$ rpki-client -vvf rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft File: hwGGtlfRGymKhLAkIO504fu1woI.mft (raw, json) Hash identifier: e/1rVzOCok9uTceqnoRrGpoLUHqXn4g3q0A3r/u16x0= Subject key identifier: C6:17:DE:25:10:57:48:25:44:91:23:9E:BF:90:3E:A6:4B:EB:77:86 Authority key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 Certificate issuer: /CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft Manifest number: E9 Signing time: Tue 13 May 2025 04:33:45 +0000 Manifest this update: Tue 13 May 2025 04:33:44 +0000 Manifest next update: Tue 20 May 2025 04:33:44 +0000 Files and hashes: 1: hwGGtlfRGymKhLAkIO504fu1woI.crl (hash: OYB9IeiHl+o6t2hbcQA0AX2mnYAaSmyI+sRN8GyAwf0=) 2: 8E31656CC9FF11EEA53CA25CC4F9AE02.roa (hash: d+Z8hZJ1dcZIqJgs5jVt78VrRJybv8thQQWwCFca5j0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:33:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191885, serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Validity Not Before: May 13 04:33:44 2025 GMT Not After : May 20 04:33:44 2025 GMT Subject: CN=6822cba8-f32c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9c:f5:43:a7:3f:4c:c0:a4:28:3b:bb:24:e6: fd:9f:7a:de:02:53:6e:05:1b:85:3a:40:b1:7e:59: b5:e8:f6:6d:36:81:73:8b:85:db:49:20:13:99:66: 13:14:66:eb:72:62:a8:3e:0c:5b:3a:ea:81:3f:40: b2:0e:75:32:c4:87:2c:79:e6:2a:af:c5:c3:aa:1f: d8:18:7b:9f:cd:f4:40:2e:d1:0c:33:88:20:14:dc: e7:d4:3f:79:cc:dd:47:44:b5:36:c3:9a:5f:2c:08: b0:c1:fc:1c:a3:01:7d:f0:af:d5:5d:12:2a:3e:50: 41:c4:6f:1d:34:66:0b:39:24:4b:50:a0:73:0a:36: 06:45:c6:3a:82:5d:94:ff:f4:4f:26:42:73:dc:be: 30:66:69:4d:16:df:c3:4a:5a:07:bf:d5:d5:a4:54: 2a:13:90:97:14:08:18:05:e5:0c:80:0f:d9:82:e8: 9b:83:4d:94:6b:3c:ef:d9:f9:0b:4a:9e:05:72:33: 3e:11:3e:d8:2d:42:e8:81:40:d1:20:b4:2d:e2:c7: 94:be:4c:ed:d0:f8:1b:e9:17:c9:a7:d8:8c:90:39: fb:8f:f6:09:d8:99:da:b2:08:2f:ae:5e:79:da:8f: ee:83:d2:6d:34:56:2a:1e:15:2d:7b:33:23:24:3a: 61:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:17:DE:25:10:57:48:25:44:91:23:9E:BF:90:3E:A6:4B:EB:77:86 X509v3 Authority Key Identifier: keyid:87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:3d:d6:46:23:48:01:e0:20:e2:b9:c1:e9:54:33:d6:04:7e: 0f:b5:71:51:0a:55:b5:bf:3a:14:11:69:42:42:2f:5c:d4:02: ba:7e:d4:ed:5d:1d:e1:da:7c:3e:86:25:ec:67:a4:4f:e4:b2: d0:f5:24:b4:b9:bd:4e:42:9b:bd:f2:20:93:23:cc:16:af:72: 3c:1a:0a:d7:8a:a1:a2:3e:1e:f8:96:e2:ba:d2:c5:5a:bd:02: 89:50:75:50:cb:31:18:78:70:0b:96:70:80:fe:72:95:7b:93: 80:b8:2b:27:f7:5d:5d:d1:2e:43:37:27:45:75:3b:dc:18:2d: 0e:ea:1e:12:94:6d:49:a6:45:67:bb:3e:9f:54:6c:2e:26:c8: 70:60:3f:55:4e:cb:a3:87:c2:c2:e8:2c:f9:5e:05:2c:c8:3c: 9b:d5:9e:b7:01:b2:a8:65:c7:3d:05:95:0d:96:8d:57:df:8b: 60:12:ca:e4:b1:19:3a:1f:2b:71:57:72:2d:fd:2c:3d:9f:5b: 83:f7:68:39:9a:00:b9:65:d4:f3:b6:0b:0a:b2:50:22:c4:cb: bc:80:a8:4c:ea:02:f4:1d:a6:bf:fe:0f:24:b3:9a:f1:e4:83: 24:df:d2:dd:78:85:ef:d7:e0:d0:c7:e3:6f:0e:72:85:19:5c: 59:6a:eb:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4ODUxMTAvBgNVBAUTKDg3MDE4NkI2NTdEMTFCMjk4QTg0QjAyNDIwRUU3NEUx RkJCNUMyODIwHhcNMjUwNTEzMDQzMzQ0WhcNMjUwNTIwMDQzMzQ0WjAYMRYwFAYD VQQDEw02ODIyY2JhOC1mMzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZz1Q6c/TMCkKDu7JOb9n3reAlNuBRuFOkCxflm16PZtNoFzi4XbSSATmWYT FGbrcmKoPgxbOuqBP0CyDnUyxIcseeYqr8XDqh/YGHufzfRALtEMM4ggFNzn1D95 zN1HRLU2w5pfLAiwwfwcowF98K/VXRIqPlBBxG8dNGYLOSRLUKBzCjYGRcY6gl2U //RPJkJz3L4wZmlNFt/DSloHv9XVpFQqE5CXFAgYBeUMgA/Zguibg02Uazzv2fkL Sp4FcjM+ET7YLULogUDRILQt4seUvkzt0Pgb6RfJp9iMkDn7j/YJ2Jnasggvrl55 2o/ug9JtNFYqHhUtezMjJDphVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMYX3iUQ V0glRJEjnr+QPqZL63eGMB8GA1UdIwQYMBaAFIcBhrZX0RspioSwJCDudOH7tcKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4NS9ENUZFQTNERUM5 RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5bUtoTEFrSU81MDRmdTF3 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2h3R0d0bGZSR3ltS2hMQWtJTzUwNGZ1MXdvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4NS9ENUZFQTNERUM5RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5 bUtoTEFrSU81MDRmdTF3b0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClPdZGI0gB4CDiucHpVDPWBH4PtXFRClW1vzoUEWlCQi9c1AK6ftTt XR3h2nw+hiXsZ6RP5LLQ9SS0ub1OQpu98iCTI8wWr3I8GgrXiqGiPh74luK60sVa vQKJUHVQyzEYeHALlnCA/nKVe5OAuCsn911d0S5DNydFdTvcGC0O6h4SlG1JpkVn uz6fVGwuJshwYD9VTsujh8LC6Cz5XgUsyDyb1Z63AbKoZcc9BZUNlo1X34tgEsrk sRk6HytxV3It/Sw9n1uD92g5mgC5ZdTztgsKslAixMu8gKhM6gL0Haa//g8ks5rx 5IMk39LdeIXv1+DQx+NvDnKFGVxZauu/ -----END CERTIFICATE-----Generated at Tue May 13 18:06:49 2025 by rpki-client