$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: YPSxvpDy2XQgqWXeww2ADdPyDa/HudhdEG8GPGvV6d0= Subject key identifier: AC:2C:CF:BB:44:2F:31:81:99:D1:AE:2B:A2:A5:30:0E:68:46:DA:06 Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 0808 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 07FA Signing time: Sat 06 Sep 2025 21:13:20 +0000 Manifest this update: Sat 06 Sep 2025 21:13:20 +0000 Manifest next update: Sat 13 Sep 2025 21:13:20 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: XCIiTPBUjtdloJUORxrdZwiWnUjBoqZJRS4v+E8Va6g=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:13:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2056 (0x808) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Sep 6 21:13:20 2025 GMT Not After : Sep 13 21:13:20 2025 GMT Subject: CN=68bca3f0-ae8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:38:19:39:74:a3:3a:1e:97:45:33:e7:e2:62: 67:64:be:a4:8e:59:f0:09:20:61:02:5c:ec:1b:cc: 3a:12:7d:60:61:98:84:8c:cd:f2:30:7f:3d:f3:55: e8:e8:ff:c3:43:78:53:66:5c:05:a1:9d:b3:53:8c: a5:ee:61:c5:e9:4b:d0:eb:b2:a3:98:fc:07:5e:9a: de:b7:3d:f4:d8:41:06:f7:66:8f:eb:7c:2a:c2:df: 87:32:26:4a:0c:54:56:71:52:8d:1e:1d:33:cc:42: eb:18:54:ac:a6:0e:84:7b:60:9a:41:6d:e8:dd:ac: 02:c3:ed:aa:9c:21:fd:d5:fb:b4:3a:00:9a:f2:1d: 6e:c4:15:24:82:13:a8:71:78:73:ba:41:62:48:1a: c2:f7:2f:ea:32:13:75:b5:b1:3e:9c:78:9c:e8:27: a5:a9:d1:55:84:c7:65:25:e5:ee:d7:f3:88:f3:ec: 6d:40:7d:56:e9:51:40:74:fb:59:c0:ee:50:39:8b: 04:43:21:25:f0:bb:fa:f2:a1:32:31:11:13:15:96: 03:a5:90:c6:b0:e9:36:97:7e:fa:44:50:ee:20:20: bb:36:61:59:25:8b:12:e9:48:f2:d3:d4:1c:bd:b8: 2f:66:a6:35:9a:58:6f:41:42:1b:7a:2c:78:a7:eb: 5f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:2C:CF:BB:44:2F:31:81:99:D1:AE:2B:A2:A5:30:0E:68:46:DA:06 X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:58:c0:d2:22:7a:84:0a:18:fc:b8:10:1b:1e:15:fc:98:57: cf:55:3f:10:01:43:ea:71:4e:40:e3:4f:a8:81:57:09:2a:f7: 11:1e:1b:ac:c0:1d:84:98:fe:f6:4f:73:11:8c:e4:26:92:70: 60:10:c4:f5:72:3e:83:c1:7c:56:0b:c1:4e:46:82:c2:7e:c3: c7:c6:04:4e:9f:f3:51:aa:ae:f1:40:7c:69:ae:a2:e0:12:6e: 7d:fa:47:4e:82:da:e6:f1:a4:f7:2c:3b:3d:f3:63:8f:3a:e9: 48:f7:25:5d:e8:65:1c:bc:54:8d:77:a1:fa:a8:7a:89:48:b8: 22:fa:b8:dc:63:c4:22:81:e3:98:b3:d4:4a:df:27:de:70:39: 38:77:9d:ad:ae:5e:f7:0f:8c:4b:04:77:f8:ea:aa:93:6c:8b: 49:5b:4f:49:f0:f1:23:c2:ed:ee:d5:4f:be:74:39:b8:86:85: bd:37:fd:37:a4:40:d2:e4:21:de:9a:31:df:f7:36:ad:8b:e4: 17:87:5d:7e:aa:85:ff:f8:12:c0:9a:b1:2f:84:b6:2b:3a:74: 9c:7f:91:bb:97:92:64:3b:b4:96:54:8d:ff:74:db:b2:29:d4: 5c:73:c7:8a:fd:de:7f:f4:3c:a4:59:ef:91:f2:b5:d5:91:fd: 78:ba:8a:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjUwOTA2MjExMzIwWhcNMjUwOTEzMjExMzIwWjAYMRYwFAYD VQQDEw02OGJjYTNmMC1hZThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8DgZOXSjOh6XRTPn4mJnZL6kjlnwCSBhAlzsG8w6En1gYZiEjM3yMH8981Xo 6P/DQ3hTZlwFoZ2zU4yl7mHF6UvQ67KjmPwHXpretz302EEG92aP63wqwt+HMiZK DFRWcVKNHh0zzELrGFSspg6Ee2CaQW3o3awCw+2qnCH91fu0OgCa8h1uxBUkghOo cXhzukFiSBrC9y/qMhN1tbE+nHic6CelqdFVhMdlJeXu1/OI8+xtQH1W6VFAdPtZ wO5QOYsEQyEl8Lv68qEyMRETFZYDpZDGsOk2l376RFDuICC7NmFZJYsS6Ujy09Qc vbgvZqY1mlhvQUIbeix4p+tf/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwsz7tE LzGBmdGuK6KlMA5oRtoGMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsWMDSInqEChj8uBAbHhX8mFfPVT8QAUPqcU5A40+ogVcJKvcRHhus wB2EmP72T3MRjOQmknBgEMT1cj6DwXxWC8FORoLCfsPHxgROn/NRqq7xQHxprqLg Em59+kdOgtrm8aT3LDs982OPOulI9yVd6GUcvFSNd6H6qHqJSLgi+rjcY8QigeOY s9RK3yfecDk4d52trl73D4xLBHf46qqTbItJW09J8PEjwu3u1U++dDm4hoW9N/03 pEDS5CHemjHf9zati+QXh11+qoX/+BLAmrEvhLYrOnScf5G7l5JkO7SWVI3/dNuy KdRcc8eK/d5/9DykWe+R8rXVkf14uop8 -----END CERTIFICATE-----Generated at Mon Sep 8 07:31:06 2025 by rpki-client