$ rpki-client -vvf rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft File: HA69woHQL52iTsEXS6nPGEWbk-A.mft (raw, json) Hash identifier: WtVpCQOd8ZEmM/giQHaQSbOxZCP+f3Owz5+uFJKvSk4= Subject key identifier: 91:D4:C1:86:22:D1:5D:47:FA:2B:2C:B2:31:5E:C5:5F:73:4F:67:C8 Authority key identifier: 1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0 Certificate issuer: /CN=A9179D1F/serialNumber=1C0EBDC281D02F9DA24EC1174BA9CF18459B93E0 Certificate serial: 03E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft Manifest number: 03E1 Signing time: Wed 17 Sep 2025 00:59:34 +0000 Manifest this update: Wed 17 Sep 2025 00:59:34 +0000 Manifest next update: Wed 24 Sep 2025 00:59:34 +0000 Files and hashes: 1: HA69woHQL52iTsEXS6nPGEWbk-A.crl (hash: nLxlouNasBZzYX9IsVGGJZWXRklmwmTTZbeC+TsC0r4=) 2: ED816DEC95DA11EC993BD050C4F9AE02.roa (hash: H2GtJ0iPg0F8hSUg65wTV+ujzqji+9qmbwmD4ETHfZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.crl rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 00:59:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 997 (0x3e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179D1F, serialNumber=1C0EBDC281D02F9DA24EC1174BA9CF18459B93E0 Validity Not Before: Sep 17 00:59:34 2025 GMT Not After : Sep 24 00:59:34 2025 GMT Subject: CN=68ca07f6-dfe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:61:7a:aa:05:56:d6:a2:e2:5b:15:f6:29:24: b5:19:76:66:63:5e:9e:97:60:71:12:54:6a:da:48: c9:96:32:f3:35:28:f1:7a:ae:a5:ff:21:f3:2e:18: fb:7f:18:e2:cf:2e:82:02:fd:cc:01:28:a5:f9:49: 88:05:5f:9c:52:db:3a:7e:cc:65:49:6b:27:b7:28: 1a:a9:df:bf:f0:2d:82:36:07:0d:2b:ad:58:7f:e9: 4b:4d:70:3b:7d:01:46:05:78:d3:18:4e:27:f8:1a: de:7d:89:9d:34:66:48:77:10:b6:75:48:30:03:b6: 88:b0:2b:d8:a5:30:cc:74:3c:3a:60:2a:eb:f8:eb: 0c:88:98:fe:cb:ab:1c:0d:5e:91:77:d5:f1:68:4d: 24:3d:78:89:94:d9:cb:ad:3e:5d:e4:40:cb:6c:fb: 8d:d0:c7:ea:98:ae:d6:43:ef:57:69:11:97:a6:52: ce:23:fb:2e:07:c6:07:49:f1:ed:43:22:41:0c:ce: eb:3d:02:fa:52:63:ed:cc:bd:70:18:f8:e3:ea:2c: 20:1b:5b:df:e7:8b:e7:0f:aa:82:12:7d:c3:8a:d0: 49:11:84:10:77:81:5c:39:e9:33:10:0c:e4:a7:91: 96:58:e9:a8:b6:41:fe:2c:1c:ba:6c:00:ba:93:27: 5a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:D4:C1:86:22:D1:5D:47:FA:2B:2C:B2:31:5E:C5:5F:73:4F:67:C8 X509v3 Authority Key Identifier: keyid:1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:57:75:21:4a:c5:f8:f0:35:0a:40:f9:cf:71:2d:87:a2:63: 2b:1d:70:80:a5:c4:dc:8c:0f:1f:31:b2:44:74:ea:8b:56:4a: e0:3d:18:90:e4:35:c8:2d:33:b8:49:55:12:cf:95:54:6b:20: b8:c6:3f:63:25:39:e0:cc:22:28:14:e4:be:bd:a7:bb:1c:58: 33:89:34:ad:e6:73:78:ad:0a:6b:77:a9:24:08:6e:ac:ee:bb: 15:04:10:09:cd:cc:9d:ae:27:1b:e3:9b:b1:1f:73:82:3b:8f: e7:ba:e1:61:aa:ba:db:53:06:b1:76:4a:39:88:0b:d7:aa:03: 33:66:1a:71:71:89:54:5f:8f:ae:49:48:c2:d5:84:b8:5b:ca: 30:7b:21:74:17:43:df:65:cd:fd:a0:3a:44:73:dc:e0:c4:88: d8:ff:b2:6d:4c:6e:a3:e6:ab:00:cf:c4:36:b9:d8:6b:72:3f: 71:2d:f8:41:0a:72:ba:36:01:3a:87:2a:5c:6a:08:3b:32:62: 95:46:45:aa:c6:56:1f:d7:e1:77:3b:99:c8:94:fb:dc:47:3e: 8f:06:32:fb:b2:8e:bf:c7:8a:4d:0b:6f:56:40:01:eb:ca:07: fe:52:be:bd:00:b3:77:09:fe:e5:06:0b:91:b3:56:bb:53:ad: cc:d7:57:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlEMUYxMTAvBgNVBAUTKDFDMEVCREMyODFEMDJGOURBMjRFQzExNzRCQTlDRjE4 NDU5QjkzRTAwHhcNMjUwOTE3MDA1OTM0WhcNMjUwOTI0MDA1OTM0WjAYMRYwFAYD VQQDEw02OGNhMDdmNi1kZmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWF6qgVW1qLiWxX2KSS1GXZmY16el2BxElRq2kjJljLzNSjxeq6l/yHzLhj7 fxjizy6CAv3MASil+UmIBV+cUts6fsxlSWsntygaqd+/8C2CNgcNK61Yf+lLTXA7 fQFGBXjTGE4n+BrefYmdNGZIdxC2dUgwA7aIsCvYpTDMdDw6YCrr+OsMiJj+y6sc DV6Rd9XxaE0kPXiJlNnLrT5d5EDLbPuN0MfqmK7WQ+9XaRGXplLOI/suB8YHSfHt QyJBDM7rPQL6UmPtzL1wGPjj6iwgG1vf54vnD6qCEn3DitBJEYQQd4FcOekzEAzk p5GWWOmotkH+LBy6bAC6kydaJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHUwYYi 0V1H+isssjFexV9zT2fIMB8GA1UdIwQYMBaAFBwOvcKB0C+dok7BF0upzxhFm5Pg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUQxRi9EOTgyQ0I1RTk1 RDcxMUVDOTUzRjk1NERDNEY5QUUwMi9IQTY5d29IUUw1MmlUc0VYUzZuUEdFV2Jr LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBNjl3b0hRTDUyaVRzRVhTNm5QR0VXYmstQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUQxRi9EOTgyQ0I1RTk1RDcxMUVDOTUzRjk1NERDNEY5QUUwMi9IQTY5d29IUUw1 MmlUc0VYUzZuUEdFV2JrLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGV3UhSsX48DUKQPnPcS2HomMrHXCApcTcjA8fMbJEdOqLVkrgPRiQ 5DXILTO4SVUSz5VUayC4xj9jJTngzCIoFOS+vae7HFgziTSt5nN4rQprd6kkCG6s 7rsVBBAJzcydricb45uxH3OCO4/nuuFhqrrbUwaxdko5iAvXqgMzZhpxcYlUX4+u SUjC1YS4W8oweyF0F0PfZc39oDpEc9zgxIjY/7JtTG6j5qsAz8Q2udhrcj9xLfhB CnK6NgE6hypcagg7MmKVRkWqxlYf1+F3O5nIlPvcRz6PBjL7so6/x4pNC29WQAHr ygf+Ur69ALN3Cf7lBguRs1a7U63M11fE -----END CERTIFICATE-----Generated at Thu Sep 18 23:09:11 2025 by rpki-client