$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft File: 17AA392C0CFF754F6249006D89386F871B9693FA.mft (raw, json) Hash identifier: V1Vh8HFoUYAr/lnOTkzlXIygnMY6NQpdF096lmZzBps= Subject key identifier: AB:BB:6E:B7:EB:54:BE:2C:5A:7C:8E:54:4C:A5:D7:4C:38:CF:8F:67 Authority key identifier: 17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA Certificate issuer: /CN=A917447B0000/serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Certificate serial: 673FE0EA0C9844E7BC27F0725042DEDBB7ADC8B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft Manifest number: 8D Signing time: Tue 04 Nov 2025 18:45:18 +0000 Manifest this update: Tue 04 Nov 2025 18:40:18 +0000 Manifest next update: Wed 05 Nov 2025 20:41:18 +0000 Files and hashes: 1: 323030313a6466343a353134303a3a2f34342d3434203d3e20313533333436.roa (hash: 0cKeFRvMg4K7CjG6EjM23reqsbS6dbzuJZqiCsKqNyg=) 2: 17AA392C0CFF754F6249006D89386F871B9693FA.crl (hash: 93HZTWbinzn9610ep74osVVnYqfq4Tnmr5vQhBYtNnU=) 3: 323030313a6466343a353134653a3a2f34382d3438203d3e20313533333436.roa (hash: RDNXpylv0IlOw3O/7fE48tOOsRe7Sfyvu1b+jDwo7qI=) 4: 323030313a6466343a353134663a3a2f34382d3438203d3e20313533333436.roa (hash: HOBlUUzXIgqWknT1VOL1nB3qMa6Fu6vRC1OMoEBjewg=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:3f:e0:ea:0c:98:44:e7:bc:27:f0:72:50:42:de:db:b7:ad:c8:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000, serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Validity Not Before: Nov 4 18:40:18 2025 GMT Not After : Nov 5 20:41:18 2025 GMT Subject: CN=ABBB6EB7EB54BE2C5A7C8E544CA5D74C38CF8F67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f5:18:b0:5a:b9:a1:d5:43:93:c3:f3:0b:2a: de:f7:71:c6:ce:c8:9f:44:27:45:32:f3:74:a8:3e: ed:47:8b:93:dd:06:86:f8:b0:c0:8e:08:a3:f8:db: 50:07:bc:ac:ac:f5:9e:80:43:3f:be:21:f2:5e:22: ca:3e:28:4a:93:dd:b7:d4:aa:3f:da:b7:23:7c:5a: bc:ca:f5:ca:9e:4d:1b:f5:0f:a9:97:89:4c:23:a3: 50:d0:fb:aa:30:ce:11:69:f2:7e:3c:00:76:e8:05: 26:f4:e5:ec:2c:f6:ab:58:d1:0e:dd:fe:3f:a9:bb: ac:2b:96:08:5c:c3:8b:0d:2d:64:e8:1a:28:f4:90: 6c:48:91:9a:ed:25:69:aa:2e:24:95:a2:38:0b:d8: 5e:7d:58:50:54:83:63:ee:77:05:dd:a7:2d:8b:03: b8:9f:1a:75:ed:a3:f6:72:96:43:b4:47:99:08:d4: ac:04:8d:7f:a2:3d:41:de:12:fc:95:06:6e:18:25: 33:8e:a9:81:39:ec:92:0a:be:26:19:55:e4:46:03: 27:34:b8:16:dd:a1:c7:9d:e4:86:cc:74:42:2c:aa: 03:d1:cd:ce:46:1d:e1:7d:f9:72:6b:92:9b:84:06: 34:88:ef:cf:a3:eb:b6:ab:b7:38:59:9d:89:95:72: d1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:BB:6E:B7:EB:54:BE:2C:5A:7C:8E:54:4C:A5:D7:4C:38:CF:8F:67 X509v3 Authority Key Identifier: keyid:17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:49:5b:fd:f3:64:58:05:35:fd:26:0d:74:da:2a:95:68:b9: 90:c6:3b:ae:00:5a:51:a8:33:28:a4:c1:ee:31:7b:0a:9d:73: 31:e0:61:bb:70:6f:e4:3b:cb:ff:ef:af:52:b1:e5:13:64:ae: db:89:38:11:7e:f7:b3:56:1a:65:50:fa:06:96:d8:65:04:28: 68:57:5e:0f:19:45:cf:15:b0:97:95:55:51:b9:71:37:1f:2a: ef:4f:42:3b:aa:07:fd:95:e1:fa:fb:23:1c:a7:28:5e:1d:8c: 42:f2:29:f9:02:c6:4e:47:24:bf:38:b4:50:46:c1:df:a7:f2: f9:f6:1e:5c:ca:f0:cb:6d:90:da:99:54:ec:f5:7f:6a:e5:34: 82:8c:12:82:14:70:e7:5c:e3:55:c5:5b:87:07:15:80:e0:cc: 55:94:c1:fc:9a:e5:36:15:58:31:bf:5d:ed:8e:3b:5d:a1:71: a3:ce:d5:15:4d:a2:72:56:f3:d6:24:d0:bc:af:06:d2:bd:db: b1:94:15:85:46:ec:ba:4e:d1:f6:2b:23:e0:7d:96:ee:d6:47: aa:74:7d:1a:3b:d4:47:68:f3:4a:f7:c7:af:55:06:03:5e:5e: 24:20:f7:a1:c9:07:2c:3c:c4:f9:c5:07:92:17:26:f8:15:74: 38:9c:70:4f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZz/g6gyYROe8J/ByUELe27etyLMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEygxN0FBMzkyQzBD RkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBMB4XDTI1MTEwNDE4NDAxOFoX DTI1MTEwNTIwNDExOFowMzExMC8GA1UEAxMoQUJCQjZFQjdFQjU0QkUyQzVBN0M4 RTU0NENBNUQ3NEMzOENGOEY2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMf1GLBauaHVQ5PD8wsq3vdxxs7In0QnRTLzdKg+7UeLk90GhviwwI4Io/jb UAe8rKz1noBDP74h8l4iyj4oSpPdt9SqP9q3I3xavMr1yp5NG/UPqZeJTCOjUND7 qjDOEWnyfjwAdugFJvTl7Cz2q1jRDt3+P6m7rCuWCFzDiw0tZOgaKPSQbEiRmu0l aaouJJWiOAvYXn1YUFSDY+53Bd2nLYsDuJ8ade2j9nKWQ7RHmQjUrASNf6I9Qd4S /JUGbhglM46pgTnskgq+JhlV5EYDJzS4Ft2hx53khsx0QiyqA9HNzkYd4X35cmuS m4QGNIjvz6Prtqu3OFmdiZVy0UkCAwEAAaOCAhswggIXMB0GA1UdDgQWBBSru263 61S+LFp8jlRMpddMOM+PZzAfBgNVHSMEGDAWgBQXqjksDP91T2JJAG2JOG+HG5aT +jAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMS8xN0FBMzky QzBDRkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GNm81TEF6X2RV OWlTUUJ0aVRodmh4dVdrX28uY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3 QjAwMDAvMS8xN0FBMzkyQzBDRkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZB Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAJklb/fNkWAU1/SYNdNoqlWi5kMY7rgBaUagzKKTB7jF7Cp1z MeBhu3Bv5DvL/++vUrHlE2Su24k4EX73s1YaZVD6BpbYZQQoaFdeDxlFzxWwl5VV UblxNx8q709CO6oH/ZXh+vsjHKcoXh2MQvIp+QLGTkckvzi0UEbB36fy+fYeXMrw y22Q2plU7PV/auU0gowSghRw51zjVcVbhwcVgODMVZTB/JrlNhVYMb9d7Y47XaFx o87VFU2iclbz1iTQvK8G0r3bsZQVhUbsuk7R9isj4H2W7tZHqnR9GjvUR2jzSvfH r1UGA15eJCD3ockHLDzE+cUHkhcm+BV0OJxwTw== -----END CERTIFICATE-----Generated at Wed Nov 5 02:16:45 2025 by rpki-client