$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft File: HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft (raw, json) Hash identifier: rIgcejEvAiVLjg8DM5QoKhTRYPAuVK3cHWECzaTyfY0= Subject key identifier: 27:60:C0:97:38:FF:9D:47:DA:62:E7:A7:86:BB:C0:6E:C3:46:F4:1B Authority key identifier: 1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB Certificate issuer: /CN=A91B0770/serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Certificate serial: 354D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft Manifest number: 3504 Signing time: Fri 22 Aug 2025 14:39:18 +0000 Manifest this update: Fri 22 Aug 2025 14:39:18 +0000 Manifest next update: Fri 29 Aug 2025 14:39:18 +0000 Files and hashes: 1: HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl (hash: wtqyWXz1xX7YVs0UMmARaKopplQr4XxdhTH5kA3CtBc=) 2: 87EFB95AC01811EF90CE8B0EC4F9AE02.roa (hash: qZJPfG2amv1YRehnUzdlHxLOWwvXz8+dMtqCKRYUJpM=) 3: 725D1810BD0E11EA8CEF0681C4F9AE02.roa (hash: uxN4zJEmGXmB/qpIp2ey6SpNrf4s6W/tukdRHW9gvLc=) 4: 0FCDEA68113B11F09E3A4157C4F9AE02.roa (hash: HhPaW5eoa8YAXMCyUgrMCG4GBbrYuP09obNUWTvTJmo=) 5: 2B622E1282F511EF9090F681C4F9AE02.roa (hash: o+SVOkw4B+Pgr5TLQfMcQYEp6f3Jn3P38kWJLEEf/tQ=) 6: C2DFDA20DE0611EF9DC6A135C4F9AE02.roa (hash: Kgqe2j6IHwMDhGgmbFi5UiveUmKiCe0XXLEEC0ovFyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:39:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13645 (0x354d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0770, serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Validity Not Before: Aug 22 14:39:18 2025 GMT Not After : Aug 29 14:39:18 2025 GMT Subject: CN=68a88116-072d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:37:ff:2f:a1:b3:a0:9e:30:79:e0:2a:7f:3d: ca:0e:b9:c8:1e:ff:bf:75:6a:d5:a5:80:07:a7:01: 61:a4:2d:4c:83:eb:8f:bc:7f:cb:bd:d9:fc:31:ad: 6a:a1:22:00:08:bc:cc:0b:92:36:93:f3:2b:21:f4: 71:db:27:34:bc:50:8c:94:d8:a7:bd:87:43:29:f6: ee:be:44:8c:f4:b7:97:8f:0c:31:ac:c0:25:90:3b: 47:ed:e8:d1:2a:25:b1:35:13:d0:8a:ec:62:22:e7: 75:5e:8c:25:d7:3b:14:6b:48:a6:66:90:89:c3:5b: ac:11:68:7f:df:72:a3:e2:c4:51:92:93:1e:24:93: 31:94:bf:02:e7:ab:52:ff:7d:90:9a:e3:59:d8:a4: e2:36:cc:90:2f:56:8b:40:41:49:de:e3:d4:bb:66: 0e:24:ce:e2:6a:73:a5:be:96:9b:7d:ab:8c:15:0c: ef:aa:c5:ae:8f:9d:e3:6b:bd:5d:ed:0f:f5:99:b5: 46:7c:8e:62:3a:fa:ec:a5:86:67:a8:11:d5:86:90: b4:04:37:aa:df:ab:ea:fd:80:02:57:d9:7f:2b:89: f7:1d:cc:0b:27:37:65:ea:9d:2b:7b:1c:41:08:a5: 05:00:a9:58:86:6b:fe:b1:0d:ef:1b:32:5e:07:b9: 17:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:60:C0:97:38:FF:9D:47:DA:62:E7:A7:86:BB:C0:6E:C3:46:F4:1B X509v3 Authority Key Identifier: keyid:1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:77:89:6a:5b:f2:8c:58:89:fb:61:f8:26:6c:d4:59:8a:c1: ee:60:6f:15:db:8c:80:e3:63:33:58:2e:d1:f8:09:fa:64:b2: 79:c1:5f:84:89:eb:df:3c:92:bb:52:73:3e:bd:e4:ea:af:48: cb:0f:48:7f:cf:8b:ba:f9:64:20:29:25:83:1f:2a:a2:b5:c6: 99:13:c1:a1:bb:e1:4d:fe:f5:a7:61:32:4d:a8:8e:db:eb:46: f9:00:5e:27:45:88:bf:f6:8a:4e:ef:43:1f:80:4e:94:d6:22: d9:1a:9b:0d:db:f1:e6:d6:b6:10:9f:43:1c:17:bc:ca:6a:aa: 94:85:38:26:2e:0c:10:ee:f3:26:1d:be:b4:f1:4b:10:4f:25: 25:6e:59:33:a1:d7:db:5c:af:87:9f:b8:6b:1d:1f:68:f9:6b: 61:0b:20:2d:2d:6f:e4:9c:b1:18:eb:fd:d0:db:18:ad:6f:12: 36:38:db:fc:09:de:58:c8:d5:81:5e:d4:57:73:1e:33:02:27: 56:7c:b9:90:48:06:f2:db:33:60:49:88:fb:e7:8e:ad:91:ce: 57:57:99:00:bf:76:02:cc:40:6d:59:a6:ec:74:ca:14:21:05: e9:75:8b:a5:f1:58:5d:74:b1:35:6d:4f:35:89:ce:1e:a3:ad: 5b:86:d0:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NzAxMTAvBgNVBAUTKDFENjIyNUFEOTQzRUNBMzg5RkE0QjY2QzE5NzQzNTFF MzRDNDI4RkIwHhcNMjUwODIyMTQzOTE4WhcNMjUwODI5MTQzOTE4WjAYMRYwFAYD VQQDEw02OGE4ODExNi0wNzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jf/L6GzoJ4weeAqfz3KDrnIHv+/dWrVpYAHpwFhpC1Mg+uPvH/Lvdn8Ma1q oSIACLzMC5I2k/MrIfRx2yc0vFCMlNinvYdDKfbuvkSM9LeXjwwxrMAlkDtH7ejR KiWxNRPQiuxiIud1Xowl1zsUa0imZpCJw1usEWh/33Kj4sRRkpMeJJMxlL8C56tS /32QmuNZ2KTiNsyQL1aLQEFJ3uPUu2YOJM7ianOlvpabfauMFQzvqsWuj53ja71d 7Q/1mbVGfI5iOvrspYZnqBHVhpC0BDeq36vq/YACV9l/K4n3HcwLJzdl6p0rexxB CKUFAKlYhmv+sQ3vGzJeB7kXAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdgwJc4 /51H2mLnp4a7wG7DRvQbMB8GA1UdIwQYMBaAFB1iJa2UPso4n6S2bBl0NR40xCj7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc3MC9DMzM2ODNCNjFE OEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlqaWZwTFpzR1hRMUhqVEVL UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXSWxyWlEteWppZnBMWnNHWFExSGpURUtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDc3MC9DMzM2ODNCNjFEOEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlq aWZwTFpzR1hRMUhqVEVLUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBid4lqW/KMWIn7YfgmbNRZisHuYG8V24yA42MzWC7R+An6ZLJ5wV+E ievfPJK7UnM+veTqr0jLD0h/z4u6+WQgKSWDHyqitcaZE8Ghu+FN/vWnYTJNqI7b 60b5AF4nRYi/9opO70MfgE6U1iLZGpsN2/Hm1rYQn0McF7zKaqqUhTgmLgwQ7vMm Hb608UsQTyUlblkzodfbXK+Hn7hrHR9o+WthCyAtLW/knLEY6/3Q2xitbxI2ONv8 Cd5YyNWBXtRXcx4zAidWfLmQSAby2zNgSYj7546tkc5XV5kAv3YCzEBtWabsdMoU IQXpdYul8VhddLE1bU81ic4eo61bhtBS -----END CERTIFICATE-----Generated at Sat Aug 23 22:22:06 2025 by rpki-client