$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: uA/+KPEkA4QMkxCfuk2wjsvDPNiIks6fwE/ofS2m4B0= Subject key identifier: D9:84:A4:39:9D:96:61:9F:E1:D9:A4:25:90:DB:3B:D2:3F:4D:2B:4D Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 07F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 07EB Signing time: Fri 08 Aug 2025 21:23:37 +0000 Manifest this update: Fri 08 Aug 2025 21:23:36 +0000 Manifest next update: Fri 15 Aug 2025 21:23:36 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: 0j3FbYpLimLKjVOyJss103Px9do+cXA3bVDQLzblv7g=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2041 (0x7f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Aug 8 21:23:36 2025 GMT Not After : Aug 15 21:23:36 2025 GMT Subject: CN=68966ad9-3e88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d6:35:73:a8:f7:c4:c1:52:b7:df:60:60:c4: 3b:d2:50:3d:2d:b4:b4:a3:62:57:bd:07:1f:92:c4: 25:61:a4:73:16:c9:f7:73:35:a8:c3:ea:7e:6a:04: 33:c0:d0:6f:69:1b:8e:a8:12:fa:5f:91:2c:d3:c8: 31:92:f4:ff:a5:2e:06:6a:24:91:22:6e:e1:5a:31: 89:7c:d4:c5:bb:50:20:48:62:84:b3:3d:15:a3:c3: c1:97:0c:71:07:59:d8:0c:e2:61:05:de:0d:de:18: 3d:52:f0:1a:f6:4b:ea:be:ac:f9:52:0c:05:00:cb: a0:db:50:99:77:b9:50:3c:da:0b:c9:58:a7:44:f6: 21:ab:34:76:74:65:cf:08:43:e2:a6:d5:c4:a3:82: d1:c5:08:81:f5:cb:be:53:6e:45:64:67:f9:62:9b: 94:45:75:eb:e3:0c:51:25:cb:9c:f3:22:7c:a2:c0: d8:4d:0b:01:fc:1f:b3:c2:fc:51:61:05:b7:03:26: d6:15:67:f9:62:4e:20:ed:1a:f3:56:71:24:d7:9f: 31:b2:31:b3:74:5f:15:27:fd:e9:98:4c:a5:78:f2: 57:57:e0:1a:50:29:dd:a8:c4:97:5e:35:ac:df:c8: ed:4e:f4:52:5d:5d:17:7b:db:48:65:c5:7c:8c:4b: 28:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:84:A4:39:9D:96:61:9F:E1:D9:A4:25:90:DB:3B:D2:3F:4D:2B:4D X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:27:1a:16:e3:08:fc:d0:22:2f:d7:52:8d:a3:aa:78:db:60: 65:52:b7:c4:ff:21:d5:61:53:a6:d6:93:67:2f:cc:09:82:2b: a7:5c:2d:c5:55:27:b3:36:38:a5:1b:50:74:be:ee:bf:46:cb: 6d:de:17:1a:f2:f9:b3:73:aa:70:93:55:85:5b:c0:fd:e2:e2: ec:16:87:5d:a2:87:02:c8:4c:6c:93:cb:b5:0f:e8:d4:e0:6e: 46:b3:96:03:9a:7f:75:b6:26:f2:03:6f:6c:66:68:1f:c6:45: eb:50:f0:1e:d5:ef:66:50:31:8e:00:ac:08:19:8d:8e:9c:14: 07:cc:0e:56:65:89:2f:1c:19:97:00:e2:4a:0a:be:47:2d:36: 2b:e1:7b:14:1b:aa:d9:f5:be:2d:ce:d8:2e:1f:d9:c6:ce:c5: 61:f3:6a:39:64:90:0d:02:b0:a0:65:7c:70:8d:51:2a:f0:92: 26:bb:0d:78:66:db:39:66:61:b4:b7:c8:b7:c1:7a:e5:af:4b: 70:a1:1d:0a:8a:75:95:8e:3f:2f:09:06:e6:b5:1d:9a:16:cf: 90:57:7c:f4:ec:3c:47:31:a2:66:c0:a7:95:e2:0d:15:86:45: 74:cf:a0:47:7f:44:56:b1:49:ad:1a:a4:32:54:b3:b3:b0:08: 1a:ef:11:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjUwODA4MjEyMzM2WhcNMjUwODE1MjEyMzM2WjAYMRYwFAYD VQQDEw02ODk2NmFkOS0zZTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA39Y1c6j3xMFSt99gYMQ70lA9LbS0o2JXvQcfksQlYaRzFsn3czWow+p+agQz wNBvaRuOqBL6X5Es08gxkvT/pS4GaiSRIm7hWjGJfNTFu1AgSGKEsz0Vo8PBlwxx B1nYDOJhBd4N3hg9UvAa9kvqvqz5UgwFAMug21CZd7lQPNoLyVinRPYhqzR2dGXP CEPiptXEo4LRxQiB9cu+U25FZGf5YpuURXXr4wxRJcuc8yJ8osDYTQsB/B+zwvxR YQW3AybWFWf5Yk4g7RrzVnEk158xsjGzdF8VJ/3pmEylePJXV+AaUCndqMSXXjWs 38jtTvRSXV0Xe9tIZcV8jEsomQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmEpDmd lmGf4dmkJZDbO9I/TStNMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3JxoW4wj80CIv11KNo6p422BlUrfE/yHVYVOm1pNnL8wJgiunXC3F VSezNjilG1B0vu6/Rstt3hca8vmzc6pwk1WFW8D94uLsFoddoocCyExsk8u1D+jU 4G5Gs5YDmn91tibyA29sZmgfxkXrUPAe1e9mUDGOAKwIGY2OnBQHzA5WZYkvHBmX AOJKCr5HLTYr4XsUG6rZ9b4tztguH9nGzsVh82o5ZJANArCgZXxwjVEq8JImuw14 Zts5ZmG0t8i3wXrlr0twoR0KinWVjj8vCQbmtR2aFs+QV3z07DxHMaJmwKeV4g0V hkV0z6BHf0RWsUmtGqQyVLOzsAga7xHR -----END CERTIFICATE-----Generated at Sat Aug 9 02:54:08 2025 by rpki-client