$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft File: hHItvUIme93Vm4hBUpklNTHgY2Q.mft (raw, json) Hash identifier: NNGNrMRghKncZXjF4VYEaq+Ey4wXkhdlilJNYYxHtK8= Subject key identifier: C1:99:2C:17:18:7B:C2:77:4F:28:0A:B5:60:90:55:4E:65:42:96:27 Authority key identifier: 84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 Certificate issuer: /CN=A918FEF3/serialNumber=84722DBD42267BDDD59B88415299253531E06364 Certificate serial: 17E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft Manifest number: 17E7 Signing time: Mon 30 Jun 2025 16:42:15 +0000 Manifest this update: Mon 30 Jun 2025 16:42:15 +0000 Manifest next update: Mon 07 Jul 2025 16:42:15 +0000 Files and hashes: 1: hHItvUIme93Vm4hBUpklNTHgY2Q.crl (hash: W4HFJYBPop0JPJh0aDPrTPttOqyfx+7slDl7WQ/hllI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 16:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6119 (0x17e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FEF3, serialNumber=84722DBD42267BDDD59B88415299253531E06364 Validity Not Before: Jun 30 16:42:15 2025 GMT Not After : Jul 7 16:42:15 2025 GMT Subject: CN=6862be67-ed0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:cc:bb:79:f3:25:68:a2:7b:45:c1:47:ae:03: 20:0b:5d:58:be:d8:ad:57:d8:2a:68:55:01:15:98: 2a:b1:0d:a4:87:2e:b8:e6:e5:2d:22:a4:9f:72:05: 0e:bc:fe:98:a5:d8:ab:6b:a8:32:38:77:b6:b0:3a: e0:cc:88:08:6a:fa:e9:15:03:07:4e:79:21:86:8e: d4:eb:09:dc:ee:5d:bb:2f:90:f8:41:ea:87:8c:d1: c5:de:aa:32:75:e9:d9:06:59:c8:d3:4e:0b:df:cf: 41:d0:15:ee:b9:ef:c2:3f:18:5e:08:27:27:1d:40: ae:08:86:22:e2:5b:ad:de:e3:66:dd:80:b7:ad:e5: 31:ed:4b:b2:4a:21:a2:71:76:02:bc:dc:b2:81:26: dd:0d:19:9d:f2:66:d8:d4:a0:6d:13:86:76:ea:58: 88:9f:e0:53:ce:84:84:19:67:4a:b3:f3:6a:12:7e: 21:e6:9f:d6:35:1e:59:b6:88:f3:8a:01:0f:31:0c: b3:54:45:d5:92:b6:81:d8:3c:f6:b7:e5:1f:11:ed: 21:5c:00:d2:6a:e8:9d:a7:c6:96:f9:9f:60:5e:eb: a5:27:b8:39:47:b2:56:fc:1e:4f:c7:4e:80:fc:c0: 29:f7:6e:fa:8c:97:23:91:b6:1d:3f:a5:5d:a1:55: 71:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:99:2C:17:18:7B:C2:77:4F:28:0A:B5:60:90:55:4E:65:42:96:27 X509v3 Authority Key Identifier: keyid:84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:d8:a0:fd:26:95:12:ac:cd:eb:13:7f:c9:ad:c1:a4:a1:d1: 12:a0:9b:b4:96:af:ff:84:c2:a4:15:94:93:f3:bc:27:fa:44: 17:12:65:ca:b6:a9:9f:13:e5:12:f5:6c:5c:40:25:00:96:0b: 7f:24:7d:18:93:a2:4b:a1:f1:06:08:77:59:7d:80:86:ae:18: c2:47:73:aa:e0:6e:7b:af:e3:f8:90:f8:84:af:20:f6:f3:b3: 2b:73:bf:d1:41:00:53:c0:09:90:aa:87:05:21:21:2e:22:a5: a5:b2:58:d5:a8:21:bd:d1:e2:cd:d1:25:a9:f2:01:9a:f4:d9: 91:74:b4:98:23:4d:20:d7:97:12:d6:28:0f:ab:04:31:cb:6d: 2d:33:1c:76:27:37:89:da:e8:34:e1:01:d8:ea:ef:5e:a1:2b: ca:6f:69:55:3c:d8:73:ea:8b:04:f4:a1:b7:70:64:d7:39:e8: f7:5e:2c:ef:03:85:0b:27:99:1f:fb:cf:d0:62:d6:2e:5d:b1: 16:12:63:31:f0:ca:61:a6:16:4a:e7:6c:43:9f:26:09:e7:a0: 7d:44:5c:86:33:54:51:40:98:7e:2c:c2:d1:7e:af:28:bb:0a: ad:9a:6a:fe:61:64:24:80:5d:9f:30:33:50:4f:93:ef:75:14: dc:42:63:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFRjMxMTAvBgNVBAUTKDg0NzIyREJENDIyNjdCRERENTlCODg0MTUyOTkyNTM1 MzFFMDYzNjQwHhcNMjUwNjMwMTY0MjE1WhcNMjUwNzA3MTY0MjE1WjAYMRYwFAYD VQQDEw02ODYyYmU2Ny1lZDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA28y7efMlaKJ7RcFHrgMgC11YvtitV9gqaFUBFZgqsQ2khy645uUtIqSfcgUO vP6Ypdira6gyOHe2sDrgzIgIavrpFQMHTnkhho7U6wnc7l27L5D4QeqHjNHF3qoy denZBlnI004L389B0BXuue/CPxheCCcnHUCuCIYi4lut3uNm3YC3reUx7UuySiGi cXYCvNyygSbdDRmd8mbY1KBtE4Z26liIn+BTzoSEGWdKs/NqEn4h5p/WNR5Ztojz igEPMQyzVEXVkraB2Dz2t+UfEe0hXADSauidp8aW+Z9gXuulJ7g5R7JW/B5Px06A /MAp9276jJcjkbYdP6VdoVVxhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGZLBcY e8J3TygKtWCQVU5lQpYnMB8GA1UdIwQYMBaAFIRyLb1CJnvd1ZuIQVKZJTUx4GNk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGMy9FNjMzN0QzMEJE MzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5M1ZtNGhCVXBrbE5USGdZ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hISXR2VUltZTkzVm00aEJVcGtsTlRIZ1kyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkVGMy9FNjMzN0QzMEJEMzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5 M1ZtNGhCVXBrbE5USGdZMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY2KD9JpUSrM3rE3/JrcGkodESoJu0lq//hMKkFZST87wn+kQXEmXK tqmfE+US9WxcQCUAlgt/JH0Yk6JLofEGCHdZfYCGrhjCR3Oq4G57r+P4kPiEryD2 87Mrc7/RQQBTwAmQqocFISEuIqWlsljVqCG90eLN0SWp8gGa9NmRdLSYI00g15cS 1igPqwQxy20tMxx2JzeJ2ug04QHY6u9eoSvKb2lVPNhz6osE9KG3cGTXOej3Xizv A4ULJ5kf+8/QYtYuXbEWEmMx8MphphZK52xDnyYJ56B9RFyGM1RRQJh+LMLRfq8o uwqtmmr+YWQkgF2fMDNQT5PvdRTcQmM2 -----END CERTIFICATE-----Generated at Tue Jul 1 19:32:19 2025 by rpki-client