$ rpki-client -vvf rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft File: hwGGtlfRGymKhLAkIO504fu1woI.mft (raw, json) Hash identifier: pFvgdqh+Qf1apW5h/rtMINlgL2FpUwGJpaFHM6MxW/4= Subject key identifier: 3E:EB:DD:9F:AE:DB:90:C8:3B:2A:B8:67:B9:40:F6:F1:98:AD:17:9F Authority key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 Certificate issuer: /CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Certificate serial: 013E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft Manifest number: 013B Signing time: Sun 19 Oct 2025 07:13:59 +0000 Manifest this update: Sun 19 Oct 2025 07:13:59 +0000 Manifest next update: Sun 26 Oct 2025 07:13:59 +0000 Files and hashes: 1: hwGGtlfRGymKhLAkIO504fu1woI.crl (hash: sU5M4TZ3vRgngRXi1p7B74tMj77zJU6fhvbb26LOKSg=) 2: 8E31656CC9FF11EEA53CA25CC4F9AE02.roa (hash: WWVsNPRylFl9Oj5E0+wxXjfLrjfPmxjiDu6REzUJaLM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:13:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 318 (0x13e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191885, serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Validity Not Before: Oct 19 07:13:59 2025 GMT Not After : Oct 26 07:13:59 2025 GMT Subject: CN=68f48fb7-0c79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ff:16:91:e1:29:18:c2:9b:7c:b8:33:c3:7c: f3:6b:6b:ca:de:81:c3:d9:94:d1:7b:e7:a6:02:ba: 28:40:2f:88:05:22:62:0d:fc:c3:8e:e5:b5:a6:1c: 85:79:50:3f:a9:b8:cb:a7:9f:4c:8b:7d:0a:10:93: 20:ae:ac:6f:dc:72:bd:0c:4c:06:ef:66:8d:3b:70: 51:d5:51:8b:b0:f2:58:b1:40:75:50:31:e4:43:b8: 84:7f:30:ac:bf:20:0b:be:8f:a7:df:f3:45:f4:5c: 64:d6:11:59:99:5c:4a:ec:c9:d0:75:ef:bd:9a:97: 3c:bd:8f:dd:17:d0:0a:ef:d1:3f:90:31:ce:ea:58: ec:93:33:8a:e3:63:4f:f5:d3:77:22:a0:b8:dc:cb: 2a:3b:51:f1:c6:db:2f:41:d6:1f:99:82:9d:33:ee: fe:4a:8c:f4:b4:e4:52:9a:d1:eb:e6:99:a7:51:b0: 37:c5:3c:c5:93:15:01:9f:68:dd:ab:5f:b0:6c:41: 6f:aa:6f:a7:54:c8:4a:b2:18:76:b5:16:76:83:4c: 40:13:44:59:b9:05:56:09:ab:23:06:3a:d5:d4:0e: ab:74:4d:8a:43:60:c8:a3:30:2c:59:f5:f1:b8:fc: d1:94:ab:86:8b:fc:b2:89:7d:54:42:a5:80:1d:b3: ae:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:EB:DD:9F:AE:DB:90:C8:3B:2A:B8:67:B9:40:F6:F1:98:AD:17:9F X509v3 Authority Key Identifier: keyid:87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:f4:39:4d:e1:f2:3b:ce:a1:ef:f8:43:3b:ab:e2:a8:6f:61: 54:fc:05:9a:ea:8f:88:26:a3:17:84:46:ac:ac:ae:fe:de:44: 4d:7d:4a:d7:71:93:7a:d2:22:48:df:e9:78:84:e9:4e:c1:ea: 1d:07:a6:33:d3:d6:ad:18:61:16:64:fa:8e:6f:6a:87:3e:15: cf:29:f2:3a:ca:66:d2:a2:03:50:d6:7b:b1:fa:f8:4d:e5:aa: 09:fe:15:d8:68:21:3d:d1:80:c7:95:6c:e3:63:0c:8f:b5:17: c5:94:5d:41:a6:ee:ef:21:6f:dd:76:10:4c:32:02:5e:3c:09: 4a:03:9b:2e:04:fe:ae:bd:1e:5e:cc:1e:8d:64:36:41:dc:85: 8c:73:75:f1:06:2a:96:3c:90:02:95:e4:88:1a:32:15:79:b2: f5:fb:7a:6a:2f:23:fa:b2:47:8d:9a:a9:f5:18:7f:c7:9f:af: c2:bc:32:51:f2:72:ed:ec:34:99:8c:cb:ec:06:87:d4:a2:90: cf:e7:13:9d:7a:81:a5:9c:bc:b9:a1:b3:cd:e7:57:06:e9:ae: ba:08:63:94:07:b6:46:fe:9c:d4:d2:c6:c7:8a:bb:44:0a:af: 50:5c:f5:24:e5:39:dd:e9:1c:03:cb:59:98:4f:a2:3b:fd:49: 83:09:68:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4ODUxMTAvBgNVBAUTKDg3MDE4NkI2NTdEMTFCMjk4QTg0QjAyNDIwRUU3NEUx RkJCNUMyODIwHhcNMjUxMDE5MDcxMzU5WhcNMjUxMDI2MDcxMzU5WjAYMRYwFAYD VQQDEw02OGY0OGZiNy0wYzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3f8WkeEpGMKbfLgzw3zza2vK3oHD2ZTRe+emArooQC+IBSJiDfzDjuW1phyF eVA/qbjLp59Mi30KEJMgrqxv3HK9DEwG72aNO3BR1VGLsPJYsUB1UDHkQ7iEfzCs vyALvo+n3/NF9Fxk1hFZmVxK7MnQde+9mpc8vY/dF9AK79E/kDHO6ljskzOK42NP 9dN3IqC43MsqO1HxxtsvQdYfmYKdM+7+Soz0tORSmtHr5pmnUbA3xTzFkxUBn2jd q1+wbEFvqm+nVMhKshh2tRZ2g0xAE0RZuQVWCasjBjrV1A6rdE2KQ2DIozAsWfXx uPzRlKuGi/yyiX1UQqWAHbOugQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7r3Z+u 25DIOyq4Z7lA9vGYrRefMB8GA1UdIwQYMBaAFIcBhrZX0RspioSwJCDudOH7tcKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4NS9ENUZFQTNERUM5 RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5bUtoTEFrSU81MDRmdTF3 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2h3R0d0bGZSR3ltS2hMQWtJTzUwNGZ1MXdvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4NS9ENUZFQTNERUM5RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5 bUtoTEFrSU81MDRmdTF3b0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT9DlN4fI7zqHv+EM7q+Kob2FU/AWa6o+IJqMXhEasrK7+3kRNfUrX cZN60iJI3+l4hOlOweodB6Yz09atGGEWZPqOb2qHPhXPKfI6ymbSogNQ1nux+vhN 5aoJ/hXYaCE90YDHlWzjYwyPtRfFlF1Bpu7vIW/ddhBMMgJePAlKA5suBP6uvR5e zB6NZDZB3IWMc3XxBiqWPJACleSIGjIVebL1+3pqLyP6skeNmqn1GH/Hn6/CvDJR 8nLt7DSZjMvsBofUopDP5xOdeoGlnLy5obPN51cG6a66CGOUB7ZG/pzU0sbHirtE Cq9QXPUk5Tnd6RwDy1mYT6I7/UmDCWh/ -----END CERTIFICATE-----Generated at Tue Oct 21 08:13:04 2025 by rpki-client