$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft File: 17AA392C0CFF754F6249006D89386F871B9693FA.mft (raw, json) Hash identifier: /bQjpZK6xJQh0M9FmyCdh45JpEBrun9Kh/xsPwyrgpE= Subject key identifier: F0:42:13:3F:B9:DA:60:C2:29:6E:51:6C:58:41:1C:67:2A:BA:E3:13 Authority key identifier: 17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA Certificate issuer: /CN=A917447B0000/serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Certificate serial: 77E51B88A15D7014B2B4B7518AAE15E0963EFB12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft Manifest number: 4D Signing time: Thu 18 Sep 2025 15:54:18 +0000 Manifest this update: Thu 18 Sep 2025 15:49:18 +0000 Manifest next update: Fri 19 Sep 2025 17:20:18 +0000 Files and hashes: 1: 323030313a6466343a353134653a3a2f34382d3438203d3e20313533333436.roa (hash: RDNXpylv0IlOw3O/7fE48tOOsRe7Sfyvu1b+jDwo7qI=) 2: 17AA392C0CFF754F6249006D89386F871B9693FA.crl (hash: GbAlRpv+R5M+BaEE5w5qGATiGaVOUS7wMnN7AekV27k=) 3: 323030313a6466343a353134663a3a2f34382d3438203d3e20313533333436.roa (hash: HOBlUUzXIgqWknT1VOL1nB3qMa6Fu6vRC1OMoEBjewg=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Sep 2025 17:20:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:e5:1b:88:a1:5d:70:14:b2:b4:b7:51:8a:ae:15:e0:96:3e:fb:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000, serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Validity Not Before: Sep 18 15:49:18 2025 GMT Not After : Sep 19 17:20:18 2025 GMT Subject: CN=F042133FB9DA60C2296E516C58411C672ABAE313 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b7:ea:92:ec:30:7c:36:ab:06:27:f0:f4:78: 4c:56:80:6d:9c:91:f6:e5:f6:48:d8:ee:41:89:16: 9c:51:af:f1:f2:7d:9b:f4:fb:b7:aa:9d:2b:42:ff: 40:24:49:9a:1b:0e:79:27:20:34:d3:89:8c:cf:8f: c6:a4:54:4c:e0:4b:95:38:5c:4b:d6:fb:c5:95:a9: 37:6f:cb:e4:84:97:67:7f:38:16:44:6d:01:dd:65: 27:03:ea:be:e0:02:a4:f9:7f:74:d4:a9:9b:21:16: 23:9e:0d:0c:33:8e:59:ab:8c:a6:44:f7:c2:a4:c0: b5:4d:96:ee:b4:0b:0e:2a:49:f9:a7:70:5d:d9:77: 92:ab:04:da:1c:58:00:33:36:2e:40:73:b0:59:97: 92:49:31:68:fa:26:28:32:08:59:32:bd:ab:3c:ba: d2:93:37:a6:1b:b2:e4:6c:5c:24:30:ad:65:cd:75: d4:c3:9f:03:2b:15:e4:ca:06:de:79:c3:1b:d8:79: b5:fe:a4:ea:44:67:9b:02:89:b4:ad:bb:e4:9a:7f: 6c:4a:41:98:21:e9:82:88:55:ed:9f:13:26:bb:e6: 5e:f7:86:6c:c8:b5:ee:b4:cf:9e:e0:00:5e:89:b7: 4e:68:45:f5:ab:7a:77:64:e1:7e:e6:d7:7d:e9:74: f8:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:42:13:3F:B9:DA:60:C2:29:6E:51:6C:58:41:1C:67:2A:BA:E3:13 X509v3 Authority Key Identifier: keyid:17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:2c:b2:47:a0:05:ef:6b:16:14:41:ef:09:91:b8:e4:e7:7c: 61:c2:80:e6:cd:49:fc:dd:10:45:23:60:96:47:69:bc:14:8f: 76:22:cc:0d:b4:9d:45:6c:b6:e1:f3:25:ab:ca:27:7a:5c:e6: ec:6f:27:49:55:bc:9c:04:ca:36:3b:44:64:4f:a4:1b:7f:fb: 06:62:d6:23:59:d1:13:a3:95:99:ff:42:9c:73:de:29:6a:d8: 32:f9:ed:10:ab:00:57:61:74:df:5e:86:b2:22:76:5e:51:18: a5:3c:79:97:44:07:f5:3a:e7:86:f9:45:e6:ff:28:bd:04:cb: 8f:bb:29:81:b3:a9:23:f7:1c:0a:f6:e4:3d:0f:98:62:f5:71: 8b:2e:5a:9f:50:0c:1c:14:53:46:72:68:07:18:16:b4:5d:d8: 38:68:af:56:b5:b8:a2:91:8b:24:2e:64:26:9c:d3:af:6f:e3: 12:b1:78:67:3c:6b:11:0c:47:99:07:45:c3:e0:ed:aa:49:d4: f2:e0:02:04:64:ba:fb:b9:98:67:99:e2:f3:48:43:3c:2c:bc: 11:e3:2d:93:a2:71:30:23:bf:04:5e:c6:c8:65:7a:71:a2:54: ba:4d:35:17:cd:cb:47:13:7c:64:9c:ed:cf:68:bf:a9:60:05: 31:dc:c3:24 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUd+UbiKFdcBSytLdRiq4V4JY++xIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEygxN0FBMzkyQzBD RkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBMB4XDTI1MDkxODE1NDkxOFoX DTI1MDkxOTE3MjAxOFowMzExMC8GA1UEAxMoRjA0MjEzM0ZCOURBNjBDMjI5NkU1 MTZDNTg0MTFDNjcyQUJBRTMxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJi36pLsMHw2qwYn8PR4TFaAbZyR9uX2SNjuQYkWnFGv8fJ9m/T7t6qdK0L/ QCRJmhsOeScgNNOJjM+PxqRUTOBLlThcS9b7xZWpN2/L5ISXZ384FkRtAd1lJwPq vuACpPl/dNSpmyEWI54NDDOOWauMpkT3wqTAtU2W7rQLDipJ+adwXdl3kqsE2hxY ADM2LkBzsFmXkkkxaPomKDIIWTK9qzy60pM3phuy5GxcJDCtZc111MOfAysV5MoG 3nnDG9h5tf6k6kRnmwKJtK275Jp/bEpBmCHpgohV7Z8TJrvmXveGbMi17rTPnuAA Xom3TmhF9at6d2ThfubXfel0+McCAwEAAaOCAhswggIXMB0GA1UdDgQWBBTwQhM/ udpgwiluUWxYQRxnKrrjEzAfBgNVHSMEGDAWgBQXqjksDP91T2JJAG2JOG+HG5aT +jAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMS8xN0FBMzky QzBDRkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GNm81TEF6X2RV OWlTUUJ0aVRodmh4dVdrX28uY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3 QjAwMDAvMS8xN0FBMzkyQzBDRkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZB Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAQyyyR6AF72sWFEHvCZG45Od8YcKA5s1J/N0QRSNglkdpvBSP diLMDbSdRWy24fMlq8onelzm7G8nSVW8nATKNjtEZE+kG3/7BmLWI1nRE6OVmf9C nHPeKWrYMvntEKsAV2F0316GsiJ2XlEYpTx5l0QH9TrnhvlF5v8ovQTLj7spgbOp I/ccCvbkPQ+YYvVxiy5an1AMHBRTRnJoBxgWtF3YOGivVrW4opGLJC5kJpzTr2/j ErF4ZzxrEQxHmQdFw+DtqknU8uACBGS6+7mYZ5ni80hDPCy8EeMtk6JxMCO/BF7G yGV6caJUuk01F83LRxN8ZJztz2i/qWAFMdzDJA== -----END CERTIFICATE-----Generated at Fri Sep 19 02:30:00 2025 by rpki-client