$ rpki-client -vvf rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft File: hwGGtlfRGymKhLAkIO504fu1woI.mft (raw, json) Hash identifier: ML105F8iINsIz6j2yUQKhBb8HlX/bz2vvRnPvbwPbqU= Subject key identifier: BB:6E:03:A4:8B:E4:72:83:5A:A7:A6:C0:E9:B4:EE:7E:25:3E:B5:16 Authority key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 Certificate issuer: /CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft Manifest number: F2 Signing time: Sun 01 Jun 2025 04:56:21 +0000 Manifest this update: Sun 01 Jun 2025 04:56:20 +0000 Manifest next update: Sun 08 Jun 2025 04:56:20 +0000 Files and hashes: 1: hwGGtlfRGymKhLAkIO504fu1woI.crl (hash: iqnGRZgG6q2AE8K2INIZ28ZTswGsC9QX1d0sp/FT/kY=) 2: 8E31656CC9FF11EEA53CA25CC4F9AE02.roa (hash: d+Z8hZJ1dcZIqJgs5jVt78VrRJybv8thQQWwCFca5j0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:56:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191885, serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Validity Not Before: Jun 1 04:56:20 2025 GMT Not After : Jun 8 04:56:20 2025 GMT Subject: CN=683bdd74-7759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f7:d3:48:b3:85:95:a6:fb:c8:ba:ca:c0:03: 6c:20:3f:c5:cc:67:50:41:98:03:74:a4:76:f1:2d: c7:52:cf:21:c1:33:7e:f1:07:ba:8b:66:69:2a:33: e3:c8:f6:96:23:d2:61:4f:45:aa:ac:63:6b:bc:78: 5d:b2:6d:4f:c1:3a:58:57:2f:fc:f7:1a:76:e1:b1: 31:87:39:ce:ff:df:10:ba:7c:54:ad:a3:98:22:a8: fa:ff:6b:62:fd:db:d1:4f:bb:45:29:95:78:2c:e1: 43:0e:06:c8:7b:cd:07:0c:06:6f:79:55:29:74:5e: c2:19:b9:05:f6:36:2c:0e:1a:0c:a3:8e:28:fc:cf: e8:d1:bc:00:72:df:11:c4:3c:fd:04:87:e7:23:a0: 9e:4b:0f:c3:6a:29:3d:5c:67:7f:cc:cb:7d:56:b4: a3:f6:1b:73:69:5b:2c:fa:5a:04:97:64:d3:2a:00: 8b:09:40:ff:1e:ff:6e:52:76:ac:8b:06:20:e4:20: 38:d7:f3:3c:ab:f4:a8:9b:dc:11:16:e0:aa:34:1b: de:fa:cf:ef:58:6e:e6:13:d3:ed:a1:bb:85:dd:6e: 24:ca:17:3a:75:d2:67:a2:bf:cb:e3:4b:00:9a:63: bb:6a:fe:9f:58:97:cd:35:0c:83:e4:8b:f9:23:07: 45:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:6E:03:A4:8B:E4:72:83:5A:A7:A6:C0:E9:B4:EE:7E:25:3E:B5:16 X509v3 Authority Key Identifier: keyid:87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:d7:9f:5b:e9:72:5e:98:59:fe:b7:e8:2f:05:bc:cc:d8:25: a6:94:2b:b0:c1:e7:03:6d:97:3f:aa:ef:36:ae:2e:0b:a9:c8: f1:26:62:ee:81:f2:13:d4:e6:c4:41:a0:b8:8b:70:77:71:5b: 3a:45:53:2b:1e:ac:4d:ce:91:56:c0:28:7d:24:31:87:6d:56: 27:f2:e8:94:70:d9:1e:5d:71:2c:3c:60:53:1b:9a:2b:66:e1: 85:a8:b1:c3:77:c6:8b:1e:67:94:62:c7:23:d4:7c:90:4e:06: 46:be:1a:b2:77:bc:68:a3:5b:6a:c4:c4:88:8d:9d:f8:4e:a7: 8d:6a:b6:7b:38:6c:e1:61:84:ac:05:d3:49:cc:4d:43:1f:74: 7f:52:73:a4:ee:f0:95:d2:6b:c0:5f:be:d6:6d:c7:11:e0:ea: 72:7b:fd:2c:07:cc:d1:87:f2:b8:2a:fe:f0:e3:25:12:db:32: 66:6e:ed:6b:99:b5:04:6a:14:29:7e:c0:4f:dd:69:57:b9:e5: 54:3e:c0:43:b8:c0:3d:40:a9:25:fd:a2:2c:66:7c:ba:91:47: f9:eb:2f:ab:f3:bc:d4:73:ed:9b:49:9c:50:93:b2:49:ae:89: 4a:3c:d3:8d:45:7e:de:94:d3:55:6d:79:9e:17:aa:61:9c:20: 1c:c5:32:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4ODUxMTAvBgNVBAUTKDg3MDE4NkI2NTdEMTFCMjk4QTg0QjAyNDIwRUU3NEUx RkJCNUMyODIwHhcNMjUwNjAxMDQ1NjIwWhcNMjUwNjA4MDQ1NjIwWjAYMRYwFAYD VQQDEw02ODNiZGQ3NC03NzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/fTSLOFlab7yLrKwANsID/FzGdQQZgDdKR28S3HUs8hwTN+8Qe6i2ZpKjPj yPaWI9JhT0WqrGNrvHhdsm1PwTpYVy/89xp24bExhznO/98QunxUraOYIqj6/2ti /dvRT7tFKZV4LOFDDgbIe80HDAZveVUpdF7CGbkF9jYsDhoMo44o/M/o0bwAct8R xDz9BIfnI6CeSw/Daik9XGd/zMt9VrSj9htzaVss+loEl2TTKgCLCUD/Hv9uUnas iwYg5CA41/M8q/Som9wRFuCqNBve+s/vWG7mE9PtobuF3W4kyhc6ddJnor/L40sA mmO7av6fWJfNNQyD5Iv5IwdFRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtuA6SL 5HKDWqemwOm07n4lPrUWMB8GA1UdIwQYMBaAFIcBhrZX0RspioSwJCDudOH7tcKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4NS9ENUZFQTNERUM5 RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5bUtoTEFrSU81MDRmdTF3 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2h3R0d0bGZSR3ltS2hMQWtJTzUwNGZ1MXdvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4NS9ENUZFQTNERUM5RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5 bUtoTEFrSU81MDRmdTF3b0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+159b6XJemFn+t+gvBbzM2CWmlCuwwecDbZc/qu82ri4LqcjxJmLu gfIT1ObEQaC4i3B3cVs6RVMrHqxNzpFWwCh9JDGHbVYn8uiUcNkeXXEsPGBTG5or ZuGFqLHDd8aLHmeUYscj1HyQTgZGvhqyd7xoo1tqxMSIjZ34TqeNarZ7OGzhYYSs BdNJzE1DH3R/UnOk7vCV0mvAX77WbccR4Opye/0sB8zRh/K4Kv7w4yUS2zJmbu1r mbUEahQpfsBP3WlXueVUPsBDuMA9QKkl/aIsZny6kUf56y+r87zUc+2bSZxQk7JJ rolKPNONRX7elNNVbXmeF6phnCAcxTKq -----END CERTIFICATE-----Generated at Mon Jun 2 18:49:09 2025 by rpki-client