$ rpki-client -vvf rpki.apnic.net/member_repository/A9133953/122D8D28A49611E7A926ED4DC4F9AE02/HmeMaiF9cVsw2csi1fiE0XxWmbY.mft File: HmeMaiF9cVsw2csi1fiE0XxWmbY.mft (raw, json) Hash identifier: PfpqkG/3Poic+6JD3TUsTotPPsHph+yhpTkFK4EtGT0= Subject key identifier: D0:C4:FE:50:92:42:9F:04:F2:4F:4A:2F:53:45:7E:09:CB:A4:DE:B7 Authority key identifier: 1E:67:8C:6A:21:7D:71:5B:30:D9:CB:22:D5:F8:84:D1:7C:56:99:B6 Certificate issuer: /CN=A9133953/serialNumber=1E678C6A217D715B30D9CB22D5F884D17C5699B6 Certificate serial: 189D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmeMaiF9cVsw2csi1fiE0XxWmbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133953/122D8D28A49611E7A926ED4DC4F9AE02/HmeMaiF9cVsw2csi1fiE0XxWmbY.mft Manifest number: 1881 Signing time: Sun 20 Jul 2025 16:31:32 +0000 Manifest this update: Sun 20 Jul 2025 16:31:31 +0000 Manifest next update: Sun 27 Jul 2025 16:31:31 +0000 Files and hashes: 1: HmeMaiF9cVsw2csi1fiE0XxWmbY.crl (hash: lsqPmdm4GG9glFkSVRYKumDOuvoWR3nL9ZxxCLsIlWQ=) 2: D34372461C8D11E9B21BD858C4F9AE02.roa (hash: KJiYW9fyvj2KonkdW9uDFpKuQ1dT83diO/QTtAE0e3A=) 3: A2BE54D2228B11F09A2FAA12C4F9AE02.roa (hash: KFzJJioj1JdEaM7mj8QrDhe5X+FxHdHyz1gyMqXEJCI=) 4: 3DC507001C8F11E9990F665CC4F9AE02.roa (hash: /Xd8kuiaq1Q5eF4PAbm/NjtYZtrHCHK1WvQKBeYKntw=) 5: A55682E0821A11EE9104BB68C4F9AE02.roa (hash: Frk606k9XfomHW0x/AMLebHr43yDTcWmfdXiLloTTiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133953/122D8D28A49611E7A926ED4DC4F9AE02/HmeMaiF9cVsw2csi1fiE0XxWmbY.crl rsync://rpki.apnic.net/member_repository/A9133953/122D8D28A49611E7A926ED4DC4F9AE02/HmeMaiF9cVsw2csi1fiE0XxWmbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmeMaiF9cVsw2csi1fiE0XxWmbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6301 (0x189d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133953, serialNumber=1E678C6A217D715B30D9CB22D5F884D17C5699B6 Validity Not Before: Jul 20 16:31:31 2025 GMT Not After : Jul 27 16:31:31 2025 GMT Subject: CN=687d19e3-3323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e0:1d:8f:8a:0a:2c:1d:51:9a:2a:d1:a5:72: 2b:5e:b1:94:c8:d3:5b:b7:d5:c4:61:20:37:a3:ba: 83:fc:87:22:ad:5e:5b:a8:71:78:82:22:00:52:e7: b8:a0:6d:41:de:5e:bc:78:58:05:1d:5e:1f:b5:cd: 25:6d:b5:00:97:0a:1d:2a:38:05:b9:5a:c9:6e:30: a0:92:6d:cb:6a:53:21:da:79:84:48:f6:17:ac:b5: 0f:5f:b4:3c:03:4f:88:41:7d:3b:26:91:13:4e:7f: f8:80:d4:3f:37:3e:df:62:88:f0:bc:91:1d:24:cc: 11:6a:1c:f9:84:2f:38:8d:03:0c:76:77:ff:ca:af: a4:f1:d3:a6:ee:23:f7:63:cb:c9:a9:57:c4:db:c5: 13:b0:b7:f4:52:c6:f7:34:46:83:10:25:2a:f1:62: 94:6a:78:b5:ba:89:cb:b2:48:0e:8a:e6:ba:ea:9e: 3c:c1:87:89:e3:ba:f4:43:92:50:79:f1:fd:63:9e: ae:61:69:3e:65:57:ce:4a:37:da:de:36:b9:45:a6: ab:62:17:7d:fe:85:fc:5f:86:de:33:7a:48:d5:48: 97:3a:c2:d5:c8:e8:97:2c:5c:59:1a:82:32:4b:24: e2:e2:16:e8:2a:e0:18:bd:36:fd:89:22:95:ad:bd: f5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C4:FE:50:92:42:9F:04:F2:4F:4A:2F:53:45:7E:09:CB:A4:DE:B7 X509v3 Authority Key Identifier: keyid:1E:67:8C:6A:21:7D:71:5B:30:D9:CB:22:D5:F8:84:D1:7C:56:99:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133953/122D8D28A49611E7A926ED4DC4F9AE02/HmeMaiF9cVsw2csi1fiE0XxWmbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmeMaiF9cVsw2csi1fiE0XxWmbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133953/122D8D28A49611E7A926ED4DC4F9AE02/HmeMaiF9cVsw2csi1fiE0XxWmbY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:b3:6f:49:6b:77:8c:75:59:db:8b:5d:97:fa:dc:e6:10:f1: 6a:f9:01:4d:58:ee:63:0b:7e:fb:e9:dd:d8:7a:5b:18:1c:ca: 0d:92:29:99:bf:3e:bf:70:b0:d2:79:b0:39:59:14:be:de:c9: 47:d9:08:95:f5:2f:ed:f5:d2:ae:58:79:62:d5:7d:ff:6e:68: f0:d0:d6:19:3c:bf:aa:fb:0a:ac:c3:0a:36:09:03:13:2a:e4: 62:c1:64:9b:ff:23:b5:5a:2e:ec:8f:0e:4e:9b:0c:2d:9a:b5: b3:8c:bb:fb:e7:c8:9a:78:6f:e0:09:de:25:7f:08:d9:34:fa: ad:72:b1:fb:8f:f8:cf:04:1b:52:bb:f1:0d:24:a2:4a:b2:1a: a5:de:b1:70:21:78:d6:ca:aa:74:39:66:29:13:82:68:36:81: 1b:ae:93:85:6c:e8:c4:d7:8a:90:7d:b9:13:8a:a6:7d:90:ec: b7:23:16:7a:e0:4d:4a:6f:ba:4b:85:f6:24:e8:8b:ba:23:a7: 2c:22:b7:30:e4:d1:20:d8:45:66:98:dd:b1:53:20:fd:70:58: 19:46:ca:a5:cd:e5:ca:47:f7:d7:3f:4a:9c:2d:0f:b1:83:a4: 0f:3d:44:0a:57:26:4f:9d:c4:8e:a3:11:e1:38:82:e8:dc:8c: 6c:56:6f:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM5NTMxMTAvBgNVBAUTKDFFNjc4QzZBMjE3RDcxNUIzMEQ5Q0IyMkQ1Rjg4NEQx N0M1Njk5QjYwHhcNMjUwNzIwMTYzMTMxWhcNMjUwNzI3MTYzMTMxWjAYMRYwFAYD VQQDEw02ODdkMTllMy0zMzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uAdj4oKLB1RmirRpXIrXrGUyNNbt9XEYSA3o7qD/IcirV5bqHF4giIAUue4 oG1B3l68eFgFHV4ftc0lbbUAlwodKjgFuVrJbjCgkm3LalMh2nmESPYXrLUPX7Q8 A0+IQX07JpETTn/4gNQ/Nz7fYojwvJEdJMwRahz5hC84jQMMdnf/yq+k8dOm7iP3 Y8vJqVfE28UTsLf0Usb3NEaDECUq8WKUani1uonLskgOiua66p48wYeJ47r0Q5JQ efH9Y56uYWk+ZVfOSjfa3ja5RaarYhd9/oX8X4beM3pI1UiXOsLVyOiXLFxZGoIy SyTi4hboKuAYvTb9iSKVrb31rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNDE/lCS Qp8E8k9KL1NFfgnLpN63MB8GA1UdIwQYMBaAFB5njGohfXFbMNnLItX4hNF8Vpm2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzk1My8xMjJEOEQyOEE0 OTYxMUU3QTkyNkVENERDNEY5QUUwMi9IbWVNYWlGOWNWc3cyY3NpMWZpRTBYeFdt YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htZU1haUY5Y1ZzdzJjc2kxZmlFMFh4V21iWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mzk1My8xMjJEOEQyOEE0OTYxMUU3QTkyNkVENERDNEY5QUUwMi9IbWVNYWlGOWNW c3cyY3NpMWZpRTBYeFdtYlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTs29Ja3eMdVnbi12X+tzmEPFq+QFNWO5jC3776d3YelsYHMoNkimZ vz6/cLDSebA5WRS+3slH2QiV9S/t9dKuWHli1X3/bmjw0NYZPL+q+wqswwo2CQMT KuRiwWSb/yO1Wi7sjw5OmwwtmrWzjLv758iaeG/gCd4lfwjZNPqtcrH7j/jPBBtS u/ENJKJKshql3rFwIXjWyqp0OWYpE4JoNoEbrpOFbOjE14qQfbkTiqZ9kOy3IxZ6 4E1Kb7pLhfYk6Iu6I6csIrcw5NEg2EVmmN2xUyD9cFgZRsqlzeXKR/fXP0qcLQ+x g6QPPUQKVyZPncSOoxHhOILo3IxsVm/j -----END CERTIFICATE-----Generated at Mon Jul 21 08:07:56 2025 by rpki-client