$ rpki-client -vvf rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft File: HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft (raw, json) Hash identifier: TYyGprtrE5qT03BMnOGxs8u/Ln3fwf+xUk91aecZVCc= Subject key identifier: 40:25:38:0A:A3:02:3D:01:46:C0:43:27:AF:64:B7:0A:74:2C:31:55 Authority key identifier: 1D:3A:9A:8F:C9:7C:FC:D7:AE:84:FF:DC:5A:A0:BB:FB:96:93:DC:97 Certificate issuer: /CN=A913C52D/serialNumber=1D3A9A8FC97CFCD7AE84FFDC5AA0BBFB9693DC97 Certificate serial: 06E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft Manifest number: 06E1 Signing time: Fri 08 Aug 2025 22:22:56 +0000 Manifest this update: Fri 08 Aug 2025 22:22:55 +0000 Manifest next update: Fri 15 Aug 2025 22:22:55 +0000 Files and hashes: 1: HTqaj8l8_NeuhP_cWqC7-5aT3Jc.crl (hash: XcH9x3Ovqsr5DPQupm3liMUBxZt5MulCNNLHho75+gg=) 2: FCF8B992679111F09C8F057DC4F9AE02.roa (hash: kwKEGvjPSYWkocb09ei383ShnOWyBUUVEonrFFSPNGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.crl rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1762 (0x6e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C52D, serialNumber=1D3A9A8FC97CFCD7AE84FFDC5AA0BBFB9693DC97 Validity Not Before: Aug 8 22:22:55 2025 GMT Not After : Aug 15 22:22:55 2025 GMT Subject: CN=689678bf-50ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:be:f6:95:ae:4c:2e:34:aa:b4:d4:c9:a6:94: 35:49:26:1a:40:ae:f0:cc:c1:c1:39:63:b8:25:4d: f3:dc:ae:7c:3b:6b:0d:0f:16:b3:b7:36:68:3f:47: d4:2c:0c:ca:68:a4:23:b0:4b:a1:8b:fe:ba:03:c4: 87:74:62:36:b2:a4:da:06:26:82:bd:21:a8:84:fe: 70:4a:e6:60:ca:44:29:c2:b0:13:eb:14:16:d9:fe: a8:de:dc:84:17:11:e2:8b:06:33:56:17:bc:32:b9: 2e:5e:84:01:ab:f2:b7:8f:2c:9d:71:6f:2e:1a:80: 55:23:1a:c5:f9:4c:81:ed:23:f7:98:e4:e6:d7:27: 75:54:17:ee:af:e9:4e:f3:78:b2:d2:0d:1c:df:31: af:12:c9:43:98:cf:17:6e:45:34:84:4b:52:34:e4: cf:18:06:4d:98:31:31:0a:4a:cc:aa:5c:c9:d2:cc: 11:be:11:91:fb:7e:16:b1:18:81:0f:cb:f9:8a:7e: 4f:d8:59:52:40:4a:f2:57:bd:b0:5f:a5:6b:39:c8: 49:45:7c:3e:29:90:3e:35:b3:8a:d4:f9:ac:b8:c5: dd:5d:3f:cb:5e:5b:5a:bf:5b:06:3c:d1:18:0d:d3: 70:f3:eb:c5:72:37:d5:0a:25:45:15:b5:e1:81:98: 81:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:25:38:0A:A3:02:3D:01:46:C0:43:27:AF:64:B7:0A:74:2C:31:55 X509v3 Authority Key Identifier: keyid:1D:3A:9A:8F:C9:7C:FC:D7:AE:84:FF:DC:5A:A0:BB:FB:96:93:DC:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:88:f9:e4:60:4e:d0:28:d3:da:cf:02:79:17:f7:af:c0:6d: cf:b4:b4:f0:26:79:29:d5:cf:eb:c1:b5:12:ec:33:77:d5:7a: 57:34:a0:24:89:49:09:f7:b1:49:38:1e:71:c1:d1:a4:df:61: dd:91:8b:79:83:66:db:1b:0f:02:78:23:00:ab:a4:4a:d7:c8: 81:08:17:b6:0b:bf:3c:cc:e3:9d:49:12:aa:82:0e:1c:fb:a2: 45:55:25:5b:97:c9:06:b9:ea:30:29:4a:8e:35:e8:a0:92:2a: f5:d5:d1:05:64:1a:1f:24:35:b6:48:8d:0a:ed:14:e5:bd:a9: 28:0d:a0:2c:32:10:04:4a:9f:3f:bd:8c:bc:93:92:83:21:ed: 3c:8c:b2:04:df:2b:54:9e:53:5c:fd:00:8e:ff:e4:8a:97:6d: 13:e8:3a:e6:7a:3d:3c:9c:e1:25:e5:48:6a:4c:4c:bc:72:9d: dd:f6:b4:b8:76:5d:59:ac:b2:73:60:eb:ad:7e:05:db:09:08: 0c:9a:9d:9b:05:fb:3b:62:4c:8a:1c:c1:33:59:95:52:cd:87: 73:25:12:24:a8:53:4d:b1:f2:f6:8c:a5:25:a2:39:ae:d6:60: c4:fe:00:45:f1:0a:c6:15:fc:ff:81:f9:fb:0b:83:0e:7d:dc: 3a:c6:08:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M1MkQxMTAvBgNVBAUTKDFEM0E5QThGQzk3Q0ZDRDdBRTg0RkZEQzVBQTBCQkZC OTY5M0RDOTcwHhcNMjUwODA4MjIyMjU1WhcNMjUwODE1MjIyMjU1WjAYMRYwFAYD VQQDEw02ODk2NzhiZi01MGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx772la5MLjSqtNTJppQ1SSYaQK7wzMHBOWO4JU3z3K58O2sNDxaztzZoP0fU LAzKaKQjsEuhi/66A8SHdGI2sqTaBiaCvSGohP5wSuZgykQpwrAT6xQW2f6o3tyE FxHiiwYzVhe8MrkuXoQBq/K3jyydcW8uGoBVIxrF+UyB7SP3mOTm1yd1VBfur+lO 83iy0g0c3zGvEslDmM8XbkU0hEtSNOTPGAZNmDExCkrMqlzJ0swRvhGR+34WsRiB D8v5in5P2FlSQEryV72wX6VrOchJRXw+KZA+NbOK1PmsuMXdXT/LXltav1sGPNEY DdNw8+vFcjfVCiVFFbXhgZiBHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEAlOAqj Aj0BRsBDJ69ktwp0LDFVMB8GA1UdIwQYMBaAFB06mo/JfPzXroT/3Fqgu/uWk9yX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzUyRC84RkE5NzZCRTVC QjcxMUVCOEJBRDIxNDJDNEY5QUUwMi9IVHFhajhsOF9OZXVoUF9jV3FDNy01YVQz SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hUcWFqOGw4X05ldWhQX2NXcUM3LTVhVDNKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzUyRC84RkE5NzZCRTVCQjcxMUVCOEJBRDIxNDJDNEY5QUUwMi9IVHFhajhsOF9O ZXVoUF9jV3FDNy01YVQzSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAiPnkYE7QKNPazwJ5F/evwG3PtLTwJnkp1c/rwbUS7DN31XpXNKAk iUkJ97FJOB5xwdGk32HdkYt5g2bbGw8CeCMAq6RK18iBCBe2C788zOOdSRKqgg4c +6JFVSVbl8kGueowKUqONeigkir11dEFZBofJDW2SI0K7RTlvakoDaAsMhAESp8/ vYy8k5KDIe08jLIE3ytUnlNc/QCO/+SKl20T6Drmej08nOEl5UhqTEy8cp3d9rS4 dl1ZrLJzYOutfgXbCQgMmp2bBfs7YkyKHMEzWZVSzYdzJRIkqFNNsfL2jKUlojmu 1mDE/gBF8QrGFfz/gfn7C4MOfdw6xgjl -----END CERTIFICATE-----Generated at Sat Aug 9 14:27:20 2025 by rpki-client