$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: H0mOV6eKu947m8Q3Wq1l7sw9x7ymmtYPvYosSkcuX9o= Subject key identifier: DB:94:7B:40:F9:95:CA:6A:88:C4:61:BD:D7:71:32:02:20:01:16:DD Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 159E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 154C Signing time: Thu 04 Sep 2025 17:00:39 +0000 Manifest this update: Thu 04 Sep 2025 17:00:38 +0000 Manifest next update: Thu 11 Sep 2025 17:00:38 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: 3J9IfgjjzKjOcEnT5lZ7ZPHh8J40TEHxlgCLj9aaxBw=) 2: 1E7AFF46066811ED8098BF45C4F9AE02.roa (hash: EuXxU/8tx8j9kPsvmnFxl7zhI7smJV3xMzjzvaZA3m0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 17:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5534 (0x159e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: Sep 4 17:00:38 2025 GMT Not After : Sep 11 17:00:38 2025 GMT Subject: CN=68b9c5b6-e066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:68:34:db:d0:b3:03:05:01:67:ad:dc:58:f5: 1b:0b:f4:0b:cc:7e:a9:1e:f1:6c:67:3f:01:53:48: d0:06:1d:91:00:21:d6:fe:ed:f8:72:9e:23:a0:4f: c4:ce:6a:2c:b4:aa:d5:b6:20:ae:93:b9:8c:a3:eb: 36:df:17:b8:e7:bb:49:5e:dc:88:27:69:02:4b:e9: ba:e6:a1:52:4a:80:b0:f4:bf:38:4f:88:75:a5:26: dc:b6:ab:5b:07:56:9f:37:a7:f7:d6:ce:f3:5f:40: 3f:97:7c:b8:b3:a8:8c:5b:62:2c:46:d4:e1:97:13: 8e:ab:9d:13:28:5a:ad:f1:2a:a4:58:e6:21:2b:f4: 18:b1:27:11:6f:9e:6c:a2:13:ca:16:85:ed:33:b0: ec:0e:77:e1:41:f0:d2:4b:9f:23:71:0b:cb:b8:aa: 4e:a4:67:ed:d8:f0:11:1c:1b:63:7a:55:22:4c:a0: 79:4e:04:e5:ab:3b:c1:27:38:9e:3a:c7:7d:c1:ab: 6f:af:88:1c:2d:eb:85:1e:08:92:7f:c5:2d:09:04: 05:65:3a:15:2e:8b:b5:ab:ec:dd:8f:cc:f0:83:83: 0d:fc:d0:5c:43:5a:b5:34:41:2a:1f:0b:18:6c:73: 4b:34:3f:3b:fc:30:59:fc:3b:0b:59:0b:e1:33:1b: f3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:94:7B:40:F9:95:CA:6A:88:C4:61:BD:D7:71:32:02:20:01:16:DD X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:84:b3:59:b8:03:b9:7c:03:b1:f8:d5:2b:76:e8:43:53:83: 93:8b:c0:6f:d8:78:65:a5:0b:f7:0a:e5:a3:e9:16:7d:14:b0: 7b:61:36:d6:52:89:c0:e8:cb:6e:a9:ba:5a:ea:2a:91:67:ed: 1c:ef:71:ad:29:5c:d1:1e:0d:bb:b4:37:37:ae:76:4c:e6:da: f6:6f:87:aa:58:1b:9b:f8:08:c5:d9:18:27:79:ae:14:cc:69: 99:b1:66:3b:67:9d:0d:88:33:9b:2f:2a:7f:82:94:22:d4:55: c9:c6:58:28:07:c3:41:29:b8:59:bc:4f:54:dc:2d:92:1a:3a: a2:3d:07:e8:3c:49:c9:e7:6e:59:ea:df:f6:61:c1:a5:75:64: ff:8b:c7:6f:97:3d:b0:86:f4:9f:29:e1:a7:21:8c:05:aa:4b: 14:a5:dd:4e:10:4b:01:d7:7a:8c:74:c2:49:11:13:bc:83:9e: 43:c1:ca:ca:94:c4:d2:8b:00:a7:e7:e0:58:29:c1:d3:fa:e7: 3c:97:fd:1c:a2:52:11:9a:e3:49:7e:7c:4c:28:38:3c:aa:ca: 79:5d:34:74:b0:b8:98:cb:c3:cf:cb:1c:24:b4:80:45:b7:c3: 91:36:13:29:3c:8a:3c:66:3d:db:2d:1c:2d:1c:38:46:23:07: a3:9a:cc:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjUwOTA0MTcwMDM4WhcNMjUwOTExMTcwMDM4WjAYMRYwFAYD VQQDEw02OGI5YzViNi1lMDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Gg029CzAwUBZ63cWPUbC/QLzH6pHvFsZz8BU0jQBh2RACHW/u34cp4joE/E zmostKrVtiCuk7mMo+s23xe457tJXtyIJ2kCS+m65qFSSoCw9L84T4h1pSbctqtb B1afN6f31s7zX0A/l3y4s6iMW2IsRtThlxOOq50TKFqt8SqkWOYhK/QYsScRb55s ohPKFoXtM7DsDnfhQfDSS58jcQvLuKpOpGft2PARHBtjelUiTKB5TgTlqzvBJzie Osd9watvr4gcLeuFHgiSf8UtCQQFZToVLou1q+zdj8zwg4MN/NBcQ1q1NEEqHwsY bHNLND87/DBZ/DsLWQvhMxvzfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNuUe0D5 lcpqiMRhvddxMgIgARbdMB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPhLNZuAO5fAOx+NUrduhDU4OTi8Bv2HhlpQv3CuWj6RZ9FLB7YTbW UonA6Mtuqbpa6iqRZ+0c73GtKVzRHg27tDc3rnZM5tr2b4eqWBub+AjF2Rgnea4U zGmZsWY7Z50NiDObLyp/gpQi1FXJxlgoB8NBKbhZvE9U3C2SGjqiPQfoPEnJ525Z 6t/2YcGldWT/i8dvlz2whvSfKeGnIYwFqksUpd1OEEsB13qMdMJJERO8g55DwcrK lMTSiwCn5+BYKcHT+uc8l/0colIRmuNJfnxMKDg8qsp5XTR0sLiYy8PPyxwktIBF t8ORNhMpPIo8Zj3bLRwtHDhGIwejmszT -----END CERTIFICATE-----Generated at Sat Sep 6 15:24:06 2025 by rpki-client