$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft File: HWQu0o7OpfKqzzR7Fgl_nZJB120.mft (raw, json) Hash identifier: XA0EFFBOpOG0Xk+hFaboBUYxBbxrGre5JFoqo7zrd+8= Subject key identifier: 7F:94:03:8B:0B:DC:F9:9D:B9:F5:F4:93:35:6E:3C:6E:1A:BA:EE:E1 Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D Certificate issuer: /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Certificate serial: 0363 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft Manifest number: 035F Signing time: Sun 29 Jun 2025 00:31:11 +0000 Manifest this update: Sun 29 Jun 2025 00:31:11 +0000 Manifest next update: Sun 06 Jul 2025 00:31:11 +0000 Files and hashes: 1: HWQu0o7OpfKqzzR7Fgl_nZJB120.crl (hash: 0E5HJm5apbI721k3jRGCRiaY6GfE+76zUf/0UsMkUcY=) 2: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (hash: 8hUucYPHQ79ZY6uDpo1eHlNtJ78CYgic7xieJwMDGwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 00:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 867 (0x363) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118E3A, serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Validity Not Before: Jun 29 00:31:11 2025 GMT Not After : Jul 6 00:31:11 2025 GMT Subject: CN=6860894f-d3b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7d:7e:1f:5b:12:e8:5a:a5:51:df:be:eb:0c: f8:19:14:36:12:2e:fa:0f:0e:c1:d5:21:4e:33:30: 55:47:b9:8e:1d:93:1d:ec:4b:48:8b:fc:ac:4d:a6: e8:76:45:7f:64:43:77:7d:03:84:ae:10:0d:c9:e9: 09:ae:0a:62:ae:53:31:6e:08:71:1c:70:0d:61:fb: 97:5a:77:80:8c:d3:a5:16:49:12:ef:5c:fe:7e:77: af:a1:54:91:e2:e6:e8:1a:b9:10:ec:5d:f7:c1:13: f9:67:65:c9:df:6d:e2:f3:fd:17:4a:3d:6f:e6:08: a1:83:83:c4:79:b0:66:a0:32:0a:c0:b0:5c:42:83: 36:5b:9b:66:8a:59:43:1a:05:82:fc:e9:43:d3:70: 31:b6:dc:d5:d8:df:81:84:6d:06:d4:3d:ee:48:20: b5:44:74:25:03:9f:d7:52:0b:01:5e:e5:cb:15:1d: 6b:95:bd:4b:bb:44:54:ba:ee:ae:65:47:01:6a:96: 82:b2:c6:a3:0f:cc:ec:7f:6f:d3:a9:b9:cf:2f:d7: 94:47:ce:9b:df:3c:81:25:08:eb:06:98:d4:d0:eb: d6:0b:cc:33:dc:f3:5f:a8:7a:71:ab:a8:1f:04:fa: e2:f4:79:80:30:b1:66:b9:3b:51:b8:6a:3b:ba:d0: 23:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:94:03:8B:0B:DC:F9:9D:B9:F5:F4:93:35:6E:3C:6E:1A:BA:EE:E1 X509v3 Authority Key Identifier: keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:bc:84:70:3d:fb:90:46:09:df:fa:87:9a:1d:01:1b:a5:61: 4f:9f:35:bb:ac:f5:bc:f0:61:5b:7c:ff:0b:32:33:da:28:86: 3f:32:dc:d4:7e:e6:76:be:47:fc:9d:67:df:cc:63:50:30:bd: 27:6f:3a:08:b1:df:57:fb:9e:8d:47:d0:46:ce:93:94:ae:ce: 2e:95:f0:e7:9e:49:69:ff:1b:5d:f9:56:36:66:2c:6f:4d:93: 94:60:9f:a0:10:1f:b4:42:f6:e6:4b:db:a0:48:52:3a:7c:43: 3c:d4:f4:be:e3:67:53:22:05:21:fb:01:3a:49:3b:88:10:1d: 53:d9:2c:9c:c3:52:6c:01:47:5b:b9:7f:72:fd:96:6e:7b:95: 6a:a5:75:9b:09:11:9c:18:a5:7a:d7:4e:d4:a2:6a:94:02:d5: 31:a7:fa:47:9b:03:7d:1b:af:03:28:c8:e8:5e:48:a2:63:60: 38:76:62:b2:58:55:a9:4a:72:46:aa:6b:92:3d:72:6e:d4:73: 27:50:9c:5c:fc:31:d4:b9:ce:9e:bd:0b:c3:d5:da:58:82:3f: c2:ec:f7:97:04:0b:28:80:c1:76:5a:09:b9:2a:28:87:35:cb: 07:e8:2b:81:f9:07:9c:ed:0c:1e:70:38:59:40:dc:4b:f3:27: 21:88:97:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFM0ExMTAvBgNVBAUTKDFENjQyRUQyOEVDRUE1RjJBQUNGMzQ3QjE2MDk3RjlE OTI0MUQ3NkQwHhcNMjUwNjI5MDAzMTExWhcNMjUwNzA2MDAzMTExWjAYMRYwFAYD VQQDEw02ODYwODk0Zi1kM2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA031+H1sS6FqlUd++6wz4GRQ2Ei76Dw7B1SFOMzBVR7mOHZMd7EtIi/ysTabo dkV/ZEN3fQOErhANyekJrgpirlMxbghxHHANYfuXWneAjNOlFkkS71z+fnevoVSR 4uboGrkQ7F33wRP5Z2XJ323i8/0XSj1v5gihg4PEebBmoDIKwLBcQoM2W5tmillD GgWC/OlD03AxttzV2N+BhG0G1D3uSCC1RHQlA5/XUgsBXuXLFR1rlb1Lu0RUuu6u ZUcBapaCssajD8zsf2/TqbnPL9eUR86b3zyBJQjrBpjU0OvWC8wz3PNfqHpxq6gf BPri9HmAMLFmuTtRuGo7utAjgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+UA4sL 3PmdufX0kzVuPG4auu7hMB8GA1UdIwQYMBaAFB1kLtKOzqXyqs80exYJf52SQddt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEUzQS9BN0FCMEE4QUI5 OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3BmS3F6elI3RmdsX25aSkIx MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXUXUwbzdPcGZLcXp6UjdGZ2xfblpKQjEyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEUzQS9BN0FCMEE4QUI5OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3Bm S3F6elI3RmdsX25aSkIxMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxvIRwPfuQRgnf+oeaHQEbpWFPnzW7rPW88GFbfP8LMjPaKIY/MtzU fuZ2vkf8nWffzGNQML0nbzoIsd9X+56NR9BGzpOUrs4ulfDnnklp/xtd+VY2Zixv TZOUYJ+gEB+0QvbmS9ugSFI6fEM81PS+42dTIgUh+wE6STuIEB1T2Sycw1JsAUdb uX9y/ZZue5VqpXWbCRGcGKV6107UomqUAtUxp/pHmwN9G68DKMjoXkiiY2A4dmKy WFWpSnJGqmuSPXJu1HMnUJxc/DHUuc6evQvD1dpYgj/C7PeXBAsogMF2Wgm5KiiH NcsH6CuB+Qec7QwecDhZQNxL8ychiJce -----END CERTIFICATE-----Generated at Tue Jul 1 00:46:27 2025 by rpki-client