$ rpki-client -vvf rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft File: HA69woHQL52iTsEXS6nPGEWbk-A.mft (raw, json) Hash identifier: k3zoSbWcPkEjXT1I5j6a+FdCMJl2W+xHKHxOSLdQdMM= Subject key identifier: A1:2D:47:D9:C4:44:95:5B:1C:86:A0:0E:11:3F:A9:5E:9B:55:54:86 Authority key identifier: 1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0 Certificate issuer: /CN=A9179D1F/serialNumber=1C0EBDC281D02F9DA24EC1174BA9CF18459B93E0 Certificate serial: 03D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft Manifest number: 03CD Signing time: Sat 09 Aug 2025 01:07:41 +0000 Manifest this update: Sat 09 Aug 2025 01:07:41 +0000 Manifest next update: Sat 16 Aug 2025 01:07:41 +0000 Files and hashes: 1: HA69woHQL52iTsEXS6nPGEWbk-A.crl (hash: aJvEHWASuNZdVw2ztH4hw8Rr4rtwYtr70UJjacOBxc0=) 2: ED816DEC95DA11EC993BD050C4F9AE02.roa (hash: H2GtJ0iPg0F8hSUg65wTV+ujzqji+9qmbwmD4ETHfZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.crl rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 977 (0x3d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179D1F, serialNumber=1C0EBDC281D02F9DA24EC1174BA9CF18459B93E0 Validity Not Before: Aug 9 01:07:41 2025 GMT Not After : Aug 16 01:07:41 2025 GMT Subject: CN=68969f5d-f590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:61:73:8e:bf:65:2d:36:10:bd:7c:f0:e3:04: dd:db:8f:63:28:44:e9:a5:d3:ff:c5:00:55:e0:27: ce:f4:69:24:44:36:a5:17:8b:82:d5:7c:8c:15:33: 16:de:be:fc:6e:20:31:5a:84:c4:e1:24:f7:38:f7: cf:20:f8:ed:73:ff:e6:a5:df:09:92:50:37:33:d4: 4b:cd:84:ba:d0:f4:08:b4:47:bd:b7:e7:bd:fb:d5: b5:38:8c:02:28:ec:6a:e5:74:27:87:5e:ac:90:43: a2:e3:82:32:4c:ae:1f:11:8d:f6:30:ec:eb:15:c1: 52:dc:3b:0c:4a:5e:8a:14:bf:06:d8:15:41:fc:4d: d8:dd:e9:d1:97:b8:a9:a1:16:ed:4a:f4:18:64:fa: 02:40:13:47:f3:23:70:14:8d:1f:87:e8:7e:ff:9f: 91:fd:92:6a:a5:c3:9b:da:3f:af:bf:17:38:8a:03: 66:7c:8e:93:43:3d:30:7e:c0:54:82:7d:8e:9b:0f: 5c:21:dd:75:02:50:da:8c:5a:27:e8:c6:d4:7c:15: a8:e1:01:02:6d:28:89:96:36:79:fd:90:08:cd:b8: 11:23:86:73:01:47:de:d3:ef:8f:f6:c9:1a:83:ac: 19:47:4d:28:38:a5:0f:74:ef:d5:3f:1d:fd:10:ba: 32:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:2D:47:D9:C4:44:95:5B:1C:86:A0:0E:11:3F:A9:5E:9B:55:54:86 X509v3 Authority Key Identifier: keyid:1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:b7:ea:9d:88:76:f0:97:09:a1:ac:db:d5:ca:1c:fe:ee:4a: e0:03:c2:37:f9:28:1a:48:ac:56:86:2a:d8:23:ea:a4:5b:bd: 8e:2f:97:cb:6b:5e:ca:34:47:37:41:96:f5:aa:72:23:22:9e: 63:98:dd:42:4a:8a:95:15:3b:be:0c:50:a3:97:75:dd:c5:73: 20:dd:85:69:d1:e0:bf:a1:9a:6d:c3:90:4d:cf:01:e2:50:0a: 20:e9:cc:55:32:12:68:5b:fb:8a:72:82:e8:fa:e8:0e:18:95: 7f:b2:c0:4f:36:67:bf:2c:76:3f:1e:4c:5f:31:40:90:1c:88: 5d:32:01:2b:eb:7e:bd:a0:ba:0a:45:33:9a:66:c3:8c:64:08: 6e:ab:e4:58:0b:2b:5f:c2:fa:ce:cc:0e:a4:85:03:29:eb:6a: 7f:8e:da:8f:c3:80:0c:b8:ee:01:54:cd:77:d9:75:04:65:19: 3d:05:32:89:27:8f:01:01:68:63:ad:6b:ab:1c:c1:3d:fc:4c: b2:e4:8e:c1:b8:22:c8:05:e3:6b:dc:e2:cc:87:99:53:0b:2b: 09:90:9a:dc:f5:c0:15:9f:0b:59:b8:53:5f:4a:dd:f4:7a:69: 6b:56:96:4b:8d:76:cf:8f:87:38:d9:98:5b:f5:1d:fa:f2:ce: c4:5c:ae:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlEMUYxMTAvBgNVBAUTKDFDMEVCREMyODFEMDJGOURBMjRFQzExNzRCQTlDRjE4 NDU5QjkzRTAwHhcNMjUwODA5MDEwNzQxWhcNMjUwODE2MDEwNzQxWjAYMRYwFAYD VQQDEw02ODk2OWY1ZC1mNTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mFzjr9lLTYQvXzw4wTd249jKETppdP/xQBV4CfO9GkkRDalF4uC1XyMFTMW 3r78biAxWoTE4ST3OPfPIPjtc//mpd8JklA3M9RLzYS60PQItEe9t+e9+9W1OIwC KOxq5XQnh16skEOi44IyTK4fEY32MOzrFcFS3DsMSl6KFL8G2BVB/E3Y3enRl7ip oRbtSvQYZPoCQBNH8yNwFI0fh+h+/5+R/ZJqpcOb2j+vvxc4igNmfI6TQz0wfsBU gn2Omw9cId11AlDajFon6MbUfBWo4QECbSiJljZ5/ZAIzbgRI4ZzAUfe0++P9ska g6wZR00oOKUPdO/VPx39ELoyAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEtR9nE RJVbHIagDhE/qV6bVVSGMB8GA1UdIwQYMBaAFBwOvcKB0C+dok7BF0upzxhFm5Pg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUQxRi9EOTgyQ0I1RTk1 RDcxMUVDOTUzRjk1NERDNEY5QUUwMi9IQTY5d29IUUw1MmlUc0VYUzZuUEdFV2Jr LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBNjl3b0hRTDUyaVRzRVhTNm5QR0VXYmstQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUQxRi9EOTgyQ0I1RTk1RDcxMUVDOTUzRjk1NERDNEY5QUUwMi9IQTY5d29IUUw1 MmlUc0VYUzZuUEdFV2JrLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAht+qdiHbwlwmhrNvVyhz+7krgA8I3+SgaSKxWhirYI+qkW72OL5fL a17KNEc3QZb1qnIjIp5jmN1CSoqVFTu+DFCjl3XdxXMg3YVp0eC/oZptw5BNzwHi UAog6cxVMhJoW/uKcoLo+ugOGJV/ssBPNme/LHY/HkxfMUCQHIhdMgEr6369oLoK RTOaZsOMZAhuq+RYCytfwvrOzA6khQMp62p/jtqPw4AMuO4BVM132XUEZRk9BTKJ J48BAWhjrWurHME9/Eyy5I7BuCLIBeNr3OLMh5lTCysJkJrc9cAVnwtZuFNfSt30 emlrVpZLjXbPj4c42Zhb9R368s7EXK4s -----END CERTIFICATE-----Generated at Sun Aug 10 18:13:16 2025 by rpki-client