$ rpki-client -vvf rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft File: hwGGtlfRGymKhLAkIO504fu1woI.mft (raw, json) Hash identifier: zk55pfK2TjxZasvU/Qo/gl3eOaXx3/4UTQSxas7/0F0= Subject key identifier: C3:C9:C0:E3:64:E5:B8:CA:7F:7B:C2:3A:CE:B3:00:F0:64:C5:34:62 Authority key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 Certificate issuer: /CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft Manifest number: D7 Signing time: Mon 07 Apr 2025 04:29:21 +0000 Manifest this update: Mon 07 Apr 2025 04:29:20 +0000 Manifest next update: Mon 14 Apr 2025 04:29:20 +0000 Files and hashes: 1: hwGGtlfRGymKhLAkIO504fu1woI.crl (hash: flplgFp2FQbeY9xLdJTgRZqudO3JecP1SxZrh2coFeI=) 2: 8E31656CC9FF11EEA53CA25CC4F9AE02.roa (hash: d+Z8hZJ1dcZIqJgs5jVt78VrRJybv8thQQWwCFca5j0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 04:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191885 Validity Not Before: Apr 7 04:29:20 2025 GMT Not After : Apr 14 04:29:20 2025 GMT Subject: CN=67f354a0-19c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ce:b1:e3:b8:1f:21:84:47:d4:48:13:97:9f: 7c:6e:d6:9f:e3:e6:b7:eb:06:ef:52:a2:f3:1c:a2: b5:36:48:dd:79:79:b3:db:d3:6c:b3:a3:07:71:ee: 29:42:6c:c5:c8:0e:fa:e0:26:63:f0:65:13:50:2a: 8b:87:db:b2:09:85:43:03:23:ae:54:41:58:c3:4f: ba:af:3a:80:91:0b:e0:f5:16:ed:ee:48:18:6e:91: b9:b3:44:8a:5f:cf:2b:ff:75:5b:3a:32:23:99:97: c0:44:2e:fb:7e:34:fd:4e:17:ba:f2:9d:13:47:f6: 5d:cd:d2:1b:39:29:d6:8d:86:92:c8:1f:87:34:ae: f0:f7:06:cb:b3:67:16:05:b9:0b:99:44:06:c9:71: b2:d6:f2:64:0a:3b:f4:7d:61:c2:09:ed:80:29:7c: 61:ee:07:11:b1:72:e9:a9:37:2c:2c:1d:9f:2e:8c: 67:ba:d4:35:57:82:b8:8a:36:73:90:3d:20:b1:e2: b6:d1:28:7c:55:f8:1c:9c:d6:da:a4:75:d2:9f:5c: 2c:cc:42:26:48:e6:bd:f2:01:c6:98:58:fe:e4:7d: ed:98:6d:0b:6d:59:d4:7c:27:1e:78:f8:a9:e4:91: ca:f3:d2:34:c6:a4:ef:bb:61:b7:56:72:e7:6b:15: 4c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:C9:C0:E3:64:E5:B8:CA:7F:7B:C2:3A:CE:B3:00:F0:64:C5:34:62 X509v3 Authority Key Identifier: keyid:87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:1f:8e:f7:3c:7e:b1:02:62:cd:92:f5:91:f6:c6:63:f5:b5: d7:62:87:58:fe:32:30:2d:fb:ff:b2:be:cd:12:23:b8:38:d4: 13:70:5b:4e:94:fe:c4:dc:2a:81:4b:51:27:5e:a0:5f:01:ba: f9:11:50:5a:8f:ff:29:24:f3:77:4a:f7:70:5b:67:11:fb:22: 37:56:28:5e:27:dc:16:2b:6f:d0:7b:f7:13:bb:74:76:90:f6: d1:e9:d9:ce:6b:50:bb:e0:25:b6:e6:e8:ec:c8:8a:c8:c6:53: f9:c0:87:27:75:e6:b5:13:86:5b:14:4b:78:ab:6d:7b:22:2e: 70:1d:ad:7e:ff:07:a0:2a:10:2a:f9:61:25:18:4f:9b:d7:57: ab:6e:5b:62:4a:f2:fc:e8:65:65:fb:51:0b:f7:33:71:a7:e2: bc:67:e2:e4:94:90:32:05:d9:b8:62:0a:e9:36:db:ed:09:70: 21:75:85:75:06:4d:55:51:70:fe:ee:ec:50:81:3a:c2:a9:15: 82:02:79:b5:0e:45:6e:85:7a:44:ee:20:de:24:7b:c4:3b:5b: d9:f6:11:51:56:9e:24:43:85:b3:8d:6c:c5:1f:a3:d4:c0:1a: 67:c0:60:db:63:12:a9:1a:0b:42:5c:e2:4e:71:fc:55:2a:a7: 72:24:c4:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4ODUxMTAvBgNVBAUTKDg3MDE4NkI2NTdEMTFCMjk4QTg0QjAyNDIwRUU3NEUx RkJCNUMyODIwHhcNMjUwNDA3MDQyOTIwWhcNMjUwNDE0MDQyOTIwWjAYMRYwFAYD VQQDEw02N2YzNTRhMC0xOWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA186x47gfIYRH1EgTl598btaf4+a36wbvUqLzHKK1NkjdeXmz29Nss6MHce4p QmzFyA764CZj8GUTUCqLh9uyCYVDAyOuVEFYw0+6rzqAkQvg9Rbt7kgYbpG5s0SK X88r/3VbOjIjmZfARC77fjT9The68p0TR/ZdzdIbOSnWjYaSyB+HNK7w9wbLs2cW BbkLmUQGyXGy1vJkCjv0fWHCCe2AKXxh7gcRsXLpqTcsLB2fLoxnutQ1V4K4ijZz kD0gseK20Sh8VfgcnNbapHXSn1wszEImSOa98gHGmFj+5H3tmG0LbVnUfCceePip 5JHK89I0xqTvu2G3VnLnaxVMSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMPJwONk 5bjKf3vCOs6zAPBkxTRiMB8GA1UdIwQYMBaAFIcBhrZX0RspioSwJCDudOH7tcKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4NS9ENUZFQTNERUM5 RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5bUtoTEFrSU81MDRmdTF3 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2h3R0d0bGZSR3ltS2hMQWtJTzUwNGZ1MXdvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4NS9ENUZFQTNERUM5RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5 bUtoTEFrSU81MDRmdTF3b0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwH473PH6xAmLNkvWR9sZj9bXXYodY/jIwLfv/sr7NEiO4ONQTcFtO lP7E3CqBS1EnXqBfAbr5EVBaj/8pJPN3SvdwW2cR+yI3ViheJ9wWK2/Qe/cTu3R2 kPbR6dnOa1C74CW25ujsyIrIxlP5wIcndea1E4ZbFEt4q217Ii5wHa1+/wegKhAq +WElGE+b11erbltiSvL86GVl+1EL9zNxp+K8Z+LklJAyBdm4YgrpNtvtCXAhdYV1 Bk1VUXD+7uxQgTrCqRWCAnm1DkVuhXpE7iDeJHvEO1vZ9hFRVp4kQ4WzjWzFH6PU wBpnwGDbYxKpGgtCXOJOcfxVKqdyJMSu -----END CERTIFICATE-----Generated at Wed Apr 9 02:13:50 2025 by rpki-client