$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft File: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft (raw, json) Hash identifier: qIhdREbKRjR9x35c6xzPAUrW+S/aAx7oL+MpHKXOITc= Subject key identifier: BF:0A:05:F2:D7:28:47:A4:53:46:BA:77:17:30:F8:19:C5:A2:5C:A5 Authority key identifier: 87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96 Certificate issuer: /CN=A91AEA8C/serialNumber=870B9CD2E41DAB05BD5527C9150E948959716696 Certificate serial: 1D49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft Manifest number: 1D32 Signing time: Sun 20 Jul 2025 16:10:47 +0000 Manifest this update: Sun 20 Jul 2025 16:10:47 +0000 Manifest next update: Sun 27 Jul 2025 16:10:47 +0000 Files and hashes: 1: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl (hash: HUNEcQDLWd/TyLecc89MQgRq73YfyYhneeJwc0bdNg4=) 2: F959A9A0F11011EB8E63FC73C4F9AE02.roa (hash: hUo9fC/hzy17W76vlbeXm/dftwyddFbiGAwqbp53ZVY=) 3: 2C9502D83C4011EA852C097BC4F9AE02.roa (hash: PqWYELxwluX51eG9Uh24A8xMydgivpkrMXOxcA+zOSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:10:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7497 (0x1d49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEA8C, serialNumber=870B9CD2E41DAB05BD5527C9150E948959716696 Validity Not Before: Jul 20 16:10:47 2025 GMT Not After : Jul 27 16:10:47 2025 GMT Subject: CN=687d1507-bd2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:8c:81:57:64:ae:57:c3:38:b6:dd:30:c1:84: 4a:f1:fe:01:50:28:cf:73:bb:cd:55:8e:46:2d:8d: 59:61:ff:7f:49:94:9a:d1:4e:c3:a9:60:12:dc:71: 61:f6:e9:9b:e5:5f:d2:be:86:0e:80:45:12:84:8c: 8a:9d:be:7a:f8:38:80:f6:22:09:50:88:11:96:55: df:36:14:f9:7f:b1:c4:77:f1:12:b9:bc:31:f5:2e: f7:77:53:82:4e:20:78:4b:d1:a1:2e:45:0a:7e:23: fd:6b:e7:b2:e5:77:e2:3e:4d:6c:59:f9:87:37:63: 97:84:05:c7:8f:d2:58:50:52:60:13:00:2b:00:5a: 40:5f:98:76:fa:a1:ea:98:1a:99:61:66:20:d7:21: 0d:ea:e9:f1:81:cd:db:be:d7:db:04:e3:a9:66:3c: c4:62:12:50:d2:6f:30:41:61:b8:66:64:d8:27:a6: 62:18:2e:86:6e:5f:f7:cb:bf:43:3c:5d:aa:fb:88: 86:84:cb:f0:aa:96:0e:98:19:58:56:aa:d1:46:62: 8c:c9:49:81:41:bb:6f:9a:17:b8:93:55:c8:f9:74: 04:35:06:5d:64:cd:ec:90:1a:86:57:09:b0:11:90: 18:f9:24:3d:de:b3:0d:09:ea:6c:2d:1e:f5:b3:b3: a0:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:0A:05:F2:D7:28:47:A4:53:46:BA:77:17:30:F8:19:C5:A2:5C:A5 X509v3 Authority Key Identifier: keyid:87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:07:70:30:0c:a0:73:87:6e:66:ad:22:17:d7:64:36:88:0d: 90:4e:d7:db:75:40:8f:a6:b5:31:2d:ab:57:cc:68:d6:96:f7: c3:89:05:53:ca:9e:e5:07:cc:82:68:0f:3b:7f:79:23:7c:e9: bc:15:06:d8:e3:39:b8:8e:2e:02:39:14:21:3b:41:9a:c3:05: fa:1b:51:25:0f:d4:7a:9f:0d:17:84:e9:5b:82:57:94:3f:65: a4:38:28:00:73:39:72:52:5f:83:d6:88:15:58:78:35:89:7e: 9a:f9:5d:40:b2:4f:9b:b0:2f:e5:8d:fe:02:f8:b4:18:0f:ef: 8b:77:b3:ee:c6:16:ed:6d:e9:6c:fc:2d:71:45:01:b9:7c:e8: b6:5a:a0:c4:58:3a:ff:7b:10:2a:8d:ea:80:74:1b:dc:00:b1: ee:f7:ac:e1:28:61:8b:81:15:b1:eb:4e:12:0a:c3:3b:db:fd: 1d:3f:d3:1c:32:8c:db:87:02:d1:84:32:67:27:37:f6:ab:20: 73:41:54:31:04:53:01:68:9d:29:1f:56:60:0d:00:11:05:93: 22:87:49:21:3e:23:fc:b0:bc:6c:11:6c:9a:5b:41:d9:7c:6b: e7:cd:89:8c:33:54:fc:11:b2:ac:e2:3e:82:77:21:ff:71:a7: 08:0c:fb:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVBOEMxMTAvBgNVBAUTKDg3MEI5Q0QyRTQxREFCMDVCRDU1MjdDOTE1MEU5NDg5 NTk3MTY2OTYwHhcNMjUwNzIwMTYxMDQ3WhcNMjUwNzI3MTYxMDQ3WjAYMRYwFAYD VQQDEw02ODdkMTUwNy1iZDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24yBV2SuV8M4tt0wwYRK8f4BUCjPc7vNVY5GLY1ZYf9/SZSa0U7DqWAS3HFh 9umb5V/SvoYOgEUShIyKnb56+DiA9iIJUIgRllXfNhT5f7HEd/ESubwx9S73d1OC TiB4S9GhLkUKfiP9a+ey5XfiPk1sWfmHN2OXhAXHj9JYUFJgEwArAFpAX5h2+qHq mBqZYWYg1yEN6unxgc3bvtfbBOOpZjzEYhJQ0m8wQWG4ZmTYJ6ZiGC6Gbl/3y79D PF2q+4iGhMvwqpYOmBlYVqrRRmKMyUmBQbtvmhe4k1XI+XQENQZdZM3skBqGVwmw EZAY+SQ93rMNCepsLR71s7OgWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8KBfLX KEekU0a6dxcw+BnFolylMB8GA1UdIwQYMBaAFIcLnNLkHasFvVUnyRUOlIlZcWaW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUE4Qy9GMjdCOUNERUJC ODYxMUU2OEZGNTBDNTdDNEY5QUUwMi9od3VjMHVRZHF3VzlWU2ZKRlE2VWlWbHha cFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h3dWMwdVFkcXdXOVZTZkpGUTZVaVZseFpwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUE4Qy9GMjdCOUNERUJCODYxMUU2OEZGNTBDNTdDNEY5QUUwMi9od3VjMHVRZHF3 VzlWU2ZKRlE2VWlWbHhacFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPB3AwDKBzh25mrSIX12Q2iA2QTtfbdUCPprUxLatXzGjWlvfDiQVT yp7lB8yCaA87f3kjfOm8FQbY4zm4ji4CORQhO0GawwX6G1ElD9R6nw0XhOlbgleU P2WkOCgAczlyUl+D1ogVWHg1iX6a+V1Ask+bsC/ljf4C+LQYD++Ld7Puxhbtbels /C1xRQG5fOi2WqDEWDr/exAqjeqAdBvcALHu96zhKGGLgRWx604SCsM72/0dP9Mc MozbhwLRhDJnJzf2qyBzQVQxBFMBaJ0pH1ZgDQARBZMih0khPiP8sLxsEWyaW0HZ fGvnzYmMM1T8EbKs4j6CdyH/cacIDPuD -----END CERTIFICATE-----Generated at Mon Jul 21 05:52:37 2025 by rpki-client