$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft File: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft (raw, json) Hash identifier: yDSZ0W5q3XraBfcL8dxcrxoOA8hyKx05G82dmrMpV34= Subject key identifier: 53:EB:90:8A:89:4B:6B:5A:67:E2:24:56:38:8C:54:6F:C4:93:E8:3C Authority key identifier: 87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96 Certificate issuer: /CN=A91AEA8C/serialNumber=870B9CD2E41DAB05BD5527C9150E948959716696 Certificate serial: 1D57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft Manifest number: 1D3E Signing time: Fri 08 Aug 2025 16:17:45 +0000 Manifest this update: Fri 08 Aug 2025 16:17:44 +0000 Manifest next update: Fri 15 Aug 2025 16:17:44 +0000 Files and hashes: 1: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl (hash: zSe2tWOwvvHZrahUFU5PMM/5BdRKE1lsPtr+tcOZ4hg=) 2: F959A9A0F11011EB8E63FC73C4F9AE02.roa (hash: bD5fDxaaGSUwPwbrYDQw/+LS1pV4Lc6xbyyKLC5ox2c=) 3: 2C9502D83C4011EA852C097BC4F9AE02.roa (hash: T9CcmOYBnNKsJ74gzkX91oYJBjZ0iZKwkKctLlhYFiA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7511 (0x1d57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEA8C, serialNumber=870B9CD2E41DAB05BD5527C9150E948959716696 Validity Not Before: Aug 8 16:17:44 2025 GMT Not After : Aug 15 16:17:44 2025 GMT Subject: CN=68962329-940a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:82:31:c9:54:8e:cc:bc:33:e3:12:2b:98:ee: 0a:c2:db:ef:0a:1d:4f:16:8b:34:a6:f7:a2:ef:66: 2d:7c:73:66:82:42:ee:08:ea:33:93:c4:7b:3d:91: e4:ac:7f:69:46:ac:6f:67:04:30:24:73:97:bc:80: 6a:e9:ea:d9:87:8a:0d:f8:17:40:87:42:1f:51:30: f0:15:68:93:3e:4f:d2:81:d0:97:1b:a0:62:3e:9e: 57:74:6d:18:19:b0:a3:f6:c0:c0:22:3e:ca:b1:c6: 6a:39:a3:4d:fd:74:bd:3e:1c:23:bf:8d:ba:1b:75: 01:d1:92:e1:1d:e3:31:98:f8:9f:a8:63:82:f3:ac: f6:c5:03:1b:7c:e2:df:41:c6:42:f6:d0:2b:ad:14: e9:4d:aa:1d:aa:18:de:14:6b:c8:3e:77:6c:d7:58: 39:95:56:69:51:3c:cb:50:84:7d:4e:4f:68:6a:bb: 5c:97:8d:4a:30:fa:da:46:c3:7f:a4:67:58:9b:c9: 0f:4b:66:38:39:b7:5a:56:e1:e3:a8:ce:a6:79:3f: 36:f6:62:e5:d7:e4:10:75:e5:eb:15:90:fb:a2:2e: b9:db:86:64:3a:9e:d2:2e:1b:a1:25:5d:96:96:2e: 5b:14:d9:fc:84:5c:70:83:57:f1:0d:e8:2f:ab:c8: e7:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:EB:90:8A:89:4B:6B:5A:67:E2:24:56:38:8C:54:6F:C4:93:E8:3C X509v3 Authority Key Identifier: keyid:87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:b7:51:60:d1:1c:7f:0c:34:39:97:d9:bd:1d:8d:26:0b:8c: 23:7e:58:76:04:5a:b6:bc:14:c5:0e:c9:49:aa:2a:8c:ed:8a: e5:96:38:d9:cd:80:32:a2:5a:d3:19:24:ff:4f:1e:65:30:fa: a1:2a:15:8c:52:5a:0d:4e:23:a1:47:8c:e4:a0:28:b0:aa:7d: fa:3a:df:dc:6a:70:d1:93:c6:59:f9:b7:c1:a9:f6:9f:ed:9b: 40:f1:d4:be:74:0b:cb:44:da:95:3b:cb:67:84:56:b1:49:74: 6b:ea:39:50:98:4d:49:ad:6c:e1:f9:52:5c:9f:e2:7b:3b:8a: 45:e2:13:41:12:fe:d7:bb:39:8b:4f:f6:51:99:d2:0b:05:4b: 1b:be:53:ba:ea:45:12:9d:79:ac:1d:65:ea:3a:f4:b5:78:49: 3d:a0:18:9b:47:52:83:1e:e4:a6:85:e3:cf:32:22:84:b5:a7: 81:60:d3:d0:8a:85:21:17:3b:f2:05:65:42:f0:60:de:1e:dc: 5b:84:c8:ae:cc:d5:3a:e5:01:df:34:0a:3a:4c:37:a4:f7:be: c6:86:aa:a5:b0:f0:fd:8c:44:4b:5f:ae:dd:ff:e7:3f:68:71: e6:ae:62:7a:cb:b5:04:34:83:83:02:87:20:25:8e:d1:dd:eb: 67:18:6d:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVBOEMxMTAvBgNVBAUTKDg3MEI5Q0QyRTQxREFCMDVCRDU1MjdDOTE1MEU5NDg5 NTk3MTY2OTYwHhcNMjUwODA4MTYxNzQ0WhcNMjUwODE1MTYxNzQ0WjAYMRYwFAYD VQQDEw02ODk2MjMyOS05NDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5IIxyVSOzLwz4xIrmO4KwtvvCh1PFos0pvei72YtfHNmgkLuCOozk8R7PZHk rH9pRqxvZwQwJHOXvIBq6erZh4oN+BdAh0IfUTDwFWiTPk/SgdCXG6BiPp5XdG0Y GbCj9sDAIj7KscZqOaNN/XS9Phwjv426G3UB0ZLhHeMxmPifqGOC86z2xQMbfOLf QcZC9tArrRTpTaodqhjeFGvIPnds11g5lVZpUTzLUIR9Tk9oartcl41KMPraRsN/ pGdYm8kPS2Y4ObdaVuHjqM6meT829mLl1+QQdeXrFZD7oi6524ZkOp7SLhuhJV2W li5bFNn8hFxwg1fxDegvq8jn3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPrkIqJ S2taZ+IkVjiMVG/Ek+g8MB8GA1UdIwQYMBaAFIcLnNLkHasFvVUnyRUOlIlZcWaW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUE4Qy9GMjdCOUNERUJC ODYxMUU2OEZGNTBDNTdDNEY5QUUwMi9od3VjMHVRZHF3VzlWU2ZKRlE2VWlWbHha cFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h3dWMwdVFkcXdXOVZTZkpGUTZVaVZseFpwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUE4Qy9GMjdCOUNERUJCODYxMUU2OEZGNTBDNTdDNEY5QUUwMi9od3VjMHVRZHF3 VzlWU2ZKRlE2VWlWbHhacFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTt1Fg0Rx/DDQ5l9m9HY0mC4wjflh2BFq2vBTFDslJqiqM7YrlljjZ zYAyolrTGST/Tx5lMPqhKhWMUloNTiOhR4zkoCiwqn36Ot/canDRk8ZZ+bfBqfaf 7ZtA8dS+dAvLRNqVO8tnhFaxSXRr6jlQmE1JrWzh+VJcn+J7O4pF4hNBEv7XuzmL T/ZRmdILBUsbvlO66kUSnXmsHWXqOvS1eEk9oBibR1KDHuSmhePPMiKEtaeBYNPQ ioUhFzvyBWVC8GDeHtxbhMiuzNU65QHfNAo6TDek977GhqqlsPD9jERLX67d/+c/ aHHmrmJ6y7UENIODAocgJY7R3etnGG0X -----END CERTIFICATE-----Generated at Sat Aug 9 14:18:50 2025 by rpki-client