$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft File: HWQu0o7OpfKqzzR7Fgl_nZJB120.mft (raw, json) Hash identifier: DLMGhW/ll6JNN5Rr3Kas/Tu8MaroHtqW11ctDc14ut0= Subject key identifier: 91:8B:99:70:40:BF:BC:7D:64:DC:70:8E:C0:2B:97:4B:79:20:0E:FD Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D Certificate issuer: /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Certificate serial: 0343 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft Manifest number: 033F Signing time: Fri 25 Apr 2025 00:49:41 +0000 Manifest this update: Fri 25 Apr 2025 00:49:41 +0000 Manifest next update: Fri 02 May 2025 00:49:41 +0000 Files and hashes: 1: HWQu0o7OpfKqzzR7Fgl_nZJB120.crl (hash: wwO5Irtc5HtbYDJz04Brgdc0+ncuyR1q8Zg/gF3gXWw=) 2: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (hash: 8hUucYPHQ79ZY6uDpo1eHlNtJ78CYgic7xieJwMDGwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 835 (0x343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118E3A, serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Validity Not Before: Apr 25 00:49:41 2025 GMT Not After : May 2 00:49:41 2025 GMT Subject: CN=680adc25-0f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:93:43:5d:87:03:ff:2c:3b:55:39:b7:4d:71: ee:fc:0e:e9:5f:e4:c8:ec:d3:14:44:fe:eb:18:9b: bf:ae:e4:da:50:3b:14:a5:3f:81:03:d2:b1:58:b8: 2e:95:04:cc:9c:ed:12:58:e0:1c:67:de:6d:47:57: af:a4:bf:81:35:32:e2:40:21:88:46:1f:0a:a5:d4: 04:14:40:7f:cb:91:85:11:35:b0:fb:ca:5c:e2:e2: 92:45:96:6d:9b:7c:11:bd:b1:d1:ee:12:9b:3a:6e: 26:63:11:52:7e:9e:cf:50:6b:51:18:e9:3a:f7:eb: b9:47:c8:60:de:b7:6b:0e:4f:b2:3f:88:0f:b2:09: e3:ec:3f:3a:0b:be:24:00:20:05:24:34:c9:43:10: 0b:9f:52:90:c6:b5:ad:16:ee:6a:81:2c:49:fa:14: 0e:e4:f9:bc:6b:fd:a3:65:b6:1e:ad:f1:48:2d:b8: ce:e5:7d:03:fe:cc:03:8e:1e:b5:b9:a6:9e:4f:74: 8c:e8:05:98:a1:b4:02:36:fd:1d:9f:b9:fa:88:2c: 97:de:96:ef:97:a4:21:96:29:bf:92:99:c1:e5:f3: d9:bb:29:f5:c1:26:99:54:aa:f1:9e:03:6f:f3:a9: a8:d4:fe:57:b3:b3:32:bd:58:74:29:a2:3b:7c:34: a4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:8B:99:70:40:BF:BC:7D:64:DC:70:8E:C0:2B:97:4B:79:20:0E:FD X509v3 Authority Key Identifier: keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:a3:b5:2c:1f:04:ca:0f:88:4f:68:2f:7b:04:84:2e:24:ff: 05:2a:b4:3d:2e:c9:0a:ba:48:96:08:04:e0:ad:76:0d:0f:57: 63:de:49:f1:78:2f:f4:25:7f:d9:30:40:b5:2a:65:9a:51:51: aa:45:7b:0d:b9:e2:0a:99:82:d9:70:4c:9d:77:46:57:1e:0c: ed:13:fc:bd:79:bc:0f:b6:fb:2d:75:96:51:bc:6d:95:36:b9: bc:21:b0:3d:8d:c9:bd:c0:2f:b4:66:14:b2:c1:08:d4:1d:02: 6d:ea:bc:c4:17:ae:f6:36:f4:92:00:7c:43:a0:0c:d4:c2:79: d1:17:6d:ea:e9:2d:b5:bf:6a:7d:e1:1b:d3:97:3c:42:34:e2: 08:fa:84:78:ba:a5:94:e0:c6:b0:6e:34:d2:86:8f:81:fc:14: 4e:27:d3:83:bc:98:06:b0:69:e9:1b:37:d4:d3:1c:32:0e:32: 12:05:8b:ab:5d:e2:fe:03:14:d1:e4:94:a6:38:93:e5:db:06: fe:ec:a0:d9:81:23:77:d6:d0:77:ed:42:f1:30:a0:c0:e1:b9: 54:f3:04:58:6c:9b:5e:bd:76:cb:33:84:06:37:5c:af:49:59: 18:6e:85:8d:5e:bf:cd:72:24:cd:9d:84:16:21:d7:3e:49:54: 32:57:39:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFM0ExMTAvBgNVBAUTKDFENjQyRUQyOEVDRUE1RjJBQUNGMzQ3QjE2MDk3RjlE OTI0MUQ3NkQwHhcNMjUwNDI1MDA0OTQxWhcNMjUwNTAyMDA0OTQxWjAYMRYwFAYD VQQDEw02ODBhZGMyNS0wZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJNDXYcD/yw7VTm3TXHu/A7pX+TI7NMURP7rGJu/ruTaUDsUpT+BA9KxWLgu lQTMnO0SWOAcZ95tR1evpL+BNTLiQCGIRh8KpdQEFEB/y5GFETWw+8pc4uKSRZZt m3wRvbHR7hKbOm4mYxFSfp7PUGtRGOk69+u5R8hg3rdrDk+yP4gPsgnj7D86C74k ACAFJDTJQxALn1KQxrWtFu5qgSxJ+hQO5Pm8a/2jZbYerfFILbjO5X0D/swDjh61 uaaeT3SM6AWYobQCNv0dn7n6iCyX3pbvl6Qhlim/kpnB5fPZuyn1wSaZVKrxngNv 86mo1P5Xs7MyvVh0KaI7fDSkEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJGLmXBA v7x9ZNxwjsArl0t5IA79MB8GA1UdIwQYMBaAFB1kLtKOzqXyqs80exYJf52SQddt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEUzQS9BN0FCMEE4QUI5 OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3BmS3F6elI3RmdsX25aSkIx MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXUXUwbzdPcGZLcXp6UjdGZ2xfblpKQjEyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEUzQS9BN0FCMEE4QUI5OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3Bm S3F6elI3RmdsX25aSkIxMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3o7UsHwTKD4hPaC97BIQuJP8FKrQ9LskKukiWCATgrXYND1dj3knx eC/0JX/ZMEC1KmWaUVGqRXsNueIKmYLZcEydd0ZXHgztE/y9ebwPtvstdZZRvG2V Nrm8IbA9jcm9wC+0ZhSywQjUHQJt6rzEF672NvSSAHxDoAzUwnnRF23q6S21v2p9 4RvTlzxCNOII+oR4uqWU4MawbjTSho+B/BROJ9ODvJgGsGnpGzfU0xwyDjISBYur XeL+AxTR5JSmOJPl2wb+7KDZgSN31tB37ULxMKDA4blU8wRYbJtevXbLM4QGN1yv SVkYboWNXr/NciTNnYQWIdc+SVQyVzls -----END CERTIFICATE-----Generated at Sat Apr 26 03:37:21 2025 by rpki-client