$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft File: hXm-LYNFaC8nrucGK71O92ZOVxs.mft (raw, json) Hash identifier: Uy/MB34mo7RspPFDhta4w1CbXHnSZQGv0yZq2Uau2V8= Subject key identifier: 51:B2:2E:C0:D4:6A:D0:92:11:34:AB:38:89:68:EF:48:C8:81:CC:87 Authority key identifier: 85:79:BE:2D:83:45:68:2F:27:AE:E7:06:2B:BD:4E:F7:66:4E:57:1B Certificate issuer: /CN=A91D0B6B/serialNumber=8579BE2D8345682F27AEE7062BBD4EF7664E571B Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft Manifest number: 75 Signing time: Sun 19 Oct 2025 10:12:12 +0000 Manifest this update: Sun 19 Oct 2025 10:12:11 +0000 Manifest next update: Sun 26 Oct 2025 10:12:11 +0000 Files and hashes: 1: hXm-LYNFaC8nrucGK71O92ZOVxs.crl (hash: hVQKCl1DeloXTd+uMyXEKa5FfnG5xB1zAEkoZ42Xie4=) 2: 73DC435A39F511F09F296862C4F9AE02.roa (hash: v8UVd7Qbh3NtEsQhX1pG9Dfe5py3W8ZuLzV2zz17/Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.crl rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:12:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B6B, serialNumber=8579BE2D8345682F27AEE7062BBD4EF7664E571B Validity Not Before: Oct 19 10:12:11 2025 GMT Not After : Oct 26 10:12:11 2025 GMT Subject: CN=68f4b97b-86ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:17:35:b5:6a:60:d4:c1:bc:04:7c:49:50:ee: 6d:1c:ca:f8:1c:d9:b2:ca:ac:d5:d2:c9:c9:64:f0: 5d:af:cc:b9:d3:e1:76:17:dd:e7:1f:db:ee:81:7a: d4:f9:24:e9:a9:0e:33:e7:3a:b8:99:95:08:06:99: 18:81:d9:c0:d1:11:f0:52:0c:ae:f1:c8:ab:26:80: 9a:fe:26:3f:33:92:74:7d:e2:c1:0a:c4:1a:5e:9a: a4:3f:13:12:e7:21:4f:3f:1f:15:f5:da:f8:19:e1: 73:9e:8e:da:f6:db:ad:29:db:e2:96:de:60:23:24: e4:bf:bf:a6:a3:6b:e5:eb:71:01:1b:82:22:9b:f2: 47:06:d3:57:f5:63:ec:2e:f9:6d:cc:3a:2d:5a:cb: 19:a0:92:9b:2e:78:5f:a8:b3:67:dc:34:b1:33:ad: f1:ff:bc:d3:b5:f7:17:88:f8:e3:a5:99:fe:55:ad: 9b:ad:27:1e:f1:9f:3e:61:9b:8f:51:bd:33:49:9d: 1e:81:91:4d:59:4d:ea:1b:51:6c:24:6c:81:31:e7: b6:a1:66:92:41:30:db:c9:b5:79:00:16:35:b8:f7: 2e:83:6f:37:28:3d:ba:a3:ac:a6:12:dc:6e:b7:64: 8d:9b:8c:20:3c:e4:ae:1d:87:3c:d0:e5:ff:8f:18: 25:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B2:2E:C0:D4:6A:D0:92:11:34:AB:38:89:68:EF:48:C8:81:CC:87 X509v3 Authority Key Identifier: keyid:85:79:BE:2D:83:45:68:2F:27:AE:E7:06:2B:BD:4E:F7:66:4E:57:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:14:dd:03:39:31:fa:6c:29:d2:df:ff:c8:f6:77:49:d0:23: b0:40:44:b2:21:59:83:9c:e9:48:c1:6b:be:df:8a:23:c5:34: 40:04:dd:0a:c9:e6:1a:50:11:bb:65:9a:0e:15:8f:08:ee:d1: a9:00:6a:13:84:0f:fd:7a:93:f2:d2:fc:07:14:66:1e:15:a6: b4:8a:a5:c0:04:ff:6e:14:f9:6f:93:6d:8c:18:a7:b7:9b:cf: 4c:ac:98:2a:b8:3c:cc:76:3e:ea:76:bb:27:51:2e:ba:87:4f: 5c:db:e9:7b:07:1c:cc:5b:14:3c:76:e7:ee:f6:72:c7:08:c0: 5c:b5:04:dc:b8:17:89:e3:1d:bb:e4:a7:2c:3b:71:44:7b:66: 14:fb:7b:4a:23:45:9d:8a:c4:4f:be:f1:79:ce:59:3f:18:83: b7:9b:d4:80:18:dd:1b:e5:80:2d:e9:8f:c8:1e:27:84:12:a7: 48:fd:d8:ef:e7:c4:cb:fd:1c:53:a7:df:9a:27:8d:65:4b:e5: d5:ff:1d:0e:ea:34:f4:62:f5:b0:c9:a4:89:e9:ae:71:ba:30: 96:6c:0c:57:b3:fa:f6:38:de:0e:4c:49:20:cd:f9:0d:35:01: 99:9a:e9:83:93:9b:ee:14:19:e1:8b:03:d2:6c:9b:24:5a:3d: dc:90:63:32 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEI2QjExMC8GA1UEBRMoODU3OUJFMkQ4MzQ1NjgyRjI3QUVFNzA2MkJCRDRFRjc2 NjRFNTcxQjAeFw0yNTEwMTkxMDEyMTFaFw0yNTEwMjYxMDEyMTFaMBgxFjAUBgNV BAMTDTY4ZjRiOTdiLTg2YWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKFzW1amDUwbwEfElQ7m0cyvgc2bLKrNXSyclk8F2vzLnT4XYX3ecf2+6BetT5 JOmpDjPnOriZlQgGmRiB2cDREfBSDK7xyKsmgJr+Jj8zknR94sEKxBpemqQ/ExLn IU8/HxX12vgZ4XOejtr2260p2+KW3mAjJOS/v6aja+XrcQEbgiKb8kcG01f1Y+wu +W3MOi1ayxmgkpsueF+os2fcNLEzrfH/vNO19xeI+OOlmf5VrZutJx7xnz5hm49R vTNJnR6BkU1ZTeobUWwkbIEx57ahZpJBMNvJtXkAFjW49y6DbzcoPbqjrKYS3G63 ZI2bjCA85K4dhzzQ5f+PGCXZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUbIuwNRq 0JIRNKs4iWjvSMiBzIcwHwYDVR0jBBgwFoAUhXm+LYNFaC8nrucGK71O92ZOVxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQjZCLzdFQzAwNzZDRkUz RjExRUY4RkEyNzc1MkM0RjlBRTAyL2hYbS1MWU5GYUM4bnJ1Y0dLNzFPOTJaT1Z4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFhtLUxZTkZhQzhucnVjR0s3MU85MlpPVnhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw QjZCLzdFQzAwNzZDRkUzRjExRUY4RkEyNzc1MkM0RjlBRTAyL2hYbS1MWU5GYUM4 bnJ1Y0dLNzFPOTJaT1Z4cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHIU3QM5MfpsKdLf/8j2d0nQI7BARLIhWYOc6UjBa77fiiPFNEAE3QrJ 5hpQEbtlmg4Vjwju0akAahOED/16k/LS/AcUZh4VprSKpcAE/24U+W+TbYwYp7eb z0ysmCq4PMx2Pup2uydRLrqHT1zb6XsHHMxbFDx25+72cscIwFy1BNy4F4njHbvk pyw7cUR7ZhT7e0ojRZ2KxE++8XnOWT8Yg7eb1IAY3RvlgC3pj8geJ4QSp0j92O/n xMv9HFOn35onjWVL5dX/HQ7qNPRi9bDJpInprnG6MJZsDFez+vY43g5MSSDN+Q01 AZma6YOTm+4UGeGLA9JsmyRaPdyQYzI= -----END CERTIFICATE-----Generated at Mon Oct 20 09:35:02 2025 by rpki-client