$ rpki-client -vvf rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft File: HlwQfv0DzxPSFKOaaizo3a0wRw4.mft (raw, json) Hash identifier: HDZgV6rVY8gjmxEpvuSAod9QZz3zxmQ5D9OTm8S6qhs= Subject key identifier: 3D:E0:B8:B9:89:75:7D:55:9B:58:82:06:40:84:70:B5:DD:BA:7A:AD Authority key identifier: 1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E Certificate issuer: /CN=A914D9C3/serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft Manifest number: AB Signing time: Sat 23 Aug 2025 06:23:00 +0000 Manifest this update: Sat 23 Aug 2025 06:23:00 +0000 Manifest next update: Sat 30 Aug 2025 06:23:00 +0000 Files and hashes: 1: HlwQfv0DzxPSFKOaaizo3a0wRw4.crl (hash: 5DvIe46FjaKdUHLeFb+Nj7DqahJMIWvKEpXh2bLBoNw=) 2: F7B3707C806911EF8C30A03DC4F9AE02.roa (hash: 9WzRWZ39qEL+BS0hCUtMSeDhBI46JI/Ih27Az+Uy8VI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D9C3, serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Validity Not Before: Aug 23 06:23:00 2025 GMT Not After : Aug 30 06:23:00 2025 GMT Subject: CN=68a95e44-2564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:65:1e:fa:31:d0:73:bf:56:ce:c8:3a:67:de: 46:0c:45:be:87:6d:4f:61:dd:c0:c8:53:b6:d6:12: 7b:e6:f5:23:30:62:73:bb:f6:ce:e2:ff:56:ed:d6: 55:3b:67:e8:a8:00:6b:89:a8:95:74:59:2d:07:19: 76:d5:7f:b3:bf:8c:a6:ee:1d:ca:ee:f8:66:13:9d: 81:b9:6a:cd:e0:e4:0d:1b:f4:34:3d:9e:80:2c:7a: a4:5b:c1:38:ce:e4:12:94:68:8e:82:51:0c:f1:3f: 27:e7:62:ab:64:d9:1b:5d:fb:2e:db:41:23:a7:e2: c9:41:4a:3c:f9:f9:21:3c:2d:1d:9b:46:8b:9e:45: 75:00:79:62:3d:c4:37:f3:fc:99:d5:bf:d6:f5:cf: 0d:2c:d5:96:92:42:f0:35:35:68:cb:95:bb:5f:14: 90:65:f0:fa:9f:41:6f:88:c8:05:bb:b4:c3:97:29: a2:ce:45:d8:d2:ab:b3:53:b1:85:d8:e1:2f:80:e4: 5d:c9:f7:ea:52:9a:8b:a0:3a:8c:47:5d:80:7f:db: 66:9e:fc:fe:6a:ad:9b:8a:01:04:46:11:b2:d5:a1: ec:f4:09:0f:0d:13:b7:3e:9f:99:6d:40:20:91:fa: 22:93:b9:86:72:36:ca:d4:8d:08:3b:75:48:1b:61: c4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:E0:B8:B9:89:75:7D:55:9B:58:82:06:40:84:70:B5:DD:BA:7A:AD X509v3 Authority Key Identifier: keyid:1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:1e:ba:4d:4c:bb:b5:0c:80:eb:c4:a5:1f:80:e6:54:cd:8c: 27:bc:49:65:a5:fa:59:ec:97:d1:e3:0e:e2:19:53:e7:82:5f: 52:ee:64:7b:e4:9b:d3:f6:38:a7:08:a0:34:7e:9d:44:0a:28: 0c:a0:bc:e4:b1:a7:dd:74:28:2f:5c:34:b3:c2:63:eb:13:92: 84:1a:3f:3e:cf:93:db:46:6b:9a:16:c9:b0:f6:7a:ec:16:c5: d3:7d:e7:ad:97:ca:61:8a:f4:c0:aa:25:b9:1e:26:b3:7e:d0: 6b:5c:25:81:07:9d:68:29:74:e3:05:8b:97:dc:59:26:27:71: a9:64:45:59:8c:45:2a:b7:20:9e:27:f2:c1:bf:f6:34:29:46: 9c:57:b8:8c:57:94:a0:87:2c:e2:4e:bc:ac:14:99:72:fb:4b: d7:49:d9:33:5f:c5:27:c5:dc:63:3b:f7:65:be:08:f6:d7:d1: 74:19:ab:a6:c9:41:77:80:57:b7:83:2c:63:c3:d1:bc:66:ea: 10:7c:ed:51:b1:10:ab:7e:c6:e9:24:d3:3c:f2:b3:bb:2d:08: 79:b9:53:84:cd:61:67:6a:97:34:7c:92:a5:6e:fc:51:52:b8: f1:16:45:95:0b:63:1b:d8:62:4c:91:82:fc:63:d9:94:92:e5: 4a:e4:1f:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ5QzMxMTAvBgNVBAUTKDFFNUMxMDdFRkQwM0NGMTNEMjE0QTM5QTZBMkNFOERE QUQzMDQ3MEUwHhcNMjUwODIzMDYyMzAwWhcNMjUwODMwMDYyMzAwWjAYMRYwFAYD VQQDEw02OGE5NWU0NC0yNTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8mUe+jHQc79Wzsg6Z95GDEW+h21PYd3AyFO21hJ75vUjMGJzu/bO4v9W7dZV O2foqABriaiVdFktBxl21X+zv4ym7h3K7vhmE52BuWrN4OQNG/Q0PZ6ALHqkW8E4 zuQSlGiOglEM8T8n52KrZNkbXfsu20Ejp+LJQUo8+fkhPC0dm0aLnkV1AHliPcQ3 8/yZ1b/W9c8NLNWWkkLwNTVoy5W7XxSQZfD6n0FviMgFu7TDlymizkXY0quzU7GF 2OEvgORdyffqUpqLoDqMR12Af9tmnvz+aq2bigEERhGy1aHs9AkPDRO3Pp+ZbUAg kfoik7mGcjbK1I0IO3VIG2HE4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD3guLmJ dX1Vm1iCBkCEcLXdunqtMB8GA1UdIwQYMBaAFB5cEH79A88T0hSjmmos6N2tMEcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDlDMy80NUNDODJDQzgw NjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4UFNGS09hYWl6bzNhMHdS dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hsd1FmdjBEenhQU0ZLT2FhaXpvM2Ewd1J3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDlDMy80NUNDODJDQzgwNjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4 UFNGS09hYWl6bzNhMHdSdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiHrpNTLu1DIDrxKUfgOZUzYwnvEllpfpZ7JfR4w7iGVPngl9S7mR7 5JvT9jinCKA0fp1ECigMoLzksafddCgvXDSzwmPrE5KEGj8+z5PbRmuaFsmw9nrs FsXTfeetl8phivTAqiW5HiazftBrXCWBB51oKXTjBYuX3FkmJ3GpZEVZjEUqtyCe J/LBv/Y0KUacV7iMV5SghyziTrysFJly+0vXSdkzX8UnxdxjO/dlvgj219F0Gaum yUF3gFe3gyxjw9G8ZuoQfO1RsRCrfsbpJNM88rO7LQh5uVOEzWFnapc0fJKlbvxR UrjxFkWVC2Mb2GJMkYL8Y9mUkuVK5B9n -----END CERTIFICATE-----Generated at Sun Aug 24 03:04:57 2025 by rpki-client