$ rpki-client -vvf rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft File: HN4SRMu7llQubIsJo9rBwbRDaNc.mft (raw, json) Hash identifier: nPM/DLMLYBPV6jl0fjL5LG68XtbIfSgKcGa3I+OTWok= Subject key identifier: DF:FB:A7:E5:D1:BF:5C:AE:3D:57:31:3D:88:AA:33:05:DD:F6:92:F4 Authority key identifier: 1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 Certificate issuer: /CN=A918A498/serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft Manifest number: 51 Signing time: Thu 07 Aug 2025 07:51:46 +0000 Manifest this update: Thu 07 Aug 2025 07:51:45 +0000 Manifest next update: Thu 14 Aug 2025 07:51:45 +0000 Files and hashes: 1: HN4SRMu7llQubIsJo9rBwbRDaNc.crl (hash: gvZtsaJOhaWnKwMnpuRPqUzV42iFxpFvCH9fgzIl/lk=) 2: 62C86698F80A11EFA400AC2FC4F9AE02.roa (hash: UFgylA3DVYfccb8XdgcDubKXiQ2Mtm89Z4YEW6R99s0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A498, serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Validity Not Before: Aug 7 07:51:45 2025 GMT Not After : Aug 14 07:51:45 2025 GMT Subject: CN=68945b12-f101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5f:57:c8:29:68:ad:f0:e7:82:59:25:27:18: 4a:c3:f7:c0:0c:5d:9d:6a:e9:4a:0e:1e:42:f6:d2: ac:68:1d:83:c9:7f:c7:8c:0b:99:12:63:2c:a3:39: b0:09:55:01:be:15:e3:b1:92:32:56:f8:25:7d:5c: 2e:b7:0b:c9:fe:75:3a:74:87:ed:c5:99:8b:b1:df: 62:1f:19:2c:c2:50:1c:fb:e7:63:cf:14:fd:f5:63: ea:d9:06:04:91:a1:2d:f1:bb:f0:0a:5e:77:56:38: ef:9f:53:f8:0c:7e:90:c5:14:ff:f4:42:ed:b1:07: 55:35:5b:db:12:58:8b:e0:03:17:9a:f7:65:dd:35: 6f:22:01:c7:84:f8:b2:5b:a6:18:c3:64:d4:3f:9f: d6:f3:8d:f8:b7:ec:58:ba:fd:70:c5:02:6a:59:d7: 16:ae:d2:2f:56:17:91:45:fa:7e:c6:a1:6f:fa:c0: 09:c9:ee:b4:80:83:bd:82:18:ac:ac:04:e7:90:dc: ae:05:b6:14:a9:a1:8d:04:97:2e:18:25:3b:17:93: e2:38:99:21:4f:94:e1:52:3e:a3:8a:ed:45:71:83: af:5f:78:79:bd:ae:59:ee:9f:9f:be:47:47:14:cf: 08:33:43:34:65:89:92:30:fc:57:c5:4d:31:a8:c0: 96:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:FB:A7:E5:D1:BF:5C:AE:3D:57:31:3D:88:AA:33:05:DD:F6:92:F4 X509v3 Authority Key Identifier: keyid:1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:98:d2:bd:e0:6a:4e:11:5a:ad:f5:95:a6:a1:df:79:77:99: 91:b0:c0:58:c0:a8:a0:65:23:df:b5:02:ff:33:4e:fd:f2:3c: e0:39:f7:91:88:77:96:63:65:15:4a:59:5d:2d:91:49:e8:bb: 64:a1:73:cb:12:5f:a1:35:a8:cf:e0:e2:70:e7:ac:05:c7:65: 9a:0d:96:1f:07:82:a1:d9:c7:83:21:a5:27:60:c8:02:5e:df: 8d:a4:a7:b0:11:d6:43:9a:cb:65:b1:e2:ae:7a:a3:92:94:18: 49:11:f4:e5:a1:77:53:c0:7a:7c:16:83:36:72:89:36:83:57: d6:e1:4f:8a:c0:f2:58:2e:21:53:2e:79:81:9d:62:2d:ac:89: 39:e9:65:b4:2b:3c:ea:2f:8a:c9:15:68:17:a8:88:3c:90:95: 01:a5:73:ed:fa:22:d4:c0:b1:f7:44:da:08:9a:71:8d:7a:e3: 05:de:f7:30:19:1b:cf:25:72:f6:52:09:e7:51:79:3a:d7:41: 9e:3b:21:3d:d9:75:00:a1:83:62:fb:30:cf:05:6f:e8:60:94: 4b:09:f4:9b:60:1b:a8:74:15:50:9a:54:7e:33:34:54:c2:d6: 20:7f:d8:55:46:06:ce:24:ee:39:25:b1:ad:52:ea:72:26:c4: e4:c1:e9:38 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTQ5ODExMC8GA1UEBRMoMUNERTEyNDRDQkJCOTY1NDJFNkM4QjA5QTNEQUMxQzFC NDQzNjhENzAeFw0yNTA4MDcwNzUxNDVaFw0yNTA4MTQwNzUxNDVaMBgxFjAUBgNV BAMTDTY4OTQ1YjEyLWYxMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDX1fIKWit8OeCWSUnGErD98AMXZ1q6UoOHkL20qxoHYPJf8eMC5kSYyyjObAJ VQG+FeOxkjJW+CV9XC63C8n+dTp0h+3FmYux32IfGSzCUBz752PPFP31Y+rZBgSR oS3xu/AKXndWOO+fU/gMfpDFFP/0Qu2xB1U1W9sSWIvgAxea92XdNW8iAceE+LJb phjDZNQ/n9bzjfi37Fi6/XDFAmpZ1xau0i9WF5FF+n7GoW/6wAnJ7rSAg72CGKys BOeQ3K4FthSpoY0Ely4YJTsXk+I4mSFPlOFSPqOK7UVxg69feHm9rlnun5++R0cU zwgzQzRliZIw/FfFTTGowJatAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3/un5dG/ XK49VzE9iKozBd32kvQwHwYDVR0jBBgwFoAUHN4SRMu7llQubIsJo9rBwbRDaNcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDk4L0QyREVEMzQ2Rjgw OTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxRdWJJc0pvOXJCd2JSRGFO Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE40U1JNdTdsbFF1YklzSm85ckJ3YlJEYU5jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB NDk4L0QyREVEMzQ2RjgwOTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxR dWJJc0pvOXJCd2JSRGFOYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAGY0r3gak4RWq31laah33l3mZGwwFjAqKBlI9+1Av8zTv3yPOA595GI d5ZjZRVKWV0tkUnou2Shc8sSX6E1qM/g4nDnrAXHZZoNlh8HgqHZx4MhpSdgyAJe 342kp7AR1kOay2Wx4q56o5KUGEkR9OWhd1PAenwWgzZyiTaDV9bhT4rA8lguIVMu eYGdYi2siTnpZbQrPOoviskVaBeoiDyQlQGlc+36ItTAsfdE2giacY164wXe9zAZ G88lcvZSCedReTrXQZ47IT3ZdQChg2L7MM8Fb+hglEsJ9JtgG6h0FVCaVH4zNFTC 1iB/2FVGBs4k7jklsa1S6nImxOTB6Tg= -----END CERTIFICATE-----Generated at Sat Aug 9 02:50:08 2025 by rpki-client