$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: EiMp3Y6gC+/VqE6pZBGEYVL+Dj3lRDb9gyrQklVscNg= Subject key identifier: B7:B9:73:27:2E:3D:3F:A0:43:83:62:58:56:34:FB:F6:94:EA:66:A4 Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: 79 Signing time: Wed 05 Nov 2025 07:00:53 +0000 Manifest this update: Wed 05 Nov 2025 07:00:52 +0000 Manifest next update: Wed 12 Nov 2025 07:00:52 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: 9fMG1/Af2j2GAaoym8LH1gc0GCehzWPa7fUMLusyRbk=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: ysrTnUlxkF1TKTdjUl7uimFokZqxTbeHcLYRk7mAwOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Nov 5 07:00:52 2025 GMT Not After : Nov 12 07:00:52 2025 GMT Subject: CN=690af625-f562 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:20:a4:6f:9f:eb:bb:b9:a9:2f:e0:77:24:c6: 59:9c:b6:b2:ff:75:5b:61:42:c4:2d:6b:0f:eb:d2: 79:fa:c5:af:d6:e4:7e:7c:e3:83:9a:7f:09:da:f0: b3:61:04:8c:f9:48:e6:44:92:26:c1:9a:b7:74:07: 43:64:57:71:ea:96:6e:f7:b8:eb:d9:65:32:58:fa: f3:4f:61:7d:60:aa:07:af:91:e0:10:8a:fd:5f:c4: 29:6d:4d:1f:a9:d2:f2:7d:87:da:09:05:b4:b4:90: 9e:27:e3:6b:c7:88:3b:de:f0:52:dc:da:5e:8b:5c: 9a:bc:54:87:4b:f9:72:3e:f4:32:2f:c5:e2:e1:7e: 3d:5e:8e:f5:1e:15:55:13:a5:87:6c:39:71:9c:5f: 3b:15:70:40:fa:4c:7c:2d:f0:72:a3:1b:bc:19:14: 69:26:85:1b:e3:a5:cc:50:5b:a8:32:d6:f1:07:73: d6:47:91:5c:1e:f0:a0:99:f8:69:3f:0a:5d:e5:c1: a0:db:63:34:12:ab:e9:c2:38:ab:a6:ef:cf:62:fb: 10:be:35:cb:dd:c9:14:dd:47:c5:44:ce:4f:42:94: c3:14:8f:1b:30:9c:d4:b6:3c:be:df:58:f4:9a:ea: 90:16:60:e5:47:51:8e:e0:0e:9e:3d:39:5e:58:78: 0e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:B9:73:27:2E:3D:3F:A0:43:83:62:58:56:34:FB:F6:94:EA:66:A4 X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:cd:46:68:b6:aa:65:c3:f1:ae:f4:80:c9:58:82:be:f3:04: 2e:ce:4c:e9:cf:76:68:5c:db:0d:a4:85:d5:49:8c:b5:fb:b7: db:14:85:5e:c1:2e:01:94:70:45:3d:91:36:a6:e2:60:b7:a4: 44:ce:22:af:77:91:4f:d1:c8:ff:7b:b2:39:70:68:c7:87:7a: 48:4d:ae:62:be:a9:67:6f:bd:c0:14:f7:6d:b1:95:c5:b7:e1: 12:d6:19:50:76:f2:42:eb:03:c0:2f:a2:61:fd:e5:d9:b8:18: 55:3c:d7:f4:4b:5a:2c:50:1c:f1:3b:18:70:89:99:00:d2:ef: 50:37:a2:0e:37:58:fa:e1:7a:61:35:23:bb:55:8e:b0:3b:53: 28:4c:40:12:71:3f:97:d9:1d:4c:3a:6f:26:12:ea:e3:d2:ef: 79:64:4a:b9:dd:d6:23:d7:27:a0:40:ff:b9:94:38:c5:3d:d1: 83:b1:b9:28:49:ba:29:55:b7:70:8b:9c:c4:cb:7f:2c:e0:04: b7:64:9f:08:40:91:b2:54:90:87:d2:2d:c6:03:7d:ba:b3:02: f0:01:9e:e6:7b:28:58:fd:2a:37:41:56:ec:7a:da:9d:d0:4c: a8:71:e5:a9:22:d1:b0:38:5c:fc:81:32:8d:30:3a:dd:1b:0f: 78:e1:7f:4e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjdGQzExMC8GA1UEBRMoODU3NTA3RjFEOEIzOTE1Qzk1MTBENTA0NzAwRUNFODkw QjA2Njg1RjAeFw0yNTExMDUwNzAwNTJaFw0yNTExMTIwNzAwNTJaMBgxFjAUBgNV BAMTDTY5MGFmNjI1LWY1NjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRIKRvn+u7uakv4HckxlmctrL/dVthQsQtaw/r0nn6xa/W5H5844Oafwna8LNh BIz5SOZEkibBmrd0B0NkV3Hqlm73uOvZZTJY+vNPYX1gqgevkeAQiv1fxCltTR+p 0vJ9h9oJBbS0kJ4n42vHiDve8FLc2l6LXJq8VIdL+XI+9DIvxeLhfj1ejvUeFVUT pYdsOXGcXzsVcED6THwt8HKjG7wZFGkmhRvjpcxQW6gy1vEHc9ZHkVwe8KCZ+Gk/ Cl3lwaDbYzQSq+nCOKum789i+xC+NcvdyRTdR8VEzk9ClMMUjxswnNS2PL7fWPSa 6pAWYOVHUY7gDp49OV5YeA7DAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUt7lzJy49 P6BDg2JYVjT79pTqZqQwHwYDVR0jBBgwFoAUhXUH8dizkVyVENUEcA7OiQsGaF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCN0ZDL0M3M0JBMTY0MDNB NzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaFhVSDhkaXprVnlWRU5VRWNBN09pUXNHYUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZC N0ZDL0M3M0JBMTY0MDNBNzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5 VkVOVUVjQTdPaVFzR2FGOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHrNRmi2qmXD8a70gMlYgr7zBC7OTOnPdmhc2w2khdVJjLX7t9sUhV7B LgGUcEU9kTam4mC3pETOIq93kU/RyP97sjlwaMeHekhNrmK+qWdvvcAU922xlcW3 4RLWGVB28kLrA8AvomH95dm4GFU81/RLWixQHPE7GHCJmQDS71A3og43WPrhemE1 I7tVjrA7UyhMQBJxP5fZHUw6byYS6uPS73lkSrnd1iPXJ6BA/7mUOMU90YOxuShJ uilVt3CLnMTLfyzgBLdknwhAkbJUkIfSLcYDfbqzAvABnuZ7KFj9KjdBVux62p3Q TKhx5aki0bA4XPyBMo0wOt0bD3jhf04= -----END CERTIFICATE-----Generated at Wed Nov 5 17:18:00 2025 by rpki-client