$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft File: HWQu0o7OpfKqzzR7Fgl_nZJB120.mft (raw, json) Hash identifier: H4d0lPvU2NHNbN+j+IrWnV+WWXfAMexPjuaMSJ/fxkY= Subject key identifier: D7:22:6C:D0:EE:C7:13:28:95:8D:5C:B8:85:87:08:AB:B1:F5:81:D5 Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D Certificate issuer: /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Certificate serial: 035B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft Manifest number: 0357 Signing time: Fri 13 Jun 2025 00:31:56 +0000 Manifest this update: Fri 13 Jun 2025 00:31:55 +0000 Manifest next update: Fri 20 Jun 2025 00:31:55 +0000 Files and hashes: 1: HWQu0o7OpfKqzzR7Fgl_nZJB120.crl (hash: 9WJfnIkSsNmGKOKHbuWBQjIoA3IRZK8W4mh1wXF5q3Y=) 2: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (hash: 8hUucYPHQ79ZY6uDpo1eHlNtJ78CYgic7xieJwMDGwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:31:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 859 (0x35b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118E3A, serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Validity Not Before: Jun 13 00:31:55 2025 GMT Not After : Jun 20 00:31:55 2025 GMT Subject: CN=684b717b-b826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b1:fb:5c:fc:30:2b:06:9e:07:cb:5c:41:5f: b7:52:d1:3f:a4:15:c8:e7:16:db:18:af:79:8d:86: 62:bf:0d:c8:45:84:fc:22:ae:24:01:e7:b5:4d:13: 32:71:fa:79:cc:15:ac:c0:c4:90:34:9d:47:de:59: ee:06:1e:b7:c6:0d:3a:cd:9f:6b:25:b0:dc:21:ec: b8:ec:dd:7f:a4:f7:cb:ad:2e:6a:eb:d4:92:c8:e4: 3c:aa:cd:4a:b6:d5:45:a3:9a:69:f8:9d:c2:b8:30: 6e:90:a3:02:dc:9f:25:8e:15:19:cb:31:e6:8e:50: ad:23:8b:e6:e3:46:16:13:38:fe:0d:c1:83:eb:54: 9c:2a:ea:c8:a5:6f:5f:e5:ea:49:e4:a0:0f:52:db: 62:ce:5e:58:2e:68:58:a7:53:91:04:fd:fa:44:b9: 94:b8:ff:62:ad:d9:44:da:9f:69:ec:7d:83:c6:7f: 36:d4:6c:85:86:1a:22:5c:09:57:11:d8:c5:e0:37: 3a:75:c8:cc:5b:8e:e1:29:d5:ee:c9:45:de:27:4c: b9:6c:13:70:e7:f3:06:de:ee:64:45:b4:1f:d5:94: 31:25:70:bc:5d:28:99:ae:3c:24:0d:cf:58:15:3d: 68:4e:83:eb:4f:81:fb:fc:11:84:b3:7d:9c:41:c4: 70:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:22:6C:D0:EE:C7:13:28:95:8D:5C:B8:85:87:08:AB:B1:F5:81:D5 X509v3 Authority Key Identifier: keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:f2:10:54:7e:20:7f:b2:38:d5:ef:8d:f0:49:26:75:99:c6: ad:f2:8c:3b:ac:6f:34:bd:40:61:b2:95:24:93:62:f8:37:3f: 26:75:fb:eb:ff:d1:18:30:ea:eb:4d:75:df:ac:bc:5c:7f:07: bd:b3:99:b6:11:09:7a:eb:00:df:65:dc:77:39:60:18:ab:bb: 3c:5d:37:fc:09:b7:7d:a9:c1:d9:20:5f:1f:e0:6b:90:b6:1d: ff:52:a6:73:65:3f:b8:f4:ad:17:72:14:ae:b7:8d:92:70:b4: 14:f0:c3:df:e5:e6:d5:ec:ea:1c:3b:17:88:bd:67:8e:18:2b: d4:dc:61:f1:09:2b:30:b6:05:f4:e0:41:ba:e1:19:44:72:e4: 88:57:c7:68:a3:b2:1d:19:c5:8f:43:ec:cc:40:59:24:b2:d8: 7f:72:b5:41:80:aa:4b:bd:90:d8:70:68:08:f2:82:a8:be:3c: a1:70:de:19:38:8d:dc:5c:63:50:6c:a6:b6:3a:bc:22:f2:c5: bf:ed:37:07:62:bd:3d:a6:6f:ea:18:57:7a:f5:d9:44:6d:e5: 7f:d1:1f:f4:cb:17:4b:38:0e:fb:ff:ac:74:52:3b:60:34:4c: 1f:fd:30:70:e8:c6:d9:67:7b:da:41:6b:dc:74:07:00:a4:e7: 13:0c:fd:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFM0ExMTAvBgNVBAUTKDFENjQyRUQyOEVDRUE1RjJBQUNGMzQ3QjE2MDk3RjlE OTI0MUQ3NkQwHhcNMjUwNjEzMDAzMTU1WhcNMjUwNjIwMDAzMTU1WjAYMRYwFAYD VQQDEw02ODRiNzE3Yi1iODI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmrH7XPwwKwaeB8tcQV+3UtE/pBXI5xbbGK95jYZivw3IRYT8Iq4kAee1TRMy cfp5zBWswMSQNJ1H3lnuBh63xg06zZ9rJbDcIey47N1/pPfLrS5q69SSyOQ8qs1K ttVFo5pp+J3CuDBukKMC3J8ljhUZyzHmjlCtI4vm40YWEzj+DcGD61ScKurIpW9f 5epJ5KAPUttizl5YLmhYp1ORBP36RLmUuP9irdlE2p9p7H2Dxn821GyFhhoiXAlX EdjF4Dc6dcjMW47hKdXuyUXeJ0y5bBNw5/MG3u5kRbQf1ZQxJXC8XSiZrjwkDc9Y FT1oToPrT4H7/BGEs32cQcRwkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcibNDu xxMolY1cuIWHCKux9YHVMB8GA1UdIwQYMBaAFB1kLtKOzqXyqs80exYJf52SQddt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEUzQS9BN0FCMEE4QUI5 OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3BmS3F6elI3RmdsX25aSkIx MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXUXUwbzdPcGZLcXp6UjdGZ2xfblpKQjEyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEUzQS9BN0FCMEE4QUI5OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3Bm S3F6elI3RmdsX25aSkIxMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo8hBUfiB/sjjV743wSSZ1mcat8ow7rG80vUBhspUkk2L4Nz8mdfvr /9EYMOrrTXXfrLxcfwe9s5m2EQl66wDfZdx3OWAYq7s8XTf8Cbd9qcHZIF8f4GuQ th3/UqZzZT+49K0XchSut42ScLQU8MPf5ebV7OocOxeIvWeOGCvU3GHxCSswtgX0 4EG64RlEcuSIV8doo7IdGcWPQ+zMQFkksth/crVBgKpLvZDYcGgI8oKovjyhcN4Z OI3cXGNQbKa2Orwi8sW/7TcHYr09pm/qGFd69dlEbeV/0R/0yxdLOA77/6x0Ujtg NEwf/TBw6MbZZ3vaQWvcdAcApOcTDP3a -----END CERTIFICATE-----Generated at Sat Jun 14 17:42:53 2025 by rpki-client