$ rpki-client -vvf rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft File: HlwQfv0DzxPSFKOaaizo3a0wRw4.mft (raw, json) Hash identifier: G5swQbkOyYYaEYC8Sshvxz08nltWO5TCiC2vZmd8STE= Subject key identifier: 32:33:5A:AD:83:E5:10:AE:F9:82:1C:5E:84:9E:56:A0:0A:AD:20:B3 Authority key identifier: 1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E Certificate issuer: /CN=A914D9C3/serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Certificate serial: 94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft Manifest number: 91 Signing time: Thu 03 Jul 2025 06:40:13 +0000 Manifest this update: Thu 03 Jul 2025 06:40:13 +0000 Manifest next update: Thu 10 Jul 2025 06:40:12 +0000 Files and hashes: 1: HlwQfv0DzxPSFKOaaizo3a0wRw4.crl (hash: DgXk1ZIqlyc3kn7YuccsEK4ObjFrL9cOEdTgqIGeRsg=) 2: F7B3707C806911EF8C30A03DC4F9AE02.roa (hash: 9WzRWZ39qEL+BS0hCUtMSeDhBI46JI/Ih27Az+Uy8VI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D9C3, serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Validity Not Before: Jul 3 06:40:13 2025 GMT Not After : Jul 10 06:40:12 2025 GMT Subject: CN=686625cd-478a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:37:8f:23:36:77:23:3e:39:00:88:c4:a0:8d: 44:42:e3:41:ea:4a:f2:a4:82:73:61:5c:2b:65:c2: 4c:9d:d7:1c:4e:e1:20:b5:1d:a8:3e:7b:53:d4:5b: 0e:45:b5:f9:62:e5:27:e6:f8:bd:ce:85:08:eb:5d: 3e:24:5a:b9:2c:ad:c3:63:3d:fb:01:50:b4:53:b6: b6:f9:0b:5b:1d:ac:59:f9:ba:f1:e1:2a:34:23:31: e1:06:ad:b5:08:00:82:03:56:7a:1e:6b:e3:f9:b3: 91:83:a9:69:d9:9d:f9:7a:07:23:df:c5:75:63:59: 6c:a8:97:e2:97:73:20:5f:c0:dd:7b:98:b0:11:e2: 81:c2:8c:5a:51:50:5e:fd:78:a1:99:64:a5:f5:e9: 6d:0c:6b:24:8a:57:0b:54:6c:fd:06:90:fc:6e:d3: c7:06:b2:e3:94:72:50:34:f6:c1:d7:e1:52:25:bb: f4:b2:66:72:f7:ad:5a:be:e8:f7:69:22:06:08:94: 37:5d:33:c9:25:7d:e4:d5:f9:77:26:f2:d6:40:60: 51:a0:f7:15:61:73:2b:74:96:96:83:5f:9d:8e:fe: d0:35:4b:76:4c:66:7c:1b:ad:04:8f:02:a8:ba:4e: a0:b5:49:a4:4b:75:40:73:df:e2:71:0a:59:b6:d3: 37:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:33:5A:AD:83:E5:10:AE:F9:82:1C:5E:84:9E:56:A0:0A:AD:20:B3 X509v3 Authority Key Identifier: keyid:1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:28:1e:73:b8:6b:57:6a:1b:b1:a7:bc:4b:46:e5:9e:c6:7f: 8b:e3:f2:84:15:3a:7d:06:d9:c0:48:e8:33:d8:87:ee:e0:85: c3:73:96:6b:8c:f8:c9:ff:5c:6b:16:74:c4:46:57:4c:69:87: 62:8f:0d:06:51:d7:4a:ab:95:b6:28:f4:76:5d:58:37:21:51: b4:06:10:08:a3:dd:d9:c0:bd:41:f3:1f:b3:de:5b:41:d6:f7: b1:59:73:b3:17:09:1a:f4:ab:9a:49:3a:93:6d:2e:92:97:3a: 80:04:15:c7:54:da:f6:1e:34:73:64:bf:39:1a:9e:2e:95:16: 7d:e2:b0:2b:96:02:59:cb:65:ea:9e:c3:51:41:5d:0a:12:39: 87:48:92:30:8f:cc:ca:c1:07:12:4c:f4:88:44:94:3e:9c:f9: 70:15:03:3a:75:38:17:d3:e2:5e:d1:2f:79:e7:10:af:19:48: 4b:af:6b:08:b2:de:6f:97:fc:6b:0b:9d:2f:d9:67:68:e4:ab: 5b:e8:6c:e5:0b:2e:98:6f:f3:7a:16:2d:db:f7:77:90:9a:b3: d1:df:6c:68:39:e9:f3:18:2f:d7:96:f2:09:c4:50:87:5c:20: 59:38:54:14:f5:26:df:80:c0:cd:69:45:3c:88:d8:9f:32:6c: ac:36:58:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ5QzMxMTAvBgNVBAUTKDFFNUMxMDdFRkQwM0NGMTNEMjE0QTM5QTZBMkNFOERE QUQzMDQ3MEUwHhcNMjUwNzAzMDY0MDEzWhcNMjUwNzEwMDY0MDEyWjAYMRYwFAYD VQQDEw02ODY2MjVjZC00NzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7zePIzZ3Iz45AIjEoI1EQuNB6krypIJzYVwrZcJMndccTuEgtR2oPntT1FsO RbX5YuUn5vi9zoUI610+JFq5LK3DYz37AVC0U7a2+QtbHaxZ+brx4So0IzHhBq21 CACCA1Z6Hmvj+bORg6lp2Z35egcj38V1Y1lsqJfil3MgX8Dde5iwEeKBwoxaUVBe /XihmWSl9eltDGskilcLVGz9BpD8btPHBrLjlHJQNPbB1+FSJbv0smZy961avuj3 aSIGCJQ3XTPJJX3k1fl3JvLWQGBRoPcVYXMrdJaWg1+djv7QNUt2TGZ8G60EjwKo uk6gtUmkS3VAc9/icQpZttM3YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIzWq2D 5RCu+YIcXoSeVqAKrSCzMB8GA1UdIwQYMBaAFB5cEH79A88T0hSjmmos6N2tMEcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDlDMy80NUNDODJDQzgw NjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4UFNGS09hYWl6bzNhMHdS dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hsd1FmdjBEenhQU0ZLT2FhaXpvM2Ewd1J3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDlDMy80NUNDODJDQzgwNjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4 UFNGS09hYWl6bzNhMHdSdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPKB5zuGtXahuxp7xLRuWexn+L4/KEFTp9BtnASOgz2Ifu4IXDc5Zr jPjJ/1xrFnTERldMaYdijw0GUddKq5W2KPR2XVg3IVG0BhAIo93ZwL1B8x+z3ltB 1vexWXOzFwka9KuaSTqTbS6SlzqABBXHVNr2HjRzZL85Gp4ulRZ94rArlgJZy2Xq nsNRQV0KEjmHSJIwj8zKwQcSTPSIRJQ+nPlwFQM6dTgX0+Je0S955xCvGUhLr2sI st5vl/xrC50v2Wdo5Ktb6GzlCy6Yb/N6Fi3b93eQmrPR32xoOenzGC/XlvIJxFCH XCBZOFQU9SbfgMDNaUU8iNifMmysNlgD -----END CERTIFICATE-----Generated at Sat Jul 5 01:39:27 2025 by rpki-client