$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft File: 17AA392C0CFF754F6249006D89386F871B9693FA.mft (raw, json) Hash identifier: 7niKED7lYAfU3PbiAMJ+EQRWEN5hBsSeWYMbw/VzQAs= Subject key identifier: AE:43:91:58:B4:B7:DA:74:4F:21:14:AE:6D:6D:9F:AF:B9:3D:11:39 Authority key identifier: 17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA Certificate issuer: /CN=A917447B0000/serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Certificate serial: 6D838ABFA60E00161D9CAE2A675EAD6425424BB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft Manifest number: 0142 Signing time: Thu 21 May 2026 02:33:49 +0000 Manifest this update: Thu 21 May 2026 02:28:49 +0000 Manifest next update: Fri 22 May 2026 03:47:49 +0000 Files and hashes: 1: 17AA392C0CFF754F6249006D89386F871B9693FA.crl (hash: MENcvefF+Emhx2hQZfw2++r07tk/9WnurzFGl8J5zLA=) 2: 323030313a6466343a353134303a3a2f34342d3434203d3e20313533333436.roa (hash: 0cKeFRvMg4K7CjG6EjM23reqsbS6dbzuJZqiCsKqNyg=) 3: 323030313a6466343a353134663a3a2f34382d3438203d3e20313533333436.roa (hash: HOBlUUzXIgqWknT1VOL1nB3qMa6Fu6vRC1OMoEBjewg=) 4: 323030313a6466343a353134383a3a2f34382d3438203d3e2039383333.roa (hash: zl/9BBoJJ3neyY8UfSuYMMT4qwgA84XRS4rr+sykVxA=) 5: 323030313a6466343a353134653a3a2f34382d3438203d3e20313533333436.roa (hash: 6d79MjPujLDyKtMpkk4jphJnh2+RAK01Ho2cDxHKrKM=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 May 2026 03:47:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:83:8a:bf:a6:0e:00:16:1d:9c:ae:2a:67:5e:ad:64:25:42:4b:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000, serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Validity Not Before: May 21 02:28:49 2026 GMT Not After : May 22 03:47:49 2026 GMT Subject: CN=AE439158B4B7DA744F2114AE6D6D9FAFB93D1139 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ca:46:29:d2:bd:d6:d7:a6:d3:d9:46:ba:7a: 62:bc:5a:2b:b4:00:88:0b:db:cc:6e:e5:bc:22:8f: e7:2e:a3:47:57:53:25:dd:ac:f4:57:6f:e3:26:e3: 73:5f:a4:9f:6d:c1:9b:fd:59:6a:54:5f:22:85:3f: d6:95:07:1d:8c:0b:55:27:6f:e8:b3:a7:d6:46:e1: ff:6d:4f:d0:7d:93:0a:33:f0:dd:67:dc:df:6a:f0: 4a:dc:74:71:ba:87:a0:a1:80:5a:5e:1c:c3:cf:cb: 3b:d0:62:fb:7f:c7:07:ba:b5:85:8f:a6:ca:25:07: a5:9e:1d:d9:8d:94:30:76:f6:9a:bf:b8:4f:29:5d: 14:f5:74:6b:bf:31:5a:6b:45:80:4e:98:81:53:80: 1c:87:c2:22:ce:1b:aa:2b:34:e1:07:27:75:1a:70: 13:d2:f4:8f:d9:70:9b:6a:ec:6b:09:c8:46:0c:87: df:b3:0d:07:05:b3:ce:5c:de:e5:a7:bd:dc:06:e3: 4b:0c:41:b0:68:1c:7f:77:5e:31:2d:ed:24:cf:99: 1c:97:7b:32:0e:cc:7a:1e:f2:cc:bc:59:61:7d:37: b2:c8:ed:d1:93:62:21:98:92:f6:7c:e0:4d:d7:88: ae:84:9a:70:50:77:97:32:09:a5:82:ba:74:75:d4: b2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:43:91:58:B4:B7:DA:74:4F:21:14:AE:6D:6D:9F:AF:B9:3D:11:39 X509v3 Authority Key Identifier: keyid:17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:e2:b1:63:9c:2d:94:18:1a:b2:4e:62:a1:9f:c0:79:77:b2: 86:6d:3a:ad:35:6c:57:e9:37:f4:24:01:d6:f2:07:11:fd:33: 36:ab:b1:60:1e:82:23:2a:2c:88:06:d1:91:5b:8b:f0:0e:b6: 1a:ea:7e:0d:e7:21:f8:1d:3d:ac:8b:ac:3c:40:53:fe:31:34: 19:09:9c:02:aa:ff:82:c9:27:d2:2d:21:49:bc:d3:a1:84:4d: 2f:74:ba:8c:f7:d3:1f:f3:35:cf:48:4e:30:98:30:44:09:dd: 8b:5a:a3:81:6f:5c:32:69:d9:17:ac:bc:42:2a:4b:d8:2a:44: 87:9a:07:25:29:c8:02:b5:52:2e:74:0d:85:93:3c:f5:6d:92: 4b:99:4f:eb:0c:d9:cc:c5:86:e4:f8:89:19:fd:68:54:c9:8a: c8:71:b1:ff:2a:d8:1f:69:6f:2f:f2:b5:3d:25:48:1e:16:2b: 54:b3:f2:d7:e3:34:62:00:20:f2:df:35:99:c7:b9:89:83:71: 54:1f:e3:64:54:b1:58:97:80:cb:ed:c0:77:33:5d:97:35:f6: 46:30:22:14:f5:60:3a:91:3a:e7:75:e0:16:e1:93:18:dc:fb: 0a:ac:9a:3c:19:87:e2:c8:cf:b2:08:a4:ca:eb:11:bb:15:f5: a6:30:58:47 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbYOKv6YOABYdnK4qZ16tZCVCS7EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEygxN0FBMzkyQzBD RkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBMB4XDTI2MDUyMTAyMjg0OVoX DTI2MDUyMjAzNDc0OVowMzExMC8GA1UEAxMoQUU0MzkxNThCNEI3REE3NDRGMjEx NEFFNkQ2RDlGQUZCOTNEMTEzOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJXKRinSvdbXptPZRrp6YrxaK7QAiAvbzG7lvCKP5y6jR1dTJd2s9Fdv4ybj c1+kn23Bm/1ZalRfIoU/1pUHHYwLVSdv6LOn1kbh/21P0H2TCjPw3Wfc32rwStx0 cbqHoKGAWl4cw8/LO9Bi+3/HB7q1hY+myiUHpZ4d2Y2UMHb2mr+4TyldFPV0a78x WmtFgE6YgVOAHIfCIs4bqis04QcndRpwE9L0j9lwm2rsawnIRgyH37MNBwWzzlze 5ae93AbjSwxBsGgcf3deMS3tJM+ZHJd7Mg7Meh7yzLxZYX03ssjt0ZNiIZiS9nzg TdeIroSacFB3lzIJpYK6dHXUsgMCAwEAAaOCAhswggIXMB0GA1UdDgQWBBSuQ5FY tLfadE8hFK5tbZ+vuT0ROTAfBgNVHSMEGDAWgBQXqjksDP91T2JJAG2JOG+HG5aT +jAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMS8xN0FBMzky QzBDRkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GNm81TEF6X2RV OWlTUUJ0aVRodmh4dVdrX28uY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3 QjAwMDAvMS8xN0FBMzkyQzBDRkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZB Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAoeKxY5wtlBgask5ioZ/AeXeyhm06rTVsV+k39CQB1vIHEf0z NquxYB6CIyosiAbRkVuL8A62Gup+Dech+B09rIusPEBT/jE0GQmcAqr/gskn0i0h SbzToYRNL3S6jPfTH/M1z0hOMJgwRAndi1qjgW9cMmnZF6y8QipL2CpEh5oHJSnI ArVSLnQNhZM89W2SS5lP6wzZzMWG5PiJGf1oVMmKyHGx/yrYH2lvL/K1PSVIHhYr VLPy1+M0YgAg8t81mce5iYNxVB/jZFSxWJeAy+3AdzNdlzX2RjAiFPVgOpE653Xg FuGTGNz7CqyaPBmH4sjPsgikyusRuxX1pjBYRw== -----END CERTIFICATE-----Generated at Thu May 21 10:29:13 2026 by rpki-client