$ rpki-client -vvf rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft File: HN4SRMu7llQubIsJo9rBwbRDaNc.mft (raw, json) Hash identifier: XdlTZXyQRgvPEmHfDd746ayVM58fULBewy9bymDg9C4= Subject key identifier: FB:96:98:50:C2:30:12:D7:E8:9E:40:62:71:FF:29:4C:3C:F6:3F:68 Authority key identifier: 1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 Certificate issuer: /CN=A918A498/serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft Manifest number: 59 Signing time: Sat 23 Aug 2025 07:23:24 +0000 Manifest this update: Sat 23 Aug 2025 07:23:24 +0000 Manifest next update: Sat 30 Aug 2025 07:23:24 +0000 Files and hashes: 1: HN4SRMu7llQubIsJo9rBwbRDaNc.crl (hash: UMeZxzCLEK6SXtBcdO7GXm3GeDCWkn7Xt0wpiTWwiF0=) 2: 62C86698F80A11EFA400AC2FC4F9AE02.roa (hash: UFgylA3DVYfccb8XdgcDubKXiQ2Mtm89Z4YEW6R99s0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A498, serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Validity Not Before: Aug 23 07:23:24 2025 GMT Not After : Aug 30 07:23:24 2025 GMT Subject: CN=68a96c6c-3a0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1a:09:94:c7:28:ba:fb:02:c7:14:39:ea:36: 23:7a:89:1e:03:72:2b:15:5c:86:a5:fb:40:03:d8: e7:e8:ed:e7:33:0b:eb:a1:d0:d6:53:12:b8:e7:5e: 30:61:22:97:b5:e5:16:cc:b4:dd:86:61:e7:f2:0c: 90:a0:d8:ef:41:5c:dc:7e:11:be:17:ea:b6:b9:15: 68:ce:6e:a7:c6:c3:94:c8:29:e6:51:25:0c:70:a4: c2:e4:24:95:f5:5e:ae:d4:38:db:44:f0:70:87:16: 3b:37:29:8e:9a:fe:04:4e:d5:b7:21:91:d5:43:39: c2:25:37:38:35:f5:db:3e:be:a3:15:b0:5b:df:c3: 53:9b:db:98:08:6b:23:a7:ca:80:a5:49:5f:40:cc: 02:5f:20:66:83:61:61:e4:3a:98:67:0a:5e:bb:01: cf:6f:7e:4b:c0:c6:ff:86:28:11:31:bd:f2:54:8d: 92:49:ea:1f:52:12:d8:3e:b3:a3:d3:85:e6:87:2e: ca:ef:35:64:26:8b:bd:b4:c3:be:db:2e:c9:3f:99: 84:3a:c7:8e:52:59:1c:0a:71:f2:78:0d:ac:e7:93: 6d:6b:a6:58:e1:06:76:60:b0:14:f1:41:d3:e6:ac: 36:2c:97:8d:b5:7a:14:b6:6c:b3:53:40:93:e7:f8: 0f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:96:98:50:C2:30:12:D7:E8:9E:40:62:71:FF:29:4C:3C:F6:3F:68 X509v3 Authority Key Identifier: keyid:1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:c3:82:55:72:fe:92:4f:43:0c:ea:32:08:06:29:6d:d0:42: 0e:aa:15:38:9a:d7:a6:c4:c0:f3:66:4c:64:cc:50:50:5c:bb: a4:6e:72:e5:49:3a:0c:40:43:aa:ae:f8:15:f4:9d:4f:b8:af: d2:95:20:31:58:f9:8e:38:ac:4f:d3:92:01:b0:7b:1f:f7:f0: 43:91:d5:13:4a:8e:57:b1:61:7a:6a:b7:78:d2:ce:69:46:11: e2:14:52:db:6c:67:79:2f:eb:bf:79:19:8d:3c:1c:47:4b:f2: 6d:ac:5c:f1:7d:37:fd:b1:43:3f:bb:32:28:28:62:82:8b:79: ac:38:95:d7:91:3d:11:b8:63:bd:8d:68:86:3a:77:55:44:58: 15:8f:2b:8c:e4:50:ef:4b:a4:07:e5:c6:7f:14:99:26:61:f7: dc:75:07:75:f7:21:b4:c9:23:f4:8b:76:cf:e9:9f:cb:bc:f9: 19:81:e7:71:bb:80:16:f4:0b:f3:d2:31:25:2b:4d:eb:6a:f0: ab:e1:b6:4c:15:d6:6a:1c:70:ce:dd:db:4d:8a:5f:97:cf:08: d3:d0:a5:40:5a:f1:c6:d9:b6:52:73:fc:61:8f:a6:d6:85:5f: 5b:9e:cc:48:e3:15:06:90:d8:c4:d8:f5:49:86:45:fe:fa:1a: d0:cc:df:31 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTQ5ODExMC8GA1UEBRMoMUNERTEyNDRDQkJCOTY1NDJFNkM4QjA5QTNEQUMxQzFC NDQzNjhENzAeFw0yNTA4MjMwNzIzMjRaFw0yNTA4MzAwNzIzMjRaMBgxFjAUBgNV BAMTDTY4YTk2YzZjLTNhMGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNGgmUxyi6+wLHFDnqNiN6iR4DcisVXIal+0AD2Ofo7eczC+uh0NZTErjnXjBh Ipe15RbMtN2GYefyDJCg2O9BXNx+Eb4X6ra5FWjObqfGw5TIKeZRJQxwpMLkJJX1 Xq7UONtE8HCHFjs3KY6a/gRO1bchkdVDOcIlNzg19ds+vqMVsFvfw1Ob25gIayOn yoClSV9AzAJfIGaDYWHkOphnCl67Ac9vfkvAxv+GKBExvfJUjZJJ6h9SEtg+s6PT heaHLsrvNWQmi720w77bLsk/mYQ6x45SWRwKcfJ4Daznk21rpljhBnZgsBTxQdPm rDYsl421ehS2bLNTQJPn+A8pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+5aYUMIw EtfonkBicf8pTDz2P2gwHwYDVR0jBBgwFoAUHN4SRMu7llQubIsJo9rBwbRDaNcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDk4L0QyREVEMzQ2Rjgw OTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxRdWJJc0pvOXJCd2JSRGFO Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE40U1JNdTdsbFF1YklzSm85ckJ3YlJEYU5jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB NDk4L0QyREVEMzQ2RjgwOTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxR dWJJc0pvOXJCd2JSRGFOYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJrDglVy/pJPQwzqMggGKW3QQg6qFTia16bEwPNmTGTMUFBcu6RucuVJ OgxAQ6qu+BX0nU+4r9KVIDFY+Y44rE/TkgGwex/38EOR1RNKjlexYXpqt3jSzmlG EeIUUttsZ3kv6795GY08HEdL8m2sXPF9N/2xQz+7MigoYoKLeaw4ldeRPRG4Y72N aIY6d1VEWBWPK4zkUO9LpAflxn8UmSZh99x1B3X3IbTJI/SLds/pn8u8+RmB53G7 gBb0C/PSMSUrTetq8KvhtkwV1moccM7d202KX5fPCNPQpUBa8cbZtlJz/GGPptaF X1uezEjjFQaQ2MTY9UmGRf76GtDM3zE= -----END CERTIFICATE-----Generated at Sat Aug 23 17:14:28 2025 by rpki-client