$ rpki-client -vvf rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft File: hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft (raw, json) Hash identifier: v3dM9FMudit81H4gxhxsi9GtJJy4SUKH9ogx+4idKPQ= Subject key identifier: 79:33:5B:4B:41:04:CA:DD:37:9F:CB:C4:4C:DA:C2:D7:A0:CC:A1:6B Authority key identifier: 84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D Certificate issuer: /CN=A9198767/serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft Manifest number: 012E Signing time: Tue 01 Jul 2025 05:02:48 +0000 Manifest this update: Tue 01 Jul 2025 05:02:47 +0000 Manifest next update: Tue 08 Jul 2025 05:02:47 +0000 Files and hashes: 1: hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl (hash: Sg25upcVG+t9zF+MHGF+RcWfvXrfSacAdc4oe8bRs9M=) 2: 7BABB4BE884C11EE81C71A38C4F9AE02.roa (hash: wXMGwG7lxViwNnrJDB749sBIiL2piUFxteIQBHCkVTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198767, serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Validity Not Before: Jul 1 05:02:47 2025 GMT Not After : Jul 8 05:02:47 2025 GMT Subject: CN=68636bf7-61e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:15:ce:1e:78:a4:ec:f4:4e:6f:36:6a:c4:c2: 37:6f:d1:ff:39:40:9c:79:4a:8c:04:e5:3f:6f:50: 60:bc:ac:25:56:cf:93:32:e9:ed:80:59:8a:e6:71: 6b:c2:75:e1:23:5a:e9:ee:38:f3:1d:4e:c4:86:13: ab:15:35:7e:a9:81:96:fc:7a:a8:20:d2:e8:6d:46: f1:b0:b2:86:7e:b5:2b:b8:ff:29:79:03:1b:5d:4b: 86:b3:29:37:ea:f7:97:aa:02:93:78:fc:f5:91:36: fc:5a:3e:fb:e8:03:2a:16:1a:9c:34:b2:3e:38:57: 55:2b:d9:ba:43:04:fd:af:c9:fc:ec:99:d0:13:65: 5b:a9:56:f6:2c:0a:6d:1b:f8:d4:61:c2:b3:ef:70: 6a:dd:df:56:ae:9a:ec:f4:7f:9d:d9:25:13:bb:5e: 4c:c6:ad:33:0e:27:21:01:fe:b5:90:fb:8b:db:a6: 2c:ef:b4:78:5a:44:6b:74:1e:22:3e:31:1e:28:7f: c5:c9:5e:91:23:86:5e:89:04:e9:d3:cc:4c:9c:fd: 17:0e:9f:5e:33:36:5a:bf:32:22:98:56:e3:6d:8c: 30:7a:a7:6e:a2:09:57:b5:d7:ee:3b:42:1e:e0:47: 54:bf:47:28:df:62:df:a3:70:37:a2:8e:d0:2d:5c: 3e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:33:5B:4B:41:04:CA:DD:37:9F:CB:C4:4C:DA:C2:D7:A0:CC:A1:6B X509v3 Authority Key Identifier: keyid:84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:0c:25:2d:fd:49:5f:04:d3:ed:39:79:94:8a:eb:61:ab:9d: 6d:ca:b4:ac:b9:7b:7f:11:98:62:5c:5e:22:68:a1:d2:5f:b9: 3d:de:fd:ae:81:ae:35:e7:6f:64:f2:bb:c7:1c:5b:59:67:90: e2:3f:08:db:88:5e:72:04:87:ab:39:0b:5f:8a:96:65:ce:5d: 81:3a:48:2b:3a:39:be:cc:27:90:7d:d6:cd:9a:3e:7c:9f:06: b2:b9:b5:c9:e0:32:a8:ee:0f:10:ad:8b:77:2d:61:a3:0a:62: 00:3a:9f:03:fb:80:f0:99:68:1c:cc:ab:96:79:15:81:de:e0: e4:0b:c5:aa:58:d1:cb:21:5c:cb:32:22:91:7a:cb:9c:67:da: d4:34:c0:73:c7:9e:c0:19:34:09:95:65:e7:f8:37:70:0e:89: 72:17:85:a2:c4:58:59:e5:fc:2a:97:f3:b0:95:ab:d3:3c:aa: 81:70:0f:86:f5:9c:2d:4f:67:56:f2:68:95:0b:d9:1c:21:37: 5f:77:b6:6a:1a:44:e3:86:73:9f:fc:c6:b3:75:2c:cb:ac:af: a9:df:28:80:d1:86:09:22:78:6c:7f:62:45:f4:2e:fe:8a:de: 17:c0:71:73:c1:bf:21:c3:9b:8c:01:ac:f3:62:57:00:f7:a6: f3:d2:3c:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3NjcxMTAvBgNVBAUTKDg0NjhCMDIxOTdGQzlCNzcwQUY4NDA1NTdCRjQxNUEw QjYxMzgyMEQwHhcNMjUwNzAxMDUwMjQ3WhcNMjUwNzA4MDUwMjQ3WjAYMRYwFAYD VQQDEw02ODYzNmJmNy02MWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1hXOHnik7PRObzZqxMI3b9H/OUCceUqMBOU/b1BgvKwlVs+TMuntgFmK5nFr wnXhI1rp7jjzHU7EhhOrFTV+qYGW/HqoINLobUbxsLKGfrUruP8peQMbXUuGsyk3 6veXqgKTePz1kTb8Wj776AMqFhqcNLI+OFdVK9m6QwT9r8n87JnQE2VbqVb2LApt G/jUYcKz73Bq3d9Wrprs9H+d2SUTu15Mxq0zDichAf61kPuL26Ys77R4WkRrdB4i PjEeKH/FyV6RI4ZeiQTp08xMnP0XDp9eMzZavzIimFbjbYwweqduoglXtdfuO0Ie 4EdUv0co32Lfo3A3oo7QLVw+EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkzW0tB BMrdN5/LxEzawtegzKFrMB8GA1UdIwQYMBaAFIRosCGX/Jt3CvhAVXv0FaC2E4IN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc2Ny83QkM2MUQ4Mjg4 NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0zY0stRUJWZV9RVm9MWVRn ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hHaXdJWmY4bTNjSy1FQlZlX1FWb0xZVGdnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc2Ny83QkM2MUQ4Mjg4NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0z Y0stRUJWZV9RVm9MWVRnZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHDCUt/UlfBNPtOXmUiuthq51tyrSsuXt/EZhiXF4iaKHSX7k93v2u ga41529k8rvHHFtZZ5DiPwjbiF5yBIerOQtfipZlzl2BOkgrOjm+zCeQfdbNmj58 nwayubXJ4DKo7g8QrYt3LWGjCmIAOp8D+4DwmWgczKuWeRWB3uDkC8WqWNHLIVzL MiKResucZ9rUNMBzx57AGTQJlWXn+DdwDolyF4WixFhZ5fwql/OwlavTPKqBcA+G 9ZwtT2dW8miVC9kcITdfd7ZqGkTjhnOf/MazdSzLrK+p3yiA0YYJInhsf2JF9C7+ it4XwHFzwb8hw5uMAazzYlcA96bz0jyb -----END CERTIFICATE-----Generated at Wed Jul 2 19:51:57 2025 by rpki-client