$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: 3jxekABulIzAck0bDy5QFwuTOl5vapJyAmyplRNkd0A= Subject key identifier: 49:41:EB:01:71:76:15:40:91:D3:EE:AD:94:1F:67:1E:24:94:FE:94 Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 07F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 07E3 Signing time: Thu 24 Jul 2025 21:14:27 +0000 Manifest this update: Thu 24 Jul 2025 21:14:27 +0000 Manifest next update: Thu 31 Jul 2025 21:14:27 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: Yo3hSaHFPhkdeYdGRF8Z9UDhzdhBXgMc0ig5wTBg9Lw=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 21:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2033 (0x7f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Jul 24 21:14:27 2025 GMT Not After : Jul 31 21:14:27 2025 GMT Subject: CN=6882a233-12e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:07:ad:1b:a1:ee:7b:47:aa:a3:8c:13:ab:40: 1d:85:94:8b:21:ac:9e:77:07:45:59:61:a9:42:25: b0:a0:79:62:27:8a:58:27:0c:2f:e8:cc:34:66:40: e2:59:8b:5a:ca:5e:11:0b:26:ec:ca:10:10:0d:7f: b8:cc:02:42:ad:da:1c:2e:6d:ab:b4:c8:39:d5:61: 35:0e:ce:8d:3b:3b:e8:6f:a7:58:2f:13:5c:55:03: 03:d0:96:8e:e2:50:26:c5:07:c3:60:f4:ca:ac:ca: c1:ff:a8:2c:dc:a2:bf:4d:36:12:cc:c9:85:e4:12: d3:f1:ca:05:f5:b3:71:95:7e:93:8e:36:7f:8a:9c: 0d:08:08:4f:d9:6a:f7:d1:1b:29:e5:9d:9e:c6:5a: 2f:94:e9:36:56:6e:58:40:8d:2d:a4:45:07:4f:0e: c9:94:27:ea:16:9f:4e:aa:2f:cd:2d:35:c8:e3:51: 68:54:9f:d6:b0:8d:20:60:3d:4e:21:bf:55:79:1a: 2d:4f:24:8b:b5:9f:ec:04:49:42:10:79:8e:3d:52: ec:4c:a9:61:71:57:23:5d:69:38:10:24:71:74:05: 6c:d3:24:26:d7:c2:28:29:10:66:2e:42:5c:ed:b6: 5a:99:8c:24:96:4e:45:12:e7:97:b0:71:5a:85:59: e3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:41:EB:01:71:76:15:40:91:D3:EE:AD:94:1F:67:1E:24:94:FE:94 X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:0d:27:49:5f:5f:32:ce:f8:c7:fb:38:b6:dc:4b:18:48:50: 37:f6:93:83:12:1b:b4:77:0a:86:53:a8:f7:99:a5:f3:8d:ba: e3:05:be:d3:77:10:58:ff:d0:96:5e:d8:f5:ba:34:1c:a9:be: 73:9b:ba:e3:6d:68:e0:82:d7:e3:c6:64:7e:f6:dd:21:79:33: ff:c4:ea:da:98:72:a7:cc:92:0e:39:9b:77:dc:33:30:55:b8: 08:5d:75:12:3b:fc:4e:89:ef:00:7a:d5:5d:34:ee:d5:cb:db: 93:4c:b6:cc:19:26:5c:18:c8:e7:3f:0b:be:d6:95:20:7b:68: a7:14:ff:aa:78:d9:b0:78:7b:85:ec:38:0b:54:09:db:88:01: 59:2a:2f:4e:c8:e3:51:e4:d6:51:ed:b8:9f:7a:e3:81:5b:7f: 03:4f:93:52:3f:36:8a:f9:63:29:35:e8:2f:9e:55:e5:e5:a7: 43:84:4c:bf:26:87:3b:46:d9:ac:f8:2e:c9:bc:cf:99:8a:e1: 9b:bf:12:16:82:a8:c1:dd:0d:32:ce:80:7d:e5:80:7d:d7:e9: 2e:df:64:79:b9:9a:bd:b1:0c:b4:ff:79:88:f7:84:17:c9:e1: 9e:61:d1:1e:ca:26:62:fe:61:ed:d3:49:40:72:a5:7d:ca:e6: d0:ed:84:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjUwNzI0MjExNDI3WhcNMjUwNzMxMjExNDI3WjAYMRYwFAYD VQQDEw02ODgyYTIzMy0xMmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgetG6Hue0eqo4wTq0AdhZSLIayedwdFWWGpQiWwoHliJ4pYJwwv6Mw0ZkDi WYtayl4RCybsyhAQDX+4zAJCrdocLm2rtMg51WE1Ds6NOzvob6dYLxNcVQMD0JaO 4lAmxQfDYPTKrMrB/6gs3KK/TTYSzMmF5BLT8coF9bNxlX6TjjZ/ipwNCAhP2Wr3 0Rsp5Z2exlovlOk2Vm5YQI0tpEUHTw7JlCfqFp9Oqi/NLTXI41FoVJ/WsI0gYD1O Ib9VeRotTySLtZ/sBElCEHmOPVLsTKlhcVcjXWk4ECRxdAVs0yQm18IoKRBmLkJc 7bZamYwklk5FEueXsHFahVnjIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElB6wFx dhVAkdPurZQfZx4klP6UMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUDSdJX18yzvjH+zi23EsYSFA39pODEhu0dwqGU6j3maXzjbrjBb7T dxBY/9CWXtj1ujQcqb5zm7rjbWjggtfjxmR+9t0heTP/xOramHKnzJIOOZt33DMw VbgIXXUSO/xOie8AetVdNO7Vy9uTTLbMGSZcGMjnPwu+1pUge2inFP+qeNmweHuF 7DgLVAnbiAFZKi9OyONR5NZR7bifeuOBW38DT5NSPzaK+WMpNegvnlXl5adDhEy/ Joc7Rtms+C7JvM+ZiuGbvxIWgqjB3Q0yzoB95YB91+ku32R5uZq9sQy0/3mI94QX yeGeYdEeyiZi/mHt00lAcqV9yubQ7YSj -----END CERTIFICATE-----Generated at Fri Jul 25 05:23:14 2025 by rpki-client