$ rpki-client -vvf rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft File: HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft (raw, json) Hash identifier: 2DS8gfttPNOJ3Jwdv8HDY3FQYVVEHrUWtIGjgDaRXu0= Subject key identifier: 5A:F5:5C:B2:96:A6:8B:DF:A5:81:87:8C:77:A6:A4:FB:BF:3F:CD:AF Authority key identifier: 1D:63:41:6C:47:3B:0C:09:12:BD:AB:37:10:27:01:09:5F:C6:C3:5A Certificate issuer: /CN=A91707D0/serialNumber=1D63416C473B0C0912BDAB37102701095FC6C35A Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft Manifest number: 30 Signing time: Fri 13 Jun 2025 06:35:45 +0000 Manifest this update: Fri 13 Jun 2025 06:35:45 +0000 Manifest next update: Fri 20 Jun 2025 06:35:45 +0000 Files and hashes: 1: HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl (hash: Gqj73ulnKBR9hjPGYGMFfY8MSc0M6vkUy0QF5YVy5HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91707D0, serialNumber=1D63416C473B0C0912BDAB37102701095FC6C35A Validity Not Before: Jun 13 06:35:45 2025 GMT Not After : Jun 20 06:35:45 2025 GMT Subject: CN=684bc6c1-b809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:77:d0:82:ba:a2:27:9e:45:ca:76:f1:21:eb: 45:16:cc:3e:42:7e:33:38:df:7b:f3:d1:bd:f6:c4: 3d:81:96:61:1d:ba:a2:1e:96:8e:ef:06:dc:0d:2d: c9:da:b1:d0:09:fe:c1:f5:2c:b9:36:c0:16:07:fc: 33:07:25:1d:55:ae:64:d9:2d:0d:99:1e:48:65:15: 97:4d:45:7e:06:25:28:6e:48:8c:7c:89:61:e7:ad: c1:63:05:b5:6c:76:a8:ad:69:77:ad:d1:ff:48:25: 37:7e:b9:fa:73:1e:d0:8a:74:3e:81:06:72:a4:4f: c2:28:78:d3:53:a8:d6:c7:ae:a6:5c:c1:35:33:ff: 8f:b2:10:ba:39:53:45:5a:d1:72:0e:15:5e:88:7f: 75:23:2b:ba:a7:b1:d7:35:6d:b4:67:13:1c:59:e7: 74:a2:98:f8:c7:da:12:c4:a8:58:66:11:19:f7:11: 50:dc:39:83:f2:f2:8a:a5:48:73:8e:cf:4b:25:12: c3:f8:76:b6:f1:8b:bf:54:df:10:a2:76:66:7d:09: ff:db:61:02:c5:b6:ff:0c:de:92:2c:c2:09:db:14: 56:41:b9:71:2c:cd:98:1f:44:eb:9a:dd:6e:22:14: 03:50:29:59:e3:0f:87:fb:91:b9:34:dd:13:3a:88: 5c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:F5:5C:B2:96:A6:8B:DF:A5:81:87:8C:77:A6:A4:FB:BF:3F:CD:AF X509v3 Authority Key Identifier: keyid:1D:63:41:6C:47:3B:0C:09:12:BD:AB:37:10:27:01:09:5F:C6:C3:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:a2:61:bc:26:42:64:5c:0d:6f:ef:53:ca:87:95:14:2c:06: 49:b4:44:4e:e3:3f:d3:36:2a:50:8d:76:da:34:6d:cb:7e:a3: 7b:3b:13:c6:e9:0c:b8:ff:5a:90:97:1f:08:e0:65:f4:c7:75: 8a:04:7b:b4:5c:01:ba:b7:dc:76:21:29:4d:ca:ea:d1:9c:49: 0d:d8:5c:f3:a2:9f:b6:05:7c:bf:47:65:72:73:1e:9e:c8:66: 79:1c:28:98:61:38:37:b4:90:1b:dc:b1:cc:99:dc:fd:d9:99: 6d:3a:c3:9f:57:a4:22:9e:92:df:4b:01:ad:bc:b9:b6:d5:45: cb:2b:4c:1a:c3:10:fa:72:7a:66:9f:e3:fe:40:df:fc:7f:f0: c2:98:8e:a7:48:e1:5b:7d:e3:82:5f:10:bb:aa:53:ac:0e:53: 49:8e:28:11:4e:5d:66:dd:a6:63:e2:32:84:7c:0a:64:c1:4c: f7:47:11:b3:b7:28:c6:79:21:ca:61:18:ad:f1:70:df:75:63: 91:db:c5:82:ff:00:a7:03:78:aa:24:93:67:a5:48:a5:5b:40: 40:ed:bf:ef:b2:b4:1f:25:34:cb:b9:10:89:43:5e:b6:64:79: e3:1c:15:5c:6c:0b:79:e8:f5:21:f3:67:cd:a9:1b:c7:97:5a: fe:ec:a3:f7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDdEMDExMC8GA1UEBRMoMUQ2MzQxNkM0NzNCMEMwOTEyQkRBQjM3MTAyNzAxMDk1 RkM2QzM1QTAeFw0yNTA2MTMwNjM1NDVaFw0yNTA2MjAwNjM1NDVaMBgxFjAUBgNV BAMTDTY4NGJjNmMxLWI4MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBd9CCuqInnkXKdvEh60UWzD5CfjM433vz0b32xD2BlmEduqIelo7vBtwNLcna sdAJ/sH1LLk2wBYH/DMHJR1VrmTZLQ2ZHkhlFZdNRX4GJShuSIx8iWHnrcFjBbVs dqitaXet0f9IJTd+ufpzHtCKdD6BBnKkT8IoeNNTqNbHrqZcwTUz/4+yELo5U0Va 0XIOFV6If3UjK7qnsdc1bbRnExxZ53SimPjH2hLEqFhmERn3EVDcOYPy8oqlSHOO z0slEsP4drbxi79U3xCidmZ9Cf/bYQLFtv8M3pIswgnbFFZBuXEszZgfROua3W4i FANQKVnjD4f7kbk03RM6iFz/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWvVcspam i9+lgYeMd6ak+78/za8wHwYDVR0jBBgwFoAUHWNBbEc7DAkSvas3ECcBCV/Gw1ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwN0QwLzY1QjY4RTk2MDA3 MjExRjBCMzYzREY1RUM0RjlBRTAyL0hXTkJiRWM3REFrU3ZhczNFQ2NCQ1ZfR3cx by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFdOQmJFYzdEQWtTdmFzM0VDY0JDVl9HdzFvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw N0QwLzY1QjY4RTk2MDA3MjExRjBCMzYzREY1RUM0RjlBRTAyL0hXTkJiRWM3REFr U3ZhczNFQ2NCQ1ZfR3cxby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJeiYbwmQmRcDW/vU8qHlRQsBkm0RE7jP9M2KlCNdto0bct+o3s7E8bp DLj/WpCXHwjgZfTHdYoEe7RcAbq33HYhKU3K6tGcSQ3YXPOin7YFfL9HZXJzHp7I ZnkcKJhhODe0kBvcscyZ3P3ZmW06w59XpCKekt9LAa28ubbVRcsrTBrDEPpyemaf 4/5A3/x/8MKYjqdI4Vt944JfELuqU6wOU0mOKBFOXWbdpmPiMoR8CmTBTPdHEbO3 KMZ5IcphGK3xcN91Y5HbxYL/AKcDeKokk2elSKVbQEDtv++ytB8lNMu5EIlDXrZk eeMcFVxsC3no9SHzZ82pG8eXWv7so/c= -----END CERTIFICATE-----Generated at Sat Jun 14 17:42:20 2025 by rpki-client