$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft File: HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft (raw, json) Hash identifier: ohUrc8vg5tFayNNwXsE3fKGbNsme7CwKLL2pXHt/6DE= Subject key identifier: D9:E7:D1:AB:E1:48:F6:07:14:00:CC:9F:78:50:60:38:56:FD:AC:EE Authority key identifier: 1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB Certificate issuer: /CN=A91B0770/serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Certificate serial: 351B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft Manifest number: 34D2 Signing time: Fri 16 May 2025 14:41:00 +0000 Manifest this update: Fri 16 May 2025 14:41:00 +0000 Manifest next update: Fri 23 May 2025 14:41:00 +0000 Files and hashes: 1: HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl (hash: usjKj5ZukUnvTOWMGOtVYhYH4VbAcaWsADwaC+gb6gs=) 2: 87EFB95AC01811EF90CE8B0EC4F9AE02.roa (hash: qZJPfG2amv1YRehnUzdlHxLOWwvXz8+dMtqCKRYUJpM=) 3: 725D1810BD0E11EA8CEF0681C4F9AE02.roa (hash: uxN4zJEmGXmB/qpIp2ey6SpNrf4s6W/tukdRHW9gvLc=) 4: 0FCDEA68113B11F09E3A4157C4F9AE02.roa (hash: HhPaW5eoa8YAXMCyUgrMCG4GBbrYuP09obNUWTvTJmo=) 5: 2B622E1282F511EF9090F681C4F9AE02.roa (hash: o+SVOkw4B+Pgr5TLQfMcQYEp6f3Jn3P38kWJLEEf/tQ=) 6: C2DFDA20DE0611EF9DC6A135C4F9AE02.roa (hash: Kgqe2j6IHwMDhGgmbFi5UiveUmKiCe0XXLEEC0ovFyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 14:40:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13595 (0x351b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0770, serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Validity Not Before: May 16 14:41:00 2025 GMT Not After : May 23 14:41:00 2025 GMT Subject: CN=68274e7c-0988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:39:50:a4:f2:09:38:a7:bd:05:59:9e:d9:a3: b5:2d:06:b3:1f:10:fa:12:62:1b:08:25:f6:a5:cc: 68:4e:db:72:7b:6d:d8:8f:35:2f:21:dc:35:aa:07: f1:f5:87:f2:ca:b1:8c:d8:5a:8c:fd:56:52:5c:88: a9:28:a4:48:98:86:c8:74:6b:a1:a4:53:aa:c9:d6: 2c:d3:f8:58:b1:a2:65:3f:92:c7:fe:07:0f:d5:09: 1e:de:12:7f:46:36:95:a3:31:8e:8d:ac:f9:b5:ad: 49:08:1d:d9:73:ff:2f:59:35:ff:9b:90:74:73:ef: 80:6e:6f:6d:2b:55:da:a6:e8:b0:1f:1f:45:4d:00: 8f:52:dd:ca:01:9d:4d:3c:1b:49:a2:f5:2e:38:64: db:d6:d3:30:77:65:b1:79:27:08:63:5d:ea:ca:e6: 4a:3d:2d:1c:fd:e0:5c:65:32:eb:de:ea:17:58:5d: 59:e7:2f:72:10:66:8d:8f:b4:17:7a:9d:50:d3:61: 6c:11:7b:3a:96:c1:26:03:48:87:c3:32:3e:c9:cf: 27:a5:b4:f8:4d:dd:4c:9f:a1:4e:c7:9a:d6:79:42: cd:f7:b0:12:d5:f4:24:cc:bd:5d:c5:e9:21:f5:19: d2:32:8c:e2:86:a2:d4:c3:b3:d9:fa:a5:7b:72:0e: f9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:E7:D1:AB:E1:48:F6:07:14:00:CC:9F:78:50:60:38:56:FD:AC:EE X509v3 Authority Key Identifier: keyid:1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:a3:e6:b7:5e:d6:f6:72:59:9f:fb:97:60:d1:86:42:86:28: db:56:b8:ca:da:be:28:fc:6a:cf:da:39:59:a7:31:7c:5c:b4: 07:5c:87:cd:d9:ab:cf:8b:00:8f:dc:66:e3:a4:61:0b:15:ff: ad:16:cd:87:3f:c9:01:c0:10:6f:12:0f:9a:c4:fc:9d:49:7b: 1c:3a:72:07:5d:8a:b3:db:f3:11:76:22:fc:76:a2:83:8c:10: ad:aa:b0:92:83:09:be:b3:c5:44:71:56:d1:e3:35:41:de:22: 3b:47:d9:87:98:21:a5:4a:9a:39:f2:16:7f:3a:29:c0:fb:4f: f2:4b:6d:8d:fd:d4:39:e1:e0:bc:6d:b8:a8:7a:e4:ed:a2:5c: e8:ba:e1:91:e9:c8:57:1b:3e:7a:ee:1f:64:92:47:5a:59:e5: 6c:e2:a1:68:51:7f:cf:68:e3:14:fb:ac:f9:4d:39:1d:f0:7c: 74:11:cb:a6:20:61:0b:76:22:4c:a5:01:06:dc:7d:c1:76:97: 14:b5:10:81:42:de:50:9a:1e:b8:e9:c2:e0:6d:ee:23:af:09: 29:90:5a:39:c6:46:0a:f9:8c:6f:3b:b7:37:c4:6f:77:d4:66: 03:a4:2a:3a:3d:53:c7:f5:3e:75:f9:ba:64:d5:83:87:ad:dc: b0:3b:30:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NzAxMTAvBgNVBAUTKDFENjIyNUFEOTQzRUNBMzg5RkE0QjY2QzE5NzQzNTFF MzRDNDI4RkIwHhcNMjUwNTE2MTQ0MTAwWhcNMjUwNTIzMTQ0MTAwWjAYMRYwFAYD VQQDEw02ODI3NGU3Yy0wOTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjlQpPIJOKe9BVme2aO1LQazHxD6EmIbCCX2pcxoTttye23YjzUvIdw1qgfx 9YfyyrGM2FqM/VZSXIipKKRImIbIdGuhpFOqydYs0/hYsaJlP5LH/gcP1Qke3hJ/ RjaVozGOjaz5ta1JCB3Zc/8vWTX/m5B0c++Abm9tK1XapuiwHx9FTQCPUt3KAZ1N PBtJovUuOGTb1tMwd2WxeScIY13qyuZKPS0c/eBcZTLr3uoXWF1Z5y9yEGaNj7QX ep1Q02FsEXs6lsEmA0iHwzI+yc8npbT4Td1Mn6FOx5rWeULN97AS1fQkzL1dxekh 9RnSMozihqLUw7PZ+qV7cg75zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnn0avh SPYHFADMn3hQYDhW/azuMB8GA1UdIwQYMBaAFB1iJa2UPso4n6S2bBl0NR40xCj7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc3MC9DMzM2ODNCNjFE OEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlqaWZwTFpzR1hRMUhqVEVL UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXSWxyWlEteWppZnBMWnNHWFExSGpURUtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDc3MC9DMzM2ODNCNjFEOEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlq aWZwTFpzR1hRMUhqVEVLUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABo+a3Xtb2clmf+5dg0YZChijbVrjK2r4o/GrP2jlZpzF8XLQHXIfN 2avPiwCP3GbjpGELFf+tFs2HP8kBwBBvEg+axPydSXscOnIHXYqz2/MRdiL8dqKD jBCtqrCSgwm+s8VEcVbR4zVB3iI7R9mHmCGlSpo58hZ/OinA+0/yS22N/dQ54eC8 bbioeuTtolzouuGR6chXGz567h9kkkdaWeVs4qFoUX/PaOMU+6z5TTkd8Hx0Ecum IGELdiJMpQEG3H3BdpcUtRCBQt5Qmh646cLgbe4jrwkpkFo5xkYK+YxvO7c3xG93 1GYDpCo6PVPH9T51+bpk1YOHrdywOzCi -----END CERTIFICATE-----Generated at Sun May 18 12:03:26 2025 by rpki-client