$ rpki-client -vvf rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.mft File: HIAVCsljCYTTjMb1nD7MdRsl8-c.mft (raw, json) Hash identifier: cZ+8yRyr+QF3Rr7R9zdmDT0d5GGiSKtf4c7OwR2qnNI= Subject key identifier: C0:26:D1:B1:17:5E:04:7C:D2:84:7D:D3:49:9C:41:0F:BD:B3:0C:49 Authority key identifier: 1C:80:15:0A:C9:63:09:84:D3:8C:C6:F5:9C:3E:CC:75:1B:25:F3:E7 Certificate issuer: /CN=A915A549/serialNumber=1C80150AC9630984D38CC6F59C3ECC751B25F3E7 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HIAVCsljCYTTjMb1nD7MdRsl8-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.mft Manifest number: 74 Signing time: Sat 23 Aug 2025 07:06:12 +0000 Manifest this update: Sat 23 Aug 2025 07:06:12 +0000 Manifest next update: Sat 30 Aug 2025 07:06:12 +0000 Files and hashes: 1: HIAVCsljCYTTjMb1nD7MdRsl8-c.crl (hash: bjx/0rXwyfKyG76MYPhY42odae0BVY3yaVjeqzelotY=) 2: E9B51C0AD24411EFBD747915C4F9AE02.roa (hash: h7LkbeKD0rtGSmQTm/4/z1tqrdfuxl9pJq7z33t/Gys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.crl rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HIAVCsljCYTTjMb1nD7MdRsl8-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:06:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A549, serialNumber=1C80150AC9630984D38CC6F59C3ECC751B25F3E7 Validity Not Before: Aug 23 07:06:12 2025 GMT Not After : Aug 30 07:06:12 2025 GMT Subject: CN=68a96864-a6da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:84:77:01:75:74:1d:4b:d6:6e:5c:b9:75:5b: 5a:e8:00:5d:5d:7e:54:72:e3:d1:b3:41:8f:68:2d: c2:1c:6a:ac:dc:43:ac:e7:d8:97:e0:bc:0d:2b:34: 95:83:c2:42:42:83:32:bc:44:5b:e4:d7:1e:a7:ad: 55:1e:73:8b:1b:6b:12:8c:04:ce:3e:72:a3:7a:e4: b6:c1:ea:60:05:95:72:1c:4f:02:63:5d:81:fb:14: 5e:db:78:c0:74:88:98:d7:41:49:99:54:78:06:ae: 7b:39:fe:96:07:0c:ec:e7:df:50:31:da:b3:fe:96: ec:0a:0c:73:a4:1b:6a:03:90:92:7e:32:2a:73:ac: db:d1:0b:56:1c:c7:1e:dd:e8:ca:b4:6c:8c:eb:48: 11:57:cf:e1:88:25:75:24:81:f1:e1:60:0a:8e:b5: c4:b2:78:20:c9:69:a4:ba:ad:06:a7:9c:6e:70:10: ff:2b:0d:e8:40:d5:79:52:ec:ed:58:f1:68:50:2b: 04:0c:fd:df:de:d3:bb:9b:92:73:bb:3c:f7:c5:3a: c9:63:f7:35:98:be:47:0c:55:8c:c8:dd:ce:42:0e: 75:c1:71:77:85:c2:1d:38:41:47:b3:8c:cb:5a:84: 16:ae:fb:d5:b9:24:e9:de:84:57:2f:7e:48:33:a3: c6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:26:D1:B1:17:5E:04:7C:D2:84:7D:D3:49:9C:41:0F:BD:B3:0C:49 X509v3 Authority Key Identifier: keyid:1C:80:15:0A:C9:63:09:84:D3:8C:C6:F5:9C:3E:CC:75:1B:25:F3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HIAVCsljCYTTjMb1nD7MdRsl8-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:38:d6:4e:75:a2:52:84:24:a4:7f:bc:e6:7a:0b:55:a5:5d: 38:d1:db:ac:22:8e:23:59:f4:e4:b5:26:bd:bf:06:f3:93:c1: 8b:a2:18:4f:c3:8f:46:31:e9:22:96:c6:90:7c:0d:3d:b1:57: d4:e7:cb:58:76:d5:b7:00:97:b3:ca:b3:c5:44:33:87:80:ab: 1b:e0:c2:bf:bc:3d:4f:8c:6a:47:7c:a9:31:7f:be:98:a1:b5: b4:1c:f5:b7:c5:01:c9:4b:77:52:16:e4:81:53:81:ab:80:27: bd:13:a4:01:75:23:24:fc:72:e7:00:0d:98:5a:5a:40:8c:c9: 07:3b:5e:87:98:a9:94:81:e8:b2:34:6b:51:20:ee:5f:5d:29: c4:fd:0f:87:80:93:75:64:86:1e:77:8a:de:56:77:6a:d6:5f: 4c:9f:32:32:2f:0c:92:cf:ca:d8:1d:71:e8:97:66:42:b0:20: 2b:36:d5:d6:cd:95:aa:bb:38:7d:1d:9f:33:d0:a5:f7:3a:fb: a8:84:7d:20:7d:53:7c:00:81:ca:4d:f2:6e:5d:a3:19:52:97: cf:53:5d:45:95:61:5a:f0:44:51:0d:f0:a8:9a:d7:65:a2:56: d5:cb:30:1a:b2:fb:2b:ba:37:64:f1:40:13:9c:28:df:01:d1: 76:23:d5:98 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QTU0OTExMC8GA1UEBRMoMUM4MDE1MEFDOTYzMDk4NEQzOENDNkY1OUMzRUNDNzUx QjI1RjNFNzAeFw0yNTA4MjMwNzA2MTJaFw0yNTA4MzAwNzA2MTJaMBgxFjAUBgNV BAMTDTY4YTk2ODY0LWE2ZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnhHcBdXQdS9ZuXLl1W1roAF1dflRy49GzQY9oLcIcaqzcQ6zn2JfgvA0rNJWD wkJCgzK8RFvk1x6nrVUec4sbaxKMBM4+cqN65LbB6mAFlXIcTwJjXYH7FF7beMB0 iJjXQUmZVHgGrns5/pYHDOzn31Ax2rP+luwKDHOkG2oDkJJ+MipzrNvRC1Ycxx7d 6Mq0bIzrSBFXz+GIJXUkgfHhYAqOtcSyeCDJaaS6rQannG5wEP8rDehA1XlS7O1Y 8WhQKwQM/d/e07ubknO7PPfFOslj9zWYvkcMVYzI3c5CDnXBcXeFwh04QUezjMta hBau+9W5JOnehFcvfkgzo8Z5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwCbRsRde BHzShH3TSZxBD72zDEkwHwYDVR0jBBgwFoAUHIAVCsljCYTTjMb1nD7MdRsl8+cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBNTQ5LzREMjVCQ0FBRDI0 NDExRUY5RTY1NEIxNEM0RjlBRTAyL0hJQVZDc2xqQ1lUVGpNYjFuRDdNZFJzbDgt Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSElBVkNzbGpDWVRUak1iMW5EN01kUnNsOC1jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVB NTQ5LzREMjVCQ0FBRDI0NDExRUY5RTY1NEIxNEM0RjlBRTAyL0hJQVZDc2xqQ1lU VGpNYjFuRDdNZFJzbDgtYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAU41k51olKEJKR/vOZ6C1WlXTjR26wijiNZ9OS1Jr2/BvOTwYuiGE/D j0Yx6SKWxpB8DT2xV9Tny1h21bcAl7PKs8VEM4eAqxvgwr+8PU+Makd8qTF/vpih tbQc9bfFAclLd1IW5IFTgauAJ70TpAF1IyT8cucADZhaWkCMyQc7XoeYqZSB6LI0 a1Eg7l9dKcT9D4eAk3Vkhh53it5Wd2rWX0yfMjIvDJLPytgdceiXZkKwICs21dbN laq7OH0dnzPQpfc6+6iEfSB9U3wAgcpN8m5doxlSl89TXUWVYVrwRFEN8Kia12Wi VtXLMBqy+yu6N2TxQBOcKN8B0XYj1Zg= -----END CERTIFICATE-----Generated at Sun Aug 24 00:17:42 2025 by rpki-client