$ rpki-client -vvf rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft File: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft (raw, json) Hash identifier: xAiDB7gEBD8klvrwR/R0evtm0Se0x5nylEnSfBvEpug= Subject key identifier: FD:8D:F4:A2:1C:C1:9D:8E:BF:52:95:75:22:4D:E8:F3:E6:6D:3A:50 Authority key identifier: 1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 Certificate issuer: /CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Certificate serial: 01B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft Manifest number: 01A9 Signing time: Sun 03 May 2026 04:23:25 +0000 Manifest this update: Sun 03 May 2026 04:23:25 +0000 Manifest next update: Sun 10 May 2026 04:23:25 +0000 Files and hashes: 1: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl (hash: 7+gasaESwaTciHJ29BqJ923JMDo2V19TeuWmkkQ2reY=) 2: 4AFD4994CDD011EEA5534481C4F9AE02.roa (hash: LectFDdTSMn7loXlQ2Wf7gPQucdUaSBxJzRdeIEEXm4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178C1E, serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Validity Not Before: May 3 04:23:25 2026 GMT Not After : May 10 04:23:25 2026 GMT Subject: CN=69f6cdbd-0e4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:05:a8:f9:ca:84:c7:e2:36:50:a7:5b:9a:37: 9f:7e:aa:2a:bc:80:75:1a:d2:18:a4:9d:5f:4f:fd: da:f3:56:59:59:60:a5:07:ac:da:cf:48:49:1e:f7: e2:30:76:13:e5:d8:e1:9d:74:dd:c2:21:30:c0:cd: 15:dc:a4:e1:92:d3:39:77:44:e6:29:9e:9c:c0:f7: 48:24:73:57:9d:d2:df:71:03:59:0e:79:8a:14:2b: c1:dc:69:e9:87:36:4f:dc:ca:43:4f:00:71:aa:47: 48:84:99:97:84:ce:86:8b:5c:e6:ca:12:21:b3:d9: 11:71:c9:7e:d6:67:83:37:11:e8:38:83:6b:74:e5: a5:a9:87:72:d7:c3:f3:4d:01:94:57:f9:93:4e:54: 7e:c8:8e:47:20:d0:56:a0:b6:fd:45:7b:a9:14:a5: d4:92:3d:11:73:66:42:29:85:ab:62:d2:1c:cf:df: e3:31:01:87:b9:7e:7b:94:7c:86:26:ca:bf:23:c4: 76:23:59:8d:22:a5:b4:ac:74:9c:a4:0b:cb:58:4f: b7:b5:84:cf:6d:08:18:bd:2a:0f:eb:16:ed:6d:d4: d0:4f:b7:d3:5c:d5:b8:0a:1f:71:49:c0:45:f7:ac: 4a:83:21:cf:2e:62:bb:6e:95:9a:62:0a:71:e3:90: 95:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:8D:F4:A2:1C:C1:9D:8E:BF:52:95:75:22:4D:E8:F3:E6:6D:3A:50 X509v3 Authority Key Identifier: keyid:1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:27:84:38:04:33:b7:b9:d2:ac:c7:22:0d:ca:ec:3b:48:27: ac:1d:58:ca:3d:a1:b9:52:a5:49:a9:00:53:04:44:c5:f5:d7: e7:cb:ac:e6:73:4b:78:5f:25:3a:86:b0:ac:e6:c9:40:9d:f1: d6:37:9a:91:ba:80:e9:ee:93:37:06:ca:6f:ec:0a:d4:b2:c9: 37:c3:51:56:c9:0d:d8:5e:bd:cd:90:63:47:ce:3c:90:3b:7f: a5:51:77:c8:72:e6:8f:cf:56:b3:f2:e1:ea:c1:53:5f:24:64: 99:f2:b0:c9:60:17:b7:08:95:f5:f1:63:56:e2:cb:c9:a6:c2: 9d:ab:e8:d5:28:ae:73:2d:78:47:8a:11:99:ca:31:0f:01:1f: 1a:90:1e:4c:5f:c0:b8:b1:dd:f6:61:49:8b:b2:68:91:a6:ad: 59:09:ff:54:1e:dc:56:2f:bb:57:08:1b:4c:c9:b0:05:31:cb: dd:be:30:a7:8e:6c:a3:aa:d6:b8:7e:5e:2e:14:14:ac:c1:dc: a4:5e:db:97:db:45:7b:7a:8b:b4:1b:a2:2c:52:6a:5c:58:22: eb:de:52:4c:ef:d6:b2:e2:1c:ad:c0:07:72:f2:99:71:bb:8f: dd:dc:d6:cd:e3:cd:f9:52:07:09:d4:da:46:c0:8b:42:70:69: 66:e8:5a:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhDMUUxMTAvBgNVBAUTKDFERjlDMENFRjlBNzdEQ0QxNUJCNTFGOTNGRDM0Mjk5 OUJFMTE2NTgwHhcNMjYwNTAzMDQyMzI1WhcNMjYwNTEwMDQyMzI1WjAYMRYwFAYD VQQDEw02OWY2Y2RiZC0wZTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswWo+cqEx+I2UKdbmjeffqoqvIB1GtIYpJ1fT/3a81ZZWWClB6zaz0hJHvfi MHYT5djhnXTdwiEwwM0V3KThktM5d0TmKZ6cwPdIJHNXndLfcQNZDnmKFCvB3Gnp hzZP3MpDTwBxqkdIhJmXhM6Gi1zmyhIhs9kRccl+1meDNxHoOINrdOWlqYdy18Pz TQGUV/mTTlR+yI5HINBWoLb9RXupFKXUkj0Rc2ZCKYWrYtIcz9/jMQGHuX57lHyG Jsq/I8R2I1mNIqW0rHScpAvLWE+3tYTPbQgYvSoP6xbtbdTQT7fTXNW4Ch9xScBF 96xKgyHPLmK7bpWaYgpx45CVxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP2N9KIc wZ2Ov1KVdSJN6PPmbTpQMB8GA1UdIwQYMBaAFB35wM75p33NFbtR+T/TQpmb4RZY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEMxRS9DMjg2MDMyRUM2 NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi9IZm5BenZtbmZjMFZ1MUg1UDlOQ21admhG bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmbkF6dm1uZmMwVnUxSDVQOU5DbVp2aEZsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEMxRS9DMjg2MDMyRUM2NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi9IZm5BenZtbmZj MFZ1MUg1UDlOQ21admhGbGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASyeEOAQzt7nSrMciDcrsO0gnrB1Yyj2huVKlSakAUwRExfXX58us5nNLeF8l OoawrObJQJ3x1jeakbqA6e6TNwbKb+wK1LLJN8NRVskN2F69zZBjR848kDt/pVF3 yHLmj89Ws/Lh6sFTXyRkmfKwyWAXtwiV9fFjVuLLyabCnavo1Siucy14R4oRmcox DwEfGpAeTF/AuLHd9mFJi7JokaatWQn/VB7cVi+7VwgbTMmwBTHL3b4wp45so6rW uH5eLhQUrMHcpF7bl9tFe3qLtBuiLFJqXFgi695STO/WsuIcrcAHcvKZcbuP3dzW zePN+VIHCdTaRsCLQnBpZuhaWA== -----END CERTIFICATE-----Generated at Mon May 4 19:18:07 2026 by rpki-client