$ rpki-client -vvf rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft File: HlwQfv0DzxPSFKOaaizo3a0wRw4.mft (raw, json) Hash identifier: KD1BZEJKVDgOexVtnYH8PqlyXQteI2v2BQMN2XnkP9A= Subject key identifier: D7:75:D6:93:F1:D0:FB:19:A5:8F:84:1E:BF:80:E3:3B:F0:1E:41:BC Authority key identifier: 1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E Certificate issuer: /CN=A914D9C3/serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft Manifest number: 87 Signing time: Fri 13 Jun 2025 05:30:54 +0000 Manifest this update: Fri 13 Jun 2025 05:30:53 +0000 Manifest next update: Fri 20 Jun 2025 05:30:53 +0000 Files and hashes: 1: HlwQfv0DzxPSFKOaaizo3a0wRw4.crl (hash: ZQfGYtfQBU+KIw6rEUFsHA245EzI/i2O2qBMTwMKh8g=) 2: F7B3707C806911EF8C30A03DC4F9AE02.roa (hash: 9WzRWZ39qEL+BS0hCUtMSeDhBI46JI/Ih27Az+Uy8VI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:30:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D9C3, serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Validity Not Before: Jun 13 05:30:53 2025 GMT Not After : Jun 20 05:30:53 2025 GMT Subject: CN=684bb78d-1fd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:14:a8:26:b5:ef:79:36:ee:3c:9d:e0:b8:d9: ba:58:db:71:c7:5a:8a:0b:ba:b1:b4:96:d9:7f:79: ea:e0:1f:0d:5b:f1:58:93:c7:b7:8f:ee:40:21:13: 0c:26:36:2a:8e:6c:12:02:bb:67:99:be:e2:3b:33: 85:bd:b1:84:01:23:e9:fa:b4:33:11:ea:05:bd:ac: 0e:f3:43:c9:51:22:f6:a0:71:eb:84:e6:29:ae:e9: a9:2a:14:cf:5a:d0:65:74:1a:13:e4:fd:84:bd:12: 1a:7a:4a:77:42:42:d4:97:bc:c6:48:94:7f:98:1d: 80:f6:8f:da:16:54:e4:14:72:33:a8:c3:f0:06:27: 7c:19:6c:9c:c2:6b:27:0a:8b:11:5c:a2:95:86:8c: 42:c0:12:63:d6:ed:8d:b8:31:ce:ab:2d:3c:08:54: 49:33:25:24:ed:45:c1:a0:74:c7:6b:91:48:c1:c1: bf:2c:e2:49:42:c3:da:4d:ec:38:e4:77:77:7b:e6: 10:0b:08:20:6a:4d:f2:1f:a9:b5:4c:db:e2:77:6f: bf:9e:da:8d:6c:d9:f4:28:86:69:b3:bb:9a:e2:24: 5c:a5:43:e5:7e:8b:4f:57:d9:64:04:c9:93:da:ba: d9:d5:7e:08:46:75:81:b3:13:1b:73:51:19:87:ac: 10:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:75:D6:93:F1:D0:FB:19:A5:8F:84:1E:BF:80:E3:3B:F0:1E:41:BC X509v3 Authority Key Identifier: keyid:1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:d3:05:f6:fc:a7:55:8d:76:b1:48:bc:ca:a8:8a:3a:ca:cd: 5b:1f:68:38:aa:20:83:c5:99:10:e8:6c:5c:fd:bd:bf:91:db: 13:ba:78:c8:3a:e2:d6:f1:bd:81:17:63:df:d2:79:a7:fc:55: 4e:9b:58:a3:d2:12:cd:58:13:ba:ff:7d:e8:df:e1:57:41:8e: 35:10:25:9d:2c:1e:f9:74:b8:d8:ae:e3:88:ad:8f:28:e6:60: 7f:62:c6:94:48:16:90:ee:83:81:0a:39:cc:28:86:e7:87:81: 0e:39:e6:54:94:16:14:8e:ab:54:73:b4:a6:1d:bc:aa:a6:c2: 6e:bb:fb:4e:30:f8:f1:ae:67:ec:a3:30:9a:ab:32:c8:dd:f7: 90:0b:27:a0:d2:7f:32:a9:ed:9f:3a:f1:f0:0a:7b:e0:01:93: 88:32:d3:16:c3:89:d9:d9:ed:21:2e:8e:db:60:90:43:a3:e7: 7e:16:62:d8:ec:89:ef:54:5e:63:33:d1:9b:78:23:57:df:59: 2d:77:96:00:46:ce:5d:ff:be:e1:ff:b7:59:1d:d9:87:06:8f: f0:b7:48:61:07:33:9b:ae:21:5e:55:1f:1a:c2:4f:3d:33:c6: 22:19:e1:bd:12:de:9d:c2:bc:28:9f:1b:43:cd:0f:28:64:0e: 3b:8d:dc:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ5QzMxMTAvBgNVBAUTKDFFNUMxMDdFRkQwM0NGMTNEMjE0QTM5QTZBMkNFOERE QUQzMDQ3MEUwHhcNMjUwNjEzMDUzMDUzWhcNMjUwNjIwMDUzMDUzWjAYMRYwFAYD VQQDEw02ODRiYjc4ZC0xZmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBSoJrXveTbuPJ3guNm6WNtxx1qKC7qxtJbZf3nq4B8NW/FYk8e3j+5AIRMM JjYqjmwSArtnmb7iOzOFvbGEASPp+rQzEeoFvawO80PJUSL2oHHrhOYprumpKhTP WtBldBoT5P2EvRIaekp3QkLUl7zGSJR/mB2A9o/aFlTkFHIzqMPwBid8GWycwmsn CosRXKKVhoxCwBJj1u2NuDHOqy08CFRJMyUk7UXBoHTHa5FIwcG/LOJJQsPaTew4 5Hd3e+YQCwggak3yH6m1TNvid2+/ntqNbNn0KIZps7ua4iRcpUPlfotPV9lkBMmT 2rrZ1X4IRnWBsxMbc1EZh6wQowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNd11pPx 0PsZpY+EHr+A4zvwHkG8MB8GA1UdIwQYMBaAFB5cEH79A88T0hSjmmos6N2tMEcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDlDMy80NUNDODJDQzgw NjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4UFNGS09hYWl6bzNhMHdS dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hsd1FmdjBEenhQU0ZLT2FhaXpvM2Ewd1J3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDlDMy80NUNDODJDQzgwNjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4 UFNGS09hYWl6bzNhMHdSdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg0wX2/KdVjXaxSLzKqIo6ys1bH2g4qiCDxZkQ6Gxc/b2/kdsTunjI OuLW8b2BF2Pf0nmn/FVOm1ij0hLNWBO6/33o3+FXQY41ECWdLB75dLjYruOIrY8o 5mB/YsaUSBaQ7oOBCjnMKIbnh4EOOeZUlBYUjqtUc7SmHbyqpsJuu/tOMPjxrmfs ozCaqzLI3feQCyeg0n8yqe2fOvHwCnvgAZOIMtMWw4nZ2e0hLo7bYJBDo+d+FmLY 7InvVF5jM9GbeCNX31ktd5YARs5d/77h/7dZHdmHBo/wt0hhBzObriFeVR8awk89 M8YiGeG9Et6dwrwonxtDzQ8oZA47jdx7 -----END CERTIFICATE-----Generated at Sat Jun 14 19:03:59 2025 by rpki-client