$ rpki-client -vvf rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft File: HN4SRMu7llQubIsJo9rBwbRDaNc.mft (raw, json) Hash identifier: r1b8ZGPlyvnx5qEtDFK+iHkx2pPEmU2ZpXrtzholpuY= Subject key identifier: CC:D7:AC:F9:1B:5C:97:44:9C:99:4E:03:CA:16:CA:2D:B7:24:15:09 Authority key identifier: 1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 Certificate issuer: /CN=A918A498/serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft Manifest number: 33 Signing time: Mon 09 Jun 2025 06:33:36 +0000 Manifest this update: Mon 09 Jun 2025 06:33:35 +0000 Manifest next update: Mon 16 Jun 2025 06:33:35 +0000 Files and hashes: 1: HN4SRMu7llQubIsJo9rBwbRDaNc.crl (hash: IwX7TaEEKlNHesaO2GfBsZWWSYdK7+t3Z9RiAYNPp04=) 2: 62C86698F80A11EFA400AC2FC4F9AE02.roa (hash: UFgylA3DVYfccb8XdgcDubKXiQ2Mtm89Z4YEW6R99s0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 04:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A498, serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Validity Not Before: Jun 9 06:33:35 2025 GMT Not After : Jun 16 06:33:35 2025 GMT Subject: CN=6846803f-423d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:59:30:c5:b8:d3:e6:90:9e:ce:07:32:44:5b: 42:2b:a7:a3:90:69:7f:20:de:e0:f2:09:84:79:6e: bf:7d:d3:e6:9f:82:8a:fe:82:8d:fb:ac:aa:86:42: 8c:9c:99:d6:1d:77:f5:14:d0:21:32:34:3a:de:3d: 09:7f:ff:7d:86:ad:f3:cf:ed:f5:d6:1b:6b:3b:b1: 83:d9:ff:d7:46:70:69:df:65:f9:0c:73:ef:7c:ea: 8f:8b:d5:08:ed:a5:78:0c:0e:27:18:3d:c8:cb:3c: 53:c8:6e:77:33:6a:aa:5a:1c:5b:72:70:3f:5d:28: a6:a2:fa:b7:1d:58:fa:4d:ce:9e:ff:1c:99:5f:61: 34:02:9f:5c:06:b3:17:0f:be:a3:41:89:c4:e5:a9: a0:fe:16:7f:72:7d:74:22:4b:1f:1c:08:c3:59:d2: 63:f8:6a:5d:93:75:2b:d4:0d:c5:d8:2f:c8:b6:cd: 4b:c2:29:9f:9e:36:31:f7:62:43:42:30:8d:9c:6b: 1c:1e:25:b7:62:36:15:59:8f:4d:8f:d5:5b:47:66: 4e:de:c5:c3:94:80:81:e4:a5:42:40:95:30:26:c1: 76:03:c1:d7:bb:fe:4c:40:79:e7:35:d5:2c:05:8e: 4d:8e:53:e0:5d:04:00:91:19:05:4d:9d:cf:80:ad: a2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:D7:AC:F9:1B:5C:97:44:9C:99:4E:03:CA:16:CA:2D:B7:24:15:09 X509v3 Authority Key Identifier: keyid:1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:71:e1:45:2b:18:d2:79:a7:00:82:fd:67:eb:27:58:58:75: 2e:44:f0:fd:10:96:1e:e7:e9:7e:1d:69:9e:ff:05:39:c0:6e: bd:29:1f:0a:73:b7:ac:40:48:0d:71:59:22:ba:9c:52:65:96: b6:4a:b5:b7:af:38:a2:99:1c:29:6f:7a:e2:8a:4d:5b:3b:30: 07:64:74:84:14:15:82:27:a4:6d:e7:ac:5d:b8:1c:79:9a:aa: bd:e5:e1:35:bd:80:4a:fd:97:22:76:b1:2a:7d:a6:d9:ee:ff: a2:dd:53:61:23:77:26:53:7f:b6:f7:5a:d7:9f:0a:36:09:9c: 46:eb:81:fd:63:47:04:a9:84:4d:8e:94:7d:a0:9c:09:64:13: 07:15:07:72:a1:6e:33:85:8b:c7:82:b2:63:fb:9d:75:ac:c1: 39:f8:18:45:5b:f1:3a:1d:31:f4:cf:89:00:16:8e:05:05:a4: f4:03:96:ab:49:4b:ec:fd:15:1b:35:33:1c:31:04:29:13:14: 92:83:8d:92:7a:94:43:0e:74:92:b6:fb:cd:db:db:32:75:db: aa:2a:f8:4c:2c:fb:19:09:45:f9:47:31:31:f6:5b:b9:eb:53: aa:d8:47:03:10:20:1e:c6:69:4a:ee:68:76:94:41:3f:ad:ba: 56:7b:15:78 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTQ5ODExMC8GA1UEBRMoMUNERTEyNDRDQkJCOTY1NDJFNkM4QjA5QTNEQUMxQzFC NDQzNjhENzAeFw0yNTA2MDkwNjMzMzVaFw0yNTA2MTYwNjMzMzVaMBgxFjAUBgNV BAMTDTY4NDY4MDNmLTQyM2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8WTDFuNPmkJ7OBzJEW0Irp6OQaX8g3uDyCYR5br990+afgor+go37rKqGQoyc mdYdd/UU0CEyNDrePQl//32GrfPP7fXWG2s7sYPZ/9dGcGnfZfkMc+986o+L1Qjt pXgMDicYPcjLPFPIbnczaqpaHFtycD9dKKai+rcdWPpNzp7/HJlfYTQCn1wGsxcP vqNBicTlqaD+Fn9yfXQiSx8cCMNZ0mP4al2TdSvUDcXYL8i2zUvCKZ+eNjH3YkNC MI2caxweJbdiNhVZj02P1VtHZk7excOUgIHkpUJAlTAmwXYDwde7/kxAeec11SwF jk2OU+BdBACRGQVNnc+AraKNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzNes+Rtc l0ScmU4DyhbKLbckFQkwHwYDVR0jBBgwFoAUHN4SRMu7llQubIsJo9rBwbRDaNcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDk4L0QyREVEMzQ2Rjgw OTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxRdWJJc0pvOXJCd2JSRGFO Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE40U1JNdTdsbFF1YklzSm85ckJ3YlJEYU5jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB NDk4L0QyREVEMzQ2RjgwOTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxR dWJJc0pvOXJCd2JSRGFOYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADZx4UUrGNJ5pwCC/WfrJ1hYdS5E8P0Qlh7n6X4daZ7/BTnAbr0pHwpz t6xASA1xWSK6nFJllrZKtbevOKKZHClveuKKTVs7MAdkdIQUFYInpG3nrF24HHma qr3l4TW9gEr9lyJ2sSp9ptnu/6LdU2EjdyZTf7b3WtefCjYJnEbrgf1jRwSphE2O lH2gnAlkEwcVB3KhbjOFi8eCsmP7nXWswTn4GEVb8TodMfTPiQAWjgUFpPQDlqtJ S+z9FRs1MxwxBCkTFJKDjZJ6lEMOdJK2+83b2zJ126oq+Ews+xkJRflHMTH2W7nr U6rYRwMQIB7GaUruaHaUQT+tulZ7FXg= -----END CERTIFICATE-----Generated at Mon Jun 9 08:41:58 2025 by rpki-client