$ rpki-client -vvf rpki.apnic.net/member_repository/A916D07E/E023F21E150711F085FB4455C4F9AE02/HgeR690MlMNWujc9fg8BYQPUC5I.mft File: HgeR690MlMNWujc9fg8BYQPUC5I.mft (raw, json) Hash identifier: luo0UK9uDWPysfKV4D5UUqCxorZ0O9SMlkoGXrzRCOg= Subject key identifier: 41:7F:E1:15:15:18:4F:E2:50:4D:86:B2:33:4D:49:97:32:17:B7:71 Authority key identifier: 1E:07:91:EB:DD:0C:94:C3:56:BA:37:3D:7E:0F:01:61:03:D4:0B:92 Certificate issuer: /CN=A916D07E/serialNumber=1E0791EBDD0C94C356BA373D7E0F016103D40B92 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgeR690MlMNWujc9fg8BYQPUC5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D07E/E023F21E150711F085FB4455C4F9AE02/HgeR690MlMNWujc9fg8BYQPUC5I.mft Manifest number: 2B Signing time: Tue 01 Jul 2025 08:31:22 +0000 Manifest this update: Tue 01 Jul 2025 08:31:21 +0000 Manifest next update: Tue 08 Jul 2025 08:31:21 +0000 Files and hashes: 1: HgeR690MlMNWujc9fg8BYQPUC5I.crl (hash: BIlGxHLFouVE0Bz40wWL5+C/8a0IqExhesE/uyAlhbs=) 2: 6014E88A257E11F08DB64644C4F9AE02.roa (hash: nOUBr+CqAJHxGP5VlXuW/aGl6J+jLJf/ElMdL6qIZFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D07E/E023F21E150711F085FB4455C4F9AE02/HgeR690MlMNWujc9fg8BYQPUC5I.crl rsync://rpki.apnic.net/member_repository/A916D07E/E023F21E150711F085FB4455C4F9AE02/HgeR690MlMNWujc9fg8BYQPUC5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgeR690MlMNWujc9fg8BYQPUC5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:31:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D07E, serialNumber=1E0791EBDD0C94C356BA373D7E0F016103D40B92 Validity Not Before: Jul 1 08:31:21 2025 GMT Not After : Jul 8 08:31:21 2025 GMT Subject: CN=68639cd9-0cbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c7:2b:92:8a:0a:a2:76:8c:2a:ae:64:68:c8: b5:9b:59:7f:15:c1:38:4d:03:9f:b5:0d:f3:7d:b5: b6:63:22:51:15:74:11:30:16:23:6b:1d:24:a0:58: 72:79:0d:df:31:bb:c4:92:4f:ac:a3:47:67:94:03: a2:01:1b:e1:d6:3d:6d:b1:c9:d4:90:4c:3d:97:a9: 13:43:7e:2a:f0:d2:83:2a:a2:c9:df:6a:51:2a:fb: 02:f2:05:b9:5f:38:30:d4:2e:e7:a1:0b:59:54:44: c7:46:4a:3d:04:fc:3a:ad:26:2c:7e:75:e8:a4:4b: cf:cc:3d:5d:4a:fb:44:45:9b:95:1b:f1:13:cc:bb: 4c:aa:5c:1c:88:8c:eb:e8:be:65:2f:7c:88:7e:31: 9f:d8:b6:ca:f4:5a:24:be:5e:51:32:38:81:2c:f4: 71:bf:a1:9a:39:98:9d:69:48:4b:98:bb:9a:62:9e: 25:49:e4:59:1a:21:c7:89:eb:fc:15:3c:00:69:d8: 76:a5:65:0e:d2:ea:b7:3b:58:c6:d3:4c:7f:85:6d: be:f7:a8:79:57:72:eb:7f:30:7c:0a:90:cd:20:09: b4:d0:f5:20:93:3e:8c:c6:fe:ab:1d:5a:b1:e4:1a: b2:d1:3b:90:6c:a3:66:6d:42:d4:5d:ef:3f:ea:39: 35:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:7F:E1:15:15:18:4F:E2:50:4D:86:B2:33:4D:49:97:32:17:B7:71 X509v3 Authority Key Identifier: keyid:1E:07:91:EB:DD:0C:94:C3:56:BA:37:3D:7E:0F:01:61:03:D4:0B:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D07E/E023F21E150711F085FB4455C4F9AE02/HgeR690MlMNWujc9fg8BYQPUC5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgeR690MlMNWujc9fg8BYQPUC5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D07E/E023F21E150711F085FB4455C4F9AE02/HgeR690MlMNWujc9fg8BYQPUC5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:f5:1f:f3:c6:06:76:d6:72:cf:5b:44:9c:80:3e:b1:cb:d1: 74:61:45:48:50:3c:b6:91:2a:88:23:a8:f1:b0:91:0a:f8:1c: 72:12:55:0b:2f:c3:95:58:97:da:5d:bb:4e:be:75:74:8f:cb: e3:b4:f6:48:60:06:65:61:ab:1d:ba:3b:50:7c:cf:e1:23:63: 52:e4:14:0c:c0:4d:ac:1b:c3:e6:62:55:ae:d1:ea:ad:ef:4e: fb:58:2e:2d:a0:ec:d2:8f:0b:bc:99:5f:19:ed:26:3d:ae:cb: 26:61:32:4b:72:f2:0e:ce:4c:65:fb:96:4b:17:5d:b6:5b:0e: 34:b2:ed:73:35:d1:59:cf:6e:62:4b:d9:58:fa:e8:d2:7c:00: db:e1:ad:9a:13:8f:3d:d4:1b:15:2a:ea:19:71:e4:4a:2d:e3: 8f:76:c7:fd:d7:39:9a:91:c2:80:aa:2d:0b:bd:ce:8c:c3:38: 6a:8a:c3:b3:d2:ee:ff:b7:d3:13:a7:0e:11:3b:8b:fa:f7:5d: 59:9f:64:64:20:87:1e:59:98:5b:ef:52:6b:65:cf:4a:f2:f9: ef:fb:bf:1b:6f:c2:3f:a3:50:6d:47:61:34:43:07:8b:f3:99: 3b:dd:c5:8b:b5:5a:20:ef:d3:46:c3:c4:39:6e:64:e3:84:f9: 1c:c6:9d:37 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RDA3RTExMC8GA1UEBRMoMUUwNzkxRUJERDBDOTRDMzU2QkEzNzNEN0UwRjAxNjEw M0Q0MEI5MjAeFw0yNTA3MDEwODMxMjFaFw0yNTA3MDgwODMxMjFaMBgxFjAUBgNV BAMTDTY4NjM5Y2Q5LTBjYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDExyuSigqidowqrmRoyLWbWX8VwThNA5+1DfN9tbZjIlEVdBEwFiNrHSSgWHJ5 Dd8xu8SST6yjR2eUA6IBG+HWPW2xydSQTD2XqRNDfirw0oMqosnfalEq+wLyBblf ODDULuehC1lURMdGSj0E/DqtJix+deikS8/MPV1K+0RFm5Ub8RPMu0yqXByIjOvo vmUvfIh+MZ/Ytsr0WiS+XlEyOIEs9HG/oZo5mJ1pSEuYu5piniVJ5FkaIceJ6/wV PABp2HalZQ7S6rc7WMbTTH+Fbb73qHlXcut/MHwKkM0gCbTQ9SCTPozG/qsdWrHk GrLRO5Bso2ZtQtRd7z/qOTXNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQX/hFRUY T+JQTYayM01JlzIXt3EwHwYDVR0jBBgwFoAUHgeR690MlMNWujc9fg8BYQPUC5Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZEMDdFL0UwMjNGMjFFMTUw NzExRjA4NUZCNDQ1NUM0RjlBRTAyL0hnZVI2OTBNbE1OV3VqYzlmZzhCWVFQVUM1 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGdlUjY5ME1sTU5XdWpjOWZnOEJZUVBVQzVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZE MDdFL0UwMjNGMjFFMTUwNzExRjA4NUZCNDQ1NUM0RjlBRTAyL0hnZVI2OTBNbE1O V3VqYzlmZzhCWVFQVUM1SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABr1H/PGBnbWcs9bRJyAPrHL0XRhRUhQPLaRKogjqPGwkQr4HHISVQsv w5VYl9pdu06+dXSPy+O09khgBmVhqx26O1B8z+EjY1LkFAzATawbw+ZiVa7R6q3v TvtYLi2g7NKPC7yZXxntJj2uyyZhMkty8g7OTGX7lksXXbZbDjSy7XM10VnPbmJL 2Vj66NJ8ANvhrZoTjz3UGxUq6hlx5Eot4492x/3XOZqRwoCqLQu9zozDOGqKw7PS 7v+30xOnDhE7i/r3XVmfZGQghx5ZmFvvUmtlz0ry+e/7vxtvwj+jUG1HYTRDB4vz mTvdxYu1WiDv00bDxDluZOOE+RzGnTc= -----END CERTIFICATE-----Generated at Thu Jul 3 08:13:54 2025 by rpki-client