$ rpki-client -vvf rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft File: HN4SRMu7llQubIsJo9rBwbRDaNc.mft (raw, json) Hash identifier: apyRKQcG7sOhCjLtf2/6ScfNt74r61cnvFmgVqF7s8Y= Subject key identifier: 21:D9:EC:28:5C:29:23:3D:CD:BE:0C:F0:51:21:8A:80:88:F2:EB:25 Authority key identifier: 1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 Certificate issuer: /CN=A918A498/serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft Manifest number: 66 Signing time: Wed 17 Sep 2025 07:42:59 +0000 Manifest this update: Wed 17 Sep 2025 07:42:59 +0000 Manifest next update: Wed 24 Sep 2025 07:42:59 +0000 Files and hashes: 1: HN4SRMu7llQubIsJo9rBwbRDaNc.crl (hash: lNHzlMBWZQsMYLHqQRGOYTDrRt3CpI0VruYf121Vl/c=) 2: 62C86698F80A11EFA400AC2FC4F9AE02.roa (hash: UFgylA3DVYfccb8XdgcDubKXiQ2Mtm89Z4YEW6R99s0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A498, serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Validity Not Before: Sep 17 07:42:59 2025 GMT Not After : Sep 24 07:42:59 2025 GMT Subject: CN=68ca6683-6df4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:07:b5:bd:e4:7d:c9:52:91:7d:e6:e0:56:2b: fe:d9:5a:e0:61:b4:b2:c6:43:47:7a:65:32:18:11: 85:3b:49:7c:76:a6:11:34:52:d6:55:59:f8:02:5d: ea:d9:ce:6e:bb:a5:3a:26:8d:42:f9:e4:bb:38:02: c3:93:35:92:f2:35:f4:6f:64:35:ad:05:0f:46:50: 17:7f:19:ec:0b:29:e4:98:3b:20:3f:cf:c8:78:13: a6:a6:20:aa:c6:37:4e:96:d9:30:2c:01:78:b5:47: 95:b6:07:56:43:88:9c:38:65:a1:42:07:aa:91:32: db:ee:c3:a2:9a:61:db:d4:d5:24:3a:27:32:cd:bc: e4:6a:9b:58:f3:80:e3:b5:b2:55:64:c2:80:24:18: 79:0b:18:1f:38:84:47:3e:c8:d9:53:d8:cf:ea:82: 0b:73:2d:a1:c1:a4:40:6e:f6:10:35:88:f4:d3:a5: 7e:33:71:6a:96:fb:c3:c6:ae:17:5a:29:56:37:e8: 0a:77:69:e9:e5:de:e4:7a:a7:e4:4c:e2:a5:7a:a9: 73:93:a6:b1:4e:c2:fa:8a:45:b2:d3:ea:91:3b:dc: bb:bb:bd:07:48:5d:fb:da:55:62:56:12:5a:96:22: 0b:7d:42:9b:fa:c3:b5:74:f1:35:c2:74:d3:71:12: a5:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D9:EC:28:5C:29:23:3D:CD:BE:0C:F0:51:21:8A:80:88:F2:EB:25 X509v3 Authority Key Identifier: keyid:1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:6b:ae:69:dc:27:de:d9:9c:9c:29:80:1e:54:22:5b:bb:ab: a4:45:d5:28:f2:90:08:df:67:c2:38:a0:20:08:d6:de:42:d6: 12:00:aa:27:08:02:ea:06:43:07:68:a5:9c:6b:35:25:13:25: fc:27:52:96:05:d8:ed:9c:61:b1:76:06:35:24:bb:1b:7c:0d: 39:4b:13:23:33:d6:b2:f1:19:af:bb:9a:2e:fc:a4:e9:4f:69: b5:9f:0e:2b:5c:61:a6:a6:b4:bc:53:a8:bf:63:66:9c:5c:6c: 27:82:3b:6f:cc:81:02:e8:28:56:16:f8:34:cd:f2:d7:0e:51: 86:aa:3c:64:69:92:22:8b:21:f2:dd:66:93:e7:5c:a1:5a:f9: 09:63:3a:23:bf:76:1c:e4:1a:55:6a:bd:30:03:aa:6e:2b:d3: e0:eb:4c:18:69:a2:e1:86:54:3d:7e:32:1a:56:6b:4d:8b:cc: 16:13:9b:d1:34:2c:87:59:77:09:50:23:d2:d3:c6:f8:0e:a5: dd:a2:6b:c5:67:40:f2:ec:c0:a3:0b:ea:51:40:48:bf:20:53: 95:41:2d:02:cc:8c:ec:fc:63:5d:fa:34:47:2e:c8:47:6f:a7: c0:8d:e7:80:91:48:18:5b:4c:76:09:ef:a2:64:51:ee:33:cd: 13:b3:7b:15 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTQ5ODExMC8GA1UEBRMoMUNERTEyNDRDQkJCOTY1NDJFNkM4QjA5QTNEQUMxQzFC NDQzNjhENzAeFw0yNTA5MTcwNzQyNTlaFw0yNTA5MjQwNzQyNTlaMBgxFjAUBgNV BAMTDTY4Y2E2NjgzLTZkZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWB7W95H3JUpF95uBWK/7ZWuBhtLLGQ0d6ZTIYEYU7SXx2phE0UtZVWfgCXerZ zm67pTomjUL55Ls4AsOTNZLyNfRvZDWtBQ9GUBd/GewLKeSYOyA/z8h4E6amIKrG N06W2TAsAXi1R5W2B1ZDiJw4ZaFCB6qRMtvuw6KaYdvU1SQ6JzLNvORqm1jzgOO1 slVkwoAkGHkLGB84hEc+yNlT2M/qggtzLaHBpEBu9hA1iPTTpX4zcWqW+8PGrhda KVY36Ap3aenl3uR6p+RM4qV6qXOTprFOwvqKRbLT6pE73Lu7vQdIXfvaVWJWElqW Igt9Qpv6w7V08TXCdNNxEqUdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIdnsKFwp Iz3NvgzwUSGKgIjy6yUwHwYDVR0jBBgwFoAUHN4SRMu7llQubIsJo9rBwbRDaNcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDk4L0QyREVEMzQ2Rjgw OTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxRdWJJc0pvOXJCd2JSRGFO Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE40U1JNdTdsbFF1YklzSm85ckJ3YlJEYU5jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB NDk4L0QyREVEMzQ2RjgwOTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxR dWJJc0pvOXJCd2JSRGFOYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAM5rrmncJ97ZnJwpgB5UIlu7q6RF1SjykAjfZ8I4oCAI1t5C1hIAqicI AuoGQwdopZxrNSUTJfwnUpYF2O2cYbF2BjUkuxt8DTlLEyMz1rLxGa+7mi78pOlP abWfDitcYaamtLxTqL9jZpxcbCeCO2/MgQLoKFYW+DTN8tcOUYaqPGRpkiKLIfLd ZpPnXKFa+QljOiO/dhzkGlVqvTADqm4r0+DrTBhpouGGVD1+MhpWa02LzBYTm9E0 LIdZdwlQI9LTxvgOpd2ia8VnQPLswKML6lFASL8gU5VBLQLMjOz8Y136NEcuyEdv p8CN54CRSBhbTHYJ76JkUe4zzROzexU= -----END CERTIFICATE-----Generated at Fri Sep 19 02:33:15 2025 by rpki-client