$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft File: HsQsG2nhb183xz2Bv5-rH0ukIyk.mft (raw, json) Hash identifier: XTRpITEWhfmphMZxEy0RGtZ6thgcSDfAzdDVXzvjd+k= Subject key identifier: FD:C6:BE:28:D1:13:D3:2A:48:9A:06:1A:7B:B2:38:1E:16:EE:D6:E1 Authority key identifier: 1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 Certificate issuer: /CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Certificate serial: 0A88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft Manifest number: 0A26 Signing time: Sat 14 Jun 2025 19:47:30 +0000 Manifest this update: Sat 14 Jun 2025 19:47:30 +0000 Manifest next update: Sat 21 Jun 2025 19:47:30 +0000 Files and hashes: 1: HsQsG2nhb183xz2Bv5-rH0ukIyk.crl (hash: 8NmdLXp/bJBFwCt7Ye/23WnuQVj/ooyGrg8pCbQgQc0=) 2: A81364AC4B0611EF91534014C4F9AE02.roa (hash: w/5bZBiXDjvqgxnP7qfHyeDTFEoVXi8DgwG0C4ccn5Q=) 3: D9AFDBC2400111EFBB30C475C4F9AE02.roa (hash: Ve3ejv62M16tRhsxP6f89AusOlZpUFORwV+rrPuD1sg=) 4: 73DC26744B0611EF8698EB13C4F9AE02.roa (hash: ybrtkQR3uxqIC7ty9/ANRKrx+CuUtT0biIda1i5SZAg=) 5: B8D18508EDE011EF88407251C4F9AE02.roa (hash: 7FKsDT71I8DwEjcBpbCZQH8HmSgZkJ2Kdkp2VjtHRzA=) 6: 6C68485C5A1D11EFA9989052C4F9AE02.roa (hash: eMC9itpv3oFgg3wC16WZV3uYeAr5DZklaR+zjZUUL1Q=) 7: A7A72BF24B0611EF91534014C4F9AE02.roa (hash: 5X86twqvrwj9rAMXwE7dxiHPJmnmzTIw/q2mjxKYTMU=) 8: D42F0D06B51611EEADC7924BC4F9AE02.roa (hash: 74YlPjSTLEaBRhMrN5akas7kNpehqYE1ysoQhZlJDuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2696 (0xa88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661, serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Validity Not Before: Jun 14 19:47:30 2025 GMT Not After : Jun 21 19:47:30 2025 GMT Subject: CN=684dd1d2-12c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8c:b4:83:5f:ec:4a:ae:77:05:36:46:ad:19: 1e:72:62:ac:f1:0c:6b:78:39:be:af:c7:94:6f:08: b9:14:56:08:ea:cb:0b:ec:c6:f4:bc:28:ee:0a:18: de:22:80:0b:77:5e:24:74:c2:5f:a9:fe:f1:39:37: 65:f6:ad:df:d8:8e:7b:49:51:08:ae:be:6e:5f:06: 0f:52:b2:3d:05:66:2b:0b:80:36:22:87:7d:b5:fd: 5d:68:d8:29:78:7f:81:81:ae:15:cf:0f:96:37:11: 2c:3e:d0:c4:84:ac:90:73:1c:29:ad:4e:e1:06:c8: 23:d6:3f:bb:bc:a5:86:4f:b1:0b:d0:ce:d8:9b:c8: ba:55:34:0a:ac:6f:0a:b4:52:53:3a:75:c5:ae:5b: 68:ee:5d:da:ed:8e:e4:1d:8b:b3:86:87:4e:24:ad: e4:85:28:79:82:58:b6:89:9f:21:40:45:f4:0c:dd: f3:a6:f5:05:1b:7c:51:5f:f2:c8:e4:1d:ab:65:9c: 98:a7:64:ce:0b:f4:dd:ff:e8:59:fa:a7:8c:4a:16: 2a:0b:57:c4:67:1c:f9:c6:8f:ff:43:e8:63:ec:ed: 1e:14:a7:58:9d:38:bc:7b:e7:cc:2e:12:72:e4:78: 5e:b9:68:a7:05:6a:f6:32:b4:ea:b9:f5:c3:69:21: 3d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:C6:BE:28:D1:13:D3:2A:48:9A:06:1A:7B:B2:38:1E:16:EE:D6:E1 X509v3 Authority Key Identifier: keyid:1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:71:96:f9:e5:96:55:33:a5:ce:5e:b7:53:c1:ce:f8:57:8e: b6:49:f0:4d:98:a8:38:d3:dc:4e:1b:74:fc:7d:b9:b9:55:19: 3b:ed:6e:00:70:b0:1a:e0:25:5e:31:af:be:56:07:9a:81:16: 34:d0:6d:00:3f:3e:c6:17:f4:12:bd:5b:ed:77:a1:bb:44:31: 2e:33:49:6f:9f:7f:31:be:0e:67:fd:3a:66:ec:cd:68:79:b1: 07:da:39:fe:92:66:3f:86:9f:b6:bb:f7:a7:cd:d3:54:a2:54: e4:47:50:fd:86:1f:8f:f9:57:50:c4:7d:25:5e:a9:df:3e:37: a8:75:6a:40:5a:c2:22:61:d9:e9:a1:3c:94:ff:e8:f2:68:44: 0e:c5:64:dc:ec:7f:09:0a:23:e9:32:b0:a6:f6:e3:fb:45:39: 7f:75:5c:37:b5:81:7c:39:1e:4e:bb:00:9b:78:f2:5b:79:72: c4:8e:92:d1:78:ce:49:56:bb:91:90:f6:6a:ec:f4:5e:c5:e7: 0e:4c:78:b6:3c:54:4f:ae:07:19:99:5c:35:9e:29:4c:16:26: 52:3b:9f:c6:b8:93:7f:61:15:f6:f7:09:3c:77:f9:29:5c:f5: ca:cf:f4:99:d8:70:72:81:6e:1d:26:56:3b:4c:c9:e5:25:b2: 01:bd:ae:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDFFQzQyQzFCNjlFMTZGNUYzN0M3M0Q4MUJGOUZBQjFG NEJBNDIzMjkwHhcNMjUwNjE0MTk0NzMwWhcNMjUwNjIxMTk0NzMwWjAYMRYwFAYD VQQDEw02ODRkZDFkMi0xMmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroy0g1/sSq53BTZGrRkecmKs8QxreDm+r8eUbwi5FFYI6ssL7Mb0vCjuChje IoALd14kdMJfqf7xOTdl9q3f2I57SVEIrr5uXwYPUrI9BWYrC4A2Iod9tf1daNgp eH+Bga4Vzw+WNxEsPtDEhKyQcxwprU7hBsgj1j+7vKWGT7EL0M7Ym8i6VTQKrG8K tFJTOnXFrlto7l3a7Y7kHYuzhodOJK3khSh5gli2iZ8hQEX0DN3zpvUFG3xRX/LI 5B2rZZyYp2TOC/Td/+hZ+qeMShYqC1fEZxz5xo//Q+hj7O0eFKdYnTi8e+fMLhJy 5HheuWinBWr2MrTqufXDaSE96QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3GvijR E9MqSJoGGnuyOB4W7tbhMB8GA1UdIwQYMBaAFB7ELBtp4W9fN8c9gb+fqx9LpCMp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wQkJEOUVBMjgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIxODN4ejJCdjUtckgwdWtJ eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hzUXNHMm5oYjE4M3h6MkJ2NS1ySDB1a0l5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzY2MS8wQkJEOUVBMjgzNkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIx ODN4ejJCdjUtckgwdWtJeWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKcZb55ZZVM6XOXrdTwc74V462SfBNmKg409xOG3T8fbm5VRk77W4A cLAa4CVeMa++VgeagRY00G0APz7GF/QSvVvtd6G7RDEuM0lvn38xvg5n/Tpm7M1o ebEH2jn+kmY/hp+2u/enzdNUolTkR1D9hh+P+VdQxH0lXqnfPjeodWpAWsIiYdnp oTyU/+jyaEQOxWTc7H8JCiPpMrCm9uP7RTl/dVw3tYF8OR5OuwCbePJbeXLEjpLR eM5JVruRkPZq7PRexecOTHi2PFRPrgcZmVw1nilMFiZSO5/GuJN/YRX29wk8d/kp XPXKz/SZ2HBygW4dJlY7TMnlJbIBva5o -----END CERTIFICATE-----Generated at Sun Jun 15 09:29:56 2025 by rpki-client