$ rpki-client -vvf rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft File: HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft (raw, json) Hash identifier: zX0CcV936Df87R3rweK0QIsCEaBHcvqqq7jT4so71VE= Subject key identifier: 51:34:17:68:A6:64:D1:B7:4F:BC:3C:9B:CF:C8:E9:E7:1D:3C:59:A6 Authority key identifier: 1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 Certificate issuer: /CN=A918742C/serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Certificate serial: 16BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft Manifest number: 16B2 Signing time: Sun 24 Aug 2025 16:39:28 +0000 Manifest this update: Sun 24 Aug 2025 16:39:28 +0000 Manifest next update: Sun 31 Aug 2025 16:39:28 +0000 Files and hashes: 1: HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl (hash: GwzQd6f37MwXRiFlbgSIRqgbTBPFC8yYAKovfbcQOaY=) 2: 8DFAE1DA019D11E8A7804A1EC4F9AE02.roa (hash: 85zAa/NDU6R+uxxVwM+5q1AHLvo6RcZxo+KYtDUWQJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:39:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5820 (0x16bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918742C, serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Validity Not Before: Aug 24 16:39:28 2025 GMT Not After : Aug 31 16:39:28 2025 GMT Subject: CN=68ab4040-0191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:98:ec:c1:43:53:39:2f:6f:ba:3b:6f:89:3f: a7:ac:b7:fa:45:2f:9a:c8:28:e6:2c:01:4b:a0:d6: 71:84:bb:02:4b:cb:e4:50:d4:4c:f9:1c:74:c2:c5: 1c:8a:1d:92:d1:93:dc:8d:c6:68:3a:54:bc:59:2e: 55:c9:ce:bf:6e:fa:68:65:f1:6c:5b:20:f9:e9:12: e6:f0:60:55:1f:a0:10:32:53:1b:bb:dd:99:dc:d3: c5:0d:39:ef:6f:49:ee:49:31:7a:cb:bc:fe:df:f4: ef:3e:3a:49:c2:04:da:5a:d6:48:d6:85:cb:ea:09: 06:0b:b3:a3:0f:57:d7:aa:75:a5:0e:f3:f4:78:9e: dd:23:45:fb:6c:4f:00:bf:a2:43:22:f5:f6:08:ce: bf:38:c3:07:76:fa:75:85:dc:b9:7c:f9:2d:de:75: 3b:84:c7:ee:65:74:c7:d2:d2:ec:f9:c5:7f:12:07: 40:8b:bd:b8:ca:04:ee:74:f9:77:fa:d7:93:74:1c: be:ad:cc:19:89:72:59:ec:28:6c:8d:f0:71:ab:71: e7:d3:6a:93:7d:20:62:72:e6:ed:f3:1e:f3:df:28: bc:23:5b:56:d3:a6:86:4b:c6:2e:d8:62:38:87:d3: 6c:e7:e0:d3:cb:7a:46:7f:36:e7:68:92:18:cf:32: d1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:34:17:68:A6:64:D1:B7:4F:BC:3C:9B:CF:C8:E9:E7:1D:3C:59:A6 X509v3 Authority Key Identifier: keyid:1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:5e:cf:da:be:f6:00:a4:ed:c4:aa:26:88:2e:24:e5:2d:4c: 2e:41:72:f0:59:bc:61:c7:28:22:67:b0:19:ba:5d:85:3b:14: f0:6f:ce:42:e0:c9:5a:89:95:af:f1:2b:72:84:4b:1a:f1:86: 27:e6:3d:e7:46:22:97:b7:c2:9f:27:33:f2:20:0f:69:9f:98: e6:9a:e9:c8:b4:26:15:ad:a6:3f:34:c5:f4:2d:a4:a0:7b:fd: bc:97:9a:73:ad:7d:d9:49:09:04:a2:9c:1f:d4:da:05:c7:d8: 13:b9:9a:60:04:cb:64:ba:c5:50:3b:2e:ce:a0:d4:87:38:eb: 1c:75:b2:2c:08:07:7c:2a:12:f1:e8:64:91:ef:b3:02:ac:de: 20:a3:4c:4f:33:39:e1:00:8c:d3:4f:b4:74:c8:d1:5b:cd:64: 4f:c2:05:e6:98:fe:51:05:cb:d6:0c:14:16:56:df:85:72:f6: aa:b7:59:c9:aa:ee:91:37:e5:84:cf:f2:75:30:0f:8d:16:cc: ee:de:70:b9:89:d4:2a:d7:54:38:b9:e5:9b:c4:a4:48:46:9f: 5e:f3:b7:79:f0:c4:4f:3f:0a:fe:c7:20:b2:96:68:91:01:e4: eb:db:fc:7c:89:c7:d1:0c:e7:88:a6:95:c4:62:57:b7:49:ea: db:b8:57:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0MkMxMTAvBgNVBAUTKDFDM0Y5OUEwQzE4MkI1OENDNDVCODExMkYyOTFFMTJB MTUzMzMxRTkwHhcNMjUwODI0MTYzOTI4WhcNMjUwODMxMTYzOTI4WjAYMRYwFAYD VQQDEw02OGFiNDA0MC0wMTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJjswUNTOS9vujtviT+nrLf6RS+ayCjmLAFLoNZxhLsCS8vkUNRM+Rx0wsUc ih2S0ZPcjcZoOlS8WS5Vyc6/bvpoZfFsWyD56RLm8GBVH6AQMlMbu92Z3NPFDTnv b0nuSTF6y7z+3/TvPjpJwgTaWtZI1oXL6gkGC7OjD1fXqnWlDvP0eJ7dI0X7bE8A v6JDIvX2CM6/OMMHdvp1hdy5fPkt3nU7hMfuZXTH0tLs+cV/EgdAi724ygTudPl3 +teTdBy+rcwZiXJZ7ChsjfBxq3Hn02qTfSBicubt8x7z3yi8I1tW06aGS8Yu2GI4 h9Ns5+DTy3pGfzbnaJIYzzLREQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFE0F2im ZNG3T7w8m8/I6ecdPFmmMB8GA1UdIwQYMBaAFBw/maDBgrWMxFuBEvKR4SoVMzHp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQyQy9GMjhDODlDNDAx OUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZekVXNEVTOHBIaEtoVXpN ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hELVpvTUdDdFl6RVc0RVM4cEhoS2hVek1lay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQyQy9GMjhDODlDNDAxOUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZ ekVXNEVTOHBIaEtoVXpNZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6Xs/avvYApO3EqiaILiTlLUwuQXLwWbxhxygiZ7AZul2FOxTwb85C 4MlaiZWv8StyhEsa8YYn5j3nRiKXt8KfJzPyIA9pn5jmmunItCYVraY/NMX0LaSg e/28l5pzrX3ZSQkEopwf1NoFx9gTuZpgBMtkusVQOy7OoNSHOOscdbIsCAd8KhLx 6GSR77MCrN4go0xPMznhAIzTT7R0yNFbzWRPwgXmmP5RBcvWDBQWVt+Fcvaqt1nJ qu6RN+WEz/J1MA+NFszu3nC5idQq11Q4ueWbxKRIRp9e87d58MRPPwr+xyCylmiR AeTr2/x8icfRDOeIppXEYle3SerbuFem -----END CERTIFICATE-----Generated at Sun Aug 24 21:42:38 2025 by rpki-client