$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft File: HWw-nEchLuSN-fVOZJCpphbUEYk.mft (raw, json) Hash identifier: gcYflO8VVexB533h+7Itwm+2/bRDui3i/lLES59qs4g= Subject key identifier: A9:29:11:3A:07:1E:86:5D:6A:43:0B:8E:48:C0:63:89:A4:08:0F:75 Authority key identifier: 1D:6C:3E:9C:47:21:2E:E4:8D:F9:F5:4E:64:90:A9:A6:16:D4:11:89 Certificate issuer: /CN=A91B6AEE/serialNumber=1D6C3E9C47212EE48DF9F54E6490A9A616D41189 Certificate serial: 0202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft Manifest number: 01FE Signing time: Thu 07 Aug 2025 02:47:59 +0000 Manifest this update: Thu 07 Aug 2025 02:47:59 +0000 Manifest next update: Thu 14 Aug 2025 02:47:59 +0000 Files and hashes: 1: HWw-nEchLuSN-fVOZJCpphbUEYk.crl (hash: 0dpSlQpTfYOkN/VHq2SWk0Hhj5TItq2uhQ4aqvzGRoU=) 2: 3B7794D2664A11EDB095B812C4F9AE02.roa (hash: ne9O+G9qSru/U2exZgVGXkHzQTflawcam407PNhnI+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.crl rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:47:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6AEE, serialNumber=1D6C3E9C47212EE48DF9F54E6490A9A616D41189 Validity Not Before: Aug 7 02:47:59 2025 GMT Not After : Aug 14 02:47:59 2025 GMT Subject: CN=689413df-dc73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a9:d5:df:6d:85:41:e9:9a:55:28:f8:43:cf: c1:57:12:ab:f2:47:ba:1d:3d:da:44:d9:1d:cb:b8: 40:17:02:22:81:b9:b7:8a:6c:0f:d9:85:bd:32:c0: c6:e3:79:3f:ce:ac:58:ec:4a:46:90:a9:0e:7d:73: 9c:2d:b5:c4:af:1c:70:59:ac:5b:f5:11:11:30:bd: 3b:45:4e:e1:2d:c4:94:8a:89:6e:c1:08:72:1a:0f: f7:be:07:56:cd:f5:f8:f7:77:cf:bd:45:f4:c1:ec: 6d:b8:81:e5:89:af:fc:b4:73:20:2a:38:44:37:85: e8:bd:2c:30:1c:96:48:3b:3a:5e:9b:d2:c9:ab:2a: 3e:c8:04:14:0d:2a:dd:7d:ad:78:b0:cd:7b:d1:16: ac:60:94:cf:81:84:3c:7c:57:61:c3:1f:e1:af:39: 30:49:d9:7f:3c:af:fc:33:c2:22:27:e5:67:9b:73: 15:fb:15:d3:c8:18:13:7c:fc:d5:c5:53:55:d4:6f: 35:75:67:a3:00:a6:fa:e8:a3:da:d3:68:eb:b8:e5: eb:83:fd:81:68:06:b5:b6:59:99:03:03:3a:28:85: 14:8d:2c:94:f1:46:d1:25:a4:cb:fc:6b:04:3c:2d: 71:13:b5:e8:ea:1c:a2:3c:90:13:fb:25:ce:90:ed: 6f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:29:11:3A:07:1E:86:5D:6A:43:0B:8E:48:C0:63:89:A4:08:0F:75 X509v3 Authority Key Identifier: keyid:1D:6C:3E:9C:47:21:2E:E4:8D:F9:F5:4E:64:90:A9:A6:16:D4:11:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:c8:b9:63:e3:02:6a:1f:88:c5:fd:96:c9:ef:a0:ba:63:90: 6c:4d:89:a4:da:13:07:69:b9:47:fb:48:64:eb:1d:56:a9:f2: bb:40:af:bb:c9:74:c4:9c:b2:01:3a:6a:5f:ec:1e:0a:56:9c: 8e:54:8d:44:59:ad:42:1a:c8:b3:81:8e:d6:a5:12:15:6e:bc: 25:03:94:4a:dd:56:b8:b1:48:04:38:50:c1:2f:33:a5:8c:7a: 20:c3:bf:c0:47:39:dc:12:5c:47:ba:15:b3:85:b3:2f:f6:c3: bd:ef:ae:0e:79:e6:c3:38:db:a3:7e:92:db:f9:49:46:5a:00: 5a:fd:42:d8:27:bb:6b:91:c9:30:42:f4:79:a3:a5:03:b6:e0: f6:14:c7:30:6d:f9:e2:d2:33:c0:4c:85:3d:bc:10:dd:28:27: 8e:b5:80:24:c7:ed:65:56:c5:70:8d:ad:19:b8:df:0c:98:b1: e4:2b:ee:22:4d:9c:03:82:65:5d:01:25:54:41:fa:80:74:da: aa:76:c9:91:90:c9:d4:2b:ad:8d:9c:88:4e:c8:76:94:1d:2c: f5:41:de:49:72:4b:20:0a:82:35:a0:d2:98:e8:12:11:9f:bf: 56:93:e9:a9:d0:5d:78:33:99:7f:09:51:2b:f1:eb:79:0e:bc: ae:0e:e3:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZBRUUxMTAvBgNVBAUTKDFENkMzRTlDNDcyMTJFRTQ4REY5RjU0RTY0OTBBOUE2 MTZENDExODkwHhcNMjUwODA3MDI0NzU5WhcNMjUwODE0MDI0NzU5WjAYMRYwFAYD VQQDEw02ODk0MTNkZi1kYzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn6nV322FQemaVSj4Q8/BVxKr8ke6HT3aRNkdy7hAFwIigbm3imwP2YW9MsDG 43k/zqxY7EpGkKkOfXOcLbXErxxwWaxb9RERML07RU7hLcSUioluwQhyGg/3vgdW zfX493fPvUX0wextuIHlia/8tHMgKjhEN4XovSwwHJZIOzpem9LJqyo+yAQUDSrd fa14sM170RasYJTPgYQ8fFdhwx/hrzkwSdl/PK/8M8IiJ+Vnm3MV+xXTyBgTfPzV xVNV1G81dWejAKb66KPa02jruOXrg/2BaAa1tlmZAwM6KIUUjSyU8UbRJaTL/GsE PC1xE7Xo6hyiPJAT+yXOkO1vAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkpEToH HoZdakMLjkjAY4mkCA91MB8GA1UdIwQYMBaAFB1sPpxHIS7kjfn1TmSQqaYW1BGJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkFFRS80RjMzMjg4MjY2 NDYxMUVEOEQyQzc1MEZDNEY5QUUwMi9IV3ctbkVjaEx1U04tZlZPWkpDcHBoYlVF WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXdy1uRWNoTHVTTi1mVk9aSkNwcGhiVUVZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkFFRS80RjMzMjg4MjY2NDYxMUVEOEQyQzc1MEZDNEY5QUUwMi9IV3ctbkVjaEx1 U04tZlZPWkpDcHBoYlVFWWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQyLlj4wJqH4jF/ZbJ76C6Y5BsTYmk2hMHablH+0hk6x1WqfK7QK+7 yXTEnLIBOmpf7B4KVpyOVI1EWa1CGsizgY7WpRIVbrwlA5RK3Va4sUgEOFDBLzOl jHogw7/ARzncElxHuhWzhbMv9sO9764OeebDONujfpLb+UlGWgBa/ULYJ7trkckw QvR5o6UDtuD2FMcwbfni0jPATIU9vBDdKCeOtYAkx+1lVsVwja0ZuN8MmLHkK+4i TZwDgmVdASVUQfqAdNqqdsmRkMnUK62NnIhOyHaUHSz1Qd5JcksgCoI1oNKY6BIR n79Wk+mp0F14M5l/CVEr8et5DryuDuMz -----END CERTIFICATE-----Generated at Sat Aug 9 02:57:50 2025 by rpki-client