:20:75:18:FF:8C:AB:DE Authority key identifier: 86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 Certificate issuer: /CN=A91BEB11/serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Certificate serial: 34CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft Manifest number: 34CB Signing time: Sat 18 Oct 2025 15:02:48 +0000 Manifest this update: Sat 18 Oct 2025 15:02:47 +0000 Manifest next update: Sat 25 Oct 2025 15:02:47 +0000 Files and hashes: 1: hsjX-0IuFSejmUSD0fne8sYKMHI.crl (hash: /vdhjPB/2xd8rZUZ9tMR5hhTZJlBfTLKU3Gpb1n08WI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13515 (0x34cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEB11, serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Validity Not Before: Oct 18 15:02:47 2025 GMT Not After : Oct 25 15:02:47 2025 GMT Subject: CN=68f3ac18-b2b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:53:c5:8c:c9:55:73:94:8d:9b:b9:5b:e9:dd: a2:49:ee:61:d6:6e:f0:5a:8b:db:92:5d:86:0d:f5: a3:8e:c0:0a:77:ad:b3:0e:19:ad:21:54:31:69:a2: 99:45:75:dd:e0:a8:1d:83:1d:2d:7b:10:2b:9b:61: 52:cb:7d:45:eb:bb:d1:17:7a:ef:08:85:b7:57:0a: b0:a2:bc:f5:fc:1b:fe:33:b2:8b:02:22:99:77:c9: e3:f6:91:2c:a9:72:86:60:47:67:14:6d:c0:c6:d2: 5b:75:8a:0f:c7:21:8d:6e:70:c4:28:33:6b:23:6e: eb:2b:ef:fe:29:9d:2f:0b:cc:51:b8:2b:b6:38:5a: 0a:b8:aa:ab:cf:b2:e0:bf:9b:b4:d0:cd:f9:ce:41: 8e:ed:fc:e0:54:a7:60:be:7e:52:ad:b6:59:47:4f: 0d:10:b2:3a:89:28:d9:e9:d3:bb:ae:fe:90:bb:b8: d4:e1:95:f4:41:cc:9e:62:12:a7:73:b7:c1:bc:b8: af:b5:07:2d:36:54:38:ff:13:31:f1:de:ef:2c:77: 5b:1e:54:95:bc:25:ea:3b:20:73:46:37:db:2d:18: 92:59:95:a0:a4:4d:4e:47:0a:15:df:e5:83:6c:12: 4a:da:8c:06:3c:7b:a5:62:73:f6:f3:a5:ce:03:40: 78:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:3A:2F:62:4C:EF:3E:46:0A:F4:8A:80:3A:20:75:18:FF:8C:AB:DE X509v3 Authority Key Identifier: keyid:86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:f5:a4:93:28:63:92:10:65:04:a0:e8:68:1e:90:10:af:55: 31:89:81:89:ad:1e:46:64:09:6f:9e:82:6e:6c:fe:90:df:06: a8:15:2c:54:b0:fd:4f:3b:6a:73:c0:a3:39:b9:e5:b0:e7:19: 10:fe:2d:5a:44:99:3f:4d:34:8e:ae:f0:ed:d8:11:71:da:c2: e9:8c:6a:e3:99:32:99:79:18:fa:4e:e4:07:ac:56:e4:82:5d: cf:c6:ed:ab:9e:3a:50:6d:bd:f6:04:39:34:c1:11:41:a7:d2: 17:0a:8b:5a:09:13:32:7d:f4:a4:66:f2:f8:33:44:cf:b4:0d: d4:36:75:ea:d0:a5:5e:70:b8:88:80:c1:a8:a6:35:6a:86:b0: 46:11:9a:24:01:95:21:68:4d:a7:ac:ce:15:fc:d3:82:e0:a6: 3d:20:58:83:cf:fb:19:e2:37:b2:3d:9a:69:b8:69:b7:e5:a6: d1:0c:f9:40:b4:9b:83:24:c9:37:ac:a5:56:22:16:db:f6:af: ab:cd:cb:97:8e:59:ad:56:ee:7f:d2:f1:61:a9:09:53:61:53: bd:2b:c4:7a:59:96:81:59:62:24:f3:2a:2d:a3:8b:fb:50:06: df:3a:ef:d1:89:3e:17:ce:30:ce:7e:8f:6b:63:c5:7b:e0:fb: 62:44:61:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCMTExMTAvBgNVBAUTKDg2QzhEN0ZCNDIyRTE1MjdBMzk5NDQ4M0QxRjlERUYy QzYwQTMwNzIwHhcNMjUxMDE4MTUwMjQ3WhcNMjUxMDI1MTUwMjQ3WjAYMRYwFAYD VQQDEw02OGYzYWMxOC1iMmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VPFjMlVc5SNm7lb6d2iSe5h1m7wWovbkl2GDfWjjsAKd62zDhmtIVQxaaKZ RXXd4Kgdgx0texArm2FSy31F67vRF3rvCIW3Vwqworz1/Bv+M7KLAiKZd8nj9pEs qXKGYEdnFG3AxtJbdYoPxyGNbnDEKDNrI27rK+/+KZ0vC8xRuCu2OFoKuKqrz7Lg v5u00M35zkGO7fzgVKdgvn5SrbZZR08NELI6iSjZ6dO7rv6Qu7jU4ZX0QcyeYhKn c7fBvLivtQctNlQ4/xMx8d7vLHdbHlSVvCXqOyBzRjfbLRiSWZWgpE1ORwoV3+WD bBJK2owGPHulYnP286XOA0B4HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGk6L2JM 7z5GCvSKgDogdRj/jKveMB8GA1UdIwQYMBaAFIbI1/tCLhUno5lEg9H53vLGCjBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUIxMS85RjQzNTg3RTFE OUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZTZWptVVNEMGZuZThzWUtN SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzalgtMEl1RlNlam1VU0QwZm5lOHNZS01ISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUIxMS85RjQzNTg3RTFEOUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZT ZWptVVNEMGZuZThzWUtNSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu9aSTKGOSEGUEoOhoHpAQr1UxiYGJrR5GZAlvnoJubP6Q3waoFSxU sP1PO2pzwKM5ueWw5xkQ/i1aRJk/TTSOrvDt2BFx2sLpjGrjmTKZeRj6TuQHrFbk gl3Pxu2rnjpQbb32BDk0wRFBp9IXCotaCRMyffSkZvL4M0TPtA3UNnXq0KVecLiI gMGopjVqhrBGEZokAZUhaE2nrM4V/NOC4KY9IFiDz/sZ4jeyPZppuGm35abRDPlA tJuDJMk3rKVWIhbb9q+rzcuXjlmtVu5/0vFhqQlTYVO9K8R6WZaBWWIk8yoto4v7 UAbfOu/RiT4XzjDOfo9rY8V74PtiRGEK -----END CERTIFICATE-----Generated at Mon Oct 20 04:16:00 2025 by rpki-client