$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: VYkk5RyEA2+cummZCBOO/sRHKNA3i1+oXA3zHnqEHm8= Subject key identifier: C1:5F:75:69:DE:29:B8:B9:8C:C6:E8:23:72:29:C9:90:32:D9:F9:F3 Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 157B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 152D Signing time: Sun 20 Jul 2025 16:54:51 +0000 Manifest this update: Sun 20 Jul 2025 16:54:50 +0000 Manifest next update: Sun 27 Jul 2025 16:54:50 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: 0H/wsXpxqPQpRbaLaTd2ch7dkeaJ7SJSBLgMMS3aCuU=) 2: 1E7AFF46066811ED8098BF45C4F9AE02.roa (hash: pMbtnFc8zkKB11nARNzWqAhXlLOdubvooUtelhAM5fE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5499 (0x157b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: Jul 20 16:54:50 2025 GMT Not After : Jul 27 16:54:50 2025 GMT Subject: CN=687d1f5b-9ae6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:eb:9b:7e:a9:42:6e:62:52:6f:42:de:cd:ce: 7a:24:74:b6:46:ef:ac:66:7a:f5:70:1b:b1:cf:e6: b0:4b:66:a5:43:01:bf:c3:69:b1:27:ee:57:ad:c0: 23:9b:c1:37:2e:fa:82:da:aa:e9:3b:08:4d:72:b2: fe:23:5c:7f:fb:13:ce:c8:80:e0:cc:06:44:78:ff: 41:84:a8:ba:ea:e1:a8:e3:24:45:11:06:22:3f:97: 2a:08:ec:bd:23:f4:13:28:bd:f3:83:bb:75:70:d6: 41:60:c4:cc:a2:b3:6a:20:c2:15:52:c6:a5:b7:bc: b2:ef:5d:61:86:b3:32:e5:e3:f0:c6:4a:61:36:c4: 53:31:ed:da:21:3c:c0:98:ed:11:6f:70:09:16:8d: bf:3b:9b:d5:49:3d:b4:9c:62:92:5e:a8:1d:6c:7e: 6a:d2:18:f5:69:7a:f6:68:eb:24:d4:7d:43:da:28: 03:db:21:11:ad:2d:8c:51:56:45:c7:14:2a:e9:5e: 70:44:71:d3:4a:e1:0d:02:00:60:f6:3d:b4:41:94: 90:c5:2e:af:48:f8:a8:1d:f5:b9:03:be:ec:40:92: 9e:ed:1f:c1:bb:db:2a:6e:e1:3a:8a:c4:43:be:d6: 66:6c:c9:dd:ac:e1:7a:00:96:5d:d2:af:64:b7:cf: c1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:5F:75:69:DE:29:B8:B9:8C:C6:E8:23:72:29:C9:90:32:D9:F9:F3 X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:27:8b:e2:0f:6e:5c:9c:3b:dc:1f:75:66:59:45:43:8a:ea: cd:03:92:7c:6a:5e:0e:2f:79:75:f9:be:d2:3b:cd:d7:30:2e: 32:eb:e7:53:f5:03:15:ee:77:16:be:f2:cf:f6:8b:93:d3:7c: d0:3a:7b:26:56:02:0d:e8:db:1d:5f:99:f9:51:47:db:22:cd: 7e:cd:43:0f:e7:6a:d6:a4:e3:ad:e6:26:e0:6e:47:85:dc:98: bc:86:53:15:97:19:95:d4:59:cf:81:57:c5:11:e2:fc:7f:45: 67:e8:55:6f:71:28:77:3c:36:45:45:58:9c:43:2b:e3:2c:98: f8:90:99:01:8d:52:9a:c1:05:a2:34:7e:39:6e:1a:5f:dd:c8: a0:2f:46:8f:1c:de:d6:4e:32:8e:f2:f1:f5:fc:7d:b7:1b:27: 3b:ee:68:31:7d:ba:6c:93:7e:59:a2:33:a8:45:ef:eb:93:b2: 50:f0:8a:ba:0f:ad:43:fa:f9:6a:5a:86:a4:b6:f7:ec:8a:34: 9e:e8:ed:b6:53:45:08:9b:ec:9f:1b:1c:ea:72:93:cb:38:ec: 97:91:24:b7:5b:09:00:8c:49:c8:ff:69:29:89:b3:4c:36:37: 74:d7:3c:5f:17:74:16:d1:31:7f:a9:68:f3:5c:67:8a:31:60: 20:ed:95:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjUwNzIwMTY1NDUwWhcNMjUwNzI3MTY1NDUwWjAYMRYwFAYD VQQDEw02ODdkMWY1Yi05YWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+ubfqlCbmJSb0Lezc56JHS2Ru+sZnr1cBuxz+awS2alQwG/w2mxJ+5XrcAj m8E3LvqC2qrpOwhNcrL+I1x/+xPOyIDgzAZEeP9BhKi66uGo4yRFEQYiP5cqCOy9 I/QTKL3zg7t1cNZBYMTMorNqIMIVUsalt7yy711hhrMy5ePwxkphNsRTMe3aITzA mO0Rb3AJFo2/O5vVST20nGKSXqgdbH5q0hj1aXr2aOsk1H1D2igD2yERrS2MUVZF xxQq6V5wRHHTSuENAgBg9j20QZSQxS6vSPioHfW5A77sQJKe7R/Bu9sqbuE6isRD vtZmbMndrOF6AJZd0q9kt8/BqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFfdWne Kbi5jMboI3IpyZAy2fnzMB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdJ4viD25cnDvcH3VmWUVDiurNA5J8al4OL3l1+b7SO83XMC4y6+dT 9QMV7ncWvvLP9ouT03zQOnsmVgIN6NsdX5n5UUfbIs1+zUMP52rWpOOt5ibgbkeF 3Ji8hlMVlxmV1FnPgVfFEeL8f0Vn6FVvcSh3PDZFRVicQyvjLJj4kJkBjVKawQWi NH45bhpf3cigL0aPHN7WTjKO8vH1/H23Gyc77mgxfbpsk35ZojOoRe/rk7JQ8Iq6 D61D+vlqWoaktvfsijSe6O22U0UIm+yfGxzqcpPLOOyXkSS3WwkAjEnI/2kpibNM Njd01zxfF3QW0TF/qWjzXGeKMWAg7ZVa -----END CERTIFICATE-----Generated at Mon Jul 21 00:32:11 2025 by rpki-client