$ rpki-client -vvf rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft File: HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft (raw, json) Hash identifier: OwxTPXtr0YB60bdZjXdAGjtGYNL1IRkYUnKODZP7VNw= Subject key identifier: EE:24:7C:A3:4A:D3:77:8D:91:2E:DB:0D:D4:9D:50:91:E7:A4:A4:EC Authority key identifier: 1C:62:DC:1D:80:CB:AB:03:03:53:E1:F5:74:B3:60:01:98:FB:6B:71 Certificate issuer: /CN=A916ED18/serialNumber=1C62DC1D80CBAB030353E1F574B3600198FB6B71 Certificate serial: 1967 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HGLcHYDLqwMDU-H1dLNgAZj7a3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft Manifest number: 1951 Signing time: Sun 20 Jul 2025 16:26:46 +0000 Manifest this update: Sun 20 Jul 2025 16:26:46 +0000 Manifest next update: Sun 27 Jul 2025 16:26:46 +0000 Files and hashes: 1: HGLcHYDLqwMDU-H1dLNgAZj7a3E.crl (hash: dw8LP3yN0STZ/3oZaoFvg7ZmGpU6P+jWVQrPXwWCJbk=) 2: BE8F165C873111E9AA82EC27C4F9AE02.roa (hash: 3hzCzmgLP0OteAC7KDBKKCAso9LvkCWYyHJfJCTMisY=) 3: 9C1DF7FC434311ECBE4BAA38C4F9AE02.roa (hash: NzsKwICfagzX9T3AahXgeWsHOEBVdu2eB1iizPCz1SA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.crl rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HGLcHYDLqwMDU-H1dLNgAZj7a3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:26:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6503 (0x1967) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916ED18, serialNumber=1C62DC1D80CBAB030353E1F574B3600198FB6B71 Validity Not Before: Jul 20 16:26:46 2025 GMT Not After : Jul 27 16:26:46 2025 GMT Subject: CN=687d18c6-6dd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e1:50:04:b4:85:6e:50:60:df:22:c7:24:b5: b9:0c:8b:1b:19:9b:26:d9:65:e5:2e:ca:aa:9a:16: 3a:0c:b2:94:6b:ae:11:e6:3d:bb:1a:70:bb:02:f1: 6d:63:37:2d:35:72:53:c2:b1:16:f0:27:71:d4:b7: 04:77:b7:6a:64:1c:f9:13:58:43:78:3d:cf:dc:6d: 80:bd:cb:5d:27:f1:c8:3d:e8:2b:3e:94:62:d4:e7: 36:9c:ee:d9:72:b9:bd:6f:53:4c:19:f9:59:f2:3c: 3b:5a:5f:e7:ca:bf:e0:a2:88:d3:90:7d:d9:aa:40: 25:b9:3c:3a:c4:ff:97:d2:27:30:ca:eb:80:99:6f: 9e:6a:57:86:79:5e:d0:40:bc:68:9a:d3:12:db:12: 87:88:81:54:3d:39:b7:32:94:5d:6d:5d:ef:fe:8d: 02:9c:2d:db:a7:9f:71:a0:a1:3a:5c:cd:4f:e3:ba: ef:b5:2c:13:49:a4:30:10:93:b9:4e:c8:96:22:00: 5b:9c:2e:d9:95:9c:8d:64:15:71:d9:08:50:1a:be: 52:33:fe:61:67:0b:81:a0:7a:89:3c:23:57:ba:04: df:a6:56:f8:82:90:84:80:8b:97:0b:30:07:5c:f2: a7:e5:45:c4:78:70:f8:40:40:35:0b:ba:73:9e:b1: 60:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:24:7C:A3:4A:D3:77:8D:91:2E:DB:0D:D4:9D:50:91:E7:A4:A4:EC X509v3 Authority Key Identifier: keyid:1C:62:DC:1D:80:CB:AB:03:03:53:E1:F5:74:B3:60:01:98:FB:6B:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HGLcHYDLqwMDU-H1dLNgAZj7a3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:0a:3c:a1:d1:cd:c2:c2:de:1e:d6:57:92:bc:7e:54:b0:c3: a4:75:5b:22:c6:c3:08:15:7b:74:e8:6d:c1:dd:a9:9e:58:95: 16:02:56:af:13:b5:08:de:f1:f2:6b:ae:d9:0d:86:9e:04:16: 67:b3:2f:b2:31:06:51:d9:d4:f0:05:d9:7f:f6:ce:88:68:b0: 17:c5:d9:10:7d:d2:82:19:4a:09:48:ee:01:48:87:ed:3f:17: b4:b2:5c:bc:8e:9f:63:67:ec:4e:bf:21:f9:5d:84:57:ce:a3: d6:0d:bc:18:2f:65:a3:08:25:91:fb:46:f8:6d:50:19:40:1a: 1d:38:1a:c9:5a:42:65:ce:9d:3c:c4:38:b8:eb:f0:2f:e7:b0: c7:13:17:1d:93:15:32:86:62:92:aa:d2:5c:2b:1d:dc:4d:37: 96:af:d3:bd:46:93:a4:26:bf:8b:68:1d:ad:cc:1c:ff:d2:4b: 0c:e9:d3:38:9b:be:87:32:a3:db:8a:97:0a:69:e4:02:7f:38: 76:3a:7e:36:2d:a4:0d:d3:1a:cb:9e:57:bc:1d:84:12:63:67: 84:03:cc:50:ea:17:b0:54:f7:b2:0b:1f:55:98:da:5d:80:0c: 8f:ba:6d:57:81:60:cf:26:b0:4c:4d:0c:58:5c:e2:45:16:7d: 19:7e:48:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVEMTgxMTAvBgNVBAUTKDFDNjJEQzFEODBDQkFCMDMwMzUzRTFGNTc0QjM2MDAx OThGQjZCNzEwHhcNMjUwNzIwMTYyNjQ2WhcNMjUwNzI3MTYyNjQ2WjAYMRYwFAYD VQQDEw02ODdkMThjNi02ZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOFQBLSFblBg3yLHJLW5DIsbGZsm2WXlLsqqmhY6DLKUa64R5j27GnC7AvFt YzctNXJTwrEW8Cdx1LcEd7dqZBz5E1hDeD3P3G2AvctdJ/HIPegrPpRi1Oc2nO7Z crm9b1NMGflZ8jw7Wl/nyr/goojTkH3ZqkAluTw6xP+X0icwyuuAmW+ealeGeV7Q QLxomtMS2xKHiIFUPTm3MpRdbV3v/o0CnC3bp59xoKE6XM1P47rvtSwTSaQwEJO5 TsiWIgBbnC7ZlZyNZBVx2QhQGr5SM/5hZwuBoHqJPCNXugTfplb4gpCEgIuXCzAH XPKn5UXEeHD4QEA1C7pznrFgAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO4kfKNK 03eNkS7bDdSdUJHnpKTsMB8GA1UdIwQYMBaAFBxi3B2Ay6sDA1Ph9XSzYAGY+2tx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUQxOC9GRkZFQzExQTdB RjgxMUU3ODk4QTZGMkVDNEY5QUUwMi9IR0xjSFlETHF3TURVLUgxZExOZ0Faajdh M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hHTGNIWURMcXdNRFUtSDFkTE5nQVpqN2EzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUQxOC9GRkZFQzExQTdBRjgxMUU3ODk4QTZGMkVDNEY5QUUwMi9IR0xjSFlETHF3 TURVLUgxZExOZ0FaajdhM0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJCjyh0c3Cwt4e1leSvH5UsMOkdVsixsMIFXt06G3B3ameWJUWAlav E7UI3vHya67ZDYaeBBZnsy+yMQZR2dTwBdl/9s6IaLAXxdkQfdKCGUoJSO4BSIft Pxe0sly8jp9jZ+xOvyH5XYRXzqPWDbwYL2WjCCWR+0b4bVAZQBodOBrJWkJlzp08 xDi46/Av57DHExcdkxUyhmKSqtJcKx3cTTeWr9O9RpOkJr+LaB2tzBz/0ksM6dM4 m76HMqPbipcKaeQCfzh2On42LaQN0xrLnle8HYQSY2eEA8xQ6hewVPeyCx9VmNpd gAyPum1XgWDPJrBMTQxYXOJFFn0Zfkj7 -----END CERTIFICATE-----Generated at Mon Jul 21 07:28:08 2025 by rpki-client