$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft File: hf--WNwc9_kcLTgTTiC27wssOl8.mft (raw, json) Hash identifier: QkZ9j6vXm91kW0zdspS3nBLruw1gumcBCI94vADLsCY= Subject key identifier: E9:8F:F0:A5:3F:35:09:10:F3:11:97:63:1F:B1:24:29:4B:FA:22:0E Authority key identifier: 85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F Certificate issuer: /CN=A911954F/serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft Manifest number: 0208 Signing time: Sat 19 Jul 2025 04:44:49 +0000 Manifest this update: Sat 19 Jul 2025 04:44:48 +0000 Manifest next update: Sat 26 Jul 2025 04:44:48 +0000 Files and hashes: 1: hf--WNwc9_kcLTgTTiC27wssOl8.crl (hash: nKJ0S8HpIiH06AkE1UzDuAFrLiae9i8SYU3aDvqaxzU=) 2: 6BCEC330344311EFB7DD0D34C4F9AE02.roa (hash: V5GXfj7MVmj/bsrh8ZK5BOMK+sTslcHA1M5O9HLWM8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:44:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911954F, serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Validity Not Before: Jul 19 04:44:48 2025 GMT Not After : Jul 26 04:44:48 2025 GMT Subject: CN=687b22c1-2eb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:67:88:2e:4c:82:0b:c6:0d:62:7c:80:44:55: 09:a3:23:8a:9f:49:aa:1e:b7:a2:e8:8d:b2:91:e3: 9a:f9:72:30:2c:4b:53:52:6f:56:2d:b6:4f:01:2b: 02:ac:2c:54:a9:1d:22:50:ad:85:cf:1a:40:25:dc: 17:14:02:45:e3:0d:e9:b2:9b:57:64:e8:6d:dd:9e: b1:64:1c:83:ef:94:cc:1b:71:94:9f:b1:97:1b:f6: 4f:c3:f4:31:56:d4:a7:86:52:14:ff:65:84:7e:34: 12:d6:a1:3f:72:26:d4:16:b8:16:ad:7c:55:cb:a0: 24:7f:04:4e:57:0f:23:ff:3f:36:d0:f5:08:03:c7: 20:6a:9a:bd:d5:fd:da:b7:8f:a1:c8:39:7b:70:43: a7:c1:34:ea:2a:9d:9e:34:07:61:03:e3:4e:e5:0b: fa:8c:66:5b:0c:1b:a2:9f:7d:b3:26:89:a2:24:a0: c4:b0:39:cc:cd:cc:c4:0b:9c:31:13:f8:09:36:9f: 8b:e6:89:f3:03:9c:6f:ae:86:0e:04:40:2d:2b:c8: 66:e0:d4:4c:63:49:0a:ee:b4:e1:30:5b:1b:63:b8: 7b:09:05:46:ac:47:e2:77:fa:05:b0:59:2c:e0:e0: 13:33:3f:84:dd:b1:e3:78:fd:93:fc:25:a4:5c:42: 0b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:8F:F0:A5:3F:35:09:10:F3:11:97:63:1F:B1:24:29:4B:FA:22:0E X509v3 Authority Key Identifier: keyid:85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ab:94:ef:aa:a5:9b:eb:a1:f4:c2:24:10:88:e0:05:ff:9f: f4:5c:9d:35:8f:79:7e:cb:32:95:2d:e6:cf:5d:3d:88:ab:8f: 71:a4:93:97:d8:5c:8a:2f:ca:00:a8:14:ef:e7:2a:27:e9:4b: 7a:da:3b:3c:51:44:bb:16:9e:c8:d4:7d:44:25:ea:db:7e:97: cc:09:9a:5c:4b:ea:0b:c9:bc:96:01:e9:56:d5:60:91:c0:39: 8a:b2:f2:28:f5:bf:b5:f8:e1:4d:76:7c:39:bd:29:8c:f1:86: 48:54:a0:90:46:5f:b5:88:f6:cf:dc:e9:0b:bd:c5:5c:a9:c4: 31:3b:4b:99:45:91:7c:a2:54:31:d7:59:79:0d:41:c6:f4:89: ee:94:9c:6b:06:e2:65:ae:7b:0c:70:a8:d3:30:a9:c3:d4:98: 41:4c:e4:b5:de:cf:6a:66:35:69:9a:fb:14:8b:7c:d0:cf:0b: 1e:e7:14:d1:69:3a:c5:53:19:9a:24:46:1d:67:ee:d8:bc:57: 66:77:d4:be:9a:e5:fd:1b:ae:dd:bc:11:42:47:f9:11:0b:0b: 50:ab:1b:fc:6a:43:37:b2:52:25:78:30:19:3f:35:1f:c9:99: 1c:3b:44:18:2d:d2:b4:90:1f:32:3b:2e:34:5d:ab:a5:bc:e7: 07:9b:c9:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1NEYxMTAvBgNVBAUTKDg1RkZCRTU4REMxQ0Y3RjkxQzJEMzgxMzRFMjBCNkVG MEIyQzNBNUYwHhcNMjUwNzE5MDQ0NDQ4WhcNMjUwNzI2MDQ0NDQ4WjAYMRYwFAYD VQQDEw02ODdiMjJjMS0yZWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2eILkyCC8YNYnyARFUJoyOKn0mqHrei6I2ykeOa+XIwLEtTUm9WLbZPASsC rCxUqR0iUK2FzxpAJdwXFAJF4w3psptXZOht3Z6xZByD75TMG3GUn7GXG/ZPw/Qx VtSnhlIU/2WEfjQS1qE/cibUFrgWrXxVy6AkfwROVw8j/z820PUIA8cgapq91f3a t4+hyDl7cEOnwTTqKp2eNAdhA+NO5Qv6jGZbDBuin32zJomiJKDEsDnMzczEC5wx E/gJNp+L5onzA5xvroYOBEAtK8hm4NRMY0kK7rThMFsbY7h7CQVGrEfid/oFsFks 4OATMz+E3bHjeP2T/CWkXEILcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmP8KU/ NQkQ8xGXYx+xJClL+iIOMB8GA1UdIwQYMBaAFIX/vljcHPf5HC04E04gtu8LLDpf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTU0Ri81OTFBMzIyMDkx NEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlfa2NMVGdUVGlDMjd3c3NP bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hmLS1XTndjOV9rY0xUZ1RUaUMyN3dzc09sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTU0Ri81OTFBMzIyMDkxNEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlf a2NMVGdUVGlDMjd3c3NPbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwq5TvqqWb66H0wiQQiOAF/5/0XJ01j3l+yzKVLebPXT2Iq49xpJOX 2FyKL8oAqBTv5yon6Ut62js8UUS7Fp7I1H1EJerbfpfMCZpcS+oLybyWAelW1WCR wDmKsvIo9b+1+OFNdnw5vSmM8YZIVKCQRl+1iPbP3OkLvcVcqcQxO0uZRZF8olQx 11l5DUHG9InulJxrBuJlrnsMcKjTMKnD1JhBTOS13s9qZjVpmvsUi3zQzwse5xTR aTrFUxmaJEYdZ+7YvFdmd9S+muX9G67dvBFCR/kRCwtQqxv8akM3slIleDAZPzUf yZkcO0QYLdK0kB8yOy40XaulvOcHm8mq -----END CERTIFICATE-----Generated at Sun Jul 20 11:45:28 2025 by rpki-client