$ rpki-client -vvf rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft File: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft (raw, json) Hash identifier: EewuBW9ozxG+kWysDpuAeNf1dUaQbE/1DjPUiBsIUKA= Subject key identifier: E2:14:38:9D:5E:FD:CC:2B:9B:B6:D0:05:20:06:C0:36:40:32:7C:E5 Authority key identifier: 1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 Certificate issuer: /CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft Manifest number: 012E Signing time: Tue 09 Sep 2025 04:43:42 +0000 Manifest this update: Tue 09 Sep 2025 04:43:42 +0000 Manifest next update: Tue 16 Sep 2025 04:43:42 +0000 Files and hashes: 1: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl (hash: Fy36y4AXIDmZsXB043iOtxFSx6wg9aR/KVJme1IfJR8=) 2: 4AFD4994CDD011EEA5534481C4F9AE02.roa (hash: 5W+7nQ6sUflibilCBlXCdge8iT2G6A6aLqY201MPVEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178C1E, serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Validity Not Before: Sep 9 04:43:42 2025 GMT Not After : Sep 16 04:43:42 2025 GMT Subject: CN=68bfb07e-0d75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:32:68:e3:ea:28:50:12:7e:c9:04:88:62:8b: cd:40:52:b8:1b:1a:75:1b:ab:5d:10:49:fd:98:be: 10:2e:d2:63:2e:2f:bf:a1:94:e4:11:c5:57:c6:f2: 76:c3:ee:22:b6:d5:b1:85:c6:3f:70:88:65:fc:92: 0d:51:93:e6:56:ed:4b:b5:e1:77:3e:0c:ae:82:f9: 6a:09:e1:6b:c5:8f:fc:57:a7:20:23:a4:01:d3:7f: a6:7a:43:d9:aa:61:1f:6d:d8:d7:2f:4e:5f:20:c0: 10:b5:1b:ba:9c:24:66:74:6d:c2:3c:c2:38:c5:94: f7:07:ac:3a:35:a7:e4:65:b3:39:73:bd:27:6d:4e: d7:c9:60:70:ce:d4:74:18:b5:a1:83:ec:b3:16:a3: 93:da:e3:5c:21:1a:82:bc:f0:8b:38:b9:76:8c:64: 42:8a:80:e6:c2:9c:c5:63:4d:b2:06:e2:48:df:68: 7b:b8:b3:18:16:9e:5f:d2:d1:fa:ed:ae:bb:07:0b: e5:8b:57:d9:13:fe:2d:6e:fd:ed:f6:7b:bd:52:aa: 76:0f:c7:5f:55:ac:84:b1:59:4c:eb:c4:7d:ea:8d: cd:05:6c:ea:06:6d:78:fd:da:0e:de:b5:4d:12:f0: 9f:d6:50:f7:86:9c:71:b5:60:7c:9f:62:f3:b4:4c: 8c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:14:38:9D:5E:FD:CC:2B:9B:B6:D0:05:20:06:C0:36:40:32:7C:E5 X509v3 Authority Key Identifier: keyid:1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:15:13:8a:c2:49:74:4b:ce:c7:5a:40:a4:1b:65:01:ca:dd: 4d:61:b9:ab:35:a2:28:32:7f:e1:90:eb:cd:02:da:ca:db:5a: b3:b0:1f:95:8a:7f:db:3d:9e:b8:01:9c:29:af:0d:8c:ba:85: db:7f:8f:2a:fe:b4:f4:8b:76:45:c1:32:84:ba:0f:d2:5e:6d: ce:77:8a:47:1a:4c:af:b0:8c:a3:df:d2:11:9d:bd:a1:aa:8d: 95:b1:a9:e9:23:24:ba:37:1a:83:29:d0:61:fa:91:c0:08:25: b7:4e:36:3b:4b:01:41:a1:07:ed:39:93:6c:26:8e:a1:6a:d0: 49:28:0e:83:05:6b:fb:c0:6e:88:b4:91:71:e5:96:d9:9f:2d: 7a:94:a7:2b:4d:81:54:2c:d9:ad:1a:3e:5a:58:3b:a8:aa:56: 1d:22:c2:e4:ba:ca:a5:26:9f:7a:bf:c8:12:60:96:c4:fe:de: e1:2e:f7:b6:ba:7c:e6:98:03:88:60:1a:4b:c5:2d:99:a3:7e: b5:18:7f:aa:f9:e3:18:a6:68:67:45:17:44:b2:f2:cd:a1:00: 7c:a0:6c:5f:40:c2:70:eb:2b:92:14:9d:96:86:07:98:b0:a9: 31:62:4d:6e:e3:c5:55:4d:35:07:12:73:2b:06:60:73:7f:38: cd:d6:ce:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhDMUUxMTAvBgNVBAUTKDFERjlDMENFRjlBNzdEQ0QxNUJCNTFGOTNGRDM0Mjk5 OUJFMTE2NTgwHhcNMjUwOTA5MDQ0MzQyWhcNMjUwOTE2MDQ0MzQyWjAYMRYwFAYD VQQDEw02OGJmYjA3ZS0wZDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjJo4+ooUBJ+yQSIYovNQFK4Gxp1G6tdEEn9mL4QLtJjLi+/oZTkEcVXxvJ2 w+4ittWxhcY/cIhl/JINUZPmVu1LteF3PgyugvlqCeFrxY/8V6cgI6QB03+mekPZ qmEfbdjXL05fIMAQtRu6nCRmdG3CPMI4xZT3B6w6NafkZbM5c70nbU7XyWBwztR0 GLWhg+yzFqOT2uNcIRqCvPCLOLl2jGRCioDmwpzFY02yBuJI32h7uLMYFp5f0tH6 7a67Bwvli1fZE/4tbv3t9nu9Uqp2D8dfVayEsVlM68R96o3NBWzqBm14/doO3rVN EvCf1lD3hpxxtWB8n2LztEyMWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOIUOJ1e /cwrm7bQBSAGwDZAMnzlMB8GA1UdIwQYMBaAFB35wM75p33NFbtR+T/TQpmb4RZY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEMxRS9DMjg2MDMyRUM2 NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi9IZm5BenZtbmZjMFZ1MUg1UDlOQ21admhG bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmbkF6dm1uZmMwVnUxSDVQOU5DbVp2aEZsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEMxRS9DMjg2MDMyRUM2NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi9IZm5BenZtbmZj MFZ1MUg1UDlOQ21admhGbGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAFROKwkl0S87HWkCkG2UByt1NYbmrNaIoMn/hkOvNAtrK21qzsB+V in/bPZ64AZwprw2MuoXbf48q/rT0i3ZFwTKEug/SXm3Od4pHGkyvsIyj39IRnb2h qo2VsanpIyS6NxqDKdBh+pHACCW3TjY7SwFBoQftOZNsJo6hatBJKA6DBWv7wG6I tJFx5ZbZny16lKcrTYFULNmtGj5aWDuoqlYdIsLkusqlJp96v8gSYJbE/t7hLve2 unzmmAOIYBpLxS2Zo361GH+q+eMYpmhnRRdEsvLNoQB8oGxfQMJw6yuSFJ2WhgeY sKkxYk1u48VVTTUHEnMrBmBzfzjN1s71 -----END CERTIFICATE-----Generated at Wed Sep 10 03:16:38 2025 by rpki-client