$ rpki-client -vvf rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft File: HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft (raw, json) Hash identifier: n5bupu8b7xTxTwPsQ6QfXDNfbbV+d8lVkX/x2HybC58= Subject key identifier: 3A:6F:20:E5:BF:02:69:FC:16:59:AD:A0:F8:90:6E:71:36:F8:90:83 Authority key identifier: 1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 Certificate issuer: /CN=A918742C/serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Certificate serial: 16E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft Manifest number: 16D7 Signing time: Tue 04 Nov 2025 16:45:21 +0000 Manifest this update: Tue 04 Nov 2025 16:45:20 +0000 Manifest next update: Tue 11 Nov 2025 16:45:20 +0000 Files and hashes: 1: HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl (hash: RJy3EZckqx68/DdOuhVgZjYAMlpnZ3o/27aIQCn/UBE=) 2: 8DFAE1DA019D11E8A7804A1EC4F9AE02.roa (hash: 85zAa/NDU6R+uxxVwM+5q1AHLvo6RcZxo+KYtDUWQJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:45:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5857 (0x16e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918742C, serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Validity Not Before: Nov 4 16:45:20 2025 GMT Not After : Nov 11 16:45:20 2025 GMT Subject: CN=690a2da0-031a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:44:2d:76:8c:a1:c1:49:88:2b:f2:d7:1d:e2: d6:11:82:27:9c:f6:90:1e:4c:f3:2a:e3:4e:cb:48: 3f:c3:03:32:5f:63:85:36:b7:6b:83:27:83:2c:8b: 98:43:ab:3f:26:c7:27:e7:68:28:71:a4:36:f6:f7: 0d:e3:d0:89:d4:89:4c:49:6d:f3:c4:d2:3d:b1:76: 59:6e:a6:f2:b1:dc:32:c8:4b:82:63:f0:87:b8:e8: 30:d5:b6:e3:0b:9c:9a:fe:07:eb:2c:ca:c2:f8:01: cc:e8:7a:35:9e:e7:05:21:ce:f7:0c:17:86:b1:05: 91:52:36:4b:ef:e9:d6:d8:1a:97:9b:bf:4a:ae:57: 85:37:fb:ed:b8:c0:19:52:40:44:d4:ec:90:7d:82: 9c:c0:37:41:1f:3d:5c:9d:a2:bd:63:35:75:8f:c9: 09:3f:65:3d:2f:c4:99:8e:85:a1:c4:fd:28:24:3e: de:fd:32:42:4d:89:00:0d:86:bd:0e:1c:f1:69:af: 07:2b:7d:74:cf:64:64:fe:fe:23:6f:4d:eb:6f:c0: bf:78:ce:43:1b:a0:12:fa:4a:18:84:5d:0b:7d:e6: 83:0e:76:ff:cc:da:fa:36:b2:2a:8e:d2:b1:3f:42: c0:fc:45:cb:55:fb:fa:b6:ff:cb:3c:94:a5:2e:9f: fb:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:6F:20:E5:BF:02:69:FC:16:59:AD:A0:F8:90:6E:71:36:F8:90:83 X509v3 Authority Key Identifier: keyid:1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:af:b1:7c:56:0c:b9:5b:96:ae:3d:9f:ae:ca:5d:37:3b:79: d7:5a:4e:fd:bf:ca:5f:b0:c8:bf:02:d8:e6:58:5d:5b:c1:85: a0:bd:29:b1:da:f2:7e:bf:dd:32:3b:b0:82:1d:d2:a4:9e:90: 8e:0d:03:65:42:34:11:2f:af:1e:7b:87:e2:1d:15:ef:4e:4b: f2:e2:9e:42:54:08:89:0b:00:b7:0e:6f:e2:d6:a0:2f:67:15: 09:f0:0f:83:9b:7d:67:11:db:ee:84:a9:38:c8:50:59:09:9a: aa:f1:3f:25:0e:46:d9:39:8c:a8:3a:62:55:cc:92:50:c1:ae: a3:b8:cc:96:66:83:3d:62:04:5c:9c:a6:18:a5:12:2b:8e:51: 6f:a8:0d:00:9f:36:5d:61:d5:5e:52:81:0c:e9:f6:2d:e9:83: 14:66:03:d3:d3:d4:6e:22:9a:6f:d7:d3:d0:d9:23:c0:d2:be: 86:46:13:19:24:77:0a:c0:53:d9:34:e0:9c:fe:03:47:9f:11: 40:75:22:82:a6:81:83:30:10:fe:f2:0d:b6:12:91:77:a5:29: 1a:b5:a9:e2:4c:0b:f0:2b:07:1a:ae:25:c4:bf:59:a0:ac:fe: 56:6e:2a:cd:f5:10:9c:8b:7a:dc:23:09:01:e5:7b:32:bd:e1: 37:e0:ee:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0MkMxMTAvBgNVBAUTKDFDM0Y5OUEwQzE4MkI1OENDNDVCODExMkYyOTFFMTJB MTUzMzMxRTkwHhcNMjUxMTA0MTY0NTIwWhcNMjUxMTExMTY0NTIwWjAYMRYwFAYD VQQDEw02OTBhMmRhMC0wMzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukQtdoyhwUmIK/LXHeLWEYInnPaQHkzzKuNOy0g/wwMyX2OFNrdrgyeDLIuY Q6s/Jscn52gocaQ29vcN49CJ1IlMSW3zxNI9sXZZbqbysdwyyEuCY/CHuOgw1bbj C5ya/gfrLMrC+AHM6Ho1nucFIc73DBeGsQWRUjZL7+nW2BqXm79KrleFN/vtuMAZ UkBE1OyQfYKcwDdBHz1cnaK9YzV1j8kJP2U9L8SZjoWhxP0oJD7e/TJCTYkADYa9 Dhzxaa8HK310z2Rk/v4jb03rb8C/eM5DG6AS+koYhF0LfeaDDnb/zNr6NrIqjtKx P0LA/EXLVfv6tv/LPJSlLp/7EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpvIOW/ Amn8FlmtoPiQbnE2+JCDMB8GA1UdIwQYMBaAFBw/maDBgrWMxFuBEvKR4SoVMzHp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQyQy9GMjhDODlDNDAx OUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZekVXNEVTOHBIaEtoVXpN ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hELVpvTUdDdFl6RVc0RVM4cEhoS2hVek1lay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQyQy9GMjhDODlDNDAxOUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZ ekVXNEVTOHBIaEtoVXpNZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzr7F8Vgy5W5auPZ+uyl03O3nXWk79v8pfsMi/AtjmWF1bwYWgvSmx 2vJ+v90yO7CCHdKknpCODQNlQjQRL68ee4fiHRXvTkvy4p5CVAiJCwC3Dm/i1qAv ZxUJ8A+Dm31nEdvuhKk4yFBZCZqq8T8lDkbZOYyoOmJVzJJQwa6juMyWZoM9YgRc nKYYpRIrjlFvqA0AnzZdYdVeUoEM6fYt6YMUZgPT09RuIppv19PQ2SPA0r6GRhMZ JHcKwFPZNOCc/gNHnxFAdSKCpoGDMBD+8g22EpF3pSkataniTAvwKwcariXEv1mg rP5WbirN9RCci3rcIwkB5XsyveE34O7M -----END CERTIFICATE-----Generated at Wed Nov 5 05:50:18 2025 by rpki-client