$ rpki-client -vvf rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft File: HN4SRMu7llQubIsJo9rBwbRDaNc.mft (raw, json) Hash identifier: 7pXVjU1b5AGXNP68dAZZqVOQyv0MdDvbOfGyXA+7OmE= Subject key identifier: B2:7C:B4:58:35:48:EF:52:46:96:68:59:FC:32:B6:67:2B:95:5B:3E Authority key identifier: 1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 Certificate issuer: /CN=A918A498/serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft Manifest number: 35 Signing time: Fri 13 Jun 2025 06:29:55 +0000 Manifest this update: Fri 13 Jun 2025 06:29:55 +0000 Manifest next update: Fri 20 Jun 2025 06:29:55 +0000 Files and hashes: 1: HN4SRMu7llQubIsJo9rBwbRDaNc.crl (hash: 6r7nPkqjo7WUubqFNhlNS2ms5wZkdz1pTiypkNlnrjI=) 2: 62C86698F80A11EFA400AC2FC4F9AE02.roa (hash: UFgylA3DVYfccb8XdgcDubKXiQ2Mtm89Z4YEW6R99s0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:29:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A498, serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Validity Not Before: Jun 13 06:29:55 2025 GMT Not After : Jun 20 06:29:55 2025 GMT Subject: CN=684bc563-1cfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1e:e0:28:ac:56:a6:1e:3d:e6:61:19:91:2c: 3a:1c:73:0a:6f:87:38:76:f5:ea:29:dc:ca:ae:15: a5:0a:04:26:94:8d:1e:20:0c:c2:75:aa:11:ed:9e: 65:2a:4a:1f:e0:9d:27:72:08:38:42:f3:c6:9e:18: 04:2c:e0:fb:6f:b5:c2:ba:64:bd:89:5e:60:33:14: ce:fa:1c:67:8f:d9:91:4e:0b:c9:a7:66:89:ca:e3: 2a:cf:90:7e:1c:d7:d2:ed:4c:13:47:e6:e5:59:76: 3e:95:d8:dd:01:6b:61:13:33:dc:7d:a9:5f:a4:0e: a2:5f:cb:2f:12:ae:13:fa:84:7c:3e:3a:5d:0f:1e: d4:c7:62:78:1e:42:47:37:4a:19:fb:3e:f6:3b:de: 6b:99:e3:60:b9:66:9d:b3:49:bf:ff:0c:82:d6:0b: 15:87:55:9c:65:53:23:22:8c:c0:64:c2:d9:94:e5: 6e:2d:5f:ea:2d:2f:17:42:45:87:b6:5f:8e:ae:19: 8d:0d:1e:5c:c6:9c:e0:ca:c5:24:a2:8d:f6:5b:87: 68:3a:26:f7:d7:a9:f9:f6:d5:ee:17:99:bc:94:b3: 02:f8:db:5a:d0:4c:f4:58:df:75:e7:7e:d5:e5:aa: 08:52:b4:aa:3a:52:f9:7e:f4:ca:2c:da:45:63:df: 0c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:7C:B4:58:35:48:EF:52:46:96:68:59:FC:32:B6:67:2B:95:5B:3E X509v3 Authority Key Identifier: keyid:1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:89:a1:85:03:31:09:eb:1e:29:7a:9a:1a:14:d4:5b:d7:00: 79:c8:0b:e4:a0:02:0b:ab:51:d1:f1:e8:68:8a:f6:33:8f:3e: 5a:11:3c:47:f1:b0:a3:38:56:f2:af:07:7b:53:ca:dd:a7:32: 87:7d:9d:2e:53:e1:81:20:e0:db:b4:4e:24:86:c0:b0:bd:f3: 5e:f9:56:b0:3f:fe:15:13:d7:e9:a7:76:fc:3c:01:af:ba:90: 03:b7:41:a6:f5:e6:78:91:70:ad:85:14:11:00:79:56:0e:12: 6c:3b:37:f4:fb:6d:bf:1e:18:75:6d:ba:96:10:a1:b9:2c:a0: 53:e9:88:6a:10:50:67:8a:94:df:73:7b:0e:9e:97:6c:b5:7b: 5d:74:92:1c:15:cc:88:de:3c:d1:46:be:f8:55:3f:91:46:8b: b1:2a:d2:8c:39:ed:b5:e9:a7:6b:d1:51:f5:c0:b0:35:c6:35: 96:70:db:55:8a:9a:92:93:b8:30:c3:8f:a9:b0:cd:7e:ea:6f: 7e:41:c1:01:d1:3d:b4:ba:9a:65:44:00:58:6d:98:94:b2:4b: 47:0b:c9:7a:21:26:7e:34:9c:15:2b:b5:8f:85:58:7e:31:c8: 8e:6b:86:24:3c:d5:4f:01:3b:a9:38:1c:b3:28:a8:b1:1a:c2: e6:8f:b5:83 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTQ5ODExMC8GA1UEBRMoMUNERTEyNDRDQkJCOTY1NDJFNkM4QjA5QTNEQUMxQzFC NDQzNjhENzAeFw0yNTA2MTMwNjI5NTVaFw0yNTA2MjAwNjI5NTVaMBgxFjAUBgNV BAMTDTY4NGJjNTYzLTFjZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfHuAorFamHj3mYRmRLDoccwpvhzh29eop3MquFaUKBCaUjR4gDMJ1qhHtnmUq Sh/gnSdyCDhC88aeGAQs4PtvtcK6ZL2JXmAzFM76HGeP2ZFOC8mnZonK4yrPkH4c 19LtTBNH5uVZdj6V2N0Ba2ETM9x9qV+kDqJfyy8SrhP6hHw+Ol0PHtTHYngeQkc3 Shn7PvY73muZ42C5Zp2zSb//DILWCxWHVZxlUyMijMBkwtmU5W4tX+otLxdCRYe2 X46uGY0NHlzGnODKxSSijfZbh2g6JvfXqfn21e4XmbyUswL421rQTPRY33XnftXl qghStKo6Uvl+9Mos2kVj3ww3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsny0WDVI 71JGlmhZ/DK2ZyuVWz4wHwYDVR0jBBgwFoAUHN4SRMu7llQubIsJo9rBwbRDaNcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDk4L0QyREVEMzQ2Rjgw OTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxRdWJJc0pvOXJCd2JSRGFO Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE40U1JNdTdsbFF1YklzSm85ckJ3YlJEYU5jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB NDk4L0QyREVEMzQ2RjgwOTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxR dWJJc0pvOXJCd2JSRGFOYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGGJoYUDMQnrHil6mhoU1FvXAHnIC+SgAgurUdHx6GiK9jOPPloRPEfx sKM4VvKvB3tTyt2nMod9nS5T4YEg4Nu0TiSGwLC98175VrA//hUT1+mndvw8Aa+6 kAO3Qab15niRcK2FFBEAeVYOEmw7N/T7bb8eGHVtupYQobksoFPpiGoQUGeKlN9z ew6el2y1e110khwVzIjePNFGvvhVP5FGi7Eq0ow57bXpp2vRUfXAsDXGNZZw21WK mpKTuDDDj6mwzX7qb35BwQHRPbS6mmVEAFhtmJSyS0cLyXohJn40nBUrtY+FWH4x yI5rhiQ81U8BO6k4HLMoqLEawuaPtYM= -----END CERTIFICATE-----Generated at Sun Jun 15 08:07:31 2025 by rpki-client