$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft File: hn09aLZZeAOvVkZcDptTq2Z7cqg.mft (raw, json) Hash identifier: B4lb+rs7k8q5Od4KLzga2JVe/5QPFSAGSjypt/WKOaM= Subject key identifier: E1:D8:7F:47:59:E3:98:7D:00:87:F6:82:56:EA:D7:A4:17:4D:B3:72 Authority key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 Certificate issuer: /CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Certificate serial: 06A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft Manifest number: 069B Signing time: Thu 04 Sep 2025 22:33:07 +0000 Manifest this update: Thu 04 Sep 2025 22:33:07 +0000 Manifest next update: Thu 11 Sep 2025 22:33:07 +0000 Files and hashes: 1: hn09aLZZeAOvVkZcDptTq2Z7cqg.crl (hash: DbFUpeQVDYZm3iv4JaTUhE2EYl85m9D6ROhPFrWuSeE=) 2: 4EC5B52480B811EBBEE2CA7FC4F9AE02.roa (hash: bzwAo1vTwZtUvpqV0SE31TfJe7tyOs8AEfKtkNJnl48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:33:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1696 (0x6a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDC5, serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Validity Not Before: Sep 4 22:33:07 2025 GMT Not After : Sep 11 22:33:07 2025 GMT Subject: CN=68ba13a3-e655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:60:ac:14:9f:b3:d3:31:e0:2c:f9:90:21:59: b3:7b:16:df:72:be:b8:e8:ad:70:1a:e3:9c:e4:cd: 01:a1:2e:7e:95:d8:f4:f9:a9:ef:c8:01:e9:e6:37: 57:ae:78:c6:08:6e:28:71:a4:7b:52:2c:38:5b:55: 43:7d:60:a5:de:b8:12:fd:31:d3:26:58:0f:54:06: 29:2d:cb:ad:05:43:70:38:41:cf:f8:30:c3:b7:7f: 72:92:90:ad:e8:5d:fb:f8:15:1e:55:ea:43:e7:7b: 3d:96:d9:28:b5:37:c5:b9:af:eb:77:da:f0:39:e7: 6d:ab:c3:57:51:01:3c:6d:1e:d1:f7:84:0f:41:44: b5:d0:ba:96:80:96:60:2e:17:f0:0b:69:b6:83:88: c6:1d:fb:41:bd:86:9d:92:de:bf:c6:5c:30:28:c0: 58:fd:94:4b:7f:02:26:ca:09:79:06:f6:5a:e9:39: 9a:b7:42:9e:bf:db:e6:65:b3:10:c6:8d:2f:e8:6a: ae:a2:77:d1:3f:22:98:73:63:0a:6b:54:1c:14:02: 09:3c:b1:85:1b:ed:b9:96:a5:64:ae:08:f7:ea:bb: 0c:a5:7a:73:10:6d:3d:a3:d4:e7:63:d6:7f:bb:3d: 1f:a0:a0:17:fc:16:b4:72:c9:1f:36:42:62:ee:f5: 48:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:D8:7F:47:59:E3:98:7D:00:87:F6:82:56:EA:D7:A4:17:4D:B3:72 X509v3 Authority Key Identifier: keyid:86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:42:db:9f:7a:94:fd:71:08:46:ca:22:55:95:1f:c4:6c:1e: ac:00:3e:9b:d4:aa:ad:20:01:17:89:29:f2:86:c6:32:50:b7: e1:f1:a7:5b:4e:69:6b:ab:2a:ed:82:f2:04:f4:51:ff:e3:f3: d2:72:19:91:06:48:89:9a:af:92:b7:e2:11:b1:ef:15:af:eb: c1:b1:1f:94:58:43:0d:a3:e3:f3:7f:10:8e:a8:0f:53:ca:a6: 55:02:99:ca:fc:a9:f8:18:9f:86:28:42:cd:64:9d:3b:8b:4f: 0c:be:ce:43:16:4e:35:ce:4a:09:21:c7:84:7c:a0:10:34:6e: 7c:62:a1:23:a5:8a:69:d8:24:75:2f:18:9c:3f:5c:f6:88:4f: ab:9d:f0:45:72:ce:84:12:df:68:b3:32:38:30:69:30:d9:13: bb:2c:a3:df:1f:7a:bf:24:a1:cb:b6:4a:3e:ba:0b:6e:f2:b8: 63:33:2f:f6:d6:0f:f6:16:c4:6b:1d:81:75:55:34:48:c0:2c: cc:25:e0:c4:77:94:e8:78:64:f8:de:8a:7e:7b:ec:43:57:61: 4f:df:e7:99:eb:c3:6c:d2:54:46:dd:60:af:09:06:3e:39:04: 56:6b:9e:29:70:81:0b:ee:c0:fd:4d:12:c6:8e:fd:8e:c1:f3: 06:8a:91:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQzUxMTAvBgNVBAUTKDg2N0QzRDY4QjY1OTc4MDNBRjU2NDY1QzBFOUI1M0FC NjY3QjcyQTgwHhcNMjUwOTA0MjIzMzA3WhcNMjUwOTExMjIzMzA3WjAYMRYwFAYD VQQDEw02OGJhMTNhMy1lNjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2CsFJ+z0zHgLPmQIVmzexbfcr646K1wGuOc5M0BoS5+ldj0+anvyAHp5jdX rnjGCG4ocaR7Uiw4W1VDfWCl3rgS/THTJlgPVAYpLcutBUNwOEHP+DDDt39ykpCt 6F37+BUeVepD53s9ltkotTfFua/rd9rwOedtq8NXUQE8bR7R94QPQUS10LqWgJZg LhfwC2m2g4jGHftBvYadkt6/xlwwKMBY/ZRLfwImygl5BvZa6Tmat0Kev9vmZbMQ xo0v6GquonfRPyKYc2MKa1QcFAIJPLGFG+25lqVkrgj36rsMpXpzEG09o9TnY9Z/ uz0foKAX/Ba0cskfNkJi7vVI4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHYf0dZ 45h9AIf2glbq16QXTbNyMB8GA1UdIwQYMBaAFIZ9PWi2WXgDr1ZGXA6bU6tme3Ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDNS9FOUYyOTJDNjgw QjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVBT3ZWa1pjRHB0VHEyWjdj cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2huMDlhTFpaZUFPdlZrWmNEcHRUcTJaN2NxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDNS9FOUYyOTJDNjgwQjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVB T3ZWa1pjRHB0VHEyWjdjcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbQtufepT9cQhGyiJVlR/EbB6sAD6b1KqtIAEXiSnyhsYyULfh8adb TmlrqyrtgvIE9FH/4/PSchmRBkiJmq+St+IRse8Vr+vBsR+UWEMNo+PzfxCOqA9T yqZVApnK/Kn4GJ+GKELNZJ07i08Mvs5DFk41zkoJIceEfKAQNG58YqEjpYpp2CR1 LxicP1z2iE+rnfBFcs6EEt9oszI4MGkw2RO7LKPfH3q/JKHLtko+ugtu8rhjMy/2 1g/2FsRrHYF1VTRIwCzMJeDEd5ToeGT43op+e+xDV2FP3+eZ68Ns0lRG3WCvCQY+ OQRWa54pcIEL7sD9TRLGjv2OwfMGipG+ -----END CERTIFICATE-----Generated at Sat Sep 6 21:29:23 2025 by rpki-client