$ rpki-client -vvf rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft File: HA69woHQL52iTsEXS6nPGEWbk-A.mft (raw, json) Hash identifier: 2zEvq9VGNyey72r9OhQ1UoNjcdPiVMW2pgvAnpBV6rQ= Subject key identifier: 09:70:A7:3D:A1:2E:2A:AF:F1:CE:13:E4:82:71:09:BA:8B:B7:BE:5B Authority key identifier: 1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0 Certificate issuer: /CN=A9179D1F/serialNumber=1C0EBDC281D02F9DA24EC1174BA9CF18459B93E0 Certificate serial: 03C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft Manifest number: 03C2 Signing time: Sat 19 Jul 2025 01:03:34 +0000 Manifest this update: Sat 19 Jul 2025 01:03:33 +0000 Manifest next update: Sat 26 Jul 2025 01:03:33 +0000 Files and hashes: 1: HA69woHQL52iTsEXS6nPGEWbk-A.crl (hash: 5d6JqZruS1hCVTw/Sxi83gK7vVY8zMQeDg4F9RfgDpk=) 2: ED816DEC95DA11EC993BD050C4F9AE02.roa (hash: H2GtJ0iPg0F8hSUg65wTV+ujzqji+9qmbwmD4ETHfZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.crl rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 966 (0x3c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179D1F, serialNumber=1C0EBDC281D02F9DA24EC1174BA9CF18459B93E0 Validity Not Before: Jul 19 01:03:33 2025 GMT Not After : Jul 26 01:03:33 2025 GMT Subject: CN=687aeee6-3838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d0:bf:39:3f:1c:90:af:9a:fb:8a:75:84:0a: 97:2a:00:b4:5a:98:72:dc:f6:a8:e5:cc:d7:1e:2f: 2e:d1:09:4c:59:0e:ef:25:34:15:f8:b6:54:af:26: f7:a2:ab:06:49:89:27:a9:75:c7:6a:d3:69:78:43: 7e:16:9a:74:09:34:01:3a:29:44:cd:66:50:b9:b4: 84:10:61:72:4a:aa:29:2e:ab:3c:81:2a:cb:8d:0d: 72:5a:c3:cd:91:01:0f:b0:ef:f2:db:47:d2:ec:c9: 0b:00:eb:ef:ad:20:a2:38:b9:c5:31:c6:6d:74:b3: 9f:68:bc:db:a1:39:11:a7:28:59:f2:49:d9:20:28: d3:4f:e8:00:28:99:a8:76:69:52:2d:78:18:53:a7: 9f:8d:fe:81:b3:f4:ed:5f:75:7b:d2:e5:ad:81:f5: cf:d1:35:8a:14:2f:45:1b:7b:a3:13:5b:15:29:a4: 3b:df:99:5b:ff:f8:6e:d1:1f:c8:c1:8c:5e:ad:c8: 81:39:e1:27:b8:07:45:24:28:06:d5:7c:3a:a9:ac: 03:99:74:05:8b:a6:80:cd:b2:3f:d6:17:1e:e6:a8: 0a:6d:4b:f4:42:0d:6e:ec:da:99:c3:11:ef:12:2b: ec:74:bd:4a:1e:c5:da:74:85:7f:ec:e3:f0:2d:89: 4d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:70:A7:3D:A1:2E:2A:AF:F1:CE:13:E4:82:71:09:BA:8B:B7:BE:5B X509v3 Authority Key Identifier: keyid:1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:18:7b:ce:4f:e8:96:5f:58:13:c0:93:bb:c3:53:4f:1b:d0: b8:f3:58:c6:80:b2:c6:d3:fd:a1:a4:99:d3:d8:14:a7:4d:4d: 35:9b:f2:91:b6:a2:cf:ed:b3:7a:a2:95:2b:16:ed:c6:6b:98: 06:7f:55:45:a9:c5:f0:18:e4:ab:8b:4b:69:f2:78:ed:8b:0a: ca:26:59:6a:64:45:9c:94:d8:12:fe:c8:cb:1b:6e:c9:18:35: c7:4e:cc:1c:60:61:6a:96:c4:b7:a7:c8:5b:e2:d7:55:9b:3f: 09:c2:33:6f:bd:d3:43:e8:86:ea:b2:ef:df:f8:7d:a7:c7:30: 76:2a:8f:62:83:55:0a:19:e2:a4:25:ab:d1:53:d4:9e:71:41: c2:b7:86:18:53:a9:07:7e:dc:3b:66:71:9e:58:14:a2:cc:e5: f2:7b:50:ac:da:0f:ee:1f:f5:bb:41:89:90:90:1b:46:f3:0b: 7e:2b:19:e0:ad:9f:9d:f7:6f:04:bd:9d:0e:60:c8:a9:a6:4b: 1c:b3:99:35:d4:cd:87:22:85:3f:d9:76:c9:c9:d2:0c:86:52: d7:0f:92:0e:5d:56:d8:ed:47:bb:be:00:fd:77:20:f3:d7:38: 96:54:0c:20:e0:a3:61:29:a2:77:3d:18:18:14:af:f6:a2:e3: 03:fa:ba:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlEMUYxMTAvBgNVBAUTKDFDMEVCREMyODFEMDJGOURBMjRFQzExNzRCQTlDRjE4 NDU5QjkzRTAwHhcNMjUwNzE5MDEwMzMzWhcNMjUwNzI2MDEwMzMzWjAYMRYwFAYD VQQDEw02ODdhZWVlNi0zODM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApNC/OT8ckK+a+4p1hAqXKgC0Wphy3Pao5czXHi8u0QlMWQ7vJTQV+LZUryb3 oqsGSYknqXXHatNpeEN+Fpp0CTQBOilEzWZQubSEEGFySqopLqs8gSrLjQ1yWsPN kQEPsO/y20fS7MkLAOvvrSCiOLnFMcZtdLOfaLzboTkRpyhZ8knZICjTT+gAKJmo dmlSLXgYU6efjf6Bs/TtX3V70uWtgfXP0TWKFC9FG3ujE1sVKaQ735lb//hu0R/I wYxerciBOeEnuAdFJCgG1Xw6qawDmXQFi6aAzbI/1hce5qgKbUv0Qg1u7NqZwxHv EivsdL1KHsXadIV/7OPwLYlNDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlwpz2h Liqv8c4T5IJxCbqLt75bMB8GA1UdIwQYMBaAFBwOvcKB0C+dok7BF0upzxhFm5Pg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUQxRi9EOTgyQ0I1RTk1 RDcxMUVDOTUzRjk1NERDNEY5QUUwMi9IQTY5d29IUUw1MmlUc0VYUzZuUEdFV2Jr LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBNjl3b0hRTDUyaVRzRVhTNm5QR0VXYmstQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUQxRi9EOTgyQ0I1RTk1RDcxMUVDOTUzRjk1NERDNEY5QUUwMi9IQTY5d29IUUw1 MmlUc0VYUzZuUEdFV2JrLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyGHvOT+iWX1gTwJO7w1NPG9C481jGgLLG0/2hpJnT2BSnTU01m/KR tqLP7bN6opUrFu3Ga5gGf1VFqcXwGOSri0tp8njtiwrKJllqZEWclNgS/sjLG27J GDXHTswcYGFqlsS3p8hb4tdVmz8JwjNvvdND6Ibqsu/f+H2nxzB2Ko9ig1UKGeKk JavRU9SecUHCt4YYU6kHftw7ZnGeWBSizOXye1Cs2g/uH/W7QYmQkBtG8wt+Kxng rZ+d928EvZ0OYMippkscs5k11M2HIoU/2XbJydIMhlLXD5IOXVbY7Ue7vgD9dyDz 1ziWVAwg4KNhKaJ3PRgYFK/2ouMD+rrq -----END CERTIFICATE-----Generated at Sun Jul 20 06:18:37 2025 by rpki-client