$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft File: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft (raw, json) Hash identifier: OAGa4MvyeIjp1YujQpQy5ICZRAVU84NxWKzm6iJf7Rg= Subject key identifier: 70:E6:3E:2A:A6:9B:0C:7A:B2:4B:4F:C5:F1:5A:E6:94:CC:42:9C:AB Authority key identifier: 86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 Certificate issuer: /CN=A91A1EE0/serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Certificate serial: 34F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft Manifest number: 34C5 Signing time: Wed 02 Jul 2025 14:35:53 +0000 Manifest this update: Wed 02 Jul 2025 14:35:52 +0000 Manifest next update: Wed 09 Jul 2025 14:35:52 +0000 Files and hashes: 1: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl (hash: h0f/pg9pp7giJM0eX/A0e9YPSLN3nZoeQhB4KxcoZ5k=) 2: 4EF85CFEEE4211E9B52B674DC4F9AE02.roa (hash: d0P/BKes6SbSKV4r9lK1XjzU3f1Gv4sq1ihkJ2akzQw=) 3: 44E2CCAEBA9811EFBA471E62C4F9AE02.roa (hash: 1oolI04ZrhXaYmXgZvqSiMymHhXrDoJjC9cjKEp6I10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:35:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13552 (0x34f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1EE0, serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Validity Not Before: Jul 2 14:35:52 2025 GMT Not After : Jul 9 14:35:52 2025 GMT Subject: CN=686543c8-adb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a2:88:8e:54:58:94:1f:17:81:00:1e:c8:b6: 02:fb:f0:a1:4e:ec:7a:ff:fd:38:1c:ff:e8:16:64: 38:e1:86:8f:b8:c2:3c:08:f4:a9:67:bb:50:e0:5b: 02:23:4e:2a:11:c0:07:37:d2:c1:48:19:77:ed:32: 8c:01:b0:4a:6d:bf:28:ba:16:06:28:4f:07:80:46: dd:b6:c6:78:22:67:3f:f2:51:05:ea:8d:fc:b6:63: 7e:5b:0d:c5:ed:5d:ae:0f:d7:dd:48:ec:aa:32:76: 41:c7:ff:7a:87:6f:b9:8e:7c:58:bf:02:94:d1:ce: 4f:c3:98:50:05:05:cf:ca:4e:1b:a7:97:1e:58:7a: ef:2b:a0:6b:19:5b:31:58:54:0c:d6:3c:4c:eb:e4: 4e:b4:27:a4:01:d6:92:9e:79:f4:42:ba:68:58:ed: 8c:6e:0b:6c:9c:83:65:9d:4e:a7:d3:6e:e9:74:5d: af:3b:e0:26:77:90:88:07:ad:8c:b9:04:0d:d1:6a: d0:ce:1c:bc:a3:1c:25:c8:29:c0:13:d1:b2:73:23: d7:14:4a:f1:48:a6:58:48:52:f9:40:46:93:31:20: ce:b9:17:1f:e5:16:cc:d2:d1:48:dc:8d:85:91:ae: 28:ed:f7:8b:98:f5:bd:11:e5:7b:88:25:7b:e2:b4: 56:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:E6:3E:2A:A6:9B:0C:7A:B2:4B:4F:C5:F1:5A:E6:94:CC:42:9C:AB X509v3 Authority Key Identifier: keyid:86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:20:f3:f6:60:14:e5:04:6c:1f:2a:d9:19:00:4e:39:a8:12: ea:fb:c8:5e:c1:5a:60:13:d6:2b:4c:38:9e:b2:4a:c9:8e:33: be:1d:f7:28:c7:a6:20:b9:29:57:12:77:94:00:82:a9:c0:25: ec:33:e7:a3:90:6e:56:35:9b:7a:1d:00:40:f2:07:db:e1:72: b0:1b:f7:dd:d4:39:58:f8:04:36:57:42:17:1d:dd:ed:6f:34: ef:ce:df:d6:81:6b:54:89:19:ad:23:d8:c3:75:09:16:44:f9: ba:c6:21:1e:78:5b:b7:7c:9e:64:c2:c5:03:56:82:4a:d7:9f: 1c:ff:da:ee:66:c4:43:62:22:f8:e9:cc:61:73:b5:43:d9:2b: b1:33:df:8d:61:b1:bb:3c:4f:a6:3f:30:1c:fa:76:d7:dc:fe: a0:27:6e:d0:e7:f1:a9:ba:e8:73:ef:12:0e:71:58:81:0c:d1: 46:46:c4:61:e5:f3:d0:07:d2:16:60:c0:13:24:a8:c5:d8:24: 27:14:9e:11:3a:50:79:91:6f:3e:e3:e0:6c:11:fa:f6:42:b5: bc:e1:5f:f4:70:a8:5d:d2:d8:6a:23:b9:2d:08:8c:13:a9:36: 9b:74:9d:e2:f0:52:4c:f5:8e:76:80:ad:58:40:2f:80:ee:68: 6f:bd:9c:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFFRTAxMTAvBgNVBAUTKDg2MEMwOTA0Q0VEN0JCMEQxRDk3QjI5MkZEQjY2MkU4 QjlBOEFGRjAwHhcNMjUwNzAyMTQzNTUyWhcNMjUwNzA5MTQzNTUyWjAYMRYwFAYD VQQDEw02ODY1NDNjOC1hZGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5aKIjlRYlB8XgQAeyLYC+/ChTux6//04HP/oFmQ44YaPuMI8CPSpZ7tQ4FsC I04qEcAHN9LBSBl37TKMAbBKbb8ouhYGKE8HgEbdtsZ4Imc/8lEF6o38tmN+Ww3F 7V2uD9fdSOyqMnZBx/96h2+5jnxYvwKU0c5Pw5hQBQXPyk4bp5ceWHrvK6BrGVsx WFQM1jxM6+ROtCekAdaSnnn0QrpoWO2MbgtsnINlnU6n027pdF2vO+Amd5CIB62M uQQN0WrQzhy8oxwlyCnAE9GycyPXFErxSKZYSFL5QEaTMSDOuRcf5RbM0tFI3I2F ka4o7feLmPW9EeV7iCV74rRWTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHDmPiqm mwx6sktPxfFa5pTMQpyrMB8GA1UdIwQYMBaAFIYMCQTO17sNHZeykv22Yui5qK/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUVFMC9EMjM2MzQ0NjFE OEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3MGRsN0tTX2JaaTZMbW9y X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnd0pCTTdYdXcwZGw3S1NfYlppNkxtb3JfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUVFMC9EMjM2MzQ0NjFEOEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3 MGRsN0tTX2JaaTZMbW9yX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6IPP2YBTlBGwfKtkZAE45qBLq+8hewVpgE9YrTDieskrJjjO+Hfco x6YguSlXEneUAIKpwCXsM+ejkG5WNZt6HQBA8gfb4XKwG/fd1DlY+AQ2V0IXHd3t bzTvzt/WgWtUiRmtI9jDdQkWRPm6xiEeeFu3fJ5kwsUDVoJK158c/9ruZsRDYiL4 6cxhc7VD2SuxM9+NYbG7PE+mPzAc+nbX3P6gJ27Q5/Gpuuhz7xIOcViBDNFGRsRh 5fPQB9IWYMATJKjF2CQnFJ4ROlB5kW8+4+BsEfr2QrW84V/0cKhd0thqI7ktCIwT qTabdJ3i8FJM9Y52gK1YQC+A7mhvvZzf -----END CERTIFICATE-----Generated at Thu Jul 3 04:30:07 2025 by rpki-client