$ rpki-client -vvf rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft File: HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft (raw, json) Hash identifier: Drif7f2x3s4bG1cpgizHyxJE7RuInNP+q1Fx59P+WWA= Subject key identifier: 4A:2F:0C:05:F6:90:8D:20:93:AD:3F:A6:BC:F9:AE:E1:C5:BC:52:2D Authority key identifier: 1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1 Certificate issuer: /CN=A913277C/serialNumber=1CD49EFBC37EF4A8C6C8876562BD113344BC7ED1 Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft Manifest number: 01D2 Signing time: Wed 17 Sep 2025 03:18:54 +0000 Manifest this update: Wed 17 Sep 2025 03:18:53 +0000 Manifest next update: Wed 24 Sep 2025 03:18:53 +0000 Files and hashes: 1: HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl (hash: ocwAvEvc9qjjJ5UfSMgjichHC6Dz2nwLWoT25fCRDPU=) 2: 1EF2D862C9F511ED8771C865C4F9AE02.roa (hash: EksXJqRj0KH07WsHueUwybeZ3O7OwOE6F+VFPhINzRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913277C, serialNumber=1CD49EFBC37EF4A8C6C8876562BD113344BC7ED1 Validity Not Before: Sep 17 03:18:53 2025 GMT Not After : Sep 24 03:18:53 2025 GMT Subject: CN=68ca289e-2671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bc:b9:a3:85:5d:57:eb:0d:90:c2:c8:90:f1: 7e:1c:af:6a:71:d5:95:25:4e:8b:fd:06:92:5b:f0: 48:38:a1:e7:07:fa:5f:cd:73:c7:e7:ec:ed:2e:23: d6:c2:b0:11:57:58:ab:61:5e:60:28:e9:bc:1e:48: a2:bb:01:24:3f:b5:f5:eb:45:85:37:20:c2:7e:ac: 43:bd:cf:30:ff:6f:1d:39:fe:fc:56:9f:d8:f9:bd: 80:69:7b:f4:f9:0e:e6:11:32:ef:3b:95:ee:22:80: d0:86:8c:30:7e:fc:e8:7a:12:5e:3c:1d:df:01:2d: ba:33:62:ce:59:a5:de:ab:f0:a7:73:b9:ca:9d:85: 14:b0:b0:0f:fa:8b:d5:60:08:ab:a7:17:6c:61:0e: 26:89:30:05:86:71:c8:22:44:1a:cb:5d:ac:ff:4a: c6:02:f1:43:8c:f8:6c:74:11:91:28:7f:47:a7:4a: a5:f5:67:de:1c:ba:a7:4b:7a:3d:11:01:08:e4:89: 07:73:74:10:a2:16:c9:ea:76:3d:69:e7:32:49:68: 3f:b2:aa:30:0d:2b:29:68:1a:be:13:29:31:38:eb: 06:1f:ad:6c:0f:0c:cf:33:9a:06:53:70:be:9c:74: a8:aa:0c:24:65:97:e0:1e:11:33:f4:29:a5:65:af: ee:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:2F:0C:05:F6:90:8D:20:93:AD:3F:A6:BC:F9:AE:E1:C5:BC:52:2D X509v3 Authority Key Identifier: keyid:1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:ea:3e:cf:ea:33:fe:7a:59:b2:a1:b3:c5:ec:ea:cc:65:2a: 65:17:2b:0d:70:09:53:ad:89:a0:78:5d:19:99:d6:04:8d:c1: 74:ff:67:cf:d2:6e:35:f2:79:bc:df:03:00:24:94:5b:4d:72: 02:15:ff:c8:12:e0:31:a1:37:a1:f1:33:f5:a0:a5:d4:96:51: 94:12:87:35:52:52:91:af:ce:2d:49:25:08:43:2d:44:c6:f2: 05:43:d7:a1:93:eb:8f:78:86:a1:a5:e4:39:98:dd:35:4c:4a: d4:82:4a:f1:72:ec:6d:e1:ea:b2:10:79:e7:36:e3:f2:41:fa: 70:a8:d7:0f:a0:8f:6c:9e:cf:9b:82:65:da:40:e4:ad:b8:a8: a6:67:8f:5c:9f:62:43:78:e1:b1:a1:2c:83:14:5f:d3:50:77: b7:55:4e:4d:87:1c:ed:61:a2:05:0a:b9:5a:e7:cd:e1:5b:3a: 09:40:6c:45:e1:e4:ff:6b:b5:19:45:57:86:d0:4e:90:5c:2a: 21:7d:b6:6e:f1:35:ce:61:a9:8d:3d:cb:a6:2c:38:4c:3b:10: 96:6e:bb:44:ba:57:97:33:e2:e6:1e:0f:d3:4d:0f:5b:3f:2c: ba:24:d4:40:9c:8e:b7:5c:7d:2b:01:a1:ad:ec:8c:65:60:8d: fa:7d:0c:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI3N0MxMTAvBgNVBAUTKDFDRDQ5RUZCQzM3RUY0QThDNkM4ODc2NTYyQkQxMTMz NDRCQzdFRDEwHhcNMjUwOTE3MDMxODUzWhcNMjUwOTI0MDMxODUzWjAYMRYwFAYD VQQDEw02OGNhMjg5ZS0yNjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47y5o4VdV+sNkMLIkPF+HK9qcdWVJU6L/QaSW/BIOKHnB/pfzXPH5+ztLiPW wrARV1irYV5gKOm8HkiiuwEkP7X160WFNyDCfqxDvc8w/28dOf78Vp/Y+b2AaXv0 +Q7mETLvO5XuIoDQhowwfvzoehJePB3fAS26M2LOWaXeq/Cnc7nKnYUUsLAP+ovV YAirpxdsYQ4miTAFhnHIIkQay12s/0rGAvFDjPhsdBGRKH9Hp0ql9WfeHLqnS3o9 EQEI5IkHc3QQohbJ6nY9aecySWg/sqowDSspaBq+EykxOOsGH61sDwzPM5oGU3C+ nHSoqgwkZZfgHhEz9CmlZa/u6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEovDAX2 kI0gk60/prz5ruHFvFItMB8GA1UdIwQYMBaAFBzUnvvDfvSoxsiHZWK9ETNEvH7R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjc3Qy9COTdDNzM5NkM5 RjIxMUVEQTFEOTlFNjVDNEY5QUUwMi9ITlNlLThOLTlLakd5SWRsWXIwUk0wUzhm dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hOU2UtOE4tOUtqR3lJZGxZcjBSTTBTOGZ0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mjc3Qy9COTdDNzM5NkM5RjIxMUVEQTFEOTlFNjVDNEY5QUUwMi9ITlNlLThOLTlL akd5SWRsWXIwUk0wUzhmdEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe6j7P6jP+elmyobPF7OrMZSplFysNcAlTrYmgeF0ZmdYEjcF0/2fP 0m418nm83wMAJJRbTXICFf/IEuAxoTeh8TP1oKXUllGUEoc1UlKRr84tSSUIQy1E xvIFQ9ehk+uPeIahpeQ5mN01TErUgkrxcuxt4eqyEHnnNuPyQfpwqNcPoI9sns+b gmXaQOStuKimZ49cn2JDeOGxoSyDFF/TUHe3VU5NhxztYaIFCrla583hWzoJQGxF 4eT/a7UZRVeG0E6QXCohfbZu8TXOYamNPcumLDhMOxCWbrtEuleXM+LmHg/TTQ9b Pyy6JNRAnI63XH0rAaGt7IxlYI36fQw6 -----END CERTIFICATE-----Generated at Fri Sep 19 03:39:43 2025 by rpki-client