$ rpki-client -vvf rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft File: hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft (raw, json) Hash identifier: CHWwfXkTIGaw92YxNEcjwUYWcvISXHmwzpY3vY/dv6A= Subject key identifier: EF:5C:94:95:E6:DE:0E:E4:B0:0E:BA:56:AE:90:A6:7E:67:20:1C:61 Authority key identifier: 84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D Certificate issuer: /CN=A9198767/serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft Manifest number: 0128 Signing time: Thu 19 Jun 2025 04:02:01 +0000 Manifest this update: Thu 19 Jun 2025 04:02:00 +0000 Manifest next update: Thu 26 Jun 2025 04:02:00 +0000 Files and hashes: 1: hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl (hash: X4nBl1VlCpNHKyiyTzfYcAnmHaDWIOu5bZm2eoKBiJc=) 2: 7BABB4BE884C11EE81C71A38C4F9AE02.roa (hash: wXMGwG7lxViwNnrJDB749sBIiL2piUFxteIQBHCkVTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198767, serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Validity Not Before: Jun 19 04:02:00 2025 GMT Not After : Jun 26 04:02:00 2025 GMT Subject: CN=68538bb9-4ea1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8e:36:00:31:92:1b:12:6d:2c:db:9f:ee:9d: d1:ad:77:24:a9:aa:36:29:37:c7:78:af:a9:3f:de: 4b:c9:13:48:8c:3b:7b:07:20:b2:ac:f7:db:6a:0c: e8:6e:ff:33:a1:4d:5a:0f:d7:6b:99:8a:c9:ad:b4: 5e:c1:68:a7:c7:06:98:3a:69:a6:f4:19:db:21:f3: 14:1f:7b:a4:4d:e6:f9:e3:a6:b6:8a:a5:06:f9:2a: ae:2a:e4:0a:0b:60:17:89:48:6c:27:7a:d2:66:22: 2b:c6:4d:a2:f4:9e:a5:7a:79:07:13:18:72:a4:38: bd:1b:f5:30:0a:e3:3a:51:5d:3e:c7:09:c5:e4:5e: 1e:1a:82:0e:9e:3a:06:c2:b8:f7:49:3e:54:20:f4: 5e:1b:1e:9a:fc:87:55:5d:4c:ed:8e:1b:2a:33:ee: 34:45:56:42:02:4f:82:b3:30:bb:d2:fc:8c:c4:85: 70:4c:8d:d9:ab:5e:e0:ca:bf:8c:b0:aa:3c:81:e9: 99:3a:b9:7b:3d:b4:e1:3a:95:ba:0b:ac:91:c8:de: 66:66:82:e9:63:08:9b:23:92:b0:37:96:f5:f1:40: 0d:55:59:f2:17:6b:dc:58:2d:d4:7b:4a:70:74:c8: 1c:8a:f4:ce:9d:3e:19:5c:2a:50:42:55:56:23:5a: e3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:5C:94:95:E6:DE:0E:E4:B0:0E:BA:56:AE:90:A6:7E:67:20:1C:61 X509v3 Authority Key Identifier: keyid:84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:1e:0f:16:45:0b:3d:a7:a3:4c:c5:c3:f5:f6:33:6b:f6:db: a6:19:9c:42:81:98:c5:23:af:91:67:07:8a:95:c2:cb:db:3f: eb:4a:e1:15:b6:4e:69:d4:2a:43:61:8a:26:84:80:c4:93:65: 2b:a3:4f:10:c9:aa:87:23:88:6c:26:ff:09:2e:e6:03:e3:35: 26:ae:34:80:ea:d3:98:45:59:83:68:98:7f:68:88:6f:33:92: de:33:c2:28:b1:4b:a2:32:9e:de:51:79:9e:ae:df:ee:c5:c5: e9:db:00:00:25:42:6c:ab:fd:05:90:d4:92:d6:21:b6:7e:5a: 09:58:d0:08:bb:ad:df:de:97:e7:08:84:f2:25:37:28:bd:73: ce:c4:fe:c9:d4:f6:bc:ac:d5:50:9a:b9:2f:5a:9a:39:de:64: 47:ad:c8:d6:cc:dd:6a:cb:83:79:55:88:8c:5a:03:83:18:7e: 96:ba:25:7e:64:f3:65:42:3f:3e:db:b0:3e:da:13:69:03:d1: db:5e:98:5c:ae:7b:53:54:1f:0d:14:b4:5d:94:63:63:fb:f8: 0d:6b:aa:9d:07:9c:2f:40:f5:8d:d8:8c:24:74:88:a5:1f:21: 8c:b4:ac:b6:f4:06:ca:c6:2c:75:50:cd:76:7e:19:8e:da:26: c3:3b:99:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3NjcxMTAvBgNVBAUTKDg0NjhCMDIxOTdGQzlCNzcwQUY4NDA1NTdCRjQxNUEw QjYxMzgyMEQwHhcNMjUwNjE5MDQwMjAwWhcNMjUwNjI2MDQwMjAwWjAYMRYwFAYD VQQDEw02ODUzOGJiOS00ZWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwI42ADGSGxJtLNuf7p3RrXckqao2KTfHeK+pP95LyRNIjDt7ByCyrPfbagzo bv8zoU1aD9drmYrJrbRewWinxwaYOmmm9BnbIfMUH3ukTeb546a2iqUG+SquKuQK C2AXiUhsJ3rSZiIrxk2i9J6lenkHExhypDi9G/UwCuM6UV0+xwnF5F4eGoIOnjoG wrj3ST5UIPReGx6a/IdVXUztjhsqM+40RVZCAk+CszC70vyMxIVwTI3Zq17gyr+M sKo8gemZOrl7PbThOpW6C6yRyN5mZoLpYwibI5KwN5b18UANVVnyF2vcWC3Ue0pw dMgcivTOnT4ZXCpQQlVWI1rjOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO9clJXm 3g7ksA66Vq6Qpn5nIBxhMB8GA1UdIwQYMBaAFIRosCGX/Jt3CvhAVXv0FaC2E4IN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc2Ny83QkM2MUQ4Mjg4 NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0zY0stRUJWZV9RVm9MWVRn ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hHaXdJWmY4bTNjSy1FQlZlX1FWb0xZVGdnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc2Ny83QkM2MUQ4Mjg4NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0z Y0stRUJWZV9RVm9MWVRnZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBHg8WRQs9p6NMxcP19jNr9tumGZxCgZjFI6+RZweKlcLL2z/rSuEV tk5p1CpDYYomhIDEk2Uro08QyaqHI4hsJv8JLuYD4zUmrjSA6tOYRVmDaJh/aIhv M5LeM8IosUuiMp7eUXmert/uxcXp2wAAJUJsq/0FkNSS1iG2floJWNAIu63f3pfn CITyJTcovXPOxP7J1Pa8rNVQmrkvWpo53mRHrcjWzN1qy4N5VYiMWgODGH6WuiV+ ZPNlQj8+27A+2hNpA9HbXphcrntTVB8NFLRdlGNj+/gNa6qdB5wvQPWN2IwkdIil HyGMtKy29AbKxix1UM12fhmO2ibDO5lW -----END CERTIFICATE-----Generated at Fri Jun 20 07:14:02 2025 by rpki-client