$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft File: hxSXyIUOQWJXlcT42UXHs9BBbB8.mft (raw, json) Hash identifier: 7Q4dUDhGWgDpDyfmB8zD2huDuM9g6HCrj38JfdKhHNM= Subject key identifier: 1B:F2:AC:AA:3D:86:C8:83:40:A0:3F:BA:28:6E:49:FA:A7:EA:8C:18 Authority key identifier: 87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F Certificate issuer: /CN=A91C6825/serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F Certificate serial: 067A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft Manifest number: 0674 Signing time: Sun 02 Nov 2025 22:31:02 +0000 Manifest this update: Sun 02 Nov 2025 22:31:01 +0000 Manifest next update: Sun 09 Nov 2025 22:31:01 +0000 Files and hashes: 1: hxSXyIUOQWJXlcT42UXHs9BBbB8.crl (hash: x4ozrwJMo7O8GgIQu2gcucpSgLMm95VBWMU2cnu314g=) 2: 925B815E9ABE11EBA445A74FC4F9AE02.roa (hash: tc+HUzngZ7VVMdvUKEWM7ZZWawGnaExqZ4p3l2kRuv4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:31:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1658 (0x67a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6825, serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F Validity Not Before: Nov 2 22:31:01 2025 GMT Not After : Nov 9 22:31:01 2025 GMT Subject: CN=6907dba6-b4df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:06:3d:a1:a4:17:71:d7:b6:9b:25:d0:0b:ef: 33:90:1e:19:18:cc:f9:56:82:94:d1:bd:b8:3d:e8: 86:06:ec:8e:ad:99:b3:08:b9:17:0a:d9:8a:cf:6a: 20:23:03:0c:74:b7:ee:ec:5d:88:42:ca:25:6d:a1: 3b:d1:00:85:85:a6:d2:d9:4f:40:ad:96:b4:9a:51: 4f:a5:8d:ad:e9:56:52:fc:79:20:fd:43:48:ce:13: c5:36:74:4c:0e:a1:c5:80:93:bd:88:84:ac:57:27: c4:d7:93:12:3e:b0:2e:42:b9:65:df:2d:a0:83:31: 07:20:6d:56:6d:c7:04:4c:e8:bf:cb:be:b7:58:50: 03:44:5f:cc:e7:43:40:35:1b:b3:c5:21:05:9d:06: 80:fa:55:14:53:53:61:dd:9e:d7:6a:fb:5c:cb:b1: f4:a8:be:eb:fd:c9:ec:09:82:d4:7b:08:3e:3c:b6: 0d:45:f0:9f:f1:45:5d:5c:a0:5b:8b:52:48:93:39: ab:0a:44:17:69:01:c3:4b:3c:f7:24:c2:d5:6b:91: c1:e7:1e:d4:79:80:27:d7:9e:eb:8a:16:ea:c1:6f: 38:dd:d0:be:51:dd:9a:b7:e6:7c:82:a9:b4:b9:97: 36:cf:9e:04:f4:5e:d6:45:48:fe:29:57:62:62:46: 9f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:F2:AC:AA:3D:86:C8:83:40:A0:3F:BA:28:6E:49:FA:A7:EA:8C:18 X509v3 Authority Key Identifier: keyid:87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:90:58:b8:8d:bb:27:c5:42:2c:60:e4:3e:92:8f:84:4d:68: 44:21:fc:9e:d4:31:22:6b:6c:f1:f5:c4:23:45:c8:1c:d6:3d: 64:4b:86:31:38:41:65:eb:1b:3c:bd:9c:70:2b:1e:9b:55:02: 7e:5b:2c:35:fc:c8:65:07:6d:ed:34:39:30:b7:64:53:ad:e8: c4:19:5c:24:66:df:63:7b:33:03:99:1b:6f:62:4e:04:7a:a7: 27:9d:33:14:e7:53:5d:5f:74:f0:f9:5e:a1:3a:56:8b:2c:54: 34:cb:ca:77:33:bd:03:4b:71:3a:67:fd:30:43:53:d3:31:42: 1b:a5:bf:2e:3f:6d:60:b8:70:5e:02:4f:07:1c:07:21:23:37: 92:dc:66:41:68:99:b3:dd:5b:02:d3:cc:ab:fa:53:b1:f8:4e: 84:4d:cd:ce:31:e6:b2:74:59:ee:dc:83:3d:1a:fd:fd:16:9e: bd:c9:9f:9e:a6:5e:70:a4:e4:35:95:f0:ee:28:64:38:cb:d2: 5a:78:2f:8e:1e:12:a5:c6:aa:d7:60:90:06:fc:4d:ee:26:a7: f2:3f:12:bc:3c:35:90:45:37:5e:79:20:2c:d8:7f:74:e2:b8: 04:a4:d5:08:d9:c0:a5:c6:cf:c0:b2:3e:d0:59:64:2e:60:26: 3c:47:5a:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY4MjUxMTAvBgNVBAUTKDg3MTQ5N0M4ODUwRTQxNjI1Nzk1QzRGOEQ5NDVDN0Iz RDA0MTZDMUYwHhcNMjUxMTAyMjIzMTAxWhcNMjUxMTA5MjIzMTAxWjAYMRYwFAYD VQQDEw02OTA3ZGJhNi1iNGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQY9oaQXcde2myXQC+8zkB4ZGMz5VoKU0b24PeiGBuyOrZmzCLkXCtmKz2og IwMMdLfu7F2IQsolbaE70QCFhabS2U9ArZa0mlFPpY2t6VZS/Hkg/UNIzhPFNnRM DqHFgJO9iISsVyfE15MSPrAuQrll3y2ggzEHIG1WbccETOi/y763WFADRF/M50NA NRuzxSEFnQaA+lUUU1Nh3Z7Xavtcy7H0qL7r/cnsCYLUewg+PLYNRfCf8UVdXKBb i1JIkzmrCkQXaQHDSzz3JMLVa5HB5x7UeYAn157rihbqwW843dC+Ud2at+Z8gqm0 uZc2z54E9F7WRUj+KVdiYkafSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvyrKo9 hsiDQKA/uihuSfqn6owYMB8GA1UdIwQYMBaAFIcUl8iFDkFiV5XE+NlFx7PQQWwf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjgyNS8xQUE5MEZCNjlB QkMxMUVCOTAwQTE2NENDNEY5QUUwMi9oeFNYeUlVT1FXSlhsY1Q0MlVYSHM5QkJi QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h4U1h5SVVPUVdKWGxjVDQyVVhIczlCQmJCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjgyNS8xQUE5MEZCNjlBQkMxMUVCOTAwQTE2NENDNEY5QUUwMi9oeFNYeUlVT1FX SlhsY1Q0MlVYSHM5QkJiQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArkFi4jbsnxUIsYOQ+ko+ETWhEIfye1DEia2zx9cQjRcgc1j1kS4Yx OEFl6xs8vZxwKx6bVQJ+Wyw1/MhlB23tNDkwt2RTrejEGVwkZt9jezMDmRtvYk4E eqcnnTMU51NdX3Tw+V6hOlaLLFQ0y8p3M70DS3E6Z/0wQ1PTMUIbpb8uP21guHBe Ak8HHAchIzeS3GZBaJmz3VsC08yr+lOx+E6ETc3OMeaydFnu3IM9Gv39Fp69yZ+e pl5wpOQ1lfDuKGQ4y9JaeC+OHhKlxqrXYJAG/E3uJqfyPxK8PDWQRTdeeSAs2H90 4rgEpNUI2cClxs/Asj7QWWQuYCY8R1qb -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:15 2025 by rpki-client