$ rpki-client -vvf rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft File: HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft (raw, json) Hash identifier: ushDRe4Fxh6bhWBWXi6ypzgfuGLnqi24NyGiYmwlY5I= Subject key identifier: 78:87:75:CB:DC:E3:34:F4:64:84:C9:1E:0C:71:3C:A9:07:EF:16:46 Authority key identifier: 1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 Certificate issuer: /CN=A918742C/serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Certificate serial: 1698 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft Manifest number: 168E Signing time: Sat 14 Jun 2025 16:38:39 +0000 Manifest this update: Sat 14 Jun 2025 16:38:38 +0000 Manifest next update: Sat 21 Jun 2025 16:38:38 +0000 Files and hashes: 1: HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl (hash: GC29OqQz/4OmdPh+eNIhNeDivVQponkQe1fczATMDmk=) 2: 8DFAE1DA019D11E8A7804A1EC4F9AE02.roa (hash: 85zAa/NDU6R+uxxVwM+5q1AHLvo6RcZxo+KYtDUWQJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:38:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5784 (0x1698) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918742C, serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Validity Not Before: Jun 14 16:38:38 2025 GMT Not After : Jun 21 16:38:38 2025 GMT Subject: CN=684da58f-13b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f4:e2:c1:56:18:04:a3:92:48:74:a0:1e:9e: 49:17:52:4e:13:08:43:5c:79:55:9b:e2:52:3e:05: ce:30:15:db:15:a1:ed:23:34:1e:61:47:23:91:e2: a5:74:8a:21:83:c2:ff:69:aa:36:68:f4:31:e9:48: 14:55:c0:92:ac:2f:bf:0b:d4:4a:09:33:7b:2f:bf: 35:a2:41:ca:8e:0f:97:0b:01:3e:f9:7f:b5:7f:71: 5b:a5:c4:a1:bc:11:61:ff:ca:40:95:9c:75:82:b8: eb:92:c7:20:01:04:21:c8:11:07:94:86:1a:d7:41: 90:84:cb:56:2d:ec:2b:ee:54:26:54:f2:b6:a7:ac: e1:55:77:78:02:fc:92:e3:11:ef:3c:9b:b2:6c:bf: 64:05:e9:bc:0b:6b:3b:24:d9:25:7b:58:7a:e0:99: 95:ad:d9:ac:90:93:a9:61:1d:bc:b6:ec:38:8e:c1: 82:34:29:98:0e:62:7e:2a:73:7f:01:7b:7a:4b:b5: 8e:73:03:3a:ea:54:72:69:59:de:82:ab:65:68:02: 79:73:ab:4d:4c:18:ee:63:40:a4:f0:6c:96:f3:7d: 5e:f0:72:58:f5:39:ce:10:d0:56:fd:5f:11:55:9a: 98:42:0a:51:97:97:10:bc:92:a4:a6:40:3d:a9:91: aa:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:87:75:CB:DC:E3:34:F4:64:84:C9:1E:0C:71:3C:A9:07:EF:16:46 X509v3 Authority Key Identifier: keyid:1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:3a:97:54:9d:3d:81:7f:e3:b1:b4:ac:28:b4:a7:3f:fc:38: 11:c9:43:4a:3e:36:98:74:fd:5d:a1:01:b3:1a:50:a8:4c:4f: 7b:0d:41:26:81:90:2c:e1:53:13:3f:62:f9:6a:9a:ea:53:7b: d0:95:4e:d4:c6:1f:ca:d3:78:ed:a8:c2:58:80:6e:04:c7:ab: 45:c7:ea:e5:72:57:04:bb:a2:0a:eb:5e:89:ee:73:42:47:71: b8:b0:00:b4:78:66:45:c9:26:4b:07:39:f7:03:70:de:86:aa: 4b:f5:ea:0a:23:f7:cb:a0:b7:9f:57:cf:c5:51:20:48:a0:64: 13:91:d1:5d:2b:fc:4f:d1:ad:11:58:e7:30:57:66:df:35:6b: 3d:4a:7c:0e:75:31:4b:02:f7:5f:a8:50:49:e9:45:ba:48:c4: c7:a8:bb:42:dd:3c:6f:4c:b5:33:be:32:c6:d4:ef:94:3a:69: 14:c4:fe:55:f0:8a:84:3c:2c:dd:06:11:88:f9:43:97:01:80: 35:bb:40:99:92:18:ca:73:fb:4b:19:83:4b:25:71:dc:8f:15: 0d:5b:c3:1b:b1:59:a5:45:c8:4d:e6:d6:f4:a0:c5:d0:18:b5: 21:eb:45:d8:74:9b:5a:18:c3:2e:18:df:53:69:d3:4b:21:ec: 1c:a6:0e:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0MkMxMTAvBgNVBAUTKDFDM0Y5OUEwQzE4MkI1OENDNDVCODExMkYyOTFFMTJB MTUzMzMxRTkwHhcNMjUwNjE0MTYzODM4WhcNMjUwNjIxMTYzODM4WjAYMRYwFAYD VQQDEw02ODRkYTU4Zi0xM2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PTiwVYYBKOSSHSgHp5JF1JOEwhDXHlVm+JSPgXOMBXbFaHtIzQeYUcjkeKl dIohg8L/aao2aPQx6UgUVcCSrC+/C9RKCTN7L781okHKjg+XCwE++X+1f3FbpcSh vBFh/8pAlZx1grjrkscgAQQhyBEHlIYa10GQhMtWLewr7lQmVPK2p6zhVXd4AvyS 4xHvPJuybL9kBem8C2s7JNkle1h64JmVrdmskJOpYR28tuw4jsGCNCmYDmJ+KnN/ AXt6S7WOcwM66lRyaVnegqtlaAJ5c6tNTBjuY0Ck8GyW831e8HJY9TnOENBW/V8R VZqYQgpRl5cQvJKkpkA9qZGquQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHiHdcvc 4zT0ZITJHgxxPKkH7xZGMB8GA1UdIwQYMBaAFBw/maDBgrWMxFuBEvKR4SoVMzHp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQyQy9GMjhDODlDNDAx OUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZekVXNEVTOHBIaEtoVXpN ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hELVpvTUdDdFl6RVc0RVM4cEhoS2hVek1lay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQyQy9GMjhDODlDNDAxOUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZ ekVXNEVTOHBIaEtoVXpNZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7OpdUnT2Bf+OxtKwotKc//DgRyUNKPjaYdP1doQGzGlCoTE97DUEm gZAs4VMTP2L5aprqU3vQlU7Uxh/K03jtqMJYgG4Ex6tFx+rlclcEu6IK616J7nNC R3G4sAC0eGZFySZLBzn3A3DehqpL9eoKI/fLoLefV8/FUSBIoGQTkdFdK/xP0a0R WOcwV2bfNWs9SnwOdTFLAvdfqFBJ6UW6SMTHqLtC3TxvTLUzvjLG1O+UOmkUxP5V 8IqEPCzdBhGI+UOXAYA1u0CZkhjKc/tLGYNLJXHcjxUNW8MbsVmlRchN5tb0oMXQ GLUh60XYdJtaGMMuGN9TadNLIewcpg5K -----END CERTIFICATE-----Generated at Sun Jun 15 07:58:28 2025 by rpki-client