$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: teDv/FrFkH4HDn3XqUuKWX9rV+Ti+yeIXe0sJLJ0yPA= Subject key identifier: DF:40:63:B2:B7:90:1D:9D:E4:69:00:94:BA:E9:97:21:B2:68:32:33 Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 07D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 07C7 Signing time: Fri 30 May 2025 21:21:39 +0000 Manifest this update: Fri 30 May 2025 21:21:38 +0000 Manifest next update: Fri 06 Jun 2025 21:21:38 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: ZK6JeKiiNKil8lEH3AsTumjlVcJ65pFPXyxx9CeXRvo=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2005 (0x7d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: May 30 21:21:38 2025 GMT Not After : Jun 6 21:21:38 2025 GMT Subject: CN=683a2163-508a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:99:b9:16:3b:90:bf:ab:f2:fc:a6:54:96:ae: a2:57:e8:e7:8f:83:65:46:90:93:df:68:fc:c2:88: fd:05:48:75:81:c3:e6:7c:9f:e0:e8:92:c6:a6:47: 4a:84:70:14:e6:20:6e:99:9c:8f:0a:fc:c2:a8:01: 95:80:52:59:cb:db:e3:c7:59:26:c7:f9:07:56:94: b9:db:e5:84:74:11:5b:1e:dd:aa:58:26:19:60:4c: a5:1d:0b:f7:9a:a3:d1:0e:a3:fd:4c:fd:cf:e5:01: 0a:8b:3d:75:c6:78:33:54:b1:0e:b4:c8:a1:53:81: 44:e0:08:0a:2d:21:3a:f3:98:b2:5c:06:41:9b:15: 5d:d7:e3:05:c6:89:4b:65:c8:75:2c:bf:5a:3f:58: da:2c:35:98:76:4e:bf:3a:78:3e:c6:55:d1:8a:8e: bf:da:df:7a:d9:d7:7b:86:ed:47:3f:6a:47:55:95: 20:df:9f:de:c7:36:fe:76:3c:6f:af:ed:f5:ff:8e: ac:4a:29:45:49:7d:08:73:b5:11:ff:fb:91:d9:89: 47:76:8a:8a:3a:ef:95:dc:4a:04:b7:d8:3b:ea:8c: 4a:6d:7f:ad:0b:c5:ff:8b:06:a5:f6:fe:06:38:a2: 7b:b1:c4:b2:7a:ca:b8:b4:26:3f:a7:81:16:92:33: 2d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:40:63:B2:B7:90:1D:9D:E4:69:00:94:BA:E9:97:21:B2:68:32:33 X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:29:9c:a1:05:7e:e3:ff:6c:bc:e2:32:b6:53:7a:19:de:76: 06:81:11:d5:00:09:d2:62:73:7c:d7:ed:4e:be:77:7d:7a:ee: 39:bd:4e:43:3b:c8:df:65:1f:1e:e0:fc:25:e3:cd:66:fc:53: 75:25:57:3f:c2:ff:d8:89:ed:f8:6f:e6:a9:fc:b8:5b:87:38: 78:ee:4d:d0:a2:38:55:a7:79:c8:0d:bb:8d:e0:34:14:7c:c2: e0:b8:b8:2f:9e:46:de:ec:f1:a1:07:0f:0c:24:c3:67:88:13: 8b:50:6d:3e:8f:a4:84:aa:40:77:8b:f9:52:f0:2c:ab:85:c0: 74:4f:85:08:b5:e2:e3:f1:fd:72:6a:74:22:77:45:aa:b0:a2: 16:70:09:49:4e:0a:03:41:00:65:a0:26:1a:dc:ec:eb:2b:77: 2b:ca:2a:fa:69:4d:66:1b:50:6b:1f:d4:d0:c4:cc:0b:d1:20: 6e:b3:f4:5c:4a:6b:7f:bc:00:fe:55:3d:2a:35:f1:6b:26:cd: e2:27:4b:f4:5a:db:8a:23:d2:55:74:3c:da:ba:8a:ff:e7:41: 39:0f:b4:f2:f5:34:c2:a6:c9:da:f0:22:0e:d8:bd:06:33:84: 60:ec:c1:c6:71:f1:93:a7:a4:ac:a5:f2:af:db:5d:b4:c3:15: 07:0f:ae:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjUwNTMwMjEyMTM4WhcNMjUwNjA2MjEyMTM4WjAYMRYwFAYD VQQDEw02ODNhMjE2My01MDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpm5FjuQv6vy/KZUlq6iV+jnj4NlRpCT32j8woj9BUh1gcPmfJ/g6JLGpkdK hHAU5iBumZyPCvzCqAGVgFJZy9vjx1kmx/kHVpS52+WEdBFbHt2qWCYZYEylHQv3 mqPRDqP9TP3P5QEKiz11xngzVLEOtMihU4FE4AgKLSE685iyXAZBmxVd1+MFxolL Zch1LL9aP1jaLDWYdk6/Ong+xlXRio6/2t962dd7hu1HP2pHVZUg35/exzb+djxv r+31/46sSilFSX0Ic7UR//uR2YlHdoqKOu+V3EoEt9g76oxKbX+tC8X/iwal9v4G OKJ7scSyesq4tCY/p4EWkjMtrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9AY7K3 kB2d5GkAlLrplyGyaDIzMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaKZyhBX7j/2y84jK2U3oZ3nYGgRHVAAnSYnN81+1Ovnd9eu45vU5D O8jfZR8e4Pwl481m/FN1JVc/wv/Yie34b+ap/Lhbhzh47k3QojhVp3nIDbuN4DQU fMLguLgvnkbe7PGhBw8MJMNniBOLUG0+j6SEqkB3i/lS8CyrhcB0T4UIteLj8f1y anQid0WqsKIWcAlJTgoDQQBloCYa3OzrK3cryir6aU1mG1BrH9TQxMwL0SBus/Rc Smt/vAD+VT0qNfFrJs3iJ0v0WtuKI9JVdDzauor/50E5D7Ty9TTCpsna8CIO2L0G M4Rg7MHGcfGTp6SspfKv2120wxUHD67x -----END CERTIFICATE-----Generated at Sat May 31 15:33:54 2025 by rpki-client