$ rpki-client -vvf rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft File: hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft (raw, json) Hash identifier: BflhEyxljsnnWDsMu5uOk6R3/AZBFI1JMLgE4Y0V4Bo= Subject key identifier: 33:AC:3B:88:0F:FF:53:AA:BF:11:EC:84:62:81:36:A6:AB:19:15:9A Authority key identifier: 87:19:7F:D5:46:DC:31:52:31:11:DD:93:90:B1:BA:3F:3D:70:26:56 Certificate issuer: /CN=A91982EF/serialNumber=87197FD546DC31523111DD9390B1BA3F3D702656 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft Manifest number: 64 Signing time: Sat 31 May 2025 06:45:29 +0000 Manifest this update: Sat 31 May 2025 06:45:29 +0000 Manifest next update: Sat 07 Jun 2025 06:45:29 +0000 Files and hashes: 1: hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl (hash: f74Wq9tjFf5BoGprjAv5936lbgHi0SB+l89sq9cNk0k=) 2: F33309A2B72011EFB3A5D772C4F9AE02.roa (hash: B6GTUBQJjZfy0L/2y0BwFYd9G60axGsfhhHtTmQD3Vw=) 3: 3A8C7518B72111EFA9A92F26C4F9AE02.roa (hash: MaCtkavFP9h6cbzbI+/48yQalN3EQ9/HSWusPsbFrP0=) 4: 98AEAB84B72111EF8A087D30C4F9AE02.roa (hash: 8ewBwE8XstXeeqmSvgrbIwTd2CEtwyCXsNRMX6ARDE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:45:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982EF, serialNumber=87197FD546DC31523111DD9390B1BA3F3D702656 Validity Not Before: May 31 06:45:29 2025 GMT Not After : Jun 7 06:45:29 2025 GMT Subject: CN=683aa589-493e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c9:7a:5c:4f:67:a7:0e:43:e1:6e:ce:2c:65: 07:54:79:56:6b:87:a1:6a:fe:6b:df:38:49:29:c7: 4c:3c:cb:06:c1:9d:00:dd:d2:72:49:a0:9c:a9:e1: 21:63:83:29:c4:ff:8d:76:29:4c:b2:fe:de:0d:51: d3:5d:f4:25:ee:57:ca:c5:3d:42:60:65:f7:1c:59: e0:d9:3f:92:82:99:59:ac:ed:08:db:61:e9:70:69: 5a:83:58:e0:cb:e8:bb:60:a4:bf:49:49:d4:eb:00: d9:93:c8:68:5a:30:ec:28:af:14:b6:9b:67:9d:e7: c9:ad:78:be:54:e1:6a:bf:30:5e:aa:c6:5f:a3:25: 3e:d8:8a:74:87:ef:05:ec:4a:cc:cb:97:c9:b8:cb: 50:3e:47:34:2c:18:c1:64:77:e6:13:e4:36:b2:92: 97:e0:21:57:00:5e:08:dd:4f:71:cb:fe:79:6d:96: a7:85:bd:37:a8:2a:41:0e:a7:43:00:1a:3c:87:93: 33:f1:c7:c2:11:72:2b:5c:ce:bf:e1:48:3e:26:1a: 2d:1d:c2:af:0b:f6:6b:1a:cf:9e:6d:32:24:2c:60: d9:34:de:5b:52:8a:b9:29:4a:73:37:37:d2:e7:e9: 4b:3d:8a:60:d3:f2:9f:3b:84:b8:f6:79:a3:a0:75: 20:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:AC:3B:88:0F:FF:53:AA:BF:11:EC:84:62:81:36:A6:AB:19:15:9A X509v3 Authority Key Identifier: keyid:87:19:7F:D5:46:DC:31:52:31:11:DD:93:90:B1:BA:3F:3D:70:26:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:66:96:b0:89:79:47:60:30:28:19:44:39:3e:b4:a7:d7:54: 6f:c6:fd:96:47:96:5d:93:62:ed:18:0b:47:84:d5:13:0f:3e: 2b:37:b9:ae:c5:87:6b:dd:31:0a:b2:93:1f:23:d8:36:b6:8a: f0:6e:6f:8a:d0:71:95:da:81:ae:e6:1a:5f:63:6c:d7:96:ba: 7e:48:08:eb:fa:f2:a8:6d:20:6e:3a:8c:a8:43:2c:5b:a4:19: 74:e2:8b:56:28:da:f0:af:6f:21:18:50:4f:b8:25:64:e4:04: 0c:07:8f:56:17:c1:fe:c0:31:e6:09:0d:2b:16:9d:2e:c0:fa: 6b:00:2b:78:d4:99:75:35:36:d5:8d:19:bc:32:f3:1d:90:9b: 07:45:29:f1:03:c7:13:1a:c1:6a:23:24:64:83:e9:0d:51:68: ea:8e:bd:44:f9:5d:97:d1:78:53:8f:56:d9:fe:00:34:63:f7: d2:6e:71:99:87:08:06:58:a7:76:e2:ce:fb:cf:c1:9d:7c:07: e8:ae:c3:11:86:95:60:27:0f:ff:03:6b:6f:ce:97:77:fb:03: 1f:65:15:b2:ca:87:7d:36:ea:42:3d:13:ea:00:1b:9e:9d:24: 28:16:33:fd:fe:81:bb:6e:1e:5b:7d:24:a2:97:be:85:ec:33: 52:a3:dd:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODJFRjExMC8GA1UEBRMoODcxOTdGRDU0NkRDMzE1MjMxMTFERDkzOTBCMUJBM0Yz RDcwMjY1NjAeFw0yNTA1MzEwNjQ1MjlaFw0yNTA2MDcwNjQ1MjlaMBgxFjAUBgNV BAMTDTY4M2FhNTg5LTQ5M2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsyXpcT2enDkPhbs4sZQdUeVZrh6Fq/mvfOEkpx0w8ywbBnQDd0nJJoJyp4SFj gynE/412KUyy/t4NUdNd9CXuV8rFPUJgZfccWeDZP5KCmVms7QjbYelwaVqDWODL 6LtgpL9JSdTrANmTyGhaMOworxS2m2ed58mteL5U4Wq/MF6qxl+jJT7YinSH7wXs SszLl8m4y1A+RzQsGMFkd+YT5DaykpfgIVcAXgjdT3HL/nltlqeFvTeoKkEOp0MA GjyHkzPxx8IRcitczr/hSD4mGi0dwq8L9msaz55tMiQsYNk03ltSirkpSnM3N9Ln 6Us9imDT8p87hLj2eaOgdSA7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUM6w7iA// U6q/EeyEYoE2pqsZFZowHwYDVR0jBBgwFoAUhxl/1UbcMVIxEd2TkLG6Pz1wJlYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4MkVGL0ZDNjUwQjcyQjcx RDExRUY4OTgyQzQwQ0M0RjlBRTAyL2h4bF8xVWJjTVZJeEVkMlRrTEc2UHoxd0ps WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaHhsXzFVYmNNVkl4RWQyVGtMRzZQejF3SmxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 MkVGL0ZDNjUwQjcyQjcxRDExRUY4OTgyQzQwQ0M0RjlBRTAyL2h4bF8xVWJjTVZJ eEVkMlRrTEc2UHoxd0psWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC1mlrCJeUdgMCgZRDk+tKfXVG/G/ZZHll2TYu0YC0eE1RMPPis3ua7F h2vdMQqykx8j2Da2ivBub4rQcZXaga7mGl9jbNeWun5ICOv68qhtIG46jKhDLFuk GXTii1Yo2vCvbyEYUE+4JWTkBAwHj1YXwf7AMeYJDSsWnS7A+msAK3jUmXU1NtWN Gbwy8x2QmwdFKfEDxxMawWojJGSD6Q1RaOqOvUT5XZfReFOPVtn+ADRj99JucZmH CAZYp3bizvvPwZ18B+iuwxGGlWAnD/8Da2/Ol3f7Ax9lFbLKh3026kI9E+oAG56d JCgWM/3+gbtuHlt9JKKXvoXsM1Kj3TM= -----END CERTIFICATE-----Generated at Sat May 31 17:30:25 2025 by rpki-client