$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft File: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft (raw, json) Hash identifier: nVFU2ijbDEVNcPA+yl7ejUJ2LjbvjWD20tdGmDwAhLw= Subject key identifier: 74:43:FF:48:50:F9:AC:8C:43:5A:C3:EE:B3:AC:81:0C:82:0A:AB:B0 Authority key identifier: 87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96 Certificate issuer: /CN=A91AEA8C/serialNumber=870B9CD2E41DAB05BD5527C9150E948959716696 Certificate serial: 1D38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft Manifest number: 1D21 Signing time: Mon 16 Jun 2025 16:14:18 +0000 Manifest this update: Mon 16 Jun 2025 16:14:17 +0000 Manifest next update: Mon 23 Jun 2025 16:14:17 +0000 Files and hashes: 1: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl (hash: 0cYIKmGWjHTaVvuHFumnG2vXm84MNEXnbSZW0P8pT00=) 2: F959A9A0F11011EB8E63FC73C4F9AE02.roa (hash: hUo9fC/hzy17W76vlbeXm/dftwyddFbiGAwqbp53ZVY=) 3: 2C9502D83C4011EA852C097BC4F9AE02.roa (hash: PqWYELxwluX51eG9Uh24A8xMydgivpkrMXOxcA+zOSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 16:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7480 (0x1d38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEA8C, serialNumber=870B9CD2E41DAB05BD5527C9150E948959716696 Validity Not Before: Jun 16 16:14:17 2025 GMT Not After : Jun 23 16:14:17 2025 GMT Subject: CN=685042d9-5459 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:46:5c:88:83:bc:1d:7d:b9:a3:ef:2c:93:2b: 3a:c0:27:c6:7a:a1:2c:a1:59:f7:ef:ea:48:49:62: 4d:fc:f3:17:a6:e4:71:da:60:7a:4b:da:13:db:b5: 14:b6:eb:4f:f5:c2:45:1b:07:56:51:a0:ac:1c:7d: 37:d1:05:3f:16:27:68:df:e9:68:ce:c7:c9:bb:15: 4b:0d:99:c7:32:75:ff:c8:83:1f:0a:26:6a:e1:4e: 43:8c:aa:3e:90:df:36:bd:70:d1:36:4a:8f:5e:1b: f8:d9:71:2f:51:73:2a:b3:ed:55:dc:99:20:1c:7d: 23:f2:c5:69:b6:44:12:17:ac:64:d1:70:b0:3a:49: 8b:ee:bf:44:ce:ac:af:88:79:5b:2d:1b:a9:33:73: df:71:1b:40:cc:1c:c3:ba:03:6d:53:90:c9:45:f7: b7:4c:9e:6f:e7:89:5c:3a:91:35:91:1b:db:77:f0: 8f:a1:8f:13:f9:f7:ea:d6:15:a1:e3:ba:74:ed:f2: 57:af:52:09:1b:57:d0:a3:da:55:b9:5b:e0:a6:f7: 01:99:fc:44:bb:ff:5c:36:8e:80:36:c2:92:3e:39: 95:3e:a0:db:1c:63:84:0d:42:15:e4:85:58:d3:6e: 82:b4:16:4e:5a:6a:7a:5d:6f:6b:63:8c:a3:5a:96: 83:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:43:FF:48:50:F9:AC:8C:43:5A:C3:EE:B3:AC:81:0C:82:0A:AB:B0 X509v3 Authority Key Identifier: keyid:87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:c6:60:11:90:72:77:50:ca:d2:d9:a0:0c:ff:62:1c:ec:e0: b5:1c:a3:0d:80:85:6c:ba:e4:30:8e:76:c8:24:98:c2:3b:0d: bd:d6:8c:e1:c2:93:c0:fe:b5:da:57:d6:88:09:22:05:60:49: 21:62:51:0f:d8:a6:db:a3:4d:49:98:51:58:28:b4:78:ca:b2: 1c:c8:cb:8f:2a:bf:66:6b:c8:53:73:b3:0f:5d:72:d1:29:cd: a6:68:b2:da:3e:67:37:28:16:63:6f:f0:06:e7:be:05:24:07: 22:81:67:6b:ad:44:7b:f8:dc:91:f7:26:bc:11:ac:eb:23:6f: c5:9c:07:e5:4c:84:ff:85:6c:b3:36:cb:16:59:55:3c:10:c9: f5:27:8b:c6:30:aa:44:d0:71:1b:35:2d:b2:b6:17:9f:b1:95: be:5f:47:a1:74:50:40:35:ff:47:cc:15:59:81:75:fd:54:70: e6:0b:2f:6e:77:79:2c:5d:d8:0a:10:85:74:12:3a:f4:84:25: 54:f4:e7:7e:fa:7c:5e:31:32:11:a0:e2:64:a1:26:39:27:8f: 7d:d2:fe:d1:c8:22:be:41:56:f4:b9:cd:b7:f8:a5:ef:5a:2e: 36:e5:c2:45:f3:f8:cd:25:9c:95:a8:23:e2:bb:2f:a2:aa:5f: d4:0f:56:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVBOEMxMTAvBgNVBAUTKDg3MEI5Q0QyRTQxREFCMDVCRDU1MjdDOTE1MEU5NDg5 NTk3MTY2OTYwHhcNMjUwNjE2MTYxNDE3WhcNMjUwNjIzMTYxNDE3WjAYMRYwFAYD VQQDEw02ODUwNDJkOS01NDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0ZciIO8HX25o+8skys6wCfGeqEsoVn37+pISWJN/PMXpuRx2mB6S9oT27UU tutP9cJFGwdWUaCsHH030QU/Fido3+lozsfJuxVLDZnHMnX/yIMfCiZq4U5DjKo+ kN82vXDRNkqPXhv42XEvUXMqs+1V3JkgHH0j8sVptkQSF6xk0XCwOkmL7r9Ezqyv iHlbLRupM3PfcRtAzBzDugNtU5DJRfe3TJ5v54lcOpE1kRvbd/CPoY8T+ffq1hWh 47p07fJXr1IJG1fQo9pVuVvgpvcBmfxEu/9cNo6ANsKSPjmVPqDbHGOEDUIV5IVY 026CtBZOWmp6XW9rY4yjWpaDVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRD/0hQ +ayMQ1rD7rOsgQyCCquwMB8GA1UdIwQYMBaAFIcLnNLkHasFvVUnyRUOlIlZcWaW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUE4Qy9GMjdCOUNERUJC ODYxMUU2OEZGNTBDNTdDNEY5QUUwMi9od3VjMHVRZHF3VzlWU2ZKRlE2VWlWbHha cFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h3dWMwdVFkcXdXOVZTZkpGUTZVaVZseFpwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUE4Qy9GMjdCOUNERUJCODYxMUU2OEZGNTBDNTdDNEY5QUUwMi9od3VjMHVRZHF3 VzlWU2ZKRlE2VWlWbHhacFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATxmARkHJ3UMrS2aAM/2Ic7OC1HKMNgIVsuuQwjnbIJJjCOw291ozh wpPA/rXaV9aICSIFYEkhYlEP2Kbbo01JmFFYKLR4yrIcyMuPKr9ma8hTc7MPXXLR Kc2maLLaPmc3KBZjb/AG574FJAcigWdrrUR7+NyR9ya8EazrI2/FnAflTIT/hWyz NssWWVU8EMn1J4vGMKpE0HEbNS2ythefsZW+X0ehdFBANf9HzBVZgXX9VHDmCy9u d3ksXdgKEIV0Ejr0hCVU9Od++nxeMTIRoOJkoSY5J4990v7RyCK+QVb0uc23+KXv Wi425cJF8/jNJZyVqCPiuy+iql/UD1a0 -----END CERTIFICATE-----Generated at Wed Jun 18 14:35:28 2025 by rpki-client