$ rpki-client -vvf rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/HNyP8SmsVhBgxHINdUk_12hGxhU.mft File: HNyP8SmsVhBgxHINdUk_12hGxhU.mft (raw, json) Hash identifier: 6G06MoRTE+sMEFGRexWGh2ocPdwH1hF/RjH8ZVLjK38= Subject key identifier: 23:81:BC:FF:97:B9:8C:2F:56:1C:45:EF:E8:1B:75:83:D6:19:3E:DD Authority key identifier: 1C:DC:8F:F1:29:AC:56:10:60:C4:72:0D:75:49:3F:D7:68:46:C6:15 Certificate issuer: /CN=A919FE07/serialNumber=1CDC8FF129AC561060C4720D75493FD76846C615 Certificate serial: 0BAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNyP8SmsVhBgxHINdUk_12hGxhU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/HNyP8SmsVhBgxHINdUk_12hGxhU.mft Manifest number: 0C38 Signing time: Thu 18 Sep 2025 19:11:10 +0000 Manifest this update: Thu 18 Sep 2025 19:11:09 +0000 Manifest next update: Thu 25 Sep 2025 19:11:09 +0000 Files and hashes: 1: HNyP8SmsVhBgxHINdUk_12hGxhU.crl (hash: uCca2CdkXkYcVVNP53za5dy1GWRb/E9pYefUGlzIlCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/HNyP8SmsVhBgxHINdUk_12hGxhU.crl rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/HNyP8SmsVhBgxHINdUk_12hGxhU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNyP8SmsVhBgxHINdUk_12hGxhU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:11:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2989 (0xbad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FE07, serialNumber=1CDC8FF129AC561060C4720D75493FD76846C615 Validity Not Before: Sep 18 19:11:09 2025 GMT Not After : Sep 25 19:11:09 2025 GMT Subject: CN=68cc594e-e45a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:57:80:8e:22:7a:c9:5a:bd:94:e7:c1:95:54: f8:46:5b:a3:84:15:69:59:23:14:e2:25:62:16:73: 77:69:7e:46:d3:49:59:f1:7d:cf:b2:1a:9c:c9:33: 74:7a:51:97:bd:73:0d:04:e7:29:2b:bb:91:2a:6d: 64:6a:00:ba:7c:11:74:e0:e7:77:91:b7:25:23:e0: 60:47:90:48:ad:eb:17:50:f5:f9:3f:f4:5b:52:8a: d1:c8:9b:6d:82:dc:a1:cc:54:80:38:b9:d6:09:e9: b5:39:e3:ec:2b:19:df:7c:37:5c:54:be:34:f7:6d: 4c:a1:1e:8f:68:60:c7:cc:58:04:0b:cf:b6:d3:74: 54:3f:f0:aa:79:c2:a4:ea:2e:d2:ac:55:19:12:9e: f2:a2:69:44:e2:f2:ae:5c:d9:d4:54:6d:04:60:c4: 46:95:c6:57:4a:4d:18:1c:8f:02:f5:2c:24:28:6c: df:d5:83:97:50:d3:a9:1d:d3:b7:3b:68:d0:2f:d2: b7:fa:88:57:85:9b:31:c6:65:69:02:49:09:5c:7b: d5:fc:d8:6d:3a:ea:fe:35:0c:19:85:40:00:a8:b7: f0:a3:61:24:34:6e:90:a2:af:b3:f7:c3:34:45:9d: 93:09:61:56:36:3f:5f:45:9f:8b:a7:46:b3:ec:5f: 96:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:81:BC:FF:97:B9:8C:2F:56:1C:45:EF:E8:1B:75:83:D6:19:3E:DD X509v3 Authority Key Identifier: keyid:1C:DC:8F:F1:29:AC:56:10:60:C4:72:0D:75:49:3F:D7:68:46:C6:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/HNyP8SmsVhBgxHINdUk_12hGxhU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNyP8SmsVhBgxHINdUk_12hGxhU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/HNyP8SmsVhBgxHINdUk_12hGxhU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:54:3b:fd:ac:e0:4d:e7:2b:9a:84:0f:e4:15:32:13:e7:b5: 46:e6:57:0e:d4:41:54:0d:cc:7b:1b:f8:c3:ca:86:3f:34:71: 78:c8:d4:04:86:c0:e9:78:f1:a6:69:db:da:d5:23:25:33:2f: d7:b4:00:69:9f:9f:99:60:76:2b:cf:9d:b1:8e:34:f6:63:b5: 2b:d9:cc:70:ab:1b:91:b9:b7:93:68:31:95:70:03:4e:3f:f8: f1:90:f7:7b:1e:05:f2:26:65:44:79:ca:b8:22:ca:f5:f8:fb: a3:60:65:36:fe:c6:c2:0b:b7:9a:d3:61:eb:24:d1:5e:04:31: 33:cc:0c:b8:d2:24:51:b2:72:e8:5b:5f:30:48:3b:7b:31:b3: a4:1e:85:dd:06:c2:40:4f:34:2e:20:dd:de:44:51:a9:b7:d7: a6:b1:03:93:fc:25:d3:ff:eb:fa:05:4b:8b:a8:d0:7a:25:03: c5:d3:bd:a2:53:1e:05:dc:32:42:1f:6e:09:15:61:23:91:51: 0a:a3:7e:cf:bc:08:b2:bb:55:a2:2b:52:45:d2:85:cf:0d:c3: 99:6c:36:6b:6f:b3:02:78:53:a0:aa:76:ac:e6:a5:2c:d9:91: f8:d9:ba:3f:d4:5c:0d:da:09:ad:30:32:7a:1c:03:84:99:52: 8d:2b:7b:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZFMDcxMTAvBgNVBAUTKDFDREM4RkYxMjlBQzU2MTA2MEM0NzIwRDc1NDkzRkQ3 Njg0NkM2MTUwHhcNMjUwOTE4MTkxMTA5WhcNMjUwOTI1MTkxMTA5WjAYMRYwFAYD VQQDEw02OGNjNTk0ZS1lNDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1eAjiJ6yVq9lOfBlVT4RlujhBVpWSMU4iViFnN3aX5G00lZ8X3PshqcyTN0 elGXvXMNBOcpK7uRKm1kagC6fBF04Od3kbclI+BgR5BIresXUPX5P/RbUorRyJtt gtyhzFSAOLnWCem1OePsKxnffDdcVL40921MoR6PaGDHzFgEC8+203RUP/CqecKk 6i7SrFUZEp7yomlE4vKuXNnUVG0EYMRGlcZXSk0YHI8C9SwkKGzf1YOXUNOpHdO3 O2jQL9K3+ohXhZsxxmVpAkkJXHvV/NhtOur+NQwZhUAAqLfwo2EkNG6Qoq+z98M0 RZ2TCWFWNj9fRZ+Lp0az7F+WiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOBvP+X uYwvVhxF7+gbdYPWGT7dMB8GA1UdIwQYMBaAFBzcj/EprFYQYMRyDXVJP9doRsYV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkUwNy9BMTZBODhEQTMw NkExMUVBOTk4QzhGMzBDNEY5QUUwMi9ITnlQOFNtc1ZoQmd4SElOZFVrXzEyaEd4 aFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hOeVA4U21zVmhCZ3hISU5kVWtfMTJoR3hoVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkUwNy9BMTZBODhEQTMwNkExMUVBOTk4QzhGMzBDNEY5QUUwMi9ITnlQOFNtc1Zo Qmd4SElOZFVrXzEyaEd4aFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLVDv9rOBN5yuahA/kFTIT57VG5lcO1EFUDcx7G/jDyoY/NHF4yNQE hsDpePGmadva1SMlMy/XtABpn5+ZYHYrz52xjjT2Y7Ur2cxwqxuRubeTaDGVcANO P/jxkPd7HgXyJmVEecq4Isr1+PujYGU2/sbCC7ea02HrJNFeBDEzzAy40iRRsnLo W18wSDt7MbOkHoXdBsJATzQuIN3eRFGpt9emsQOT/CXT/+v6BUuLqNB6JQPF072i Ux4F3DJCH24JFWEjkVEKo37PvAiyu1WiK1JF0oXPDcOZbDZrb7MCeFOgqnas5qUs 2ZH42bo/1FwN2gmtMDJ6HAOEmVKNK3sC -----END CERTIFICATE-----Generated at Thu Sep 18 21:55:20 2025 by rpki-client