$ rpki-client -vvf rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft File: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft (raw, json) Hash identifier: XBwvFhz2u4hjzbCR8jkhNc3inNFRgaAQmjhJy5yBFH0= Subject key identifier: 48:06:C0:AE:15:75:A8:44:FF:DE:97:27:F9:1B:CA:83:A7:C9:01:E9 Authority key identifier: 1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 Certificate issuer: /CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Certificate serial: 0149 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft Manifest number: 0146 Signing time: Wed 29 Oct 2025 04:09:22 +0000 Manifest this update: Wed 29 Oct 2025 04:09:22 +0000 Manifest next update: Wed 05 Nov 2025 04:09:21 +0000 Files and hashes: 1: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl (hash: cvlmKPJ5laC5iAZk4z+LRqrqEufPGM4IGdAxsQCBaew=) 2: 4AFD4994CDD011EEA5534481C4F9AE02.roa (hash: 5W+7nQ6sUflibilCBlXCdge8iT2G6A6aLqY201MPVEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 04:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178C1E, serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Validity Not Before: Oct 29 04:09:22 2025 GMT Not After : Nov 5 04:09:21 2025 GMT Subject: CN=69019372-1118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d0:1c:29:01:78:0e:0a:d6:79:05:bc:59:6b: 2b:e2:ee:1d:dc:92:3c:0e:40:da:15:69:54:2d:ee: 66:fd:9d:99:3a:5e:12:71:95:3f:46:4f:2e:b3:4c: 52:7d:96:ea:1f:ec:9f:4b:e8:11:2f:e0:30:16:6e: 3a:4e:73:25:52:3e:f0:4f:03:1d:2e:ac:fd:13:6e: 40:51:c2:a1:b1:fc:5d:57:e1:58:16:2b:69:2f:87: c1:cf:c4:fb:90:52:5b:5c:1f:54:b3:6b:e2:7a:e0: 97:e2:f5:90:86:d2:28:ad:0e:a3:31:5f:cf:e1:9f: 9a:49:9b:d0:1f:bd:02:f4:79:d2:6d:f9:8f:69:f4: 29:e8:90:a9:b5:c9:f0:d1:f9:9d:7f:56:96:8e:3a: d8:db:a1:80:80:54:19:e9:fe:7b:14:0d:88:87:89: a3:e5:03:4e:ce:d6:4f:09:b9:a4:54:97:8d:08:d3: 9e:c1:85:48:76:ab:f3:0c:8e:f5:cb:76:cb:80:f2: 79:6b:19:1c:c1:ef:b3:c6:94:b3:83:a3:d5:d8:ef: 88:2d:24:60:98:9c:e9:2a:26:9f:b2:b6:42:e3:90: e9:45:53:74:61:4d:b9:4e:f1:62:ce:f1:d8:dd:7f: 40:f8:b9:f2:52:bb:6d:5c:ee:38:69:cd:3a:85:93: 9d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:06:C0:AE:15:75:A8:44:FF:DE:97:27:F9:1B:CA:83:A7:C9:01:E9 X509v3 Authority Key Identifier: keyid:1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:2b:35:29:87:31:82:67:8e:fc:7e:12:c9:f8:0c:23:11:48: 2a:68:9d:10:2b:a7:22:3b:9e:9e:eb:4d:bd:23:8e:f8:8b:ac: 8c:ea:87:86:d2:b4:81:14:35:ad:c2:59:60:48:11:47:c8:01: cf:18:3a:b0:11:96:cd:08:75:f6:33:3e:0b:bb:30:3e:f3:8a: fc:35:51:7f:80:a9:8c:75:c2:78:50:d4:98:3d:d0:bb:39:65: 51:0f:3b:ce:cd:40:86:0d:e2:1f:17:9c:9e:13:72:58:98:8f: 03:46:25:c8:4c:de:cd:d9:88:43:1b:fc:b9:5d:72:15:9a:3e: 83:73:d0:1c:bb:94:e4:fa:4d:63:2d:7d:20:79:b1:eb:f3:5d: c0:9c:85:76:42:37:be:07:8c:e9:bf:e5:3d:5a:1c:7e:b4:b4: 1c:a3:72:cc:a9:d4:06:43:2d:25:f5:16:b6:db:56:af:c6:3e: b7:13:a6:b5:3e:a4:7b:5f:fa:d7:9e:78:5b:44:46:63:f4:72: 96:47:0e:f3:be:c3:c7:bf:7d:8a:69:02:d5:99:d7:11:a1:6c: 1a:d3:36:3e:00:b4:ec:48:8d:e6:f3:dc:1b:7c:30:1b:15:44: 05:e6:fa:79:38:24:9a:d8:65:f5:86:4a:58:06:69:57:15:44: ea:78:90:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhDMUUxMTAvBgNVBAUTKDFERjlDMENFRjlBNzdEQ0QxNUJCNTFGOTNGRDM0Mjk5 OUJFMTE2NTgwHhcNMjUxMDI5MDQwOTIyWhcNMjUxMTA1MDQwOTIxWjAYMRYwFAYD VQQDEw02OTAxOTM3Mi0xMTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9AcKQF4DgrWeQW8WWsr4u4d3JI8DkDaFWlULe5m/Z2ZOl4ScZU/Rk8us0xS fZbqH+yfS+gRL+AwFm46TnMlUj7wTwMdLqz9E25AUcKhsfxdV+FYFitpL4fBz8T7 kFJbXB9Us2vieuCX4vWQhtIorQ6jMV/P4Z+aSZvQH70C9HnSbfmPafQp6JCptcnw 0fmdf1aWjjrY26GAgFQZ6f57FA2Ih4mj5QNOztZPCbmkVJeNCNOewYVIdqvzDI71 y3bLgPJ5axkcwe+zxpSzg6PV2O+ILSRgmJzpKiafsrZC45DpRVN0YU25TvFizvHY 3X9A+LnyUrttXO44ac06hZOdUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgGwK4V dahE/96XJ/kbyoOnyQHpMB8GA1UdIwQYMBaAFB35wM75p33NFbtR+T/TQpmb4RZY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEMxRS9DMjg2MDMyRUM2 NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi9IZm5BenZtbmZjMFZ1MUg1UDlOQ21admhG bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmbkF6dm1uZmMwVnUxSDVQOU5DbVp2aEZsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEMxRS9DMjg2MDMyRUM2NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi9IZm5BenZtbmZj MFZ1MUg1UDlOQ21admhGbGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8KzUphzGCZ478fhLJ+AwjEUgqaJ0QK6ciO56e6029I474i6yM6oeG 0rSBFDWtwllgSBFHyAHPGDqwEZbNCHX2Mz4LuzA+84r8NVF/gKmMdcJ4UNSYPdC7 OWVRDzvOzUCGDeIfF5yeE3JYmI8DRiXITN7N2YhDG/y5XXIVmj6Dc9Acu5Tk+k1j LX0gebHr813AnIV2Qje+B4zpv+U9Whx+tLQco3LMqdQGQy0l9Ra221avxj63E6a1 PqR7X/rXnnhbREZj9HKWRw7zvsPHv32KaQLVmdcRoWwa0zY+ALTsSI3m89wbfDAb FUQF5vp5OCSa2GX1hkpYBmlXFUTqeJA8 -----END CERTIFICATE-----Generated at Thu Oct 30 05:38:48 2025 by rpki-client