$ rpki-client -vvf rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft File: hhe5_iqn_uIl8uDS3IdkCYE33m0.mft (raw, json) Hash identifier: h09WDSIk1J6XLB9XZesSUvRMaUM749AXaTl3AuvZhJw= Subject key identifier: 0A:82:43:56:ED:EC:B0:FE:FE:A2:02:CF:CF:8B:B9:29:10:EB:32:89 Authority key identifier: 86:17:B9:FE:2A:A7:FE:E2:25:F2:E0:D2:DC:87:64:09:81:37:DE:6D Certificate issuer: /CN=A9117715/serialNumber=8617B9FE2AA7FEE225F2E0D2DC8764098137DE6D Certificate serial: 09EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft Manifest number: 09E3 Signing time: Sat 14 Jun 2025 19:43:22 +0000 Manifest this update: Sat 14 Jun 2025 19:43:21 +0000 Manifest next update: Sat 21 Jun 2025 19:43:21 +0000 Files and hashes: 1: hhe5_iqn_uIl8uDS3IdkCYE33m0.crl (hash: ESUtXzUrJto83sRmBGrk1HDefViQAcAufxmxUl2iepg=) 2: E118A9DA7CB911EABD07CE5EC4F9AE02.roa (hash: 3BzJCKxq6lxeVjXVlpYVRMXqU7zHik0ruN2Ba5iWxOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.crl rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:43:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2538 (0x9ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117715, serialNumber=8617B9FE2AA7FEE225F2E0D2DC8764098137DE6D Validity Not Before: Jun 14 19:43:21 2025 GMT Not After : Jun 21 19:43:21 2025 GMT Subject: CN=684dd0da-df51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:19:83:d6:45:3d:bd:d9:7e:49:d1:5f:40:7b: 07:ab:b7:16:8d:ff:c3:55:83:90:cb:90:75:08:03: 22:2d:a2:64:ff:4e:82:74:54:ed:77:0c:6b:bb:a4: f1:8a:bd:07:c4:ca:e9:f8:01:2d:e5:13:87:ea:63: 31:c4:23:7c:78:cc:9f:7b:9f:43:8c:04:97:2d:05: 9b:79:78:8a:47:69:a4:24:95:17:dd:b3:4c:77:2e: 48:33:2a:1a:7b:fa:21:8a:ae:fd:30:f7:6e:9f:9b: 95:63:1e:c0:0e:2b:22:a8:45:5e:3a:89:f3:51:7d: b0:2e:41:5a:d7:34:7a:70:7b:41:94:2f:61:4f:a6: 69:fb:bd:66:88:98:c9:b0:d0:eb:0f:1b:dc:7e:8b: 31:4c:1d:6d:c5:28:cd:e9:71:02:2a:7d:1f:19:da: de:26:47:e5:7e:30:5f:2b:93:56:d8:1d:b8:5e:bf: 50:54:bf:4e:97:5b:7d:28:b1:80:00:dc:df:b6:cf: fa:76:47:0a:c4:63:9c:e5:21:81:84:74:04:03:48: 9e:db:17:f3:ba:c1:c9:e8:93:3e:03:1d:bc:06:7b: ec:74:b2:c3:9a:bb:c4:a4:17:a2:88:91:b2:8d:c5: 77:ad:03:71:be:1a:a4:c6:63:34:4c:da:1c:3e:0d: 24:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:82:43:56:ED:EC:B0:FE:FE:A2:02:CF:CF:8B:B9:29:10:EB:32:89 X509v3 Authority Key Identifier: keyid:86:17:B9:FE:2A:A7:FE:E2:25:F2:E0:D2:DC:87:64:09:81:37:DE:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:c2:d5:35:92:dd:6e:2e:fd:9b:25:89:b0:96:0c:e4:ea:d6: 9d:b0:cd:0d:01:ad:2a:1b:82:13:0f:31:b0:33:db:61:b8:e1: 30:06:19:00:28:74:a9:e8:9a:dd:aa:08:5e:e0:27:85:bd:e8: 62:04:76:05:19:fe:90:86:2f:5b:1f:bd:83:ab:ec:89:83:18: 2b:39:d1:8c:a1:bd:f6:00:6c:de:4c:02:01:05:3d:f3:85:19: a5:55:95:7c:ca:4b:c3:98:51:05:ca:f9:4c:69:f6:a2:b5:fc: d9:07:99:8c:c8:2d:41:c5:dc:23:29:bd:f9:ce:04:67:aa:7e: 22:e0:e6:d5:bc:b1:bc:17:8b:12:bc:19:5a:f5:84:49:90:f9: b0:65:1e:e5:ab:15:22:a0:52:1c:d6:1c:49:7b:50:56:84:e3: 70:0c:a0:36:31:57:28:77:78:3e:e4:cc:53:a6:aa:42:7b:15: 5a:c0:99:26:a8:0a:40:01:ab:52:69:41:1c:47:8d:d1:15:5c: 28:28:59:18:6c:5f:ea:c4:18:31:dd:f3:76:5f:32:9a:79:d3: 15:31:8f:1f:7f:33:22:63:40:12:c0:da:dd:52:03:7a:90:40: 6e:f3:e9:d8:9d:e5:67:4d:c9:fb:bd:6a:b5:e7:d5:ef:f9:dc: 17:3d:31:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3MTUxMTAvBgNVBAUTKDg2MTdCOUZFMkFBN0ZFRTIyNUYyRTBEMkRDODc2NDA5 ODEzN0RFNkQwHhcNMjUwNjE0MTk0MzIxWhcNMjUwNjIxMTk0MzIxWjAYMRYwFAYD VQQDEw02ODRkZDBkYS1kZjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxmD1kU9vdl+SdFfQHsHq7cWjf/DVYOQy5B1CAMiLaJk/06CdFTtdwxru6Tx ir0HxMrp+AEt5ROH6mMxxCN8eMyfe59DjASXLQWbeXiKR2mkJJUX3bNMdy5IMyoa e/ohiq79MPdun5uVYx7ADisiqEVeOonzUX2wLkFa1zR6cHtBlC9hT6Zp+71miJjJ sNDrDxvcfosxTB1txSjN6XECKn0fGdreJkflfjBfK5NW2B24Xr9QVL9Ol1t9KLGA ANzfts/6dkcKxGOc5SGBhHQEA0ie2xfzusHJ6JM+Ax28BnvsdLLDmrvEpBeiiJGy jcV3rQNxvhqkxmM0TNocPg0kTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqCQ1bt 7LD+/qICz8+LuSkQ6zKJMB8GA1UdIwQYMBaAFIYXuf4qp/7iJfLg0tyHZAmBN95t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzcxNS9CQzFDNUYxMDdD QjgxMUVBQjBGNjQ3NURDNEY5QUUwMi9oaGU1X2lxbl91SWw4dURTM0lka0NZRTMz bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hoZTVfaXFuX3VJbDh1RFMzSWRrQ1lFMzNtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzcxNS9CQzFDNUYxMDdDQjgxMUVBQjBGNjQ3NURDNEY5QUUwMi9oaGU1X2lxbl91 SWw4dURTM0lka0NZRTMzbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASwtU1kt1uLv2bJYmwlgzk6tadsM0NAa0qG4ITDzGwM9thuOEwBhkA KHSp6Jrdqghe4CeFvehiBHYFGf6Qhi9bH72Dq+yJgxgrOdGMob32AGzeTAIBBT3z hRmlVZV8ykvDmFEFyvlMafaitfzZB5mMyC1BxdwjKb35zgRnqn4i4ObVvLG8F4sS vBla9YRJkPmwZR7lqxUioFIc1hxJe1BWhONwDKA2MVcod3g+5MxTpqpCexVawJkm qApAAatSaUEcR43RFVwoKFkYbF/qxBgx3fN2XzKaedMVMY8ffzMiY0ASwNrdUgN6 kEBu8+nYneVnTcn7vWq159Xv+dwXPTFP -----END CERTIFICATE-----Generated at Sun Jun 15 19:26:33 2025 by rpki-client