$ rpki-client -vvf rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft File: HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft (raw, json) Hash identifier: tpkvhbBg3qZRRbW5cOoEZotRbTuuQzygXlm2aEk+dNs= Subject key identifier: A6:1D:E3:18:83:04:2C:83:49:6D:45:B3:30:66:F2:92:50:22:F6:FA Authority key identifier: 1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 Certificate issuer: /CN=A918742C/serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Certificate serial: 16B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft Manifest number: 16AA Signing time: Fri 08 Aug 2025 16:50:57 +0000 Manifest this update: Fri 08 Aug 2025 16:50:56 +0000 Manifest next update: Fri 15 Aug 2025 16:50:56 +0000 Files and hashes: 1: HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl (hash: ghPKveXKBYYcG/RtVy8XYYUR8coee011uPEg7M1ZAxM=) 2: 8DFAE1DA019D11E8A7804A1EC4F9AE02.roa (hash: 85zAa/NDU6R+uxxVwM+5q1AHLvo6RcZxo+KYtDUWQJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5812 (0x16b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918742C, serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Validity Not Before: Aug 8 16:50:56 2025 GMT Not After : Aug 15 16:50:56 2025 GMT Subject: CN=68962af1-d6d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:5d:97:16:ea:d0:27:77:2b:53:bf:f3:9c:12: f1:0c:25:21:fe:8a:f8:77:e3:c6:8f:ce:91:a9:0a: 4e:e8:9d:25:a6:38:4e:9e:f9:35:78:f5:e6:68:35: 81:40:14:17:02:25:53:a9:d3:6f:77:a3:ee:4d:89: f7:89:50:0e:d2:f8:04:f1:05:4d:79:a7:b2:07:ed: ec:47:06:bf:1c:93:b8:80:f2:f0:b2:66:75:57:24: 3d:97:ca:18:57:57:de:60:b6:b4:a5:af:01:4c:3e: c9:12:aa:fd:95:17:7a:dd:4b:dd:18:0a:19:d2:52: 30:35:ff:50:8a:e9:d5:f2:59:35:ac:55:c6:d1:6f: cc:2d:83:76:9c:e6:9b:48:55:55:f3:28:d2:ac:a7: 14:73:59:f7:7e:fd:f9:37:99:bb:23:b9:53:ad:c5: e3:e9:43:5a:7b:c8:71:af:be:9c:bf:16:9f:26:94: 2d:97:e9:b6:78:04:67:de:20:6f:e6:63:dd:73:5b: 4d:51:ff:5e:81:8c:aa:22:d4:54:16:e6:d3:43:91: c8:4b:e7:aa:11:1e:8e:17:f8:c7:4e:fa:af:2e:bc: 13:9b:23:a2:82:04:77:fd:10:d7:c5:d6:ab:e8:06: be:52:d1:6d:c1:1a:43:98:eb:8a:5c:15:3c:c2:cc: ab:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:1D:E3:18:83:04:2C:83:49:6D:45:B3:30:66:F2:92:50:22:F6:FA X509v3 Authority Key Identifier: keyid:1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:ee:2e:d2:09:fd:1c:a2:e2:03:46:35:f8:be:df:b8:43:33: a9:7c:26:c0:d4:96:32:e8:07:2e:40:28:96:65:b9:e4:91:12: 29:d7:4f:60:ea:eb:b0:b5:3b:c5:5d:51:b4:d8:a4:e7:1a:e6: 90:8c:de:72:05:a7:5d:77:29:09:eb:c7:21:d3:dd:e5:58:76: 53:06:6c:78:d6:be:86:bc:8d:70:a1:72:29:a9:34:b9:93:9b: 3d:25:ca:1b:fd:23:ca:bd:1c:98:b0:e2:d1:24:ef:d3:22:32: 2a:b8:3a:b1:b0:eb:8f:1d:de:0a:e1:bb:e3:86:3d:eb:17:df: 38:c2:21:65:82:99:70:42:a3:79:f0:c2:2c:6d:52:be:86:af: db:79:7f:1e:90:81:83:45:3f:87:99:92:3c:f8:6f:0e:47:46: bb:cb:5c:a2:65:47:da:a1:65:68:e4:09:7e:f0:13:89:39:32: 9b:d0:b7:5a:9c:9f:74:40:b1:ca:bb:c1:3e:f2:b5:85:f6:fd: b1:75:d7:5e:2d:17:ed:66:a2:5a:d1:a2:e8:f5:3f:95:2d:08: bd:6e:75:9f:13:66:d0:c9:7d:c7:d9:61:23:86:f1:b1:53:34: 6e:f4:28:16:b4:e8:a9:50:5b:80:dc:3d:88:bb:88:6c:4a:e1: e3:24:13:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0MkMxMTAvBgNVBAUTKDFDM0Y5OUEwQzE4MkI1OENDNDVCODExMkYyOTFFMTJB MTUzMzMxRTkwHhcNMjUwODA4MTY1MDU2WhcNMjUwODE1MTY1MDU2WjAYMRYwFAYD VQQDEw02ODk2MmFmMS1kNmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA312XFurQJ3crU7/znBLxDCUh/or4d+PGj86RqQpO6J0lpjhOnvk1ePXmaDWB QBQXAiVTqdNvd6PuTYn3iVAO0vgE8QVNeaeyB+3sRwa/HJO4gPLwsmZ1VyQ9l8oY V1feYLa0pa8BTD7JEqr9lRd63UvdGAoZ0lIwNf9QiunV8lk1rFXG0W/MLYN2nOab SFVV8yjSrKcUc1n3fv35N5m7I7lTrcXj6UNae8hxr76cvxafJpQtl+m2eARn3iBv 5mPdc1tNUf9egYyqItRUFubTQ5HIS+eqER6OF/jHTvqvLrwTmyOiggR3/RDXxdar 6Aa+UtFtwRpDmOuKXBU8wsyrsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKYd4xiD BCyDSW1FszBm8pJQIvb6MB8GA1UdIwQYMBaAFBw/maDBgrWMxFuBEvKR4SoVMzHp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQyQy9GMjhDODlDNDAx OUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZekVXNEVTOHBIaEtoVXpN ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hELVpvTUdDdFl6RVc0RVM4cEhoS2hVek1lay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQyQy9GMjhDODlDNDAxOUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZ ekVXNEVTOHBIaEtoVXpNZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp7i7SCf0couIDRjX4vt+4QzOpfCbA1JYy6AcuQCiWZbnkkRIp109g 6uuwtTvFXVG02KTnGuaQjN5yBadddykJ68ch093lWHZTBmx41r6GvI1woXIpqTS5 k5s9Jcob/SPKvRyYsOLRJO/TIjIquDqxsOuPHd4K4bvjhj3rF984wiFlgplwQqN5 8MIsbVK+hq/beX8ekIGDRT+HmZI8+G8OR0a7y1yiZUfaoWVo5Al+8BOJOTKb0Lda nJ90QLHKu8E+8rWF9v2xdddeLRftZqJa0aLo9T+VLQi9bnWfE2bQyX3H2WEjhvGx UzRu9CgWtOipUFuA3D2Iu4hsSuHjJBOj -----END CERTIFICATE-----Generated at Sat Aug 9 02:47:19 2025 by rpki-client