$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft File: hf--WNwc9_kcLTgTTiC27wssOl8.mft (raw, json) Hash identifier: +j5wIlH9FBpYg+Uw3lATqDc0hxHNe/ND2ifXfvR9wfA= Subject key identifier: 1B:E5:DE:C9:6F:1C:F7:41:5D:32:D6:AF:48:82:51:32:E0:AF:99:94 Authority key identifier: 85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F Certificate issuer: /CN=A911954F/serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft Manifest number: 01D6 Signing time: Sat 31 May 2025 04:27:41 +0000 Manifest this update: Sat 31 May 2025 04:27:40 +0000 Manifest next update: Sat 07 Jun 2025 04:27:40 +0000 Files and hashes: 1: hf--WNwc9_kcLTgTTiC27wssOl8.crl (hash: uD/t+2/Um1kumMJl1SpFxgLUqE4EdHKaL8HF2MafzHs=) 2: 6BCEC330344311EFB7DD0D34C4F9AE02.roa (hash: V5GXfj7MVmj/bsrh8ZK5BOMK+sTslcHA1M5O9HLWM8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911954F, serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Validity Not Before: May 31 04:27:40 2025 GMT Not After : Jun 7 04:27:40 2025 GMT Subject: CN=683a853c-2acf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f5:22:9f:76:fe:d2:4d:00:b4:b1:a6:d9:f0: 89:89:f0:c8:1f:75:5a:58:d2:30:96:f2:e1:3d:8d: e4:4d:6c:a8:f8:91:ac:26:61:eb:ee:57:6b:e7:e8: a1:f5:44:b4:00:6b:ec:87:30:d6:73:b5:99:22:6c: 62:65:a8:3f:13:53:50:9c:e9:d1:c5:6c:21:0b:c7: 2c:d0:21:03:a7:c8:06:57:0d:8a:6e:83:48:9b:ce: d5:2a:bc:7f:3d:30:86:77:bf:f6:6a:67:73:70:60: c2:d7:8d:0b:70:cc:6f:36:88:b6:47:fd:07:c4:2b: 8b:ce:f6:5c:43:96:2a:85:d2:91:26:6a:e7:44:fb: 00:73:19:29:41:72:a6:77:e0:ea:25:c6:a9:e2:6b: 66:88:d9:49:eb:b2:10:20:0c:3b:b9:58:6b:3f:7a: 44:bf:e8:d9:19:42:3b:24:8f:10:75:8e:d1:42:41: 60:5a:9b:a7:f1:21:35:f2:21:01:ed:7e:df:39:21: 4f:44:fb:58:c8:5d:d3:6d:56:11:26:7e:05:e0:71: 1d:94:e0:ec:54:15:8a:08:d0:66:ab:82:45:01:7c: 10:28:a2:6b:19:7d:c1:80:b3:3c:ed:56:53:7a:93: 6b:76:74:e3:06:b4:68:6e:e8:4f:cc:9e:49:c0:f2: 08:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E5:DE:C9:6F:1C:F7:41:5D:32:D6:AF:48:82:51:32:E0:AF:99:94 X509v3 Authority Key Identifier: keyid:85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:88:1c:a6:74:f7:ce:73:74:ac:0f:28:b7:bb:b9:b8:56:19: 8b:91:64:e7:6d:19:32:4c:de:2b:06:99:00:8e:f1:79:42:4e: e2:b5:ad:b8:fd:9d:81:fe:49:aa:e9:64:41:90:64:e6:10:c5: 4f:62:b0:ce:83:61:8a:be:67:7d:68:b0:2e:b4:19:26:e7:d4: 78:5d:de:b5:c0:92:64:0b:80:c9:07:40:67:25:80:41:80:c3: de:92:2d:ae:2d:b9:f9:0b:7a:a8:8b:dc:0c:30:d8:92:eb:58: a3:f5:40:57:20:fb:67:1e:bc:d9:41:67:72:0d:b2:61:15:fb: 4b:32:d5:5c:1d:cc:a1:cc:b7:21:6b:a6:11:4c:ba:2c:2c:86: 60:28:bd:8f:74:4f:cc:a7:9b:9b:38:fc:b9:90:50:3b:b6:35: 62:5f:76:bc:68:2c:a6:ce:b5:8f:c9:9c:cd:70:8c:c9:d2:86: bc:e4:3f:ce:3a:14:84:2f:d0:b3:b7:99:f4:14:d4:08:b2:0c: 2c:96:fc:ab:29:2f:a9:4b:58:fb:f4:ca:e5:7a:35:08:9d:3b: 33:dd:a5:3c:6a:01:cf:5b:e4:5f:d8:8f:92:f0:41:6a:bf:c3: f9:a3:6d:60:bc:9e:c1:a9:c7:e8:0e:3b:a2:dc:e8:52:f0:77: ed:a3:b7:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1NEYxMTAvBgNVBAUTKDg1RkZCRTU4REMxQ0Y3RjkxQzJEMzgxMzRFMjBCNkVG MEIyQzNBNUYwHhcNMjUwNTMxMDQyNzQwWhcNMjUwNjA3MDQyNzQwWjAYMRYwFAYD VQQDEw02ODNhODUzYy0yYWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvUin3b+0k0AtLGm2fCJifDIH3VaWNIwlvLhPY3kTWyo+JGsJmHr7ldr5+ih 9US0AGvshzDWc7WZImxiZag/E1NQnOnRxWwhC8cs0CEDp8gGVw2KboNIm87VKrx/ PTCGd7/2amdzcGDC140LcMxvNoi2R/0HxCuLzvZcQ5YqhdKRJmrnRPsAcxkpQXKm d+DqJcap4mtmiNlJ67IQIAw7uVhrP3pEv+jZGUI7JI8QdY7RQkFgWpun8SE18iEB 7X7fOSFPRPtYyF3TbVYRJn4F4HEdlODsVBWKCNBmq4JFAXwQKKJrGX3BgLM87VZT epNrdnTjBrRobuhPzJ5JwPIIBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvl3slv HPdBXTLWr0iCUTLgr5mUMB8GA1UdIwQYMBaAFIX/vljcHPf5HC04E04gtu8LLDpf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTU0Ri81OTFBMzIyMDkx NEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlfa2NMVGdUVGlDMjd3c3NP bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hmLS1XTndjOV9rY0xUZ1RUaUMyN3dzc09sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTU0Ri81OTFBMzIyMDkxNEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlf a2NMVGdUVGlDMjd3c3NPbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAciBymdPfOc3SsDyi3u7m4VhmLkWTnbRkyTN4rBpkAjvF5Qk7ita24 /Z2B/kmq6WRBkGTmEMVPYrDOg2GKvmd9aLAutBkm59R4Xd61wJJkC4DJB0BnJYBB gMPeki2uLbn5C3qoi9wMMNiS61ij9UBXIPtnHrzZQWdyDbJhFftLMtVcHcyhzLch a6YRTLosLIZgKL2PdE/Mp5ubOPy5kFA7tjViX3a8aCymzrWPyZzNcIzJ0oa85D/O OhSEL9Czt5n0FNQIsgwslvyrKS+pS1j79MrlejUInTsz3aU8agHPW+Rf2I+S8EFq v8P5o21gvJ7BqcfoDjui3OhS8Hfto7fM -----END CERTIFICATE-----Generated at Sat May 31 15:29:57 2025 by rpki-client