$ rpki-client -vvf rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft File: hlMymlHbxnnxvxfXkdg-x2ib564.mft (raw, json) Hash identifier: kIeWjlX2NL5q2A08eStOpGQwWW6xIITl0OJS1OaVHGo= Subject key identifier: 19:DE:3B:00:A7:89:F7:D0:86:96:C8:E6:FB:49:47:18:7E:CA:54:60 Authority key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE Certificate issuer: /CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Certificate serial: 0882 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft Manifest number: 087B Signing time: Tue 04 Nov 2025 20:40:50 +0000 Manifest this update: Tue 04 Nov 2025 20:40:50 +0000 Manifest next update: Tue 11 Nov 2025 20:40:50 +0000 Files and hashes: 1: hlMymlHbxnnxvxfXkdg-x2ib564.crl (hash: dsx4KimZQc+7dv4NiEanq9YoNe59w3l8OZGfuHKnPxA=) 2: 2611C806D1AA11EA82C4313FC4F9AE02.roa (hash: 8ta9HVc8kWnLyV4rQM+6TAEQnoWOLIl1eGvxCBdphDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:40:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2178 (0x882) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91177D4, serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Validity Not Before: Nov 4 20:40:50 2025 GMT Not After : Nov 11 20:40:50 2025 GMT Subject: CN=690a64d2-5ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:80:9b:26:e0:3a:54:c8:3b:92:5e:d9:bd:98: 3e:b1:81:38:ca:c8:a5:fa:03:bd:d6:f4:a2:6e:f4: dd:ed:43:20:01:4e:8b:5f:71:9d:01:0c:0d:1b:9d: a7:bb:7e:3e:76:8f:28:c9:1d:ea:25:fb:c2:4f:ed: 3c:d3:e1:21:a9:2f:b6:16:26:95:94:cf:35:b2:4c: bd:5d:19:7c:52:f9:51:9e:8f:8a:55:2d:90:61:c5: 74:dd:60:33:a9:24:62:db:3d:37:58:83:5a:8b:5d: 5a:8f:3b:8b:e4:66:77:3b:01:ca:ab:a0:1a:4d:40: 5b:f9:a5:c1:7a:f8:fc:e0:c9:49:fa:42:cb:15:5e: bb:ee:22:41:51:66:9c:e9:49:9e:88:6d:82:00:52: 24:f1:dd:ad:86:33:4a:3c:b1:18:dc:d4:c8:7d:04: c9:e2:95:a5:e2:5f:51:e0:51:51:e0:7c:7d:95:38: b6:0d:43:8c:cc:ac:94:13:33:2a:34:21:61:3e:5d: ad:f5:23:e2:1c:c8:38:ae:56:ed:f8:c5:35:57:3d: f2:17:8a:79:77:d6:f4:bd:ee:50:fb:3e:1c:36:59: da:44:b0:ef:5f:2a:c6:11:f0:68:43:69:e2:60:0c: 7f:5a:ae:8e:6e:d0:29:01:ed:ff:41:71:5d:44:60: 2e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:DE:3B:00:A7:89:F7:D0:86:96:C8:E6:FB:49:47:18:7E:CA:54:60 X509v3 Authority Key Identifier: keyid:86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:62:55:49:2c:a1:cb:c9:82:8e:82:e3:1e:d7:e4:ab:63:54: 70:5e:20:fd:70:5f:53:d1:69:28:6a:37:70:3a:bf:5e:9b:85: 95:a4:be:9f:b7:be:2c:a7:71:88:39:dd:10:f8:41:27:cc:15: 61:c3:2a:43:06:49:67:87:5c:ea:c4:a2:db:ed:34:07:60:63: 5c:74:a0:8c:8a:48:98:dc:58:87:49:ad:30:da:d2:c8:c2:ac: 96:75:2c:d9:df:db:ea:04:f6:40:1b:36:27:2a:6b:94:d6:4b: e3:8e:57:b0:f1:41:39:a8:3c:f8:69:99:f9:81:cd:ba:6d:be: 4a:96:b5:c1:0d:44:ee:91:e3:a6:68:07:28:8a:2c:0f:a6:36: 8f:c5:31:7f:79:5b:6e:da:db:3b:4c:ab:44:e4:83:10:d0:96: fa:94:e4:d3:a3:7a:19:50:8a:64:ce:2f:e7:e3:79:54:76:ea: 81:aa:94:94:b5:a6:82:64:c5:40:d3:1f:1f:1f:e0:40:e5:ce: 84:18:d4:35:34:9c:aa:4c:39:c2:46:59:81:84:8a:b6:ac:aa: 17:0e:13:a5:9e:3c:0e:c8:51:71:ec:ac:19:8c:df:ac:d8:b4: af:13:fd:40:7f:c7:6b:89:d7:94:c1:60:c9:0a:bd:f5:fa:31: b3:d5:7c:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdENzkxRDgzRUM3 Njg5QkU3QUUwHhcNMjUxMTA0MjA0MDUwWhcNMjUxMTExMjA0MDUwWjAYMRYwFAYD VQQDEw02OTBhNjRkMi01ZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYCbJuA6VMg7kl7ZvZg+sYE4ysil+gO91vSibvTd7UMgAU6LX3GdAQwNG52n u34+do8oyR3qJfvCT+080+EhqS+2FiaVlM81sky9XRl8UvlRno+KVS2QYcV03WAz qSRi2z03WINai11ajzuL5GZ3OwHKq6AaTUBb+aXBevj84MlJ+kLLFV677iJBUWac 6UmeiG2CAFIk8d2thjNKPLEY3NTIfQTJ4pWl4l9R4FFR4Hx9lTi2DUOMzKyUEzMq NCFhPl2t9SPiHMg4rlbt+MU1Vz3yF4p5d9b0ve5Q+z4cNlnaRLDvXyrGEfBoQ2ni YAx/Wq6ObtApAe3/QXFdRGAujwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBneOwCn iffQhpbI5vtJRxh+ylRgMB8GA1UdIwQYMBaAFIZTMppR28Z58b8X15HYPsdom+eu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzdENC8yQ0VFRkUzNEQx QTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhubnh2eGZYa2RnLXgyaWI1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hsTXltbEhieG5ueHZ4ZlhrZGcteDJpYjU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzdENC8yQ0VFRkUzNEQxQTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhu bnh2eGZYa2RnLXgyaWI1NjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEYlVJLKHLyYKOguMe1+SrY1RwXiD9cF9T0WkoajdwOr9em4WVpL6f t74sp3GIOd0Q+EEnzBVhwypDBklnh1zqxKLb7TQHYGNcdKCMikiY3FiHSa0w2tLI wqyWdSzZ39vqBPZAGzYnKmuU1kvjjlew8UE5qDz4aZn5gc26bb5KlrXBDUTukeOm aAcoiiwPpjaPxTF/eVtu2ts7TKtE5IMQ0Jb6lOTTo3oZUIpkzi/n43lUduqBqpSU taaCZMVA0x8fH+BA5c6EGNQ1NJyqTDnCRlmBhIq2rKoXDhOlnjwOyFFx7KwZjN+s 2LSvE/1Af8drideUwWDJCr31+jGz1Xyx -----END CERTIFICATE-----Generated at Wed Nov 5 05:46:58 2025 by rpki-client