$ rpki-client -vvf rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft File: hwGGtlfRGymKhLAkIO504fu1woI.mft (raw, json) Hash identifier: 5nUaW8ffePYFMZSu0JDpQs7qC0JgUaDAzQxxX0AIZjM= Subject key identifier: 8F:F5:5F:A9:A6:29:E3:92:A1:74:F2:7B:76:83:96:69:03:46:81:7B Authority key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 Certificate issuer: /CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft Manifest number: 0124 Signing time: Wed 03 Sep 2025 05:11:20 +0000 Manifest this update: Wed 03 Sep 2025 05:11:19 +0000 Manifest next update: Wed 10 Sep 2025 05:11:19 +0000 Files and hashes: 1: hwGGtlfRGymKhLAkIO504fu1woI.crl (hash: kxXqdqTqbz4oMw/p7HGuRDXtix/u6q/X60i8jImKhG4=) 2: 8E31656CC9FF11EEA53CA25CC4F9AE02.roa (hash: WWVsNPRylFl9Oj5E0+wxXjfLrjfPmxjiDu6REzUJaLM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191885, serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Validity Not Before: Sep 3 05:11:19 2025 GMT Not After : Sep 10 05:11:19 2025 GMT Subject: CN=68b7cdf8-fab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:97:09:23:7c:2f:72:ae:5c:81:07:66:8f:61: 4f:33:30:7b:7a:a5:fa:4c:7c:91:f3:02:0b:38:a3: 85:b9:c8:24:14:be:b1:af:fb:c7:48:27:30:38:d3: 6b:db:89:fb:68:f0:ca:d5:02:37:22:d5:1a:55:7b: 3a:91:bd:d3:c4:cc:2f:5e:ef:31:05:84:c7:43:86: c5:56:34:40:f4:f5:11:99:53:55:06:03:f7:74:00: 4f:81:3b:fc:99:9d:39:95:15:65:e0:e6:d9:99:30: 00:6a:7d:6c:45:37:05:ce:0f:ad:07:8c:ae:1a:aa: 4e:6e:b1:e4:a2:fd:ca:f0:62:db:7f:8f:ca:4c:39: 17:99:bb:eb:27:7d:6f:86:9b:19:9c:c4:1a:26:bc: c6:d1:c4:51:e0:e5:01:3d:5f:e2:99:43:e6:ae:4a: 20:f4:10:67:77:78:19:33:be:c5:c7:0e:fd:d6:d6: a5:8a:6c:6d:55:b1:67:09:63:15:33:37:fd:c6:49: 28:74:d8:b4:1b:5e:29:a3:19:11:6f:cc:be:bb:49: 05:c3:79:bd:ea:cb:01:39:30:d9:40:bf:58:b4:28: 6e:11:55:d5:2a:5d:80:a7:98:10:c7:a6:96:62:82: 36:26:e0:25:ae:b9:71:f0:27:f6:e9:7f:b5:0c:18: 8b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F5:5F:A9:A6:29:E3:92:A1:74:F2:7B:76:83:96:69:03:46:81:7B X509v3 Authority Key Identifier: keyid:87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:8a:74:4d:28:78:7c:0a:fe:c5:cd:2d:83:c5:ec:0f:f8:17: 04:77:3d:d7:b8:9e:86:98:4d:79:84:7c:71:39:9b:11:7f:61: 88:c9:5c:a7:9c:d7:68:2c:8e:c2:b1:d6:38:84:f5:9c:8d:bc: c0:52:cb:a0:22:3e:4e:8b:b8:1d:e7:f3:2e:9f:4f:3b:16:b9: 45:e0:60:ec:a1:12:79:56:2a:7e:74:35:e4:6c:63:78:e4:dc: ca:94:86:a9:43:6d:af:18:4a:f6:f5:5f:0e:98:19:70:01:ec: a1:3e:a3:f8:8b:5c:1a:d0:73:ce:9c:36:3a:e5:f5:a7:f3:1c: d7:9c:f2:e8:63:f6:47:31:99:51:0c:48:8c:f2:d8:e3:45:40: 4c:80:fe:df:ab:f4:1d:2d:26:58:b4:b4:f5:c4:46:ca:a0:40: 28:0f:80:0a:91:a7:92:b3:71:2a:3b:9a:2b:27:e3:1b:f6:8f: 05:1b:fc:a3:d1:83:e7:b8:48:5c:9e:4a:c1:b7:3d:92:09:0e: 91:fa:ef:e5:24:19:18:2d:51:e1:4f:d0:2e:7a:c1:d2:a0:95: e0:a4:5b:e0:01:5a:a6:d9:18:b0:dc:0e:fe:66:58:e3:29:d9: 37:17:12:bd:16:24:99:42:d4:e6:b0:f8:9b:40:c2:41:32:6c: ea:fd:5a:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4ODUxMTAvBgNVBAUTKDg3MDE4NkI2NTdEMTFCMjk4QTg0QjAyNDIwRUU3NEUx RkJCNUMyODIwHhcNMjUwOTAzMDUxMTE5WhcNMjUwOTEwMDUxMTE5WjAYMRYwFAYD VQQDEw02OGI3Y2RmOC1mYWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJcJI3wvcq5cgQdmj2FPMzB7eqX6THyR8wILOKOFucgkFL6xr/vHSCcwONNr 24n7aPDK1QI3ItUaVXs6kb3TxMwvXu8xBYTHQ4bFVjRA9PURmVNVBgP3dABPgTv8 mZ05lRVl4ObZmTAAan1sRTcFzg+tB4yuGqpObrHkov3K8GLbf4/KTDkXmbvrJ31v hpsZnMQaJrzG0cRR4OUBPV/imUPmrkog9BBnd3gZM77Fxw791talimxtVbFnCWMV Mzf9xkkodNi0G14poxkRb8y+u0kFw3m96ssBOTDZQL9YtChuEVXVKl2Ap5gQx6aW YoI2JuAlrrlx8Cf26X+1DBiLIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/1X6mm KeOSoXTye3aDlmkDRoF7MB8GA1UdIwQYMBaAFIcBhrZX0RspioSwJCDudOH7tcKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4NS9ENUZFQTNERUM5 RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5bUtoTEFrSU81MDRmdTF3 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2h3R0d0bGZSR3ltS2hMQWtJTzUwNGZ1MXdvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4NS9ENUZFQTNERUM5RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5 bUtoTEFrSU81MDRmdTF3b0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvinRNKHh8Cv7FzS2DxewP+BcEdz3XuJ6GmE15hHxxOZsRf2GIyVyn nNdoLI7CsdY4hPWcjbzAUsugIj5Oi7gd5/Mun087FrlF4GDsoRJ5Vip+dDXkbGN4 5NzKlIapQ22vGEr29V8OmBlwAeyhPqP4i1wa0HPOnDY65fWn8xzXnPLoY/ZHMZlR DEiM8tjjRUBMgP7fq/QdLSZYtLT1xEbKoEAoD4AKkaeSs3EqO5orJ+Mb9o8FG/yj 0YPnuEhcnkrBtz2SCQ6R+u/lJBkYLVHhT9AuesHSoJXgpFvgAVqm2Riw3A7+Zljj Kdk3FxK9FiSZQtTmsPibQMJBMmzq/VqE -----END CERTIFICATE-----Generated at Thu Sep 4 14:01:36 2025 by rpki-client