$ rpki-client -vvf rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft File: HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft (raw, json) Hash identifier: Bw78QUpHofmNSJUHK2ubOMFpXtK9oJ5tyfSGupVsXoY= Subject key identifier: 4D:C9:58:AF:0A:E4:04:20:74:05:6D:53:76:06:68:92:48:8D:02:42 Authority key identifier: 1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 Certificate issuer: /CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Certificate serial: 0B3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft Manifest number: 0B10 Signing time: Wed 06 Aug 2025 19:43:34 +0000 Manifest this update: Wed 06 Aug 2025 19:43:33 +0000 Manifest next update: Wed 13 Aug 2025 19:43:33 +0000 Files and hashes: 1: HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl (hash: zNPnYKUd+Clw+yFiDWcXXHOvtXljy9Coq5AkM1l9qmQ=) 2: 1AB6B24A502211F0AFF2E30FC4F9AE02.roa (hash: 2QerLmtFHY48UeZhmV6pCrS0LhLRpqATZj6aiM1bwoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 19:43:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2878 (0xb3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F721, serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Validity Not Before: Aug 6 19:43:33 2025 GMT Not After : Aug 13 19:43:33 2025 GMT Subject: CN=6893b065-cd35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a1:08:72:dd:76:66:2d:dc:6f:47:67:ca:66: b1:f6:b5:75:e1:ab:a8:84:37:15:18:b4:4c:21:f0: 64:d3:b3:30:0e:19:f1:75:99:0d:0e:ee:6a:6b:95: c2:b3:fd:d3:55:36:a8:26:db:70:5e:99:cc:3b:85: 9e:ac:cd:6d:63:80:2b:2d:3b:da:66:33:9b:6c:10: b9:17:6c:5b:7c:6a:16:59:49:7c:0b:fe:eb:41:33: 2b:b9:7c:5d:ae:cb:a0:cb:b1:9d:89:3d:fb:cb:f1: 59:bc:c8:73:e0:79:eb:fd:57:43:91:ea:ce:28:50: b4:a4:ec:e2:19:52:32:ae:2c:80:9d:19:ec:87:79: 8f:fa:2f:8a:42:18:82:04:06:e0:07:e4:ef:49:cc: cd:03:3e:d5:3d:d8:b4:f4:0c:7a:dc:00:28:a2:d5: 1b:7b:0b:2c:4c:45:ca:31:90:ab:6c:74:a8:58:72: 01:9e:a3:81:a9:71:bc:e7:86:9a:7f:4b:93:d2:52: d2:1a:a4:5c:09:72:fc:40:b1:3f:18:6d:c8:b3:7e: 31:98:14:25:d8:31:e2:41:b9:ce:0f:91:50:5d:e4: 22:ac:14:23:b3:58:55:31:15:62:b9:1c:fb:63:4d: c2:b5:80:98:14:d2:c7:d4:fe:5f:98:d9:0e:12:0c: d9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C9:58:AF:0A:E4:04:20:74:05:6D:53:76:06:68:92:48:8D:02:42 X509v3 Authority Key Identifier: keyid:1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:05:f6:30:7d:40:db:14:82:b8:36:d6:c6:6b:17:b2:ab:a1: 02:4d:41:69:db:41:bd:85:ec:d8:b8:d2:5f:30:09:ed:09:23: e7:f8:49:e6:43:50:47:80:0a:5b:17:86:9f:79:26:43:85:30: 4e:4c:8a:c9:b3:53:e7:8a:0b:8f:07:87:00:46:a3:59:ca:e6: 94:65:4a:73:b2:f8:7e:d9:32:54:51:53:76:de:ec:01:31:59: b4:12:dd:b7:af:9b:76:7e:ad:b6:68:e9:0e:95:79:d2:51:28: 3f:90:6c:4b:79:42:ea:56:16:87:23:db:f3:2f:31:cd:9c:5e: 13:b3:d1:7c:c6:bf:5d:7a:e4:72:90:9e:ca:64:db:e1:d7:6b: d4:9a:ef:c5:34:18:cb:82:f7:7b:2f:59:a8:1f:9e:2d:c9:d9: 2a:fa:eb:c2:77:2b:8d:66:5f:b4:94:6f:69:83:c8:ff:af:6a: 31:25:3e:b3:4a:d6:56:56:03:6b:af:ae:01:95:44:62:ed:2e: da:93:43:45:20:28:3d:74:ed:3c:90:7a:71:fe:7d:36:fc:df: 49:01:bc:bb:bb:ba:58:ac:83:42:4c:6c:8d:56:23:89:bc:4e: 7f:cd:1d:90:4c:11:1e:e3:ab:ab:0a:43:7f:b7:41:29:75:3e: a0:ce:35:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y3MjExMTAvBgNVBAUTKDFERDcxN0IyMjk5MzYxOTBDRUI2NjdDN0NFMUNBOUY5 QkZCNUZBQzQwHhcNMjUwODA2MTk0MzMzWhcNMjUwODEzMTk0MzMzWjAYMRYwFAYD VQQDEw02ODkzYjA2NS1jZDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqEIct12Zi3cb0dnymax9rV14auohDcVGLRMIfBk07MwDhnxdZkNDu5qa5XC s/3TVTaoJttwXpnMO4WerM1tY4ArLTvaZjObbBC5F2xbfGoWWUl8C/7rQTMruXxd rsugy7GdiT37y/FZvMhz4Hnr/VdDkerOKFC0pOziGVIyriyAnRnsh3mP+i+KQhiC BAbgB+TvSczNAz7VPdi09Ax63AAootUbewssTEXKMZCrbHSoWHIBnqOBqXG854aa f0uT0lLSGqRcCXL8QLE/GG3Is34xmBQl2DHiQbnOD5FQXeQirBQjs1hVMRViuRz7 Y03CtYCYFNLH1P5fmNkOEgzZgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3JWK8K 5AQgdAVtU3YGaJJIjQJCMB8GA1UdIwQYMBaAFB3XF7Ipk2GQzrZnx84cqfm/tfrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjcyMS82NDQyNDM3QTUz QUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFlaRE90bWZIemh5cC1iLTEt c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkY1hzaW1UWVpET3RtZkh6aHlwLWItMS1zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjcyMS82NDQyNDM3QTUzQUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFla RE90bWZIemh5cC1iLTEtc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjBfYwfUDbFIK4NtbGaxeyq6ECTUFp20G9hezYuNJfMAntCSPn+Enm Q1BHgApbF4afeSZDhTBOTIrJs1PniguPB4cARqNZyuaUZUpzsvh+2TJUUVN23uwB MVm0Et23r5t2fq22aOkOlXnSUSg/kGxLeULqVhaHI9vzLzHNnF4Ts9F8xr9deuRy kJ7KZNvh12vUmu/FNBjLgvd7L1moH54tydkq+uvCdyuNZl+0lG9pg8j/r2oxJT6z StZWVgNrr64BlURi7S7ak0NFICg9dO08kHpx/n02/N9JAby7u7pYrINCTGyNViOJ vE5/zR2QTBEe46urCkN/t0EpdT6gzjVL -----END CERTIFICATE-----Generated at Fri Aug 8 19:23:53 2025 by rpki-client