$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft File: hXm-LYNFaC8nrucGK71O92ZOVxs.mft (raw, json) Hash identifier: iFnI9qt7eBqh39/J1lAiPU19RsgYcBWtru7VpWifs9s= Subject key identifier: 3B:73:C1:B6:AB:17:CA:93:B1:E7:EE:11:A9:E4:3C:23:55:D1:75:29 Authority key identifier: 85:79:BE:2D:83:45:68:2F:27:AE:E7:06:2B:BD:4E:F7:66:4E:57:1B Certificate issuer: /CN=A91D0B6B/serialNumber=8579BE2D8345682F27AEE7062BBD4EF7664E571B Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft Manifest number: 52 Signing time: Mon 11 Aug 2025 07:33:49 +0000 Manifest this update: Mon 11 Aug 2025 07:33:48 +0000 Manifest next update: Mon 18 Aug 2025 07:33:48 +0000 Files and hashes: 1: hXm-LYNFaC8nrucGK71O92ZOVxs.crl (hash: +yZa4T5Cmo/gkAFPmEJ2QnGubSrwfzz4HCSd1RHFAQk=) 2: 73DC435A39F511F09F296862C4F9AE02.roa (hash: v8UVd7Qbh3NtEsQhX1pG9Dfe5py3W8ZuLzV2zz17/Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.crl rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 07:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B6B, serialNumber=8579BE2D8345682F27AEE7062BBD4EF7664E571B Validity Not Before: Aug 11 07:33:48 2025 GMT Not After : Aug 18 07:33:48 2025 GMT Subject: CN=68999cdd-2e71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:cb:9f:50:b8:3d:2b:97:08:d0:ac:94:9e:7d: 05:b6:ae:ef:5d:f4:06:6a:3c:4c:68:6f:49:d4:1b: 98:9b:4c:58:1d:c9:5e:b9:2b:28:e2:c0:a7:7c:34: 55:e5:e1:b1:72:30:d6:4e:0e:a0:2d:c5:70:76:9a: fd:a6:cf:3e:34:2a:b7:2f:15:43:2f:cf:89:36:c2: 6f:20:53:6f:b3:7b:44:cc:3e:0e:c5:63:0d:35:21: 9a:f7:0f:07:54:5f:28:03:e8:d0:87:66:54:29:fb: a1:42:df:23:91:03:a3:04:19:85:5f:f2:15:46:33: aa:66:99:48:1f:38:c0:f5:3b:0f:8e:f9:e5:be:fb: 5c:76:af:e3:72:60:6f:16:0b:e5:11:5b:78:70:3c: ec:75:d9:e9:4d:2b:94:d8:50:1b:e9:3d:c0:6c:cb: c0:16:5e:40:56:75:69:96:07:8c:f1:39:ee:41:8d: 2f:17:b8:65:09:5b:1d:f9:cc:8c:32:91:e3:af:29: 2a:e1:de:8c:d6:56:45:e3:48:bc:f6:fb:7d:f2:83: c5:1e:b2:d4:30:da:eb:e8:44:ce:67:15:ed:6b:e2: 08:aa:6c:4e:3e:55:d2:8f:b6:58:6d:c1:31:f1:75: ad:65:cf:f3:0d:a4:20:4b:31:d5:4e:8a:de:87:17: 35:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:73:C1:B6:AB:17:CA:93:B1:E7:EE:11:A9:E4:3C:23:55:D1:75:29 X509v3 Authority Key Identifier: keyid:85:79:BE:2D:83:45:68:2F:27:AE:E7:06:2B:BD:4E:F7:66:4E:57:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:bf:11:b9:82:2e:4c:9b:92:c3:78:3a:77:03:f7:b6:83:25: b8:d6:d2:ac:ab:86:95:44:bb:05:81:64:4b:f4:68:f4:b4:46: ae:63:7b:e1:c0:50:a9:53:42:fa:4b:fa:14:a9:0a:84:80:61: 34:11:ca:74:d2:a1:44:01:41:82:8e:b0:1e:71:94:cd:40:12: d2:86:2c:1f:3c:59:27:8e:01:29:ca:3e:da:0e:76:10:2b:91: ab:87:e8:6c:13:e0:67:fc:d0:08:a9:a5:81:a6:56:5e:e5:03: 26:c7:f2:32:cf:91:01:3d:26:28:32:93:05:27:c9:86:11:ce: b2:fd:fb:82:40:3f:7c:be:3d:6b:f5:d5:7f:6b:c8:c1:cf:6b: 9d:46:49:8a:30:69:32:be:fc:98:25:6d:47:38:97:c5:03:7d: a5:f9:14:01:0e:c4:34:65:74:98:4f:aa:d9:35:4c:64:ee:eb: 08:ff:1d:db:53:15:70:86:88:77:ed:8c:49:7c:f2:84:70:01: 82:8d:4b:ec:e4:f0:67:32:99:b8:8d:15:21:14:54:a3:58:17: a1:55:f4:c5:0c:ce:a3:15:49:cb:3a:ca:58:f9:08:14:97:b1: 2b:0e:f3:6a:77:ac:93:a1:54:eb:63:f4:6b:73:3a:91:55:28: 58:f5:ac:97 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEI2QjExMC8GA1UEBRMoODU3OUJFMkQ4MzQ1NjgyRjI3QUVFNzA2MkJCRDRFRjc2 NjRFNTcxQjAeFw0yNTA4MTEwNzMzNDhaFw0yNTA4MTgwNzMzNDhaMBgxFjAUBgNV BAMTDTY4OTk5Y2RkLTJlNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjy59QuD0rlwjQrJSefQW2ru9d9AZqPExob0nUG5ibTFgdyV65KyjiwKd8NFXl 4bFyMNZODqAtxXB2mv2mzz40KrcvFUMvz4k2wm8gU2+ze0TMPg7FYw01IZr3DwdU XygD6NCHZlQp+6FC3yORA6MEGYVf8hVGM6pmmUgfOMD1Ow+O+eW++1x2r+NyYG8W C+URW3hwPOx12elNK5TYUBvpPcBsy8AWXkBWdWmWB4zxOe5BjS8XuGUJWx35zIwy keOvKSrh3ozWVkXjSLz2+33yg8UestQw2uvoRM5nFe1r4giqbE4+VdKPtlhtwTHx da1lz/MNpCBLMdVOit6HFzWlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUO3PBtqsX ypOx5+4RqeQ8I1XRdSkwHwYDVR0jBBgwFoAUhXm+LYNFaC8nrucGK71O92ZOVxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQjZCLzdFQzAwNzZDRkUz RjExRUY4RkEyNzc1MkM0RjlBRTAyL2hYbS1MWU5GYUM4bnJ1Y0dLNzFPOTJaT1Z4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFhtLUxZTkZhQzhucnVjR0s3MU85MlpPVnhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw QjZCLzdFQzAwNzZDRkUzRjExRUY4RkEyNzc1MkM0RjlBRTAyL2hYbS1MWU5GYUM4 bnJ1Y0dLNzFPOTJaT1Z4cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEC/EbmCLkybksN4OncD97aDJbjW0qyrhpVEuwWBZEv0aPS0Rq5je+HA UKlTQvpL+hSpCoSAYTQRynTSoUQBQYKOsB5xlM1AEtKGLB88WSeOASnKPtoOdhAr kauH6GwT4Gf80AippYGmVl7lAybH8jLPkQE9JigykwUnyYYRzrL9+4JAP3y+PWv1 1X9ryMHPa51GSYowaTK+/JglbUc4l8UDfaX5FAEOxDRldJhPqtk1TGTu6wj/HdtT FXCGiHftjEl88oRwAYKNS+zk8GcymbiNFSEUVKNYF6FV9MUMzqMVScs6ylj5CBSX sSsO82p3rJOhVOtj9GtzOpFVKFj1rJc= -----END CERTIFICATE-----Generated at Wed Aug 13 05:32:02 2025 by rpki-client