$ rpki-client -vvf rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft File: hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft (raw, json) Hash identifier: 0WnmEbQl6b0ZK7CdAe4w6GhOcjF9hee+noRQfQsv/KA= Subject key identifier: 34:B2:C0:34:A7:EF:10:EA:48:93:ED:D2:8D:52:C8:74:6F:CF:9A:C4 Authority key identifier: 87:19:7F:D5:46:DC:31:52:31:11:DD:93:90:B1:BA:3F:3D:70:26:56 Certificate issuer: /CN=A91982EF/serialNumber=87197FD546DC31523111DD9390B1BA3F3D702656 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft Manifest number: 9F Signing time: Fri 19 Sep 2025 07:11:49 +0000 Manifest this update: Fri 19 Sep 2025 07:11:49 +0000 Manifest next update: Fri 26 Sep 2025 07:11:49 +0000 Files and hashes: 1: hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl (hash: ORMbpD93P/5B6MIfGG9WzOdzSx98pmcyUqNpF2DeSF8=) 2: F33309A2B72011EFB3A5D772C4F9AE02.roa (hash: sPYK904wHIWBGcH5mDdbXVeuBhglZFt8rbG1ZnupH8c=) 3: 3A8C7518B72111EFA9A92F26C4F9AE02.roa (hash: X6YAYsczE/+jmZgDW2VDDKtWtCB2xcDLkZqRt9MnRaE=) 4: 98AEAB84B72111EF8A087D30C4F9AE02.roa (hash: EmgeGd2nbypcvg/UlNX2SuHf8VqNk8LmkdwfgXUQa7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 07:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982EF, serialNumber=87197FD546DC31523111DD9390B1BA3F3D702656 Validity Not Before: Sep 19 07:11:49 2025 GMT Not After : Sep 26 07:11:49 2025 GMT Subject: CN=68cd0235-ef3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a8:99:64:c7:4b:2e:c6:1a:84:ed:b0:66:ce: 7c:91:62:4d:6f:fc:8a:02:d2:d1:2b:c6:41:99:61: e9:c0:1f:3b:4c:71:fc:01:cc:ca:70:e0:b2:59:75: b4:c1:64:32:3c:6c:32:72:d7:9d:61:21:a1:75:78: 95:c2:c6:2e:8f:07:ed:3f:56:dd:73:ed:fd:2f:75: f9:7c:89:4d:12:f3:15:f1:51:a0:cd:4b:68:8b:8b: 95:57:ec:17:b4:d9:5b:fc:65:d0:6f:ef:15:46:67: de:2e:16:0e:6b:59:08:0a:5d:db:23:7e:77:0a:54: d6:3d:a5:e0:9a:03:64:1b:7e:c1:84:a2:30:0c:31: f6:18:9c:ce:12:7c:2b:62:c4:db:5b:b5:59:fb:e6: f3:57:1f:1d:ab:0a:5c:38:3f:39:a7:90:1d:91:3b: b1:5f:b5:c6:7a:10:77:ce:04:47:31:7a:09:9c:7b: 90:e1:43:e6:d5:06:b0:fa:d6:09:79:2e:77:f7:fa: a4:8c:9e:11:21:71:79:a5:70:46:10:e1:4f:6e:11: 95:1d:20:05:57:1d:8d:e5:1e:b9:95:c1:fb:dd:ce: 0b:b1:7f:39:dd:ee:32:a5:89:e0:cb:96:93:0d:25: 05:25:63:6b:26:83:e6:6f:2c:f2:df:d6:08:39:60: 94:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:B2:C0:34:A7:EF:10:EA:48:93:ED:D2:8D:52:C8:74:6F:CF:9A:C4 X509v3 Authority Key Identifier: keyid:87:19:7F:D5:46:DC:31:52:31:11:DD:93:90:B1:BA:3F:3D:70:26:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:2d:7e:f7:1f:dc:f6:d2:f3:d3:7b:26:71:62:d9:d8:06:9f: b4:5c:3b:42:d5:e1:d1:b8:9b:45:bd:5d:82:39:e4:03:05:aa: b6:bf:98:9a:9f:2e:7b:30:c9:70:46:39:25:ea:c8:dc:b7:7c: 19:58:4f:3b:b5:03:69:70:25:44:b2:0e:08:92:d7:43:3d:f5: ce:b4:d5:88:4e:e0:81:eb:32:c4:2a:6f:9a:1a:ff:72:ec:f2: b2:b5:ca:ab:95:55:18:0a:3e:68:de:3c:34:c4:2f:4e:ce:bc: 1b:76:e8:b8:b8:1b:04:57:db:b0:ff:dc:1e:8f:59:eb:17:b0: 83:c3:fb:62:36:fb:b9:e9:c0:b6:04:68:b9:4a:54:56:b6:97: cb:ce:79:56:90:41:1a:d8:a6:a3:cb:86:8d:06:c0:4d:3e:57: a8:15:ad:ec:e2:44:d3:bf:7a:af:e3:f8:c8:a2:3c:d5:bf:49: 8a:38:f7:cb:90:de:d8:ad:e7:8a:74:08:3d:32:8d:5b:44:89: 99:8b:2c:61:9f:ae:5d:3b:fe:12:43:64:98:18:d5:e1:a4:be: 27:56:ee:e6:09:6a:ee:8e:d2:60:57:de:d4:97:ec:8f:0c:c7: b5:7f:ee:99:4d:20:60:dd:bf:8b:ca:96:25:c0:b3:cd:30:c9: 23:cd:08:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyRUYxMTAvBgNVBAUTKDg3MTk3RkQ1NDZEQzMxNTIzMTExREQ5MzkwQjFCQTNG M0Q3MDI2NTYwHhcNMjUwOTE5MDcxMTQ5WhcNMjUwOTI2MDcxMTQ5WjAYMRYwFAYD VQQDEw02OGNkMDIzNS1lZjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqiZZMdLLsYahO2wZs58kWJNb/yKAtLRK8ZBmWHpwB87THH8AczKcOCyWXW0 wWQyPGwyctedYSGhdXiVwsYujwftP1bdc+39L3X5fIlNEvMV8VGgzUtoi4uVV+wX tNlb/GXQb+8VRmfeLhYOa1kICl3bI353ClTWPaXgmgNkG37BhKIwDDH2GJzOEnwr YsTbW7VZ++bzVx8dqwpcOD85p5AdkTuxX7XGehB3zgRHMXoJnHuQ4UPm1Qaw+tYJ eS539/qkjJ4RIXF5pXBGEOFPbhGVHSAFVx2N5R65lcH73c4LsX853e4ypYngy5aT DSUFJWNrJoPmbyzy39YIOWCUXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDSywDSn 7xDqSJPt0o1SyHRvz5rEMB8GA1UdIwQYMBaAFIcZf9VG3DFSMRHdk5Cxuj89cCZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODJFRi9GQzY1MEI3MkI3 MUQxMUVGODk4MkM0MENDNEY5QUUwMi9oeGxfMVViY01WSXhFZDJUa0xHNlB6MXdK bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h4bF8xVWJjTVZJeEVkMlRrTEc2UHoxd0psWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODJFRi9GQzY1MEI3MkI3MUQxMUVGODk4MkM0MENDNEY5QUUwMi9oeGxfMVViY01W SXhFZDJUa0xHNlB6MXdKbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7LX73H9z20vPTeyZxYtnYBp+0XDtC1eHRuJtFvV2COeQDBaq2v5ia ny57MMlwRjkl6sjct3wZWE87tQNpcCVEsg4IktdDPfXOtNWITuCB6zLEKm+aGv9y 7PKytcqrlVUYCj5o3jw0xC9Ozrwbdui4uBsEV9uw/9wej1nrF7CDw/tiNvu56cC2 BGi5SlRWtpfLznlWkEEa2Kajy4aNBsBNPleoFa3s4kTTv3qv4/jIojzVv0mKOPfL kN7YreeKdAg9Mo1bRImZiyxhn65dO/4SQ2SYGNXhpL4nVu7mCWrujtJgV97Ul+yP DMe1f+6ZTSBg3b+LypYlwLPNMMkjzQjj -----END CERTIFICATE-----Generated at Fri Sep 19 09:08:40 2025 by rpki-client