$ rpki-client -vvf rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft File: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft (raw, json) Hash identifier: anwGj/e3ZPjz9qM1HR7Jy09g157W+GHa6pmpoAqnvsY= Subject key identifier: AD:81:65:A4:D6:47:91:BA:DA:C7:51:69:D4:AD:D8:F4:98:A4:52:04 Authority key identifier: 1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 Certificate issuer: /CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft Manifest number: 0113 Signing time: Sat 19 Jul 2025 05:09:48 +0000 Manifest this update: Sat 19 Jul 2025 05:09:47 +0000 Manifest next update: Sat 26 Jul 2025 05:09:47 +0000 Files and hashes: 1: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl (hash: rDlHgr1CsSGbL/BlrZZ6JG31Gl8Q37WW++E5hIifiyE=) 2: 4AFD4994CDD011EEA5534481C4F9AE02.roa (hash: 5W+7nQ6sUflibilCBlXCdge8iT2G6A6aLqY201MPVEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:09:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178C1E, serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Validity Not Before: Jul 19 05:09:47 2025 GMT Not After : Jul 26 05:09:47 2025 GMT Subject: CN=687b289c-b548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:74:33:50:7c:8c:88:f6:b7:52:c2:74:99:f9: ef:11:58:13:5d:f7:1c:bd:cf:88:5c:79:6b:b7:60: e9:84:01:3f:38:b4:69:01:6b:2a:a6:43:f3:3f:db: 74:5e:1f:c5:0f:8f:56:2f:5f:25:cf:f8:04:e9:97: 27:1b:ce:41:54:01:55:fb:69:80:bc:7b:7d:a9:41: 3c:8f:5a:df:94:2f:8d:50:15:b3:e1:0f:9e:11:78: 52:9b:ca:d0:7e:7a:3b:bc:ad:3d:69:bd:db:9c:4e: 33:a6:8c:62:1f:aa:0f:2e:df:60:00:43:76:b9:7c: ec:80:e1:e1:fe:fc:11:29:eb:3f:7d:2b:cc:89:3c: dc:1a:c0:46:e5:61:e2:a2:5b:e6:ca:dd:e3:c1:9d: d2:59:9f:06:f6:62:02:c3:e4:57:66:f6:de:91:53: 3b:64:53:0c:57:f2:e6:da:58:1e:35:a3:3e:47:f2: 9d:fd:16:bd:54:a4:47:13:71:3d:00:ad:05:45:7c: b4:78:9a:00:3f:a7:14:0b:ac:ed:0c:4f:df:81:26: ad:56:af:48:b7:96:b2:08:fa:44:b9:b9:4f:d1:b1: 4d:e7:ed:6f:ba:7d:f5:2d:01:da:63:68:ff:08:08: 3f:d6:be:d2:87:96:73:41:37:86:3a:1b:1a:b4:52: cb:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:81:65:A4:D6:47:91:BA:DA:C7:51:69:D4:AD:D8:F4:98:A4:52:04 X509v3 Authority Key Identifier: keyid:1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:f0:26:0e:8d:e9:67:01:e6:d8:db:f6:26:98:b4:f0:e2:7a: 52:41:91:c0:b3:1d:6f:aa:cf:15:17:d4:ab:06:4b:0e:96:de: 73:e9:37:fb:00:c5:13:bd:14:89:e5:c9:66:ca:16:3d:6c:4e: eb:ef:2c:2c:30:c3:05:8e:17:ce:53:01:45:d6:1b:66:08:46: 64:5c:8e:0a:c0:59:8d:f6:72:f1:ee:d0:d0:70:cd:83:e4:01: 67:9e:f7:2b:0c:87:66:a5:65:92:4b:8c:d5:b2:50:67:da:be: 01:61:e3:0e:f1:42:7b:3b:16:b9:20:88:4d:94:86:7e:93:ec: 31:3f:f9:24:6a:28:99:8e:d1:81:52:44:9f:bc:4d:14:8e:d2: 8a:0c:49:a5:05:f3:d2:ce:aa:fa:82:7a:fb:45:b7:c3:3b:5c: 7b:05:d0:5f:ec:e7:52:28:41:7a:a8:6a:44:2b:b5:07:e7:b3: 22:3d:8d:97:17:8f:3d:cb:95:41:21:6b:37:90:b6:34:0b:36: 4b:27:8a:31:fb:ed:bb:ca:57:b6:be:16:c8:e9:b0:5b:66:ab: 73:a5:ad:7c:c7:1d:9f:32:10:41:27:1d:1f:68:12:69:15:a3: dc:0e:40:ee:29:bb:a1:da:df:d4:c5:c0:80:fa:3f:a1:c8:8f: 86:e7:8f:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhDMUUxMTAvBgNVBAUTKDFERjlDMENFRjlBNzdEQ0QxNUJCNTFGOTNGRDM0Mjk5 OUJFMTE2NTgwHhcNMjUwNzE5MDUwOTQ3WhcNMjUwNzI2MDUwOTQ3WjAYMRYwFAYD VQQDEw02ODdiMjg5Yy1iNTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3QzUHyMiPa3UsJ0mfnvEVgTXfccvc+IXHlrt2DphAE/OLRpAWsqpkPzP9t0 Xh/FD49WL18lz/gE6ZcnG85BVAFV+2mAvHt9qUE8j1rflC+NUBWz4Q+eEXhSm8rQ fno7vK09ab3bnE4zpoxiH6oPLt9gAEN2uXzsgOHh/vwRKes/fSvMiTzcGsBG5WHi olvmyt3jwZ3SWZ8G9mICw+RXZvbekVM7ZFMMV/Lm2lgeNaM+R/Kd/Ra9VKRHE3E9 AK0FRXy0eJoAP6cUC6ztDE/fgSatVq9It5ayCPpEublP0bFN5+1vun31LQHaY2j/ CAg/1r7Sh5ZzQTeGOhsatFLL3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2BZaTW R5G62sdRadSt2PSYpFIEMB8GA1UdIwQYMBaAFB35wM75p33NFbtR+T/TQpmb4RZY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEMxRS9DMjg2MDMyRUM2 NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi9IZm5BenZtbmZjMFZ1MUg1UDlOQ21admhG bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmbkF6dm1uZmMwVnUxSDVQOU5DbVp2aEZsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEMxRS9DMjg2MDMyRUM2NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi9IZm5BenZtbmZj MFZ1MUg1UDlOQ21admhGbGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu8CYOjelnAebY2/YmmLTw4npSQZHAsx1vqs8VF9SrBksOlt5z6Tf7 AMUTvRSJ5clmyhY9bE7r7ywsMMMFjhfOUwFF1htmCEZkXI4KwFmN9nLx7tDQcM2D 5AFnnvcrDIdmpWWSS4zVslBn2r4BYeMO8UJ7Oxa5IIhNlIZ+k+wxP/kkaiiZjtGB UkSfvE0UjtKKDEmlBfPSzqr6gnr7RbfDO1x7BdBf7OdSKEF6qGpEK7UH57MiPY2X F489y5VBIWs3kLY0CzZLJ4ox++27yle2vhbI6bBbZqtzpa18xx2fMhBBJx0faBJp FaPcDkDuKbuh2t/UxcCA+j+hyI+G549Q -----END CERTIFICATE-----Generated at Sun Jul 20 06:47:44 2025 by rpki-client