$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: 0LK4BCoOSz9B/o08ndOYK9g5deV6HDyl7WgGtbQ7Fgc= Subject key identifier: 59:DD:CD:77:2C:79:C0:89:01:01:D5:F8:2A:D4:54:59:1B:3C:B1:68 Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: 72 Signing time: Thu 23 Oct 2025 09:01:37 +0000 Manifest this update: Thu 23 Oct 2025 09:01:37 +0000 Manifest next update: Thu 30 Oct 2025 09:01:37 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: QbDrmepUJaPRNi7lf4eYvruvrYVoBraVDSeBhcGHdyI=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: ysrTnUlxkF1TKTdjUl7uimFokZqxTbeHcLYRk7mAwOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 09:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Oct 23 09:01:37 2025 GMT Not After : Oct 30 09:01:37 2025 GMT Subject: CN=68f9eef1-2d30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:23:62:5a:5a:13:b9:19:ac:70:6c:81:c1:e1: 8c:c5:7b:91:0f:d6:e4:5a:f8:00:7b:f9:5f:6f:8b: 6d:53:3c:4b:3b:03:97:c2:52:17:cf:c5:ca:f1:63: 48:76:e1:94:6b:45:34:92:1a:7f:e8:61:bd:88:0f: 74:87:87:fc:22:01:01:cc:d3:4b:b1:6c:4c:e5:89: 55:8d:18:2a:6b:c2:0f:fd:e2:88:84:40:a6:b0:94: 87:08:bb:a4:7e:54:96:03:98:56:73:01:31:98:62: 45:e9:86:7b:1e:49:6a:0b:eb:b4:bf:bb:66:a7:23: c7:a0:c7:18:53:a5:f0:ef:41:73:fc:37:0f:45:57: eb:9a:f2:06:98:be:27:47:1b:c2:9a:f1:fc:db:46: e3:fb:53:12:54:10:63:6f:16:d6:b7:37:b9:cc:ed: c6:a8:1d:ea:e5:1c:8f:02:5d:8d:35:91:29:6c:f1: d5:e6:38:45:2c:cd:3d:bc:a4:98:d1:42:68:79:05: 96:72:f4:51:62:a3:b6:3b:49:10:09:50:b7:7d:e8: 63:ec:b1:b7:de:78:fe:74:35:2d:b0:01:60:09:01: 5e:a9:54:19:b5:f1:0c:65:78:ac:c6:dd:05:a0:c0: 90:92:7e:4d:39:13:f2:12:ec:81:9e:35:96:2b:eb: d8:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:DD:CD:77:2C:79:C0:89:01:01:D5:F8:2A:D4:54:59:1B:3C:B1:68 X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:83:c7:df:b4:5d:57:db:ef:8a:3b:ea:d4:c8:ad:6e:8c:d9: 64:39:15:3d:95:9c:d3:e2:6d:65:c9:3c:2e:18:6c:de:84:26: 1a:2c:cf:04:f1:1c:dd:f4:40:23:fe:0d:d1:33:4d:b8:aa:84: b0:96:b9:9f:61:31:78:d3:3a:e2:1b:bd:95:04:2a:13:23:1b: 27:b7:67:aa:c6:e0:07:f4:aa:c1:5c:3f:eb:3e:a1:47:6b:45: 84:9f:b3:90:82:f4:d8:6b:9a:97:00:c8:cf:1b:2b:c2:de:ce: 9f:82:d1:31:e9:0d:cd:c3:d1:55:18:c8:1f:b2:82:bc:ea:37: 34:8e:da:19:bc:a8:2b:17:49:72:bf:76:39:5b:22:47:18:79: 5e:41:f1:26:4b:c5:3a:28:ca:24:c8:88:45:f5:bf:65:3d:f2: 56:74:5f:89:a0:c8:0d:35:76:ec:79:ba:3b:a7:c2:16:fa:1c: ee:51:b8:d2:4f:59:24:e4:e8:ad:e6:7a:88:fa:10:93:4e:4f: 49:19:df:32:da:7d:e7:70:c4:6d:2a:35:ff:b8:fc:1e:1e:02: 28:c6:19:b4:d1:6c:c5:0d:53:15:cd:20:a2:4b:d4:40:98:17: 13:bc:6f:f1:19:ea:88:9c:dd:a8:78:4f:dd:d9:5c:22:f5:fc: ec:50:aa:4d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjdGQzExMC8GA1UEBRMoODU3NTA3RjFEOEIzOTE1Qzk1MTBENTA0NzAwRUNFODkw QjA2Njg1RjAeFw0yNTEwMjMwOTAxMzdaFw0yNTEwMzAwOTAxMzdaMBgxFjAUBgNV BAMTDTY4ZjllZWYxLTJkMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4I2JaWhO5GaxwbIHB4YzFe5EP1uRa+AB7+V9vi21TPEs7A5fCUhfPxcrxY0h2 4ZRrRTSSGn/oYb2ID3SHh/wiAQHM00uxbEzliVWNGCprwg/94oiEQKawlIcIu6R+ VJYDmFZzATGYYkXphnseSWoL67S/u2anI8egxxhTpfDvQXP8Nw9FV+ua8gaYvidH G8Ka8fzbRuP7UxJUEGNvFta3N7nM7caoHerlHI8CXY01kSls8dXmOEUszT28pJjR Qmh5BZZy9FFio7Y7SRAJULd96GPssbfeeP50NS2wAWAJAV6pVBm18QxleKzG3QWg wJCSfk05E/IS7IGeNZYr69gLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWd3Ndyx5 wIkBAdX4KtRUWRs8sWgwHwYDVR0jBBgwFoAUhXUH8dizkVyVENUEcA7OiQsGaF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCN0ZDL0M3M0JBMTY0MDNB NzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaFhVSDhkaXprVnlWRU5VRWNBN09pUXNHYUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZC N0ZDL0M3M0JBMTY0MDNBNzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5 VkVOVUVjQTdPaVFzR2FGOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGSDx9+0XVfb74o76tTIrW6M2WQ5FT2VnNPibWXJPC4YbN6EJhoszwTx HN30QCP+DdEzTbiqhLCWuZ9hMXjTOuIbvZUEKhMjGye3Z6rG4Af0qsFcP+s+oUdr RYSfs5CC9NhrmpcAyM8bK8Lezp+C0THpDc3D0VUYyB+ygrzqNzSO2hm8qCsXSXK/ djlbIkcYeV5B8SZLxTooyiTIiEX1v2U98lZ0X4mgyA01dux5ujunwhb6HO5RuNJP WSTk6K3meoj6EJNOT0kZ3zLafedwxG0qNf+4/B4eAijGGbTRbMUNUxXNIKJL1ECY FxO8b/EZ6oic3ah4T93ZXCL1/OxQqk0= -----END CERTIFICATE-----Generated at Fri Oct 24 00:01:17 2025 by rpki-client