$ rpki-client -vvf rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft File: HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft (raw, json) Hash identifier: Hb4jhf9GURPkcLFsWp0/y22hcDLicm3CZoD7+qbrKw8= Subject key identifier: A3:F6:8A:07:86:FF:82:8E:D3:E0:74:C0:CD:12:33:E3:F5:77:5A:3E Authority key identifier: 1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 Certificate issuer: /CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Certificate serial: 0B53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft Manifest number: 0B25 Signing time: Tue 16 Sep 2025 19:36:13 +0000 Manifest this update: Tue 16 Sep 2025 19:36:13 +0000 Manifest next update: Tue 23 Sep 2025 19:36:13 +0000 Files and hashes: 1: HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl (hash: sfWz4+CG8b2pUflAUThZJ41iSil+L8LCzwXpc7l8V70=) 2: 1AB6B24A502211F0AFF2E30FC4F9AE02.roa (hash: 2QerLmtFHY48UeZhmV6pCrS0LhLRpqATZj6aiM1bwoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 19:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2899 (0xb53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F721, serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Validity Not Before: Sep 16 19:36:13 2025 GMT Not After : Sep 23 19:36:13 2025 GMT Subject: CN=68c9bc2d-3820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d9:97:f8:27:a1:92:e9:34:84:41:52:52:f4: b9:d5:d2:82:1b:7c:98:85:d9:ae:a9:48:ca:89:53: 1a:ef:fc:54:59:d1:a2:65:0d:a2:35:0a:26:e2:21: d3:80:a0:1d:5f:70:92:68:02:3e:bb:0d:db:63:80: 20:2f:78:1d:13:7f:a4:9d:c6:11:56:ac:8b:66:01: 99:9e:a1:34:85:73:a0:ea:c6:6f:8e:7f:d6:f6:91: dd:0a:ab:55:0e:3c:0a:00:ed:03:61:6c:bd:f5:ab: 40:c5:ae:ae:3a:6a:b4:f8:84:11:a2:88:1f:a1:f3: aa:3c:17:0b:81:b5:dd:db:87:a1:63:15:fa:1b:4b: ab:09:c8:6f:ed:cf:25:97:84:e9:b0:1f:b9:a8:94: ed:f3:eb:16:d8:60:22:61:dd:36:56:bc:5c:4c:ec: 6c:ec:fb:cf:ef:89:16:3f:d6:3b:7f:c0:74:65:bc: 93:ae:9b:1d:64:e9:17:92:ea:36:79:19:91:c6:b1: 39:15:0d:30:2a:98:d4:37:55:ce:03:13:52:6c:63: cb:52:72:75:ab:e9:1b:c3:9a:9d:96:4b:fe:47:31: be:bd:21:3b:8f:59:a8:a1:d6:92:1e:03:93:e9:21: 76:7e:5d:88:50:0a:6e:05:8d:24:c0:64:24:f1:49: fa:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:F6:8A:07:86:FF:82:8E:D3:E0:74:C0:CD:12:33:E3:F5:77:5A:3E X509v3 Authority Key Identifier: keyid:1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:1a:e7:21:b3:c4:1e:49:d8:98:e3:fd:1c:53:5d:d5:9e:8f: d1:40:ed:79:ea:9b:43:ce:9c:99:5c:a6:0e:bc:e5:97:a7:ad: 26:e9:fe:4c:b3:78:bd:49:3b:bb:3e:e4:ad:08:e1:26:27:80: b1:f0:be:ee:34:0e:dd:84:b9:9c:8e:97:cc:5c:aa:28:d7:d3: 5a:42:16:e1:54:7b:ed:dc:45:f5:1f:85:03:a1:1b:f8:36:e3: 43:90:0f:96:bd:5f:4d:c2:b4:58:9d:71:7d:bb:4d:e4:57:9e: 3f:40:dd:ea:d8:00:00:4f:b0:5d:ae:09:b2:73:e3:9d:11:cd: be:3a:c1:8e:e9:06:d0:f5:9d:8d:f8:16:58:e9:16:0a:94:89: a7:9a:0b:9e:99:91:6c:99:32:34:c2:11:bc:90:94:b4:24:77: 82:0a:a6:5d:20:b5:11:b1:25:6d:55:ad:15:0d:90:a1:31:e7: d2:73:8e:1d:d7:b6:92:a5:cf:ee:ef:b7:56:31:85:bf:76:1b: b7:a3:75:d9:de:40:dd:cb:4f:83:71:e2:b7:0d:cd:44:c3:3c: f5:83:ca:c5:f4:4d:9f:73:98:e4:73:b7:09:1a:fd:38:fe:81: 32:05:8c:3b:45:32:36:a0:98:f0:27:cb:4f:67:50:22:f8:07: a5:41:76:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y3MjExMTAvBgNVBAUTKDFERDcxN0IyMjk5MzYxOTBDRUI2NjdDN0NFMUNBOUY5 QkZCNUZBQzQwHhcNMjUwOTE2MTkzNjEzWhcNMjUwOTIzMTkzNjEzWjAYMRYwFAYD VQQDEw02OGM5YmMyZC0zODIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtmX+Cehkuk0hEFSUvS51dKCG3yYhdmuqUjKiVMa7/xUWdGiZQ2iNQom4iHT gKAdX3CSaAI+uw3bY4AgL3gdE3+kncYRVqyLZgGZnqE0hXOg6sZvjn/W9pHdCqtV DjwKAO0DYWy99atAxa6uOmq0+IQRoogfofOqPBcLgbXd24ehYxX6G0urCchv7c8l l4TpsB+5qJTt8+sW2GAiYd02VrxcTOxs7PvP74kWP9Y7f8B0ZbyTrpsdZOkXkuo2 eRmRxrE5FQ0wKpjUN1XOAxNSbGPLUnJ1q+kbw5qdlkv+RzG+vSE7j1moodaSHgOT 6SF2fl2IUApuBY0kwGQk8Un6nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKP2igeG /4KO0+B0wM0SM+P1d1o+MB8GA1UdIwQYMBaAFB3XF7Ipk2GQzrZnx84cqfm/tfrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjcyMS82NDQyNDM3QTUz QUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFlaRE90bWZIemh5cC1iLTEt c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkY1hzaW1UWVpET3RtZkh6aHlwLWItMS1zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjcyMS82NDQyNDM3QTUzQUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFla RE90bWZIemh5cC1iLTEtc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCGuchs8QeSdiY4/0cU13Vno/RQO156ptDzpyZXKYOvOWXp60m6f5M s3i9STu7PuStCOEmJ4Cx8L7uNA7dhLmcjpfMXKoo19NaQhbhVHvt3EX1H4UDoRv4 NuNDkA+WvV9NwrRYnXF9u03kV54/QN3q2AAAT7Bdrgmyc+OdEc2+OsGO6QbQ9Z2N +BZY6RYKlImnmguemZFsmTI0whG8kJS0JHeCCqZdILURsSVtVa0VDZChMefSc44d 17aSpc/u77dWMYW/dhu3o3XZ3kDdy0+DceK3Dc1Ewzz1g8rF9E2fc5jkc7cJGv04 /oEyBYw7RTI2oJjwJ8tPZ1Ai+AelQXa/ -----END CERTIFICATE-----Generated at Thu Sep 18 19:10:30 2025 by rpki-client