$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: +Y6ATGXzrIJn1n69RgwzsjKst/ENjBxJzl7opRROM5w= Subject key identifier: 74:DF:77:B1:C1:55:51:65:E5:35:A7:1F:F5:BE:DF:6C:7E:56:20:8C Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 07F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 07E2 Signing time: Tue 22 Jul 2025 21:18:01 +0000 Manifest this update: Tue 22 Jul 2025 21:18:00 +0000 Manifest next update: Tue 29 Jul 2025 21:18:00 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: fJSvr2hrqfHLBm+fjEvInVdis2JOWfOkWnmdZaEUOaA=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 21:18:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2032 (0x7f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Jul 22 21:18:00 2025 GMT Not After : Jul 29 21:18:00 2025 GMT Subject: CN=68800008-25d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:75:c5:4b:db:bd:a6:67:b9:6c:d5:64:f4:46: b8:98:d7:cf:92:a8:72:10:04:4c:d7:fc:a1:e4:f2: 08:f8:b5:76:ae:03:37:31:5c:42:df:68:5b:f6:6e: cd:c2:8c:06:8b:46:b5:84:64:da:fb:93:88:61:f3: 45:89:9c:af:9e:92:67:25:e2:06:53:2e:2c:9d:58: 66:89:b0:c8:2e:c4:db:ee:40:56:b8:83:49:a5:e8: 9f:70:33:e4:eb:92:1c:4f:fd:35:a6:3b:46:0f:66: 9b:7a:8c:99:ba:e9:ad:05:22:46:2b:49:f1:a7:a1: 43:be:91:c6:d8:50:b4:8c:d0:68:2b:fe:50:9b:ae: b9:e1:6b:f5:fc:a2:dc:9b:3e:b0:8c:a8:d9:a9:63: 46:2e:1b:b3:2b:71:a0:e4:2e:40:f6:8d:2f:36:60: 6c:fe:a1:b3:df:be:94:09:c3:08:6a:d7:fb:0d:6a: 2a:40:a0:36:07:32:cf:83:58:22:a8:26:c8:67:7f: a3:14:9e:68:b4:1e:a1:c4:ec:d5:26:7f:16:cc:22: d1:1f:78:28:ea:76:80:19:09:b4:f6:8e:f7:5c:51: 8c:ec:79:e7:ed:72:3a:1e:6b:42:70:fc:5e:fe:aa: 38:f9:81:da:6c:70:93:ef:fe:8e:a9:38:3f:ec:01: c4:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:DF:77:B1:C1:55:51:65:E5:35:A7:1F:F5:BE:DF:6C:7E:56:20:8C X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:d5:e4:f0:61:08:05:d2:77:86:3a:62:11:ad:4e:08:3f:6c: 23:43:8d:0d:e9:ee:32:b7:36:82:48:75:00:cd:1a:b5:b3:4e: 29:86:5b:90:51:74:ba:66:7b:6f:c7:b1:e6:4d:e6:ee:cb:73: e6:7f:f4:cf:db:9b:01:26:80:1d:83:bc:47:00:22:71:8d:0e: 39:15:bc:7d:86:d9:8e:27:6b:8c:29:b1:cd:9f:9c:59:72:cb: dc:c6:2f:3d:3c:fa:63:b9:73:59:9a:49:04:35:91:c9:25:14: 83:04:4c:0e:bb:55:5f:06:74:e9:60:b5:71:c9:d9:22:9a:89: 2c:55:ee:0b:64:af:a2:e0:1a:af:a4:2f:09:bf:93:f2:50:8c: 07:a1:02:0a:e5:e8:2f:3f:ab:7e:5a:6e:97:fc:42:ba:fa:d6: 97:be:45:db:33:ec:f1:6c:fd:7e:7d:e3:a2:fd:c0:f0:b5:a5: fb:29:dc:2b:46:83:7a:91:65:74:52:7b:e9:f1:77:74:13:b3: eb:cb:38:3b:f6:f5:25:df:c5:36:27:c2:9f:06:bc:cb:52:71: fc:06:c7:51:7f:27:44:73:15:bf:72:85:b1:82:4b:05:32:25: 1b:6d:68:4f:48:07:c9:cc:cf:be:01:77:08:29:2e:f7:d0:99: 4d:87:e9:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjUwNzIyMjExODAwWhcNMjUwNzI5MjExODAwWjAYMRYwFAYD VQQDEw02ODgwMDAwOC0yNWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXXFS9u9pme5bNVk9Ea4mNfPkqhyEARM1/yh5PII+LV2rgM3MVxC32hb9m7N wowGi0a1hGTa+5OIYfNFiZyvnpJnJeIGUy4snVhmibDILsTb7kBWuINJpeifcDPk 65IcT/01pjtGD2abeoyZuumtBSJGK0nxp6FDvpHG2FC0jNBoK/5Qm6654Wv1/KLc mz6wjKjZqWNGLhuzK3Gg5C5A9o0vNmBs/qGz376UCcMIatf7DWoqQKA2BzLPg1gi qCbIZ3+jFJ5otB6hxOzVJn8WzCLRH3go6naAGQm09o73XFGM7Hnn7XI6HmtCcPxe /qo4+YHabHCT7/6OqTg/7AHEIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTfd7HB VVFl5TWnH/W+32x+ViCMMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAe1eTwYQgF0neGOmIRrU4IP2wjQ40N6e4ytzaCSHUAzRq1s04phluQ UXS6Zntvx7HmTebuy3Pmf/TP25sBJoAdg7xHACJxjQ45Fbx9htmOJ2uMKbHNn5xZ csvcxi89PPpjuXNZmkkENZHJJRSDBEwOu1VfBnTpYLVxydkimoksVe4LZK+i4Bqv pC8Jv5PyUIwHoQIK5egvP6t+Wm6X/EK6+taXvkXbM+zxbP1+feOi/cDwtaX7Kdwr RoN6kWV0Unvp8Xd0E7Pryzg79vUl38U2J8KfBrzLUnH8BsdRfydEcxW/coWxgksF MiUbbWhPSAfJzM++AXcIKS730JlNh+my -----END CERTIFICATE-----Generated at Thu Jul 24 08:28:56 2025 by rpki-client