$ rpki-client -vvf rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft File: hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft (raw, json) Hash identifier: yxci5KhmMC5vozgFcbBmuvVy6txWMaOMZrSOJXZ6jZ8= Subject key identifier: 98:8D:FA:C5:32:5A:D3:15:80:0C:3C:61:15:4F:36:F2:EB:A3:F0:EB Authority key identifier: 87:19:7F:D5:46:DC:31:52:31:11:DD:93:90:B1:BA:3F:3D:70:26:56 Certificate issuer: /CN=A91982EF/serialNumber=87197FD546DC31523111DD9390B1BA3F3D702656 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft Manifest number: B5 Signing time: Mon 03 Nov 2025 06:14:33 +0000 Manifest this update: Mon 03 Nov 2025 06:14:32 +0000 Manifest next update: Mon 10 Nov 2025 06:14:32 +0000 Files and hashes: 1: hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl (hash: C8jX7fqQOIe/TnPopxm0m8mldN0zPHuG0qlm7cJCYEM=) 2: F33309A2B72011EFB3A5D772C4F9AE02.roa (hash: sPYK904wHIWBGcH5mDdbXVeuBhglZFt8rbG1ZnupH8c=) 3: 3A8C7518B72111EFA9A92F26C4F9AE02.roa (hash: X6YAYsczE/+jmZgDW2VDDKtWtCB2xcDLkZqRt9MnRaE=) 4: 98AEAB84B72111EF8A087D30C4F9AE02.roa (hash: EmgeGd2nbypcvg/UlNX2SuHf8VqNk8LmkdwfgXUQa7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:14:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982EF, serialNumber=87197FD546DC31523111DD9390B1BA3F3D702656 Validity Not Before: Nov 3 06:14:32 2025 GMT Not After : Nov 10 06:14:32 2025 GMT Subject: CN=69084849-c045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:79:27:2e:fd:6f:bf:b8:dc:cd:36:2e:37:f1: 8f:f4:a1:61:f5:a2:15:e2:a1:66:13:4a:d5:ba:10: c9:61:ef:a3:a7:05:bc:0a:ad:34:e2:03:41:69:5d: f1:f9:38:60:6f:8b:ef:86:0a:53:0a:e0:d2:bb:4f: 6d:27:e5:6f:c6:d6:f9:4f:84:f1:16:c1:42:fa:ce: 18:d5:ef:c7:aa:4f:f9:ca:a0:86:a5:5e:4f:46:08: 5d:6f:96:11:69:5d:e0:be:54:b4:d4:61:56:32:55: b8:6d:d9:6b:d9:f0:38:1b:cd:6a:1b:0f:98:b8:15: e7:24:f6:78:90:28:e9:02:a1:b4:20:d6:e8:6b:fb: 9d:d0:c8:17:57:6d:bc:af:00:6e:a3:0f:df:bc:55: a8:dc:f9:aa:dc:ae:4d:15:79:56:48:5d:12:c7:cf: 77:e3:99:31:a4:bc:9a:de:21:55:f9:30:dc:0a:0b: 0d:15:99:09:a0:7d:0d:f4:3c:f1:f9:e4:f9:27:69: ac:e2:0d:fe:68:4c:3f:db:ce:dd:5f:0d:65:30:f3: f4:f6:1c:9b:39:b7:8e:9d:e3:2d:ac:41:67:0a:e8: bb:43:c9:da:9d:b7:b1:ed:52:c8:77:57:d2:14:2d: 36:00:3b:e1:55:01:48:3c:57:70:7e:3e:74:00:71: 1b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:8D:FA:C5:32:5A:D3:15:80:0C:3C:61:15:4F:36:F2:EB:A3:F0:EB X509v3 Authority Key Identifier: keyid:87:19:7F:D5:46:DC:31:52:31:11:DD:93:90:B1:BA:3F:3D:70:26:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:30:98:11:5a:10:d4:3c:0f:8d:ed:33:5b:5a:61:da:5e:57: 8c:56:10:76:95:10:6e:a8:11:b0:ae:4f:5e:8f:2c:77:6c:c3: c8:47:22:df:9d:f9:b8:5f:2f:cc:20:75:e6:a1:b1:d5:09:27: 00:7f:6a:5d:b7:76:b0:f9:60:25:f1:bd:0b:bb:4f:95:97:49: f1:d2:3d:0b:26:5a:ce:23:bd:28:d3:6e:d0:6e:c1:d3:7d:3a: e3:2d:25:a5:4f:70:b0:d4:d6:bf:48:a9:78:38:d4:34:6c:79: bd:db:9d:7f:d4:cf:2b:d9:0d:ac:01:26:9f:31:71:77:68:12: 59:63:6a:99:ea:5f:7f:44:18:45:27:b8:78:9d:89:fe:f6:ba: 30:b5:31:d6:ca:c7:12:a0:31:cd:c1:a5:ad:d7:a3:dd:48:02: 09:f0:53:9f:23:52:4b:07:8f:51:31:2d:e5:22:24:5c:a5:37: b9:c1:6f:51:54:36:d6:40:48:c5:8b:c6:0c:2a:ab:a3:95:1d: 4e:cc:1a:c6:67:18:2b:b0:3d:73:3f:1f:7a:41:53:49:03:4b: a6:1a:82:35:a1:57:73:7b:36:43:df:ee:5a:b9:99:19:32:9b: 80:0d:b8:4c:f8:4f:50:ab:cf:36:30:98:28:23:44:6a:84:15: 6a:86:3c:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyRUYxMTAvBgNVBAUTKDg3MTk3RkQ1NDZEQzMxNTIzMTExREQ5MzkwQjFCQTNG M0Q3MDI2NTYwHhcNMjUxMTAzMDYxNDMyWhcNMjUxMTEwMDYxNDMyWjAYMRYwFAYD VQQDEw02OTA4NDg0OS1jMDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXknLv1vv7jczTYuN/GP9KFh9aIV4qFmE0rVuhDJYe+jpwW8Cq004gNBaV3x +Thgb4vvhgpTCuDSu09tJ+Vvxtb5T4TxFsFC+s4Y1e/Hqk/5yqCGpV5PRghdb5YR aV3gvlS01GFWMlW4bdlr2fA4G81qGw+YuBXnJPZ4kCjpAqG0INboa/ud0MgXV228 rwBuow/fvFWo3Pmq3K5NFXlWSF0Sx89345kxpLya3iFV+TDcCgsNFZkJoH0N9Dzx +eT5J2ms4g3+aEw/287dXw1lMPP09hybObeOneMtrEFnCui7Q8nanbex7VLId1fS FC02ADvhVQFIPFdwfj50AHEbbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiN+sUy WtMVgAw8YRVPNvLro/DrMB8GA1UdIwQYMBaAFIcZf9VG3DFSMRHdk5Cxuj89cCZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODJFRi9GQzY1MEI3MkI3 MUQxMUVGODk4MkM0MENDNEY5QUUwMi9oeGxfMVViY01WSXhFZDJUa0xHNlB6MXdK bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h4bF8xVWJjTVZJeEVkMlRrTEc2UHoxd0psWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODJFRi9GQzY1MEI3MkI3MUQxMUVGODk4MkM0MENDNEY5QUUwMi9oeGxfMVViY01W SXhFZDJUa0xHNlB6MXdKbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqMJgRWhDUPA+N7TNbWmHaXleMVhB2lRBuqBGwrk9ejyx3bMPIRyLf nfm4Xy/MIHXmobHVCScAf2pdt3aw+WAl8b0Lu0+Vl0nx0j0LJlrOI70o027QbsHT fTrjLSWlT3Cw1Na/SKl4ONQ0bHm9251/1M8r2Q2sASafMXF3aBJZY2qZ6l9/RBhF J7h4nYn+9rowtTHWyscSoDHNwaWt16PdSAIJ8FOfI1JLB49RMS3lIiRcpTe5wW9R VDbWQEjFi8YMKqujlR1OzBrGZxgrsD1zPx96QVNJA0umGoI1oVdzezZD3+5auZkZ MpuADbhM+E9Qq882MJgoI0RqhBVqhjwN -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:29 2025 by rpki-client