$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft File: HRIX74_oS1glUWcbyjXmhEhpJJc.mft (raw, json) Hash identifier: V5q/2u1CeZMesoZs7X5psXWWY6ZBmLwRmyFkRmjADsk= Subject key identifier: 5C:A9:04:31:75:40:BA:CD:11:2F:2C:F8:08:61:1E:A1:BD:01:25:EB Authority key identifier: 1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 Certificate issuer: /CN=A91C8BB4/serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Certificate serial: 0A95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft Manifest number: 0A8B Signing time: Sun 12 Oct 2025 20:38:19 +0000 Manifest this update: Sun 12 Oct 2025 20:38:18 +0000 Manifest next update: Sun 19 Oct 2025 20:38:18 +0000 Files and hashes: 1: HRIX74_oS1glUWcbyjXmhEhpJJc.crl (hash: 7oM2gLp0MGadxo+Y4VlAyuPynKrVNKX2jrYhCZPmjn0=) 2: 9261E554464611EE84B7C534C4F9AE02.roa (hash: i3esyJrHHzIBHRmVCNUz0W4VMdpIDRgi+XPXqZ5CNEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 20:38:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2709 (0xa95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8BB4, serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Validity Not Before: Oct 12 20:38:18 2025 GMT Not After : Oct 19 20:38:18 2025 GMT Subject: CN=68ec11bb-7f83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:07:58:09:de:6d:c6:bc:f6:8d:2c:ed:a2:3a: 3a:c7:53:2c:dc:31:ec:de:ff:95:41:26:61:cd:82: 2f:20:c6:fa:1b:38:76:cf:42:a2:b3:e2:82:64:d6: af:0d:07:58:a7:51:6e:5c:78:a4:fd:45:49:a0:e4: 1f:dc:2a:ad:39:49:63:3d:99:e4:95:bb:d4:44:fc: dd:62:f2:35:41:d7:b8:d6:89:76:32:3a:3e:32:21: 9d:06:30:38:cb:b0:d1:24:6b:39:a5:1b:31:17:51: 11:da:7b:b8:1e:cc:2e:ce:a7:85:33:a6:e0:ad:0d: a0:e4:b8:cf:3b:6e:b6:46:5f:a5:a7:48:c6:65:89: 70:fb:9a:0f:d5:f0:58:cd:26:71:6c:56:85:d9:6e: 69:3b:e7:d9:00:b4:49:8a:b9:92:69:7f:ad:4e:68: e8:82:50:59:23:a9:b7:b3:e7:ee:f0:7e:14:2f:5f: fe:ed:b4:d5:2b:46:c4:78:92:3e:aa:36:b8:2c:e2: 38:fd:e6:e8:e6:61:70:5d:f8:14:81:9b:0f:83:ca: 1b:e8:fc:ca:d3:f1:25:e5:5d:35:d8:f1:d5:96:7a: fc:10:cf:b2:fe:0a:e0:37:09:49:da:fb:94:70:98: 4d:fd:2b:27:61:80:43:f0:2b:ab:e7:de:5d:6c:53: 36:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:A9:04:31:75:40:BA:CD:11:2F:2C:F8:08:61:1E:A1:BD:01:25:EB X509v3 Authority Key Identifier: keyid:1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:c8:20:f1:05:3e:93:b1:16:18:f0:36:f2:fd:e4:d4:e4:52: 23:c4:75:3e:e1:6f:84:32:11:15:d5:d9:4c:53:92:0b:e3:1b: ca:cf:d0:21:aa:26:21:10:05:fb:eb:4b:b0:d8:8c:44:e6:50: 93:95:ca:80:85:51:da:2b:75:55:13:1f:64:1f:f8:86:73:62: a1:6b:6a:b4:39:34:38:f0:33:6a:bd:e6:2a:54:1e:c3:70:c1: f2:77:08:29:e4:e7:86:ca:4c:88:3f:8d:32:01:78:e7:60:61: f7:86:a9:c6:21:9c:d8:85:b2:af:96:af:81:c2:ec:f2:67:48: b1:34:fb:ad:22:0e:cf:f3:88:80:d9:c4:35:2e:3f:3c:0d:86: da:ef:0f:fe:9e:22:dc:8d:a3:34:43:21:3e:7e:78:2b:fe:28: 89:5b:99:4b:24:98:fa:b8:71:06:a9:5d:4e:40:c9:98:82:13: 88:14:6d:18:58:1b:31:1f:a8:9a:f2:15:50:f1:03:fe:b2:22: 87:b0:93:65:ba:3b:e3:d7:d4:c7:c5:b3:5b:b0:f8:5e:18:48: 1a:42:96:4a:47:30:79:62:9e:86:f6:ee:c5:6b:fc:ee:ff:6f: 57:c4:49:0e:2f:c9:d1:64:e8:c8:ca:32:6f:11:f1:c9:cf:a5: fe:18:39:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCQjQxMTAvBgNVBAUTKDFEMTIxN0VGOEZFODRCNTgyNTUxNjcxQkNBMzVFNjg0 NDg2OTI0OTcwHhcNMjUxMDEyMjAzODE4WhcNMjUxMDE5MjAzODE4WjAYMRYwFAYD VQQDEw02OGVjMTFiYi03ZjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgdYCd5txrz2jSztojo6x1Ms3DHs3v+VQSZhzYIvIMb6Gzh2z0Kis+KCZNav DQdYp1FuXHik/UVJoOQf3CqtOUljPZnklbvURPzdYvI1Qde41ol2Mjo+MiGdBjA4 y7DRJGs5pRsxF1ER2nu4HswuzqeFM6bgrQ2g5LjPO262Rl+lp0jGZYlw+5oP1fBY zSZxbFaF2W5pO+fZALRJirmSaX+tTmjoglBZI6m3s+fu8H4UL1/+7bTVK0bEeJI+ qja4LOI4/ebo5mFwXfgUgZsPg8ob6PzK0/El5V012PHVlnr8EM+y/grgNwlJ2vuU cJhN/SsnYYBD8Cur595dbFM2UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFypBDF1 QLrNES8s+AhhHqG9ASXrMB8GA1UdIwQYMBaAFB0SF++P6EtYJVFnG8o15oRIaSSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEJCNC9EOTU0QkFCRTY5 QjcxMUVBODhFNzJFNTlDNEY5QUUwMi9IUklYNzRfb1MxZ2xVV2NieWpYbWhFaHBK SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hSSVg3NF9vUzFnbFVXY2J5alhtaEVocEpKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEJCNC9EOTU0QkFCRTY5QjcxMUVBODhFNzJFNTlDNEY5QUUwMi9IUklYNzRfb1Mx Z2xVV2NieWpYbWhFaHBKSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYyCDxBT6TsRYY8Dby/eTU5FIjxHU+4W+EMhEV1dlMU5IL4xvKz9Ah qiYhEAX760uw2IxE5lCTlcqAhVHaK3VVEx9kH/iGc2Kha2q0OTQ48DNqveYqVB7D cMHydwgp5OeGykyIP40yAXjnYGH3hqnGIZzYhbKvlq+BwuzyZ0ixNPutIg7P84iA 2cQ1Lj88DYba7w/+niLcjaM0QyE+fngr/iiJW5lLJJj6uHEGqV1OQMmYghOIFG0Y WBsxH6ia8hVQ8QP+siKHsJNlujvj19THxbNbsPheGEgaQpZKRzB5Yp6G9u7Fa/zu /29XxEkOL8nRZOjIyjJvEfHJz6X+GDlz -----END CERTIFICATE-----Generated at Mon Oct 13 23:27:25 2025 by rpki-client