$ rpki-client -vvf rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft File: HN4SRMu7llQubIsJo9rBwbRDaNc.mft (raw, json) Hash identifier: QERXeQrEThmddh1NL8U7f8gewZcQJfzGR2F9Pqla6As= Subject key identifier: B3:E4:18:58:B4:0B:0C:81:55:08:F5:9A:D6:15:C7:5E:51:CA:FD:13 Authority key identifier: 1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 Certificate issuer: /CN=A918A498/serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft Manifest number: 3E Signing time: Tue 01 Jul 2025 08:15:01 +0000 Manifest this update: Tue 01 Jul 2025 08:15:00 +0000 Manifest next update: Tue 08 Jul 2025 08:15:00 +0000 Files and hashes: 1: HN4SRMu7llQubIsJo9rBwbRDaNc.crl (hash: E8qlRa3xFiaXcKGajaYvPt10hU4YuHiwYV8sPzru4Bo=) 2: 62C86698F80A11EFA400AC2FC4F9AE02.roa (hash: UFgylA3DVYfccb8XdgcDubKXiQ2Mtm89Z4YEW6R99s0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:15:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A498, serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Validity Not Before: Jul 1 08:15:00 2025 GMT Not After : Jul 8 08:15:00 2025 GMT Subject: CN=68639904-2992 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a2:f7:eb:76:21:26:82:df:93:57:e9:ac:1c: e5:b8:7d:fa:58:53:d7:57:b9:41:37:29:a5:97:20: e9:18:89:1a:17:9b:38:60:c9:f4:14:cf:2a:08:07: 4f:a7:2a:2c:c4:7d:d0:36:7a:69:5d:c5:12:00:18: c8:c6:cf:3a:0a:b5:a3:af:ca:02:93:05:a4:c5:a3: 3d:c3:b3:03:d7:ef:aa:62:12:e7:e8:49:0b:80:60: 1e:6d:f7:41:94:cd:54:a0:65:86:23:92:ea:44:29: 1d:97:3a:88:53:ec:83:38:40:09:c3:91:02:af:80: 04:d4:d3:d5:b0:82:b2:2b:dc:35:8a:08:03:db:bd: a8:9a:2b:b4:76:78:6f:69:75:00:a2:14:8e:da:8d: 22:5e:5c:de:02:93:2f:83:ff:52:d8:2e:05:40:5f: 38:15:08:a9:f5:d9:b1:a3:e2:75:c4:f4:55:28:71: 7a:dd:62:1e:3e:be:61:7a:2e:61:ac:f1:a8:fe:f7: 85:cf:58:fc:c3:8f:07:15:39:bb:f1:69:1c:1f:30: 59:28:0a:fb:66:e7:ef:97:5e:93:cc:28:2d:c0:a5: 68:cd:6b:94:a2:23:5b:a7:5e:12:62:8a:6e:44:6c: 5b:b2:98:ca:4c:12:46:4a:1a:9a:49:a0:5e:d3:63: 5a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:E4:18:58:B4:0B:0C:81:55:08:F5:9A:D6:15:C7:5E:51:CA:FD:13 X509v3 Authority Key Identifier: keyid:1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:54:c1:0d:0a:4a:21:a7:2c:b1:6c:d0:69:92:5b:5e:9b:44: 98:43:e0:a6:b0:bb:19:95:ea:56:58:85:66:99:57:6b:c5:98: a2:d5:ce:0e:e3:d9:1d:5f:da:73:b9:31:da:c5:16:9a:7b:43: 90:27:02:ea:cc:cf:5a:7d:d4:9d:9a:83:e2:4f:d5:fa:61:0b: 41:58:e4:fb:7d:d2:53:ca:69:ee:68:98:4b:68:cd:ca:4e:c6: d2:ec:b8:14:e1:bb:cb:f6:4f:07:11:fa:a1:bf:30:04:8a:5c: ea:cc:14:74:f2:18:99:79:6c:90:c2:d2:a3:46:38:5a:ff:95: 36:bb:f6:d7:a2:72:bf:f9:6c:5f:6d:8a:3d:9d:3a:6b:8d:c0: b4:37:f3:4c:56:ed:db:a6:24:df:71:36:6d:50:1a:18:63:6d: 97:7b:8e:6f:69:fd:7b:12:b2:82:da:49:e6:6b:2b:55:95:74: fd:4d:84:cf:30:d9:d5:e3:fe:f2:54:19:3a:e6:3d:70:6b:e0: b3:b6:19:f9:6a:d2:49:9f:f1:ed:86:ce:d8:ee:dd:60:ed:af: 27:cb:4e:73:ad:05:5c:2c:96:8a:67:76:59:70:6e:78:fa:1a: e5:fd:05:a3:07:92:42:6c:2a:13:41:37:aa:44:2e:82:45:0d: c3:c0:21:5b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTQ5ODExMC8GA1UEBRMoMUNERTEyNDRDQkJCOTY1NDJFNkM4QjA5QTNEQUMxQzFC NDQzNjhENzAeFw0yNTA3MDEwODE1MDBaFw0yNTA3MDgwODE1MDBaMBgxFjAUBgNV BAMTDTY4NjM5OTA0LTI5OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3ovfrdiEmgt+TV+msHOW4ffpYU9dXuUE3KaWXIOkYiRoXmzhgyfQUzyoIB0+n KizEfdA2emldxRIAGMjGzzoKtaOvygKTBaTFoz3DswPX76piEufoSQuAYB5t90GU zVSgZYYjkupEKR2XOohT7IM4QAnDkQKvgATU09WwgrIr3DWKCAPbvaiaK7R2eG9p dQCiFI7ajSJeXN4Cky+D/1LYLgVAXzgVCKn12bGj4nXE9FUocXrdYh4+vmF6LmGs 8aj+94XPWPzDjwcVObvxaRwfMFkoCvtm5++XXpPMKC3ApWjNa5SiI1unXhJiim5E bFuymMpMEkZKGppJoF7TY1oFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUs+QYWLQL DIFVCPWa1hXHXlHK/RMwHwYDVR0jBBgwFoAUHN4SRMu7llQubIsJo9rBwbRDaNcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDk4L0QyREVEMzQ2Rjgw OTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxRdWJJc0pvOXJCd2JSRGFO Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE40U1JNdTdsbFF1YklzSm85ckJ3YlJEYU5jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB NDk4L0QyREVEMzQ2RjgwOTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxR dWJJc0pvOXJCd2JSRGFOYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHxUwQ0KSiGnLLFs0GmSW16bRJhD4KawuxmV6lZYhWaZV2vFmKLVzg7j 2R1f2nO5MdrFFpp7Q5AnAurMz1p91J2ag+JP1fphC0FY5Pt90lPKae5omEtozcpO xtLsuBThu8v2TwcR+qG/MASKXOrMFHTyGJl5bJDC0qNGOFr/lTa79teicr/5bF9t ij2dOmuNwLQ380xW7dumJN9xNm1QGhhjbZd7jm9p/XsSsoLaSeZrK1WVdP1NhM8w 2dXj/vJUGTrmPXBr4LO2Gflq0kmf8e2Gztju3WDtryfLTnOtBVwslopndllwbnj6 GuX9BaMHkkJsKhNBN6pELoJFDcPAIVs= -----END CERTIFICATE-----Generated at Wed Jul 2 16:37:32 2025 by rpki-client