$ rpki-client -vvf rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft File: hwGGtlfRGymKhLAkIO504fu1woI.mft (raw, json) Hash identifier: Hk8Ryeha+/Z62Gwj4Osn4vurhHs5UyWmvfm+oBBSFco= Subject key identifier: 2E:68:DC:06:6F:75:9A:E2:4C:50:EC:C5:5F:74:65:8A:3A:26:13:96 Authority key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 Certificate issuer: /CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft Manifest number: 011C Signing time: Sat 23 Aug 2025 04:55:20 +0000 Manifest this update: Sat 23 Aug 2025 04:55:20 +0000 Manifest next update: Sat 30 Aug 2025 04:55:20 +0000 Files and hashes: 1: hwGGtlfRGymKhLAkIO504fu1woI.crl (hash: kh8XpmLmlaGmVQ7HT0xelB1wCyR5vpL1SqfJ8R2E48U=) 2: 8E31656CC9FF11EEA53CA25CC4F9AE02.roa (hash: d+Z8hZJ1dcZIqJgs5jVt78VrRJybv8thQQWwCFca5j0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:55:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191885, serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Validity Not Before: Aug 23 04:55:20 2025 GMT Not After : Aug 30 04:55:20 2025 GMT Subject: CN=68a949b8-ef9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:9d:ee:72:ef:77:92:98:00:56:18:a4:2a:e6: b6:6c:e2:a0:76:87:05:82:ba:dc:e9:3b:e6:a5:ea: 35:3b:c8:da:87:66:b0:91:e2:c0:d1:00:58:c6:c4: 99:a0:d3:62:97:15:bb:e4:7e:6e:9c:04:22:16:fd: 9b:b1:c1:7a:04:ad:8e:48:91:fd:0f:e6:a2:ef:87: dd:62:bb:dd:1c:f6:48:f5:bb:51:e9:ee:62:33:6a: c5:9d:1a:eb:a9:21:8a:8b:80:b2:ef:86:69:1a:86: af:46:0d:a3:52:ea:7e:32:26:7b:b6:24:65:f9:8f: 33:6d:c9:33:e8:1f:f5:57:b1:01:25:81:bd:0d:99: bb:3c:97:a0:16:6b:86:8e:5f:6d:0c:14:53:13:4f: 64:3d:22:3c:6a:98:cc:2d:0f:29:fd:2e:5b:59:9e: 77:16:a8:47:6f:67:f0:25:d0:fb:3b:7d:18:0e:6a: d5:6c:d1:1f:fd:79:c5:02:80:e3:26:17:64:67:38: 45:ea:5e:3f:c7:1f:b1:4e:e6:ae:b5:a1:0d:a8:be: 6c:01:2e:ae:29:0d:a3:31:23:39:98:85:0f:aa:16: c7:02:14:64:0e:2f:d1:31:94:ed:78:aa:a8:8f:b2: 17:1b:46:00:5b:a1:f1:1f:cb:8f:0b:4f:fc:e5:45: 25:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:68:DC:06:6F:75:9A:E2:4C:50:EC:C5:5F:74:65:8A:3A:26:13:96 X509v3 Authority Key Identifier: keyid:87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:d4:5a:90:fd:60:c7:e1:43:37:33:63:1a:55:9d:62:9b:83: 80:a9:fa:e1:bb:3b:35:17:d1:86:e2:71:8e:36:e1:11:67:4c: 9c:c7:f3:7e:63:89:11:ac:ab:20:86:27:11:5d:be:b5:b3:88: 1b:1c:48:4a:51:0b:a8:31:59:17:98:53:7f:5d:78:ed:02:b5: 2c:b5:85:b4:e2:19:91:e2:78:9e:d4:75:69:f9:d3:3b:06:2c: 01:62:2d:0a:22:47:32:9d:59:a8:44:72:d0:d5:3b:4e:f7:96: f9:a7:70:6f:d1:6d:df:b8:8f:aa:57:67:a7:98:0c:8a:35:64: 6c:fd:f2:2e:0b:24:af:6b:56:76:04:35:35:f9:fa:f6:97:15: 38:18:0d:c2:b2:97:0e:24:a5:fa:37:0e:96:2d:ae:59:cb:1a: 4c:73:9a:e5:b5:f8:7b:a4:36:72:d3:0a:20:94:06:e8:18:3f: 2e:60:39:c0:95:ac:2c:c3:27:80:d7:66:cd:93:aa:f6:ff:a3: 19:bb:40:7d:73:74:41:47:e5:72:a0:fa:c5:49:02:a5:a0:4f: 46:6f:31:0c:f9:89:5e:0b:5a:c3:b0:e9:3e:1f:de:0f:62:d1: ab:2d:64:48:d2:a0:2e:33:a3:aa:f9:22:a8:ef:a5:7c:15:9e: c5:ce:8e:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4ODUxMTAvBgNVBAUTKDg3MDE4NkI2NTdEMTFCMjk4QTg0QjAyNDIwRUU3NEUx RkJCNUMyODIwHhcNMjUwODIzMDQ1NTIwWhcNMjUwODMwMDQ1NTIwWjAYMRYwFAYD VQQDEw02OGE5NDliOC1lZjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Z3ucu93kpgAVhikKua2bOKgdocFgrrc6Tvmpeo1O8jah2awkeLA0QBYxsSZ oNNilxW75H5unAQiFv2bscF6BK2OSJH9D+ai74fdYrvdHPZI9btR6e5iM2rFnRrr qSGKi4Cy74ZpGoavRg2jUup+MiZ7tiRl+Y8zbckz6B/1V7EBJYG9DZm7PJegFmuG jl9tDBRTE09kPSI8apjMLQ8p/S5bWZ53FqhHb2fwJdD7O30YDmrVbNEf/XnFAoDj JhdkZzhF6l4/xx+xTuautaENqL5sAS6uKQ2jMSM5mIUPqhbHAhRkDi/RMZTteKqo j7IXG0YAW6HxH8uPC0/85UUlVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5o3AZv dZriTFDsxV90ZYo6JhOWMB8GA1UdIwQYMBaAFIcBhrZX0RspioSwJCDudOH7tcKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4NS9ENUZFQTNERUM5 RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5bUtoTEFrSU81MDRmdTF3 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2h3R0d0bGZSR3ltS2hMQWtJTzUwNGZ1MXdvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4NS9ENUZFQTNERUM5RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5 bUtoTEFrSU81MDRmdTF3b0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCL1FqQ/WDH4UM3M2MaVZ1im4OAqfrhuzs1F9GG4nGONuERZ0ycx/N+ Y4kRrKsghicRXb61s4gbHEhKUQuoMVkXmFN/XXjtArUstYW04hmR4nie1HVp+dM7 BiwBYi0KIkcynVmoRHLQ1TtO95b5p3Bv0W3fuI+qV2enmAyKNWRs/fIuCySva1Z2 BDU1+fr2lxU4GA3CspcOJKX6Nw6WLa5ZyxpMc5rltfh7pDZy0woglAboGD8uYDnA lawswyeA12bNk6r2/6MZu0B9c3RBR+VyoPrFSQKloE9GbzEM+YleC1rDsOk+H94P YtGrLWRI0qAuM6Oq+SKo76V8FZ7Fzo7J -----END CERTIFICATE-----Generated at Sat Aug 23 17:14:51 2025 by rpki-client