$ rpki-client -vvf rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft File: HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft (raw, json) Hash identifier: 4L2hOGw5zv53YqJbOpRHjIojMygABuVVpqE3wPar8cE= Subject key identifier: 8B:CA:5A:DF:5D:81:36:F0:01:08:89:E6:C4:C9:92:EC:E4:C7:BC:DF Authority key identifier: 1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 Certificate issuer: /CN=A918742C/serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Certificate serial: 1695 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft Manifest number: 168B Signing time: Sun 08 Jun 2025 16:36:21 +0000 Manifest this update: Sun 08 Jun 2025 16:36:20 +0000 Manifest next update: Sun 15 Jun 2025 16:36:20 +0000 Files and hashes: 1: HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl (hash: J0bMEIjx55unChW+xo7cJmwsbBP5eGo+44x2jT2toOc=) 2: 8DFAE1DA019D11E8A7804A1EC4F9AE02.roa (hash: 85zAa/NDU6R+uxxVwM+5q1AHLvo6RcZxo+KYtDUWQJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 16:36:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5781 (0x1695) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918742C, serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Validity Not Before: Jun 8 16:36:20 2025 GMT Not After : Jun 15 16:36:20 2025 GMT Subject: CN=6845bc05-4535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:8b:6a:54:e9:0b:87:1a:66:db:a8:99:29:55: bc:da:42:17:c0:b8:14:ea:f5:f1:6a:30:7b:c8:5f: f8:ea:62:4d:9b:0c:fb:a4:27:c2:5c:f3:e3:56:6d: 6c:80:59:b6:b3:0b:fd:e4:b1:ff:9c:c3:73:10:70: be:73:80:c2:6e:43:74:f4:d3:e1:93:5e:06:79:06: a2:9c:06:cc:c9:34:5f:67:29:51:ef:1b:b2:49:fe: 1e:cd:de:b0:6c:57:71:a4:0e:9d:3d:4d:5b:10:3d: c1:5b:20:99:36:af:de:45:c7:1d:65:3f:8a:43:85: 40:6b:f0:93:33:af:73:da:fb:05:05:7f:29:94:c9: e8:6d:dc:91:de:ba:f3:40:58:7c:41:f1:a7:f8:e2: fd:11:8c:26:a8:3a:ec:8e:39:a1:ea:20:ab:ad:3c: 16:72:3c:40:45:6b:f8:a1:03:c6:dc:aa:0e:ce:66: c7:6f:22:4e:95:6b:2b:9b:a3:8c:0b:ba:5f:3b:46: 03:f1:93:0b:37:1b:54:fc:56:bd:fb:02:45:70:d8: 5c:f2:e2:7e:6c:eb:df:0e:b9:1f:6a:a3:97:5e:92: 70:94:3f:d0:9e:29:3c:1c:a9:ec:10:96:e5:46:e9: 68:9d:e8:b7:f3:dc:75:58:27:d8:0e:52:eb:2f:2a: 7c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:CA:5A:DF:5D:81:36:F0:01:08:89:E6:C4:C9:92:EC:E4:C7:BC:DF X509v3 Authority Key Identifier: keyid:1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:6f:34:61:86:f9:ed:8e:33:5e:e3:c4:a8:d4:78:7c:c2:7a: 98:a4:19:7d:09:3d:35:4d:d7:c4:ba:02:68:7d:88:2f:6a:36: ed:4d:c6:d3:c5:87:27:90:25:15:e3:f5:75:1d:50:43:95:e3: 26:2d:bc:f3:6d:e4:34:47:52:41:3f:c3:7e:ce:d1:f5:96:fc: 5b:ad:ef:0e:de:0d:c2:ea:05:c5:af:c6:dd:56:28:1a:6f:f3: 61:cf:79:ee:76:b5:e5:ae:09:e3:9d:8a:e0:07:87:77:21:9e: d9:34:3c:11:de:80:51:f6:eb:17:87:c6:a8:55:b3:1d:b0:90: 55:64:c0:05:53:02:10:3b:50:c1:5f:27:8f:fd:d7:ab:95:9d: 83:4e:24:36:37:6c:5f:3c:6d:9b:df:92:1b:a7:b4:25:b3:9d: 00:65:ea:ce:a7:1d:08:8b:72:af:c3:4b:5c:c7:76:85:1a:0b: 29:94:59:3d:57:92:85:87:d6:36:31:b4:f8:ab:fe:fe:a8:82: 35:d8:c0:52:97:78:32:9f:8d:af:0d:aa:d0:fb:e8:ba:e6:2f: 6e:ca:bc:90:3e:92:84:e2:14:ec:cf:60:8b:9d:16:96:76:38: 78:ce:1d:4c:da:9d:92:5a:9d:1e:e3:18:cc:29:4a:1b:e8:29: 85:29:f4:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0MkMxMTAvBgNVBAUTKDFDM0Y5OUEwQzE4MkI1OENDNDVCODExMkYyOTFFMTJB MTUzMzMxRTkwHhcNMjUwNjA4MTYzNjIwWhcNMjUwNjE1MTYzNjIwWjAYMRYwFAYD VQQDEw02ODQ1YmMwNS00NTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA64tqVOkLhxpm26iZKVW82kIXwLgU6vXxajB7yF/46mJNmwz7pCfCXPPjVm1s gFm2swv95LH/nMNzEHC+c4DCbkN09NPhk14GeQainAbMyTRfZylR7xuySf4ezd6w bFdxpA6dPU1bED3BWyCZNq/eRccdZT+KQ4VAa/CTM69z2vsFBX8plMnobdyR3rrz QFh8QfGn+OL9EYwmqDrsjjmh6iCrrTwWcjxARWv4oQPG3KoOzmbHbyJOlWsrm6OM C7pfO0YD8ZMLNxtU/Fa9+wJFcNhc8uJ+bOvfDrkfaqOXXpJwlD/Qnik8HKnsEJbl Rulonei389x1WCfYDlLrLyp8XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvKWt9d gTbwAQiJ5sTJkuzkx7zfMB8GA1UdIwQYMBaAFBw/maDBgrWMxFuBEvKR4SoVMzHp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQyQy9GMjhDODlDNDAx OUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZekVXNEVTOHBIaEtoVXpN ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hELVpvTUdDdFl6RVc0RVM4cEhoS2hVek1lay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQyQy9GMjhDODlDNDAxOUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZ ekVXNEVTOHBIaEtoVXpNZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnbzRhhvntjjNe48So1Hh8wnqYpBl9CT01TdfEugJofYgvajbtTcbT xYcnkCUV4/V1HVBDleMmLbzzbeQ0R1JBP8N+ztH1lvxbre8O3g3C6gXFr8bdViga b/Nhz3nudrXlrgnjnYrgB4d3IZ7ZNDwR3oBR9usXh8aoVbMdsJBVZMAFUwIQO1DB XyeP/derlZ2DTiQ2N2xfPG2b35Ibp7Qls50AZerOpx0Ii3Kvw0tcx3aFGgsplFk9 V5KFh9Y2MbT4q/7+qII12MBSl3gyn42vDarQ++i65i9uyryQPpKE4hTsz2CLnRaW djh4zh1M2p2SWp0e4xjMKUob6CmFKfTr -----END CERTIFICATE-----Generated at Mon Jun 9 08:31:51 2025 by rpki-client