$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft File: hf--WNwc9_kcLTgTTiC27wssOl8.mft (raw, json) Hash identifier: xDsTMJkW0YM6kmXskZCZCcc/xlKMegkUMJm/gRBJvw4= Subject key identifier: F0:60:CA:32:07:1C:FB:5E:34:4D:BC:03:F4:36:02:52:86:32:6E:94 Authority key identifier: 85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F Certificate issuer: /CN=A911954F/serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft Manifest number: 01E8 Signing time: Tue 17 Jun 2025 03:45:14 +0000 Manifest this update: Tue 17 Jun 2025 03:45:13 +0000 Manifest next update: Tue 24 Jun 2025 03:45:13 +0000 Files and hashes: 1: hf--WNwc9_kcLTgTTiC27wssOl8.crl (hash: VY4s0ml37mi0/F9D8cYNkUPluSVVWQRynAxr3EC7Bqo=) 2: 6BCEC330344311EFB7DD0D34C4F9AE02.roa (hash: V5GXfj7MVmj/bsrh8ZK5BOMK+sTslcHA1M5O9HLWM8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911954F, serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Validity Not Before: Jun 17 03:45:13 2025 GMT Not After : Jun 24 03:45:13 2025 GMT Subject: CN=6850e4ca-8505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0d:1d:97:48:73:5e:fe:84:bd:92:e7:28:23: 1e:90:95:e3:00:6d:e5:a0:ea:66:1f:0e:e9:bd:65: 0b:bd:87:8e:03:05:cd:fe:ea:af:08:9e:5d:a6:e8: 06:b4:cb:90:b4:98:f1:a2:cf:9c:4d:6d:d7:2a:ef: c5:c1:84:20:d1:55:5e:bd:44:2d:e0:33:db:62:98: d7:c0:15:bd:97:5a:18:9a:d1:2d:ea:0f:ec:da:36: 52:f5:43:9e:05:fb:0a:2e:4e:e9:77:bd:d3:20:56: 9b:13:91:73:91:ab:07:d3:a7:81:24:96:57:42:2b: 58:4a:3e:bb:28:5a:bb:dc:7b:8f:4c:12:44:a7:21: 09:60:44:27:aa:56:a6:c0:9b:d3:fd:72:a5:f9:c8: bf:ab:6c:a5:52:3d:6e:a5:b6:2c:17:89:10:13:6e: e0:9a:d9:81:59:e5:e0:84:fa:ce:8d:2f:6e:74:56: 4f:38:98:82:b6:13:ab:a7:bf:9b:61:aa:0e:cd:59: da:00:7a:c3:ac:02:76:48:53:c8:31:e8:86:f0:29: 2f:a9:15:43:60:c4:e0:12:6f:57:16:e6:4f:b1:91: ff:b2:ca:01:9b:31:d5:1e:06:4b:50:63:73:7e:e0: ae:92:b0:a3:1c:f3:07:d1:5e:b8:cf:6e:ac:fa:26: 17:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:60:CA:32:07:1C:FB:5E:34:4D:BC:03:F4:36:02:52:86:32:6E:94 X509v3 Authority Key Identifier: keyid:85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:88:4b:6f:f5:c2:35:06:99:06:16:b4:1a:5b:7f:70:8c:41: 35:36:8f:f8:51:fc:99:2c:05:be:d1:21:1b:91:04:aa:fc:e2: a5:3f:01:c9:55:e8:38:b2:f7:e4:ea:fd:09:83:87:19:86:df: 6c:99:5c:c3:19:0d:be:20:ee:49:33:0f:3d:ae:56:47:38:03: 40:6e:c9:bd:ed:af:c8:75:af:79:bb:b0:9d:cb:ff:35:9f:da: 40:3f:d9:a0:72:c1:f5:72:c9:e6:ab:f8:b9:4e:bd:ed:bd:14: 30:ff:10:77:b3:6a:fc:97:f5:c8:62:02:c2:cf:ba:6b:51:a5: f8:53:18:5d:f3:00:fe:19:4d:4b:29:dc:c2:40:39:c9:0d:cf: a4:b3:3d:0c:fc:e9:c1:89:04:64:16:37:dd:91:fd:61:8d:3b: e6:2b:b9:b2:5e:31:d2:ae:8e:c0:51:05:4a:f8:42:03:22:ea: 65:37:0b:9b:c5:41:01:2a:eb:3c:f9:95:05:9c:54:fa:6f:66: a9:c9:16:df:df:8d:21:f6:88:81:43:e8:6f:8e:85:71:78:1a: 92:80:c0:05:c1:52:94:6e:73:5b:26:45:c8:10:9d:93:fe:6e: 23:4a:c8:67:00:8b:c9:26:0c:cc:a3:6f:c9:5e:25:5b:49:a1: aa:8e:4a:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1NEYxMTAvBgNVBAUTKDg1RkZCRTU4REMxQ0Y3RjkxQzJEMzgxMzRFMjBCNkVG MEIyQzNBNUYwHhcNMjUwNjE3MDM0NTEzWhcNMjUwNjI0MDM0NTEzWjAYMRYwFAYD VQQDEw02ODUwZTRjYS04NTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0g0dl0hzXv6EvZLnKCMekJXjAG3loOpmHw7pvWULvYeOAwXN/uqvCJ5dpugG tMuQtJjxos+cTW3XKu/FwYQg0VVevUQt4DPbYpjXwBW9l1oYmtEt6g/s2jZS9UOe BfsKLk7pd73TIFabE5FzkasH06eBJJZXQitYSj67KFq73HuPTBJEpyEJYEQnqlam wJvT/XKl+ci/q2ylUj1upbYsF4kQE27gmtmBWeXghPrOjS9udFZPOJiCthOrp7+b YaoOzVnaAHrDrAJ2SFPIMeiG8CkvqRVDYMTgEm9XFuZPsZH/ssoBmzHVHgZLUGNz fuCukrCjHPMH0V64z26s+iYXfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBgyjIH HPteNE28A/Q2AlKGMm6UMB8GA1UdIwQYMBaAFIX/vljcHPf5HC04E04gtu8LLDpf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTU0Ri81OTFBMzIyMDkx NEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlfa2NMVGdUVGlDMjd3c3NP bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hmLS1XTndjOV9rY0xUZ1RUaUMyN3dzc09sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTU0Ri81OTFBMzIyMDkxNEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlf a2NMVGdUVGlDMjd3c3NPbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAiEtv9cI1BpkGFrQaW39wjEE1No/4UfyZLAW+0SEbkQSq/OKlPwHJ Veg4svfk6v0Jg4cZht9smVzDGQ2+IO5JMw89rlZHOANAbsm97a/Ida95u7Cdy/81 n9pAP9mgcsH1csnmq/i5Tr3tvRQw/xB3s2r8l/XIYgLCz7prUaX4Uxhd8wD+GU1L KdzCQDnJDc+ksz0M/OnBiQRkFjfdkf1hjTvmK7myXjHSro7AUQVK+EIDIuplNwub xUEBKus8+ZUFnFT6b2apyRbf340h9oiBQ+hvjoVxeBqSgMAFwVKUbnNbJkXIEJ2T /m4jSshnAIvJJgzMo2/JXiVbSaGqjkrw -----END CERTIFICATE-----Generated at Wed Jun 18 03:14:58 2025 by rpki-client