$ rpki-client -vvf rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft File: hwGGtlfRGymKhLAkIO504fu1woI.mft (raw, json) Hash identifier: oM/RDtaWG8+Ot1oXAV7ZRM8JcxkyO/I7U97FVua8y4Y= Subject key identifier: F1:29:F4:10:3A:A4:E7:34:DA:BE:40:43:E1:1E:AF:B5:8C:16:96:AC Authority key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 Certificate issuer: /CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft Manifest number: 010A Signing time: Sat 19 Jul 2025 05:11:32 +0000 Manifest this update: Sat 19 Jul 2025 05:11:32 +0000 Manifest next update: Sat 26 Jul 2025 05:11:32 +0000 Files and hashes: 1: hwGGtlfRGymKhLAkIO504fu1woI.crl (hash: SbnEJkn/1+9SJ4RiBvnpLOY5vYnfxbspFAjH2gzVztU=) 2: 8E31656CC9FF11EEA53CA25CC4F9AE02.roa (hash: d+Z8hZJ1dcZIqJgs5jVt78VrRJybv8thQQWwCFca5j0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:11:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191885, serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Validity Not Before: Jul 19 05:11:32 2025 GMT Not After : Jul 26 05:11:32 2025 GMT Subject: CN=687b2904-5f5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7f:55:6a:c9:90:ff:e9:7a:d0:04:60:56:22: 57:9a:98:79:c7:91:30:24:46:45:4a:e2:3a:22:a9: 35:7f:5a:79:a3:5d:34:cf:c3:84:4a:e1:35:00:e7: 9c:6e:35:b1:c7:1c:a5:60:a6:4f:ef:7b:c2:2e:04: 5e:1f:e5:0d:ab:ac:f0:57:f9:b9:60:05:94:17:5f: 61:7b:87:43:dd:fb:fb:08:4c:f3:f9:4a:86:1f:ef: d1:da:94:cc:98:56:12:e1:c0:32:ff:10:5f:d8:a4: 39:59:9b:49:94:5a:97:fa:be:55:4d:52:f8:62:93: cd:d8:c2:07:7a:4b:92:31:cb:a0:97:c4:ba:22:c6: f9:67:56:b0:b0:3f:90:1e:97:a3:66:ae:48:9e:62: d0:fb:05:d4:fa:28:36:df:47:54:a3:98:32:e3:8c: 0f:0f:44:29:d5:a6:42:34:b4:cf:6b:d8:02:f4:04: 4e:93:69:8e:e4:8d:66:2d:35:13:6c:f9:ec:5e:82: 29:c5:6d:b4:ed:8a:ff:1a:d6:17:f2:4c:7b:90:ef: 91:48:59:a5:6d:59:7b:a9:38:f9:e5:58:bb:17:2b: ec:11:cd:1e:c0:fe:3d:04:e7:3b:44:7a:5a:d6:a2: b3:cf:95:3a:7e:e0:2b:f8:71:bf:b9:4e:26:4f:98: cb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:29:F4:10:3A:A4:E7:34:DA:BE:40:43:E1:1E:AF:B5:8C:16:96:AC X509v3 Authority Key Identifier: keyid:87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:cc:2c:ce:81:8a:d6:74:ee:7e:c7:54:67:ed:c8:84:ba:09: 23:7e:5b:24:c7:70:23:15:cc:9f:df:b5:a7:8f:b6:03:9d:a8: 21:9b:d7:da:56:ee:ef:17:f4:22:14:d0:ff:d8:f2:74:5b:8e: d5:4e:39:0b:e8:18:fd:93:54:e5:fb:00:9b:af:54:a1:98:50: ca:5a:9a:55:c4:a5:33:fb:d9:4f:b6:0c:06:9c:bb:94:f3:51: ca:56:0d:06:bc:4c:4f:9c:39:71:81:84:02:58:92:47:79:3f: 47:a7:87:d1:28:2d:c7:01:3e:9d:7b:52:72:83:c6:5d:b0:2f: b5:7b:74:3a:17:6a:2a:63:6e:da:e7:56:db:fb:87:ca:e0:0d: 5a:65:fc:3e:fa:76:9f:2f:e1:ab:ea:48:25:de:fa:e5:2e:87: 99:cc:f1:15:61:3a:ee:25:19:1c:53:43:08:f7:ed:b5:85:8f: a4:45:57:dd:92:2e:55:d5:4a:92:c0:ca:23:bc:a9:29:e4:ec: 74:f5:9b:0e:ee:4f:85:ca:fa:46:d4:71:2f:e4:21:7f:53:ae: f2:ae:77:06:b7:2f:4c:9b:17:0f:3c:73:90:b8:aa:9c:b6:25: 07:f0:72:f3:c0:45:ac:d4:ad:08:44:ae:19:79:84:0f:c5:b1: ad:47:ec:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4ODUxMTAvBgNVBAUTKDg3MDE4NkI2NTdEMTFCMjk4QTg0QjAyNDIwRUU3NEUx RkJCNUMyODIwHhcNMjUwNzE5MDUxMTMyWhcNMjUwNzI2MDUxMTMyWjAYMRYwFAYD VQQDEw02ODdiMjkwNC01ZjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArH9VasmQ/+l60ARgViJXmph5x5EwJEZFSuI6Iqk1f1p5o100z8OESuE1AOec bjWxxxylYKZP73vCLgReH+UNq6zwV/m5YAWUF19he4dD3fv7CEzz+UqGH+/R2pTM mFYS4cAy/xBf2KQ5WZtJlFqX+r5VTVL4YpPN2MIHekuSMcugl8S6Isb5Z1awsD+Q HpejZq5InmLQ+wXU+ig230dUo5gy44wPD0Qp1aZCNLTPa9gC9AROk2mO5I1mLTUT bPnsXoIpxW207Yr/GtYX8kx7kO+RSFmlbVl7qTj55Vi7FyvsEc0ewP49BOc7RHpa 1qKzz5U6fuAr+HG/uU4mT5jLJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEp9BA6 pOc02r5AQ+Eer7WMFpasMB8GA1UdIwQYMBaAFIcBhrZX0RspioSwJCDudOH7tcKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4NS9ENUZFQTNERUM5 RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5bUtoTEFrSU81MDRmdTF3 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2h3R0d0bGZSR3ltS2hMQWtJTzUwNGZ1MXdvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4NS9ENUZFQTNERUM5RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5 bUtoTEFrSU81MDRmdTF3b0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZzCzOgYrWdO5+x1Rn7ciEugkjflskx3AjFcyf37Wnj7YDnaghm9fa Vu7vF/QiFND/2PJ0W47VTjkL6Bj9k1Tl+wCbr1ShmFDKWppVxKUz+9lPtgwGnLuU 81HKVg0GvExPnDlxgYQCWJJHeT9Hp4fRKC3HAT6de1Jyg8ZdsC+1e3Q6F2oqY27a 51bb+4fK4A1aZfw++nafL+Gr6kgl3vrlLoeZzPEVYTruJRkcU0MI9+21hY+kRVfd ki5V1UqSwMojvKkp5Ox09ZsO7k+FyvpG1HEv5CF/U67yrncGty9MmxcPPHOQuKqc tiUH8HLzwEWs1K0IRK4ZeYQPxbGtR+wz -----END CERTIFICATE-----Generated at Mon Jul 21 03:05:33 2025 by rpki-client