$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: Q1bnHeN22tYqxWnzHzVx14eGOWMLXAUpLD0NHlVTiOk= Subject key identifier: 45:DF:E0:31:0E:CE:55:0A:EF:A6:D4:6B:B6:18:6F:62:00:76:62:D2 Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 155B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 1510 Signing time: Mon 02 Jun 2025 17:05:38 +0000 Manifest this update: Mon 02 Jun 2025 17:05:38 +0000 Manifest next update: Mon 09 Jun 2025 17:05:38 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: g6oswyVJRVOoN24UEHz5lao0abtcFyMZ6Vb1Ro7Jb1M=) 2: 1E7AFF46066811ED8098BF45C4F9AE02.roa (hash: SCOcImgORIfO8b7Sx9HUbjlVKWnnJsQttWH8wzwZbmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5467 (0x155b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: Jun 2 17:05:38 2025 GMT Not After : Jun 9 17:05:38 2025 GMT Subject: CN=683dd9e2-aa91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:68:60:6f:25:97:72:eb:b6:91:c2:58:8f:e5: 96:27:80:17:ae:6d:03:38:03:60:67:59:45:61:2e: 10:b9:fd:d4:e0:31:1e:f5:87:4a:9f:af:2e:b5:23: 9f:99:89:8d:96:4a:29:99:21:f9:d5:52:e5:1e:09: dc:9d:11:c8:8e:5a:23:42:88:b1:2f:eb:a6:53:4d: 84:74:76:11:18:3d:73:42:8e:2a:ea:dc:cf:f3:78: 4b:50:e4:bf:b5:d4:13:1e:42:9e:8d:e6:73:d5:df: df:d1:41:3e:19:d7:b2:a2:b2:66:d8:0d:64:8d:c6: d4:0b:c7:db:62:8c:27:d9:e0:53:07:ec:bf:c2:2c: c2:f4:e5:21:00:01:c9:32:12:8a:75:f3:99:50:58: 83:be:82:91:fc:47:f7:e8:bb:ae:67:ef:fe:40:e7: 63:6e:9e:c8:ac:dd:ba:d0:af:d9:07:27:eb:94:34: 3a:18:24:c0:56:fa:7e:a1:9b:b0:f3:45:1b:41:aa: df:dc:b2:61:78:bc:89:94:7b:cb:36:f1:17:85:3c: 55:66:91:a3:98:b6:0a:bf:2f:19:c5:25:93:02:2c: 44:f2:65:70:39:d9:7e:97:f3:30:d8:79:c0:bc:c7: 2c:bd:ee:3a:06:f0:5f:4a:a5:d8:d2:f8:40:12:04: f9:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:DF:E0:31:0E:CE:55:0A:EF:A6:D4:6B:B6:18:6F:62:00:76:62:D2 X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:5a:7a:2e:78:2b:81:76:ba:48:b8:27:ef:df:90:d4:91:bd: 50:63:72:a9:9a:ab:0a:0d:9f:6e:cf:50:45:6b:27:94:cd:1c: 96:18:cd:0d:b5:73:bf:7b:59:2f:46:02:c5:82:15:38:ce:25: dd:81:9e:9f:26:45:bd:b9:9b:9d:5e:76:f7:9c:1d:a0:5c:b6: 76:e9:5e:07:16:6a:6b:5a:bc:ee:86:9c:ef:8d:37:15:d1:6d: d7:4f:42:db:2c:4d:e5:2c:cb:31:d3:09:e5:24:58:17:f7:a7: 93:69:3f:2b:91:cc:73:01:53:2f:80:5e:33:e2:67:06:7c:95: cd:41:03:0e:fd:30:b7:de:14:32:41:5e:7b:34:f6:49:d5:70: 85:77:55:c7:53:0c:21:98:4e:34:9d:13:95:80:9f:79:bc:ef: 77:d3:85:4e:e3:c8:2c:6c:71:5f:00:88:4a:20:ef:6d:82:c6: 32:fe:d4:aa:38:bc:83:7f:ee:19:ca:8b:69:f3:a0:d8:d6:69: 0b:0f:15:6c:0d:7a:d6:fb:6b:ff:af:63:b9:0d:59:06:b4:d8: dd:94:69:bc:b2:82:99:96:e4:2a:87:ed:a8:ea:7a:41:8f:ac: c6:55:7f:2d:eb:e7:c9:22:f1:e2:ef:ab:5b:d3:80:6b:37:55: 1a:ca:6e:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjUwNjAyMTcwNTM4WhcNMjUwNjA5MTcwNTM4WjAYMRYwFAYD VQQDEw02ODNkZDllMi1hYTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2hgbyWXcuu2kcJYj+WWJ4AXrm0DOANgZ1lFYS4Quf3U4DEe9YdKn68utSOf mYmNlkopmSH51VLlHgncnRHIjlojQoixL+umU02EdHYRGD1zQo4q6tzP83hLUOS/ tdQTHkKejeZz1d/f0UE+GdeyorJm2A1kjcbUC8fbYown2eBTB+y/wizC9OUhAAHJ MhKKdfOZUFiDvoKR/Ef36LuuZ+/+QOdjbp7IrN260K/ZByfrlDQ6GCTAVvp+oZuw 80UbQarf3LJheLyJlHvLNvEXhTxVZpGjmLYKvy8ZxSWTAixE8mVwOdl+l/Mw2HnA vMcsve46BvBfSqXY0vhAEgT5AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXf4DEO zlUK76bUa7YYb2IAdmLSMB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwWnoueCuBdrpIuCfv35DUkb1QY3KpmqsKDZ9uz1BFayeUzRyWGM0N tXO/e1kvRgLFghU4ziXdgZ6fJkW9uZudXnb3nB2gXLZ26V4HFmprWrzuhpzvjTcV 0W3XT0LbLE3lLMsx0wnlJFgX96eTaT8rkcxzAVMvgF4z4mcGfJXNQQMO/TC33hQy QV57NPZJ1XCFd1XHUwwhmE40nROVgJ95vO9304VO48gsbHFfAIhKIO9tgsYy/tSq OLyDf+4Zyotp86DY1mkLDxVsDXrW+2v/r2O5DVkGtNjdlGm8soKZluQqh+2o6npB j6zGVX8t6+fJIvHi76tb04BrN1Uaym5b -----END CERTIFICATE-----Generated at Mon Jun 2 21:03:18 2025 by rpki-client