$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft File: 17AA392C0CFF754F6249006D89386F871B9693FA.mft (raw, json) Hash identifier: iQdyn1GIAK366Fy/B2D7r0TrIU1LI4JorqhbtWVBJ5k= Subject key identifier: 2F:99:18:BE:04:DF:98:33:E2:7C:7E:C1:4D:BB:72:C9:72:F0:07:5F Authority key identifier: 17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA Certificate issuer: /CN=A917447B0000/serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Certificate serial: 5A8EE8C2E340876B38C797693BC554A7ECA8220B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft Manifest number: 06 Signing time: Mon 21 Jul 2025 14:38:08 +0000 Manifest this update: Mon 21 Jul 2025 14:33:08 +0000 Manifest next update: Tue 22 Jul 2025 14:58:08 +0000 Files and hashes: 1: 17AA392C0CFF754F6249006D89386F871B9693FA.crl (hash: Mh+2UiGofG0+cq5o8/njjzZa0vDrkOJ3o21TPjOWeWw=) 2: 323030313a6466343a353134663a3a2f34382d3438203d3e20313533333436.roa (hash: HOBlUUzXIgqWknT1VOL1nB3qMa6Fu6vRC1OMoEBjewg=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 14:58:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:8e:e8:c2:e3:40:87:6b:38:c7:97:69:3b:c5:54:a7:ec:a8:22:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000, serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Validity Not Before: Jul 21 14:33:08 2025 GMT Not After : Jul 22 14:58:08 2025 GMT Subject: CN=2F9918BE04DF9833E27C7EC14DBB72C972F0075F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:dd:8c:52:ae:9d:f1:0a:94:a1:fd:5a:c7:f5: 64:00:89:6e:e8:c0:6b:59:8b:06:91:76:18:fa:47: ef:e3:2c:83:ef:db:18:0f:e8:4e:be:5a:18:ed:c7: cb:c0:ef:1b:c3:b1:43:1e:02:f9:d7:07:90:40:c9: 86:fe:83:df:2a:b2:1e:87:e0:86:0e:e6:67:ed:76: 53:d9:6f:ef:b1:6c:a4:8c:68:7d:4a:e4:0c:3c:a4: ea:d5:98:42:a7:d5:e4:ee:12:b5:7c:6d:0f:c5:68: c2:1f:07:7b:82:2e:c8:1d:34:83:d8:80:0e:69:fc: e5:8b:a0:48:b2:6e:4c:94:38:3c:e8:a9:4e:72:9b: b9:d6:bc:6a:c5:0c:e4:32:f9:f9:61:d8:87:c5:22: 90:2c:88:8c:1d:1c:f2:06:b5:68:8a:75:92:24:fc: 6f:05:a7:2c:c7:6b:ec:c2:cc:ea:f7:95:b2:3b:17: 95:d0:e9:4c:4b:9b:f2:7b:ff:f9:6f:49:21:e9:62: 04:45:48:71:0a:bc:73:5d:3b:f5:10:8a:34:80:93: 8a:fe:1a:ac:bd:8f:ba:ca:ed:e8:f3:24:e0:6d:3d: ec:29:5a:f2:ed:53:89:cf:de:08:2a:08:15:68:e0: b5:9f:83:05:9e:48:b8:b8:0a:7a:bb:d8:74:57:36: 24:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:99:18:BE:04:DF:98:33:E2:7C:7E:C1:4D:BB:72:C9:72:F0:07:5F X509v3 Authority Key Identifier: keyid:17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:b3:af:26:ac:7d:0c:de:3e:95:a7:57:b8:8f:af:03:ba:d7: 66:13:6f:68:52:95:75:21:3a:53:97:33:bb:a6:9f:e0:19:b5: 0f:85:bc:63:8a:89:f3:6e:6a:17:f8:57:ee:b2:c7:ca:62:fa: 99:1e:df:53:3c:6d:7b:f1:bf:ff:e6:b1:7c:e1:fb:d6:4a:96: b9:dc:c9:27:39:3b:1f:5e:c2:ee:21:42:55:8b:12:91:68:80: 28:f1:11:d0:0c:63:5f:98:71:2f:56:e1:5e:1d:13:d0:7f:dd: a7:47:80:e7:0e:24:25:f0:2b:6c:70:b8:67:29:ec:2e:e8:61: 9d:61:e2:74:ea:c0:95:79:95:57:1b:be:03:9a:91:cc:ee:92: 3a:fa:f4:13:68:c2:89:10:08:13:5b:7b:87:26:63:15:cb:6f: 74:57:53:c2:b8:e7:99:8f:95:a3:23:86:27:3d:be:db:18:cf: 8e:54:ac:c8:53:f1:1f:24:c9:cc:98:79:37:09:97:5f:2e:eb: 85:48:ff:48:a3:88:ce:46:4e:5b:dd:e2:3f:4d:95:d4:fd:ea: b4:2d:2d:ce:16:d9:92:34:fc:4c:29:76:f1:fc:62:4b:b0:1c: 53:5f:bd:12:50:4b:1b:24:e7:cf:95:b9:f0:89:5d:ff:a5:a6: a3:ad:8f:84 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWo7owuNAh2s4x5dpO8VUp+yoIgswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEygxN0FBMzkyQzBD RkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBMB4XDTI1MDcyMTE0MzMwOFoX DTI1MDcyMjE0NTgwOFowMzExMC8GA1UEAxMoMkY5OTE4QkUwNERGOTgzM0UyN0M3 RUMxNERCQjcyQzk3MkYwMDc1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKbdjFKunfEKlKH9Wsf1ZACJbujAa1mLBpF2GPpH7+Msg+/bGA/oTr5aGO3H y8DvG8OxQx4C+dcHkEDJhv6D3yqyHofghg7mZ+12U9lv77FspIxofUrkDDyk6tWY QqfV5O4StXxtD8Vowh8He4IuyB00g9iADmn85YugSLJuTJQ4POipTnKbuda8asUM 5DL5+WHYh8UikCyIjB0c8ga1aIp1kiT8bwWnLMdr7MLM6veVsjsXldDpTEub8nv/ +W9JIeliBEVIcQq8c1079RCKNICTiv4arL2Pusrt6PMk4G097Cla8u1Tic/eCCoI FWjgtZ+DBZ5IuLgKervYdFc2JDMCAwEAAaOCAhswggIXMB0GA1UdDgQWBBQvmRi+ BN+YM+J8fsFNu3LJcvAHXzAfBgNVHSMEGDAWgBQXqjksDP91T2JJAG2JOG+HG5aT +jAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMS8xN0FBMzky QzBDRkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GNm81TEF6X2RV OWlTUUJ0aVRodmh4dVdrX28uY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3 QjAwMDAvMS8xN0FBMzkyQzBDRkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZB Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAs7OvJqx9DN4+ladXuI+vA7rXZhNvaFKVdSE6U5czu6af4Bm1 D4W8Y4qJ825qF/hX7rLHymL6mR7fUzxte/G//+axfOH71kqWudzJJzk7H17C7iFC VYsSkWiAKPER0AxjX5hxL1bhXh0T0H/dp0eA5w4kJfArbHC4ZynsLuhhnWHidOrA lXmVVxu+A5qRzO6SOvr0E2jCiRAIE1t7hyZjFctvdFdTwrjnmY+VoyOGJz2+2xjP jlSsyFPxHyTJzJh5NwmXXy7rhUj/SKOIzkZOW93iP02V1P3qtC0tzhbZkjT8TCl2 8fxiS7AcU1+9ElBLGyTnz5W58Ild/6Wmo62PhA== -----END CERTIFICATE-----Generated at Mon Jul 21 18:44:18 2025 by rpki-client