$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft File: hXm-LYNFaC8nrucGK71O92ZOVxs.mft (raw, json) Hash identifier: G66y5BUw3x2ttuPT+Ixb7plN5SwvAhH8hFQsrdoxJyI= Subject key identifier: FE:BB:E9:B0:46:CA:CE:E6:F3:36:E5:B9:34:01:35:A5:F7:81:3C:D1 Authority key identifier: 85:79:BE:2D:83:45:68:2F:27:AE:E7:06:2B:BD:4E:F7:66:4E:57:1B Certificate issuer: /CN=A91D0B6B/serialNumber=8579BE2D8345682F27AEE7062BBD4EF7664E571B Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft Manifest number: 58 Signing time: Sat 23 Aug 2025 07:28:02 +0000 Manifest this update: Sat 23 Aug 2025 07:28:01 +0000 Manifest next update: Sat 30 Aug 2025 07:28:01 +0000 Files and hashes: 1: hXm-LYNFaC8nrucGK71O92ZOVxs.crl (hash: piRT0XxBCgAzx5r2C8M0wgZ89CqB+bFn/l+GWLH8cTI=) 2: 73DC435A39F511F09F296862C4F9AE02.roa (hash: v8UVd7Qbh3NtEsQhX1pG9Dfe5py3W8ZuLzV2zz17/Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.crl rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:28:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B6B, serialNumber=8579BE2D8345682F27AEE7062BBD4EF7664E571B Validity Not Before: Aug 23 07:28:01 2025 GMT Not After : Aug 30 07:28:01 2025 GMT Subject: CN=68a96d82-dfbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:dd:8c:3f:70:c1:9b:4d:1c:10:72:bb:ff:05: 6f:1c:0e:19:c6:b2:3c:02:7b:60:81:6c:4a:8f:13: 31:67:30:26:d5:04:c3:3f:ed:a5:cc:af:d0:54:12: 46:ce:14:a7:74:7f:48:50:ca:f7:e4:e4:94:eb:b0: d3:da:57:b0:17:05:86:d8:b0:6d:d3:60:49:2a:37: 92:b3:40:bd:be:f5:f8:6e:c1:e8:c3:e4:9c:b6:22: 54:04:6f:66:8f:7d:e5:d4:50:a6:1a:8a:89:d9:80: 5a:1a:d9:8d:e2:3a:3d:83:60:64:6e:4b:11:db:1d: 18:3a:25:c1:ce:28:32:17:0e:30:43:99:c4:66:e3: a4:c8:16:11:fb:50:88:3a:03:96:78:06:8a:17:31: 65:db:4f:05:e6:f7:84:c3:2c:22:63:ae:03:f2:e5: a8:ad:7b:ee:d8:c0:21:10:14:84:8b:e3:5d:b4:0e: e9:39:3c:0b:6f:c0:3a:53:9a:79:1a:ed:7a:10:54: 22:1e:43:d0:bd:61:a7:ae:50:24:75:83:69:be:5d: d5:c5:20:99:a4:61:4e:a5:ba:99:79:17:97:9c:cc: 17:b7:56:f0:f2:ff:db:78:0f:64:62:eb:05:1d:85: 12:a5:bc:93:cb:97:03:5e:f2:f4:e4:69:c1:22:96: 36:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:BB:E9:B0:46:CA:CE:E6:F3:36:E5:B9:34:01:35:A5:F7:81:3C:D1 X509v3 Authority Key Identifier: keyid:85:79:BE:2D:83:45:68:2F:27:AE:E7:06:2B:BD:4E:F7:66:4E:57:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:09:cf:de:17:d0:30:0b:ea:41:ca:e9:4a:20:d8:e6:80:7e: 52:d0:c0:4a:16:38:d8:13:0a:39:74:48:54:18:8d:0a:ea:5a: de:d7:81:e4:69:7b:b5:dd:54:3b:2c:cc:ac:8e:c5:16:3a:59: 3f:43:7d:28:22:06:c9:e7:a3:af:e4:32:2e:67:9c:d4:2f:4d: 34:03:c4:f3:96:4e:94:6c:ce:c0:f3:0d:8e:3c:3b:21:ea:15: cc:3c:f5:93:a8:e0:07:63:e5:6e:6d:be:f7:3e:e8:60:52:e1: 6a:eb:c8:24:00:e8:3d:4d:e7:00:02:1e:1b:4a:35:70:68:67: da:59:1f:18:56:b7:29:e2:81:81:25:1b:c1:3e:f6:8e:bd:65: 29:be:bc:c8:d5:90:5f:2d:e1:e5:eb:d9:91:d5:92:6b:fc:db: a9:d2:05:a6:40:df:62:61:e4:e7:5d:a5:0c:71:34:cd:d6:ff: 45:98:0f:9a:15:ff:48:6f:0b:0f:ad:79:dc:8d:55:84:a0:b2: ec:d5:f2:d2:4d:40:ae:53:93:67:7b:30:a0:f2:08:9b:f3:d0: a9:d2:b5:3d:bc:42:a1:81:67:84:0a:cf:5d:75:c8:6f:5b:36: 65:fc:e1:27:a5:3d:a9:58:25:83:65:4f:87:81:8f:69:5c:36: 6e:00:a4:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEI2QjExMC8GA1UEBRMoODU3OUJFMkQ4MzQ1NjgyRjI3QUVFNzA2MkJCRDRFRjc2 NjRFNTcxQjAeFw0yNTA4MjMwNzI4MDFaFw0yNTA4MzAwNzI4MDFaMBgxFjAUBgNV BAMTDTY4YTk2ZDgyLWRmYmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDy3Yw/cMGbTRwQcrv/BW8cDhnGsjwCe2CBbEqPEzFnMCbVBMM/7aXMr9BUEkbO FKd0f0hQyvfk5JTrsNPaV7AXBYbYsG3TYEkqN5KzQL2+9fhuwejD5Jy2IlQEb2aP feXUUKYaionZgFoa2Y3iOj2DYGRuSxHbHRg6JcHOKDIXDjBDmcRm46TIFhH7UIg6 A5Z4BooXMWXbTwXm94TDLCJjrgPy5aite+7YwCEQFISL4120Duk5PAtvwDpTmnka 7XoQVCIeQ9C9YaeuUCR1g2m+XdXFIJmkYU6lupl5F5eczBe3VvDy/9t4D2Ri6wUd hRKlvJPLlwNe8vTkacEiljYrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/rvpsEbK zubzNuW5NAE1pfeBPNEwHwYDVR0jBBgwFoAUhXm+LYNFaC8nrucGK71O92ZOVxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQjZCLzdFQzAwNzZDRkUz RjExRUY4RkEyNzc1MkM0RjlBRTAyL2hYbS1MWU5GYUM4bnJ1Y0dLNzFPOTJaT1Z4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFhtLUxZTkZhQzhucnVjR0s3MU85MlpPVnhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw QjZCLzdFQzAwNzZDRkUzRjExRUY4RkEyNzc1MkM0RjlBRTAyL2hYbS1MWU5GYUM4 bnJ1Y0dLNzFPOTJaT1Z4cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAMJz94X0DAL6kHK6Uog2OaAflLQwEoWONgTCjl0SFQYjQrqWt7XgeRp e7XdVDsszKyOxRY6WT9DfSgiBsnno6/kMi5nnNQvTTQDxPOWTpRszsDzDY48OyHq Fcw89ZOo4Adj5W5tvvc+6GBS4WrryCQA6D1N5wACHhtKNXBoZ9pZHxhWtynigYEl G8E+9o69ZSm+vMjVkF8t4eXr2ZHVkmv826nSBaZA32Jh5OddpQxxNM3W/0WYD5oV /0hvCw+tedyNVYSgsuzV8tJNQK5Tk2d7MKDyCJvz0KnStT28QqGBZ4QKz111yG9b NmX84SelPalYJYNlT4eBj2lcNm4ApFQ= -----END CERTIFICATE-----Generated at Sat Aug 23 19:39:24 2025 by rpki-client