$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft File: HWQu0o7OpfKqzzR7Fgl_nZJB120.mft (raw, json) Hash identifier: EIlMuLRtDMgwLWqOmTzkHvMS20hEucb1y/g6Gn52/Cs= Subject key identifier: E1:64:A7:ED:FF:0D:5B:B2:9D:41:DC:E7:89:EF:DB:B0:90:AE:3D:BA Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D Certificate issuer: /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Certificate serial: 037F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft Manifest number: 037B Signing time: Sat 23 Aug 2025 01:07:12 +0000 Manifest this update: Sat 23 Aug 2025 01:07:12 +0000 Manifest next update: Sat 30 Aug 2025 01:07:12 +0000 Files and hashes: 1: HWQu0o7OpfKqzzR7Fgl_nZJB120.crl (hash: yQxdTP/qZYVXWVSLZ90e2LkAyz6VjZUqochLNLRfoSk=) 2: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (hash: 8hUucYPHQ79ZY6uDpo1eHlNtJ78CYgic7xieJwMDGwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:07:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 895 (0x37f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118E3A, serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Validity Not Before: Aug 23 01:07:12 2025 GMT Not After : Aug 30 01:07:12 2025 GMT Subject: CN=68a91440-c9b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:53:d8:89:ce:2b:aa:9f:0d:50:45:99:46:02: 50:18:4b:02:8a:25:32:89:4d:1a:2e:4a:56:e3:fe: e4:f5:00:b9:3e:b0:0c:69:26:65:fb:80:90:f8:5a: e8:dc:40:dc:f2:44:7e:1e:34:e5:f3:5f:19:2e:00: 39:4d:83:62:db:f3:01:6a:bf:88:48:ec:2e:fd:e8: 02:12:48:b6:15:c3:8e:4e:17:35:0d:1a:5b:bd:33: 93:55:7f:5d:6c:b6:0a:9e:01:29:23:9f:eb:77:d5: b9:a3:b7:3e:cf:bc:15:2f:0d:64:d3:06:45:d1:ca: 66:06:35:bb:79:41:57:40:f1:61:50:ba:fd:06:49: 62:8f:94:ca:fa:f2:a1:0b:c8:7b:d0:b5:c2:f5:a5: bd:87:62:67:76:73:3b:d3:b1:b8:84:68:11:58:d8: 34:5f:2c:b7:5c:d0:13:5a:c6:38:6a:8e:91:83:f2: 04:9b:91:d4:83:b9:a6:34:49:93:f5:54:81:6e:76: 9f:3f:fc:f5:77:7e:58:6a:c2:b9:52:c7:84:9e:a4: 7d:37:b1:a7:87:c9:db:49:31:56:67:f8:dd:d9:bf: e3:e4:e7:82:17:ec:77:ab:f9:6f:f0:d8:15:98:30: c2:0d:78:b7:c8:5c:bf:a0:7b:1f:d7:dc:54:01:a0: 94:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:64:A7:ED:FF:0D:5B:B2:9D:41:DC:E7:89:EF:DB:B0:90:AE:3D:BA X509v3 Authority Key Identifier: keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:59:b0:6d:6b:ca:19:28:d7:da:50:c9:b6:dc:52:6a:33:ea: c2:c3:52:1c:c4:a5:37:7e:e5:8c:5b:ec:8c:37:e2:10:f2:d9: 08:81:33:1d:94:c5:15:71:88:8c:c4:3c:17:4b:5a:3a:ec:a2: 35:ba:09:d7:fd:8e:86:49:82:19:23:d3:b0:4c:98:20:d5:a8: ee:26:8c:9f:fe:57:dc:72:7a:f5:68:90:18:e8:d9:a4:9f:db: 3f:0d:53:ba:cb:de:a6:78:a6:07:fa:3b:f9:5e:48:9d:8d:83: f3:e0:9a:c0:4d:d2:e4:1b:6a:fa:58:6b:44:75:23:c5:a5:80: 81:cd:6f:73:4b:4d:1a:99:f0:a2:86:cd:0b:00:a6:cc:d6:9d: 6f:65:b1:f1:c1:e2:06:3e:7c:05:de:4e:d9:19:b1:4c:ee:db: f7:77:95:4a:34:a6:55:b5:b0:e4:59:4c:3e:4c:d6:e6:04:ce: 0a:1d:e2:f8:43:d9:4c:c5:5c:de:5c:1c:d3:ac:17:fb:b4:17: 40:e1:d7:73:39:0b:f9:41:0c:0a:8c:0a:44:33:12:f0:78:28: 60:7c:0b:ae:59:7c:f9:7f:ed:1f:02:7e:2c:90:77:3d:18:19: 8e:eb:d2:d2:e6:53:39:2a:3c:c4:1f:6f:1e:13:f0:5b:f1:d0: b2:29:29:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFM0ExMTAvBgNVBAUTKDFENjQyRUQyOEVDRUE1RjJBQUNGMzQ3QjE2MDk3RjlE OTI0MUQ3NkQwHhcNMjUwODIzMDEwNzEyWhcNMjUwODMwMDEwNzEyWjAYMRYwFAYD VQQDEw02OGE5MTQ0MC1jOWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlPYic4rqp8NUEWZRgJQGEsCiiUyiU0aLkpW4/7k9QC5PrAMaSZl+4CQ+Fro 3EDc8kR+HjTl818ZLgA5TYNi2/MBar+ISOwu/egCEki2FcOOThc1DRpbvTOTVX9d bLYKngEpI5/rd9W5o7c+z7wVLw1k0wZF0cpmBjW7eUFXQPFhULr9Bklij5TK+vKh C8h70LXC9aW9h2JndnM707G4hGgRWNg0Xyy3XNATWsY4ao6Rg/IEm5HUg7mmNEmT 9VSBbnafP/z1d35YasK5UseEnqR9N7Gnh8nbSTFWZ/jd2b/j5OeCF+x3q/lv8NgV mDDCDXi3yFy/oHsf19xUAaCUiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFkp+3/ DVuynUHc54nv27CQrj26MB8GA1UdIwQYMBaAFB1kLtKOzqXyqs80exYJf52SQddt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEUzQS9BN0FCMEE4QUI5 OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3BmS3F6elI3RmdsX25aSkIx MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXUXUwbzdPcGZLcXp6UjdGZ2xfblpKQjEyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEUzQS9BN0FCMEE4QUI5OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3Bm S3F6elI3RmdsX25aSkIxMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVWbBta8oZKNfaUMm23FJqM+rCw1IcxKU3fuWMW+yMN+IQ8tkIgTMd lMUVcYiMxDwXS1o67KI1ugnX/Y6GSYIZI9OwTJgg1ajuJoyf/lfccnr1aJAY6Nmk n9s/DVO6y96meKYH+jv5XkidjYPz4JrATdLkG2r6WGtEdSPFpYCBzW9zS00amfCi hs0LAKbM1p1vZbHxweIGPnwF3k7ZGbFM7tv3d5VKNKZVtbDkWUw+TNbmBM4KHeL4 Q9lMxVzeXBzTrBf7tBdA4ddzOQv5QQwKjApEMxLweChgfAuuWXz5f+0fAn4skHc9 GBmO69LS5lM5KjzEH28eE/Bb8dCyKSlH -----END CERTIFICATE-----Generated at Sat Aug 23 18:18:21 2025 by rpki-client