$ rpki-client -vvf rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft File: hwGGtlfRGymKhLAkIO504fu1woI.mft (raw, json) Hash identifier: /++jxMhDFeEb+9kLSkcVvd+BmubnU5dm2qSkmU2kGds= Subject key identifier: 91:A5:34:55:75:2A:81:B1:1A:0C:7C:0E:3F:23:38:A4:B4:DD:2E:61 Authority key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 Certificate issuer: /CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft Manifest number: 0102 Signing time: Thu 03 Jul 2025 05:15:19 +0000 Manifest this update: Thu 03 Jul 2025 05:15:19 +0000 Manifest next update: Thu 10 Jul 2025 05:15:19 +0000 Files and hashes: 1: hwGGtlfRGymKhLAkIO504fu1woI.crl (hash: ds8kme9yrDnUxi7/+OPkc/zKkgKFqXtc2LUxVlprMmY=) 2: 8E31656CC9FF11EEA53CA25CC4F9AE02.roa (hash: d+Z8hZJ1dcZIqJgs5jVt78VrRJybv8thQQWwCFca5j0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191885, serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Validity Not Before: Jul 3 05:15:19 2025 GMT Not After : Jul 10 05:15:19 2025 GMT Subject: CN=686611e7-d3e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d4:ca:92:14:44:9a:fd:70:0c:65:c4:6f:ff: 10:5a:a3:73:2a:bc:11:7e:c3:34:8b:37:2f:04:6c: 55:38:79:e1:45:24:47:6b:c1:7a:70:c5:0b:8b:90: 72:45:69:3a:bf:a6:38:da:30:a5:57:5e:07:6c:24: 27:6c:9f:e5:ea:e5:34:53:57:25:48:af:87:19:14: ac:17:14:cc:9a:47:7c:bc:66:6e:c7:7b:ff:f0:33: 7e:10:36:97:00:00:05:f9:4d:f5:bc:30:5f:b6:6b: df:e2:4a:ad:7e:a8:dc:2a:33:1d:f9:f5:6e:4b:59: bb:ca:c1:eb:12:c9:f6:ae:f9:01:e4:b5:51:b8:e8: d8:3f:7b:13:e3:d8:dc:b3:e2:44:87:a2:2b:02:7b: eb:28:71:c9:6a:3e:b1:61:0f:bb:2b:18:7b:69:60: fe:74:cd:55:68:62:cc:d1:70:67:63:57:5f:92:cf: 18:71:d4:09:53:0c:63:b9:d8:05:f3:e3:21:be:e9: df:0b:4e:62:4d:2b:c8:f0:95:42:18:c5:64:6d:1d: 95:ce:ed:17:30:6b:05:0d:05:2e:29:b9:b7:9f:14: 42:28:2e:6d:52:7d:a7:da:6e:8c:0f:f1:c4:a5:d9: 61:41:11:7a:c7:4f:42:78:38:87:6e:2b:da:e7:1d: 5e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:A5:34:55:75:2A:81:B1:1A:0C:7C:0E:3F:23:38:A4:B4:DD:2E:61 X509v3 Authority Key Identifier: keyid:87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:9b:3c:75:85:33:1d:94:2d:8f:58:e5:bd:a7:9e:c6:8e:0f: 68:34:85:1f:57:92:6d:20:d9:95:25:64:8a:e7:3c:e2:39:f4: 5b:92:b9:8f:f0:38:62:f4:8d:3f:82:ed:d0:56:68:e9:00:ae: ba:8b:24:e4:d2:47:26:f2:60:24:c7:74:d9:77:b3:c2:66:20: 1e:f8:15:af:85:80:1f:b4:63:79:04:aa:25:3e:08:57:f5:e9: ee:5c:1f:f6:ac:41:e8:d4:b0:2f:19:32:84:bd:91:a1:59:79: 7f:c1:fc:bf:41:19:39:2e:6c:a7:3d:5c:ef:04:0f:9a:d8:02: b3:ef:f1:7d:91:6f:c7:9d:c5:82:11:ff:70:fa:7d:16:a0:4b: 88:fb:05:8a:bc:59:34:9c:9d:eb:b1:39:64:78:52:68:da:ec: 96:1e:0d:1f:c4:3c:cd:d4:d0:99:f8:4f:3b:0b:11:17:d1:e0: e8:93:99:c2:59:10:10:70:f1:ce:01:6d:48:51:b4:c8:63:7d: 72:bb:cf:ec:fb:68:7e:ee:30:1a:ad:aa:77:7c:e8:33:e3:8c: fd:d2:ba:7e:da:e3:d3:85:30:f7:08:96:46:26:1d:fa:59:ab: 18:6b:ac:6e:21:e3:b8:db:05:eb:d6:79:05:ae:2a:46:58:ab: 9b:da:6c:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4ODUxMTAvBgNVBAUTKDg3MDE4NkI2NTdEMTFCMjk4QTg0QjAyNDIwRUU3NEUx RkJCNUMyODIwHhcNMjUwNzAzMDUxNTE5WhcNMjUwNzEwMDUxNTE5WjAYMRYwFAYD VQQDEw02ODY2MTFlNy1kM2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tTKkhREmv1wDGXEb/8QWqNzKrwRfsM0izcvBGxVOHnhRSRHa8F6cMULi5By RWk6v6Y42jClV14HbCQnbJ/l6uU0U1clSK+HGRSsFxTMmkd8vGZux3v/8DN+EDaX AAAF+U31vDBftmvf4kqtfqjcKjMd+fVuS1m7ysHrEsn2rvkB5LVRuOjYP3sT49jc s+JEh6IrAnvrKHHJaj6xYQ+7Kxh7aWD+dM1VaGLM0XBnY1dfks8YcdQJUwxjudgF 8+MhvunfC05iTSvI8JVCGMVkbR2Vzu0XMGsFDQUuKbm3nxRCKC5tUn2n2m6MD/HE pdlhQRF6x09CeDiHbiva5x1eqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJGlNFV1 KoGxGgx8Dj8jOKS03S5hMB8GA1UdIwQYMBaAFIcBhrZX0RspioSwJCDudOH7tcKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4NS9ENUZFQTNERUM5 RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5bUtoTEFrSU81MDRmdTF3 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2h3R0d0bGZSR3ltS2hMQWtJTzUwNGZ1MXdvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4NS9ENUZFQTNERUM5RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5 bUtoTEFrSU81MDRmdTF3b0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFmzx1hTMdlC2PWOW9p57Gjg9oNIUfV5JtINmVJWSK5zziOfRbkrmP 8Dhi9I0/gu3QVmjpAK66iyTk0kcm8mAkx3TZd7PCZiAe+BWvhYAftGN5BKolPghX 9enuXB/2rEHo1LAvGTKEvZGhWXl/wfy/QRk5LmynPVzvBA+a2AKz7/F9kW/HncWC Ef9w+n0WoEuI+wWKvFk0nJ3rsTlkeFJo2uyWHg0fxDzN1NCZ+E87CxEX0eDok5nC WRAQcPHOAW1IUbTIY31yu8/s+2h+7jAarap3fOgz44z90rp+2uPThTD3CJZGJh36 WasYa6xuIeO42wXr1nkFripGWKub2myF -----END CERTIFICATE-----Generated at Thu Jul 3 23:20:50 2025 by rpki-client