$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json) Hash identifier: 6y++8PDKbgotr9OINQ1EsaGhNxGRpjcEmJMGXhwivX4= Subject key identifier: B8:9F:12:6B:29:65:FB:4F:6A:19:A9:00:79:10:DD:1B:9D:C2:82:34 Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Certificate serial: 0C14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft Manifest number: 0C0D Signing time: Thu 18 Sep 2025 18:55:38 +0000 Manifest this update: Thu 18 Sep 2025 18:55:37 +0000 Manifest next update: Thu 25 Sep 2025 18:55:37 +0000 Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: +0omi1ae45dCGjhJIL5BgBen6PI9pfulk1d8264bpVE=) 2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: oYtKqIUNSIUuh/+KpPti5KOAL0KI5TmVO0WB52ytTkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3092 (0xc14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FD74, serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Validity Not Before: Sep 18 18:55:37 2025 GMT Not After : Sep 25 18:55:37 2025 GMT Subject: CN=68cc55a9-6076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:fa:c1:87:45:f0:61:66:8c:db:8e:d4:26:9e: ae:dd:db:33:4e:1f:89:5c:e8:db:54:2e:9b:fc:a5: 93:a4:3b:7b:a4:18:28:a1:81:7c:1c:c8:0c:82:ce: e4:38:d9:c3:0f:eb:3a:e1:74:37:21:e8:bd:8a:78: f4:d3:86:43:76:66:d2:ba:b4:8e:33:5c:fd:95:cc: e8:2b:43:e5:2e:0c:7d:ff:c4:9c:5f:29:83:4d:3b: 2a:b1:d2:e5:81:c5:e1:72:40:6d:e0:65:82:f1:22: 60:39:99:b5:b8:d9:08:60:ea:ee:a2:05:80:ac:fa: f0:70:4b:0b:0d:80:20:81:a7:ea:18:71:5f:71:a2: ed:69:a1:5b:42:31:d8:e5:b1:0d:89:36:61:d8:a1: 73:8b:60:35:98:b6:d3:2f:dc:dc:c6:b6:f1:ed:5b: 7d:c2:3b:b6:c9:09:9b:36:0b:9f:f6:7d:00:0b:6e: c5:35:52:05:14:c0:9d:93:5c:d4:9d:8f:80:d2:73: 4e:d5:67:3c:8d:9f:01:7a:ad:49:a8:2a:b9:ca:65: 19:d9:30:51:7f:7e:35:3c:02:d6:34:ef:57:74:bc: 7e:e6:d8:39:09:aa:db:fd:8e:1f:43:72:df:c9:82: b8:82:fe:ef:7b:32:eb:54:da:eb:d9:3a:a0:4b:60: b2:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:9F:12:6B:29:65:FB:4F:6A:19:A9:00:79:10:DD:1B:9D:C2:82:34 X509v3 Authority Key Identifier: keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:cf:e1:c8:a3:b0:5e:35:9d:d6:09:90:dd:c5:a7:00:d0:5f: 0e:50:65:7d:9c:9a:0a:66:94:33:d7:e4:d2:c0:d5:39:2e:26: a7:e7:e4:a6:5d:67:6f:a7:2c:df:75:b1:9a:1c:b8:8a:bd:05: e7:6e:8c:b1:6d:a1:db:f2:2c:18:e5:97:a8:c0:be:bb:79:33: 5f:a1:16:c4:f8:16:63:80:2e:cf:01:13:17:0d:b4:e9:2e:b8: ab:d6:72:88:9a:30:c1:e1:3f:67:f1:75:0d:73:f4:4b:3b:14: fe:cb:80:9c:e0:95:3a:a7:a9:7b:dc:19:60:4a:22:12:51:2d: 17:fc:65:1b:ff:18:6b:a1:1d:e2:64:6e:09:34:f3:40:19:d5: 22:54:48:0d:d4:d3:40:6e:89:88:7e:b4:76:b3:b2:98:f2:ca: da:a2:1e:7a:3e:3a:69:4d:c5:2d:2b:7f:a4:4f:7e:26:47:01: 27:95:91:65:e8:3a:fc:af:cf:46:f7:f8:32:c3:fe:2b:83:9c: 2c:f9:2c:b7:0e:06:a6:b9:eb:60:26:f4:7e:ae:9a:6f:8c:d1: cd:30:b6:f2:d8:a7:d4:62:4c:68:d6:3e:a6:5f:2f:f7:4a:d9: 81:89:9a:69:69:b3:d7:70:67:12:cc:c7:59:14:8f:a2:27:2d: e0:dc:93:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND MDJDMDM2MjcwHhcNMjUwOTE4MTg1NTM3WhcNMjUwOTI1MTg1NTM3WjAYMRYwFAYD VQQDEw02OGNjNTVhOS02MDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8PrBh0XwYWaM247UJp6u3dszTh+JXOjbVC6b/KWTpDt7pBgooYF8HMgMgs7k ONnDD+s64XQ3Iei9inj004ZDdmbSurSOM1z9lczoK0PlLgx9/8ScXymDTTsqsdLl gcXhckBt4GWC8SJgOZm1uNkIYOruogWArPrwcEsLDYAggafqGHFfcaLtaaFbQjHY 5bENiTZh2KFzi2A1mLbTL9zcxrbx7Vt9wju2yQmbNguf9n0AC27FNVIFFMCdk1zU nY+A0nNO1Wc8jZ8Beq1JqCq5ymUZ2TBRf341PALWNO9XdLx+5tg5Carb/Y4fQ3Lf yYK4gv7vezLrVNrr2TqgS2Cy9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLifEmsp ZftPahmpAHkQ3RudwoI0MB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y MkxJQzM3SGVJaFBBTEFOaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCez+HIo7BeNZ3WCZDdxacA0F8OUGV9nJoKZpQz1+TSwNU5Lian5+Sm XWdvpyzfdbGaHLiKvQXnboyxbaHb8iwY5ZeowL67eTNfoRbE+BZjgC7PARMXDbTp Lrir1nKImjDB4T9n8XUNc/RLOxT+y4Cc4JU6p6l73BlgSiISUS0X/GUb/xhroR3i ZG4JNPNAGdUiVEgN1NNAbomIfrR2s7KY8sraoh56PjppTcUtK3+kT34mRwEnlZFl 6Dr8r89G9/gyw/4rg5ws+Sy3DgamuetgJvR+rppvjNHNMLby2KfUYkxo1j6mXy/3 StmBiZppabPXcGcSzMdZFI+iJy3g3JMx -----END CERTIFICATE-----Generated at Fri Sep 19 04:23:35 2025 by rpki-client