$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft File: HWQu0o7OpfKqzzR7Fgl_nZJB120.mft (raw, json) Hash identifier: yQRZYZIgxBQXJFXFO4SL7o4oCnz8BktRPdlQTMYpWP4= Subject key identifier: 46:48:5B:A4:FB:F6:41:EF:4D:AA:77:72:2B:08:AF:AF:98:78:C5:F1 Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D Certificate issuer: /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Certificate serial: 0376 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft Manifest number: 0372 Signing time: Tue 05 Aug 2025 01:28:04 +0000 Manifest this update: Tue 05 Aug 2025 01:28:03 +0000 Manifest next update: Tue 12 Aug 2025 01:28:03 +0000 Files and hashes: 1: HWQu0o7OpfKqzzR7Fgl_nZJB120.crl (hash: UJsFv2T1CKQGd3MGxRD+UBL9r5d8i00KJbPHXhP6P58=) 2: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (hash: 8hUucYPHQ79ZY6uDpo1eHlNtJ78CYgic7xieJwMDGwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 01:28:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 886 (0x376) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118E3A, serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Validity Not Before: Aug 5 01:28:03 2025 GMT Not After : Aug 12 01:28:03 2025 GMT Subject: CN=68915e24-fe7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f7:7c:42:31:b0:aa:f8:55:6a:cc:bb:01:38: 67:7c:e7:f3:6a:00:eb:65:2d:d0:1c:45:c4:4f:fc: 2f:e0:cc:76:c9:75:42:45:8c:f5:01:34:6a:f4:9f: 11:d3:af:6a:78:a9:5b:d3:52:29:b0:e0:33:c4:8c: 2a:3a:eb:91:93:48:e8:e1:44:05:df:0a:70:88:b0: f7:14:54:a0:20:2c:75:82:11:e5:d3:00:ce:54:d0: dd:ca:d8:8f:94:bc:11:1f:36:84:9a:9c:bb:74:14: 12:f9:a8:06:58:ac:76:16:0d:91:c1:60:05:4f:de: 18:4d:ef:fe:3c:b5:f4:b5:b8:59:10:8a:d7:f5:0f: ed:5f:e7:1e:b9:05:1f:fc:47:34:60:14:90:45:8c: 25:da:50:04:a0:be:a7:d6:31:0e:c8:89:cc:05:e5: d5:2c:1b:8a:58:30:d8:02:ab:95:d5:f4:14:78:e1: f1:79:fe:24:88:58:3e:a9:52:c8:ea:7b:60:59:fd: ee:1c:34:76:2a:52:37:a8:9f:66:01:c4:ad:cd:a8: 08:8b:71:e6:91:0f:50:c9:c1:95:dd:03:a5:a6:99: 8d:27:ec:38:6d:01:25:60:72:1b:9d:47:4b:41:3c: 27:99:6a:36:72:e4:a5:7e:e1:30:bd:99:55:13:d1: 35:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:48:5B:A4:FB:F6:41:EF:4D:AA:77:72:2B:08:AF:AF:98:78:C5:F1 X509v3 Authority Key Identifier: keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:e4:39:28:90:a1:ee:10:57:bd:f9:ed:df:36:b7:cf:1d:4c: 11:66:13:b7:36:70:63:89:7d:fb:05:81:13:6d:7b:bc:d9:04: 71:17:f2:07:ec:6c:8e:c7:2d:71:86:ff:25:e6:56:87:22:68: d3:4a:2a:ee:c6:77:97:6a:f3:b6:5a:50:d5:bb:ba:58:25:7a: 5b:0b:c0:3f:b8:c8:94:f0:24:1d:4f:d7:ea:b3:6c:10:22:0b: e9:50:31:94:91:33:37:2f:a5:94:5b:8d:c4:9b:8d:57:8a:ca: 5a:fe:9b:20:c5:02:6d:87:20:d0:3c:2c:a4:f5:6c:55:bd:2f: 8c:aa:18:76:31:fb:c0:cd:8c:8c:f5:47:e8:44:66:19:2a:30: e5:ef:69:5d:18:4e:01:99:22:d3:13:80:60:ad:bc:05:ab:75: 26:bb:fc:64:bc:82:9c:54:ec:fb:fb:ce:da:e2:69:fa:fe:90: ce:e5:97:fe:e1:ec:88:de:04:a1:fc:a5:97:9f:5d:a2:6a:55: 35:a8:22:bf:c7:8e:a4:1a:0e:64:45:b0:2b:66:bc:cf:72:69: aa:0f:bc:ca:79:62:62:86:0c:57:1e:fd:46:34:67:31:4c:1d: a9:26:77:6d:29:55:12:2f:b5:07:96:2b:19:97:54:4e:2f:86: c0:a4:40:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFM0ExMTAvBgNVBAUTKDFENjQyRUQyOEVDRUE1RjJBQUNGMzQ3QjE2MDk3RjlE OTI0MUQ3NkQwHhcNMjUwODA1MDEyODAzWhcNMjUwODEyMDEyODAzWjAYMRYwFAYD VQQDEw02ODkxNWUyNC1mZTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/d8QjGwqvhVasy7AThnfOfzagDrZS3QHEXET/wv4Mx2yXVCRYz1ATRq9J8R 069qeKlb01IpsOAzxIwqOuuRk0jo4UQF3wpwiLD3FFSgICx1ghHl0wDOVNDdytiP lLwRHzaEmpy7dBQS+agGWKx2Fg2RwWAFT94YTe/+PLX0tbhZEIrX9Q/tX+ceuQUf /Ec0YBSQRYwl2lAEoL6n1jEOyInMBeXVLBuKWDDYAquV1fQUeOHxef4kiFg+qVLI 6ntgWf3uHDR2KlI3qJ9mAcStzagIi3HmkQ9QycGV3QOlppmNJ+w4bQElYHIbnUdL QTwnmWo2cuSlfuEwvZlVE9E1xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZIW6T7 9kHvTap3cisIr6+YeMXxMB8GA1UdIwQYMBaAFB1kLtKOzqXyqs80exYJf52SQddt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEUzQS9BN0FCMEE4QUI5 OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3BmS3F6elI3RmdsX25aSkIx MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXUXUwbzdPcGZLcXp6UjdGZ2xfblpKQjEyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEUzQS9BN0FCMEE4QUI5OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3Bm S3F6elI3RmdsX25aSkIxMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr5DkokKHuEFe9+e3fNrfPHUwRZhO3NnBjiX37BYETbXu82QRxF/IH 7GyOxy1xhv8l5laHImjTSiruxneXavO2WlDVu7pYJXpbC8A/uMiU8CQdT9fqs2wQ IgvpUDGUkTM3L6WUW43Em41Xispa/psgxQJthyDQPCyk9WxVvS+Mqhh2MfvAzYyM 9UfoRGYZKjDl72ldGE4BmSLTE4BgrbwFq3Umu/xkvIKcVOz7+87a4mn6/pDO5Zf+ 4eyI3gSh/KWXn12ialU1qCK/x46kGg5kRbArZrzPcmmqD7zKeWJihgxXHv1GNGcx TB2pJndtKVUSL7UHlisZl1ROL4bApEAO -----END CERTIFICATE-----Generated at Wed Aug 6 14:08:36 2025 by rpki-client