$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: yoW/A1vJ1fUnuJcpZ/10zL3MJJUYlMH16y0z+V9eKrU= Subject key identifier: 5E:9D:57:69:6D:13:0C:EB:B1:A1:72:F1:25:29:8E:30:AC:6C:7C:1D Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 07DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 07D0 Signing time: Mon 16 Jun 2025 20:51:54 +0000 Manifest this update: Mon 16 Jun 2025 20:51:53 +0000 Manifest next update: Mon 23 Jun 2025 20:51:53 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: kYv5ItCAUeNL/yMsx/MgyYZdEewfxjckvEEwUazYe4M=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 20:51:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2014 (0x7de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Jun 16 20:51:53 2025 GMT Not After : Jun 23 20:51:53 2025 GMT Subject: CN=685083e9-ebd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:7f:a4:0f:f5:03:67:33:fa:57:4a:3e:e4:49: 69:a8:6a:ef:13:99:46:a5:06:bb:fc:98:81:e7:d0: 22:dc:ce:14:8d:b3:c9:5c:f6:08:a2:92:ba:f1:24: a7:ca:b3:a6:01:7d:50:52:19:cc:23:ee:3f:89:c9: 62:ff:21:2a:9c:85:f3:eb:e7:cd:b0:06:10:1b:3e: b2:f6:a8:2b:b7:38:7d:d3:c7:ee:94:55:ba:99:f8: 9f:8f:cf:a6:7e:ba:56:d6:f9:2b:53:07:5e:8c:0b: 30:65:e4:df:d9:c1:c1:c1:79:fc:8c:d9:0f:7b:49: b6:98:d9:86:e2:b0:48:73:b1:51:6d:c1:7f:c4:03: 7a:51:08:b7:ab:bd:6c:ed:79:24:ef:1d:05:0d:23: 6b:51:9a:ea:80:47:ad:c7:c1:e1:d6:12:b9:81:1c: a2:0b:5a:f9:d7:a0:60:ce:4f:3a:1c:49:99:7f:01: 81:c5:de:bd:db:c2:2f:12:a5:cf:fb:a8:dc:f1:e4: d1:5d:19:b5:1e:0e:ea:58:5f:7a:65:07:84:71:21: fa:38:f2:7a:0f:01:12:fc:9a:c5:86:94:d9:05:12: ba:e6:70:01:fd:45:64:cd:be:97:87:07:12:58:ba: 42:10:c1:3b:d7:c2:63:06:1b:40:cb:cc:78:09:c5: 5a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:9D:57:69:6D:13:0C:EB:B1:A1:72:F1:25:29:8E:30:AC:6C:7C:1D X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:8a:cc:5d:1a:e5:2e:a9:92:17:87:fe:59:aa:96:ce:15:af: 71:db:29:62:e3:82:87:98:6a:99:5e:b0:f9:65:d6:d3:b5:de: 75:a2:c4:69:f1:f0:24:05:3c:ac:49:1d:7d:b0:db:97:46:5f: 1c:8a:b8:61:83:56:52:2b:ef:03:a2:1d:04:44:7f:70:a7:a7: dc:b9:9a:90:94:9f:37:63:5d:ae:ea:6c:71:af:9e:db:01:72: 06:98:c1:d2:da:5e:d2:14:26:37:a8:43:62:66:f2:bd:57:42: 32:15:59:28:35:0b:a7:ef:fa:3c:22:ff:6e:1e:06:5e:1f:ac: a1:61:cb:3a:22:88:5b:9d:1d:2c:b5:8f:c6:42:b6:07:45:a3: 34:98:e8:83:2e:9b:20:d9:91:1f:d6:be:06:01:4a:fa:71:cb: d0:29:cc:ee:34:cf:c1:89:a9:bf:4e:41:7e:4e:31:10:2e:bf: ad:2f:12:2d:10:10:b9:f2:dd:b8:f0:0f:92:ad:23:d2:07:56: 37:6c:64:cb:81:63:79:a0:9e:ac:63:0b:7c:bf:39:d1:74:9a: 10:6c:09:79:e8:34:8e:61:41:be:23:56:f5:b2:eb:4f:bb:8f: ce:8f:47:d9:9f:7d:10:24:98:5b:ff:75:a0:f0:6f:8b:29:64: 7b:63:4d:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjUwNjE2MjA1MTUzWhcNMjUwNjIzMjA1MTUzWjAYMRYwFAYD VQQDEw02ODUwODNlOS1lYmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzn+kD/UDZzP6V0o+5ElpqGrvE5lGpQa7/JiB59Ai3M4UjbPJXPYIopK68SSn yrOmAX1QUhnMI+4/icli/yEqnIXz6+fNsAYQGz6y9qgrtzh908fulFW6mfifj8+m frpW1vkrUwdejAswZeTf2cHBwXn8jNkPe0m2mNmG4rBIc7FRbcF/xAN6UQi3q71s 7Xkk7x0FDSNrUZrqgEetx8Hh1hK5gRyiC1r516Bgzk86HEmZfwGBxd6928IvEqXP +6jc8eTRXRm1Hg7qWF96ZQeEcSH6OPJ6DwES/JrFhpTZBRK65nAB/UVkzb6XhwcS WLpCEME718JjBhtAy8x4CcVaWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6dV2lt EwzrsaFy8SUpjjCsbHwdMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBisxdGuUuqZIXh/5ZqpbOFa9x2yli44KHmGqZXrD5ZdbTtd51osRp 8fAkBTysSR19sNuXRl8cirhhg1ZSK+8Doh0ERH9wp6fcuZqQlJ83Y12u6mxxr57b AXIGmMHS2l7SFCY3qENiZvK9V0IyFVkoNQun7/o8Iv9uHgZeH6yhYcs6IohbnR0s tY/GQrYHRaM0mOiDLpsg2ZEf1r4GAUr6ccvQKczuNM/Biam/TkF+TjEQLr+tLxIt EBC58t248A+SrSPSB1Y3bGTLgWN5oJ6sYwt8vznRdJoQbAl56DSOYUG+I1b1sutP u4/Oj0fZn30QJJhb/3Wg8G+LKWR7Y032 -----END CERTIFICATE-----Generated at Wed Jun 18 04:56:05 2025 by rpki-client