$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft File: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft (raw, json) Hash identifier: R0n88eOC9NMxK5eddgq29exb3+jKBDPDI3B+gGsZDVg= Subject key identifier: 36:33:15:76:7C:7E:C0:CE:61:01:66:3B:EA:F5:08:EB:90:67:46:95 Authority key identifier: 86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 Certificate issuer: /CN=A91A1EE0/serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Certificate serial: 34E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft Manifest number: 34BC Signing time: Sat 14 Jun 2025 14:33:25 +0000 Manifest this update: Sat 14 Jun 2025 14:33:24 +0000 Manifest next update: Sat 21 Jun 2025 14:33:24 +0000 Files and hashes: 1: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl (hash: GQFLdR892HtCU9e2zEcPEhUXCq0NeoRpJJlRUCtwfmc=) 2: 4EF85CFEEE4211E9B52B674DC4F9AE02.roa (hash: d0P/BKes6SbSKV4r9lK1XjzU3f1Gv4sq1ihkJ2akzQw=) 3: 44E2CCAEBA9811EFBA471E62C4F9AE02.roa (hash: 1oolI04ZrhXaYmXgZvqSiMymHhXrDoJjC9cjKEp6I10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:33:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13543 (0x34e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1EE0, serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Validity Not Before: Jun 14 14:33:24 2025 GMT Not After : Jun 21 14:33:24 2025 GMT Subject: CN=684d8835-50a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:76:e0:f3:57:0f:82:eb:87:04:3d:75:04:69: 56:e2:9a:9b:1d:d8:b7:cf:66:47:dc:f3:71:41:38: 18:0a:23:8a:5e:4c:dc:d7:b4:a5:6a:11:7d:9e:2a: 1a:61:15:2c:74:5e:1c:8d:f4:b3:0b:b7:62:71:8e: e9:b8:e5:d5:80:d2:aa:16:88:49:60:db:90:64:36: 0e:cd:6a:db:70:3d:2a:8d:a0:d6:af:bf:22:bd:7e: ad:1f:2c:a6:e9:81:e0:18:fe:14:5e:66:c9:a8:29: 67:cc:92:28:0b:79:27:32:13:f8:48:94:a4:27:a7: b0:56:27:55:3c:b6:de:ff:9e:8c:60:7d:ec:e0:cc: 0f:10:8c:9c:12:f2:e7:fc:89:f1:66:59:d3:1c:a4: d6:8b:2c:f4:64:16:b3:2b:ec:c0:f7:f9:be:af:a0: ef:e6:d8:e3:54:69:e2:8e:91:00:cc:10:90:c1:17: 7e:47:f7:38:23:37:ab:4b:22:eb:66:82:fb:91:bc: 21:7e:0b:ae:36:78:3b:85:db:66:be:62:7b:b5:c7: 4d:56:e8:6a:f3:bb:55:82:6d:fd:67:07:52:e6:d4: 18:44:09:a9:c0:c4:6d:cf:ea:61:af:74:52:a4:20: a3:bd:a2:d5:42:1a:f6:14:49:64:df:d0:e5:36:08: 85:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:33:15:76:7C:7E:C0:CE:61:01:66:3B:EA:F5:08:EB:90:67:46:95 X509v3 Authority Key Identifier: keyid:86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:7d:ee:99:86:8d:53:51:7c:d6:51:7c:94:48:da:14:d4:bb: 6c:88:25:62:24:05:2c:fb:1f:72:ea:83:8e:b4:41:6b:ce:91: 56:9d:93:17:d1:7f:b5:54:55:72:71:96:5e:94:35:3d:9d:5a: 05:a5:cf:24:ad:85:ff:a0:1e:14:c0:37:34:5a:f8:c8:ea:58: 37:3b:1d:0b:6c:b4:31:35:3f:33:0a:cb:e1:17:38:f6:61:6f: 58:d9:56:83:c5:0a:16:12:0e:6c:46:2b:67:f9:31:87:dc:e9: c5:9d:c5:76:48:60:9e:de:7f:ec:65:80:66:9f:19:56:07:68: 69:b5:15:82:87:24:e2:dc:ce:e4:59:13:a7:6b:a4:0a:4a:e5: 2f:ad:3f:42:97:06:3e:0e:db:93:c2:21:3e:1a:71:ff:22:5d: 81:f6:86:24:4c:2b:df:d0:cc:34:ed:fd:5f:cb:77:46:a4:9d: e8:ae:7a:8e:77:24:7b:cf:27:a2:16:4f:d8:74:70:15:84:31: 6b:16:0b:73:4a:ad:f0:04:1a:77:dc:dd:f1:b5:db:03:bc:1d: 98:d3:7b:c9:cf:1b:89:f8:7a:b9:4c:11:e1:e9:44:b5:c4:fa: f9:e1:95:86:11:c7:bf:0f:60:0a:ec:45:92:80:75:1a:b3:6a: 2f:ed:73:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFFRTAxMTAvBgNVBAUTKDg2MEMwOTA0Q0VEN0JCMEQxRDk3QjI5MkZEQjY2MkU4 QjlBOEFGRjAwHhcNMjUwNjE0MTQzMzI0WhcNMjUwNjIxMTQzMzI0WjAYMRYwFAYD VQQDEw02ODRkODgzNS01MGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmHbg81cPguuHBD11BGlW4pqbHdi3z2ZH3PNxQTgYCiOKXkzc17SlahF9nioa YRUsdF4cjfSzC7dicY7puOXVgNKqFohJYNuQZDYOzWrbcD0qjaDWr78ivX6tHyym 6YHgGP4UXmbJqClnzJIoC3knMhP4SJSkJ6ewVidVPLbe/56MYH3s4MwPEIycEvLn /InxZlnTHKTWiyz0ZBazK+zA9/m+r6Dv5tjjVGnijpEAzBCQwRd+R/c4IzerSyLr ZoL7kbwhfguuNng7hdtmvmJ7tcdNVuhq87tVgm39ZwdS5tQYRAmpwMRtz+phr3RS pCCjvaLVQhr2FElk39DlNgiFAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYzFXZ8 fsDOYQFmO+r1COuQZ0aVMB8GA1UdIwQYMBaAFIYMCQTO17sNHZeykv22Yui5qK/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUVFMC9EMjM2MzQ0NjFE OEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3MGRsN0tTX2JaaTZMbW9y X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnd0pCTTdYdXcwZGw3S1NfYlppNkxtb3JfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUVFMC9EMjM2MzQ0NjFEOEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3 MGRsN0tTX2JaaTZMbW9yX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAffe6Zho1TUXzWUXyUSNoU1LtsiCViJAUs+x9y6oOOtEFrzpFWnZMX 0X+1VFVycZZelDU9nVoFpc8krYX/oB4UwDc0WvjI6lg3Ox0LbLQxNT8zCsvhFzj2 YW9Y2VaDxQoWEg5sRitn+TGH3OnFncV2SGCe3n/sZYBmnxlWB2hptRWChyTi3M7k WROna6QKSuUvrT9ClwY+DtuTwiE+GnH/Il2B9oYkTCvf0Mw07f1fy3dGpJ3ornqO dyR7zyeiFk/YdHAVhDFrFgtzSq3wBBp33N3xtdsDvB2Y03vJzxuJ+Hq5TBHh6US1 xPr54ZWGEce/D2AK7EWSgHUas2ov7XO8 -----END CERTIFICATE-----Generated at Sun Jun 15 08:41:38 2025 by rpki-client