$ rpki-client -vvf rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft File: h17HLkbyzRY_Brgi5wQSmu_jGRA.mft (raw, json) Hash identifier: SOK3uJ68YlLAViTvviIAdwKB4ri66HQCnIFAhCrj1rk= Subject key identifier: B8:B4:C9:51:25:20:9C:91:BE:F9:CA:9D:76:3C:F1:6C:44:31:74:19 Authority key identifier: 87:5E:C7:2E:46:F2:CD:16:3F:06:B8:22:E7:04:12:9A:EF:E3:19:10 Certificate issuer: /CN=A917C716/serialNumber=875EC72E46F2CD163F06B822E704129AEFE31910 Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h17HLkbyzRY_Brgi5wQSmu_jGRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft Manifest number: 041A Signing time: Mon 03 Nov 2025 01:25:24 +0000 Manifest this update: Mon 03 Nov 2025 01:25:23 +0000 Manifest next update: Mon 10 Nov 2025 01:25:23 +0000 Files and hashes: 1: h17HLkbyzRY_Brgi5wQSmu_jGRA.crl (hash: 97E+Wv3LQ7wiuLbWP5AFVqeNFw6YEZm0CnLG7dYTOAk=) 2: 9BC8AC96555C11F0AF866966C4F9AE02.roa (hash: aBG6SO8r5rIticJAwQ3F1F0hRoqPZrUVOKMtrK+PpMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.crl rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h17HLkbyzRY_Brgi5wQSmu_jGRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:25:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C716, serialNumber=875EC72E46F2CD163F06B822E704129AEFE31910 Validity Not Before: Nov 3 01:25:23 2025 GMT Not After : Nov 10 01:25:23 2025 GMT Subject: CN=69080483-add4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:77:f2:02:ed:db:84:3d:d3:d6:90:bc:f2:d4: c3:4c:7e:70:db:98:e0:c2:43:1e:a8:b3:a8:13:1a: 74:26:ca:d8:8b:6b:6c:c8:2e:f9:3f:fb:fb:25:14: ee:82:17:f8:6c:3e:65:ae:bb:e2:53:9c:95:fe:f3: 7f:9c:16:b7:40:26:3a:4d:19:93:cb:5e:af:34:cd: f0:d5:cb:5c:4f:19:04:27:cb:2c:37:2a:08:bb:d0: df:de:85:03:31:91:e0:4f:33:4c:6f:5a:8b:ec:60: 8a:95:f6:a5:65:1c:52:61:36:de:27:4d:e3:e1:30: fe:7b:aa:90:8e:86:4b:01:63:bc:18:de:74:0a:54: 51:f8:80:77:1f:40:a7:32:f9:12:bc:7b:fb:cb:aa: c8:0f:5d:bc:f8:83:31:4e:05:13:5c:67:05:f4:7f: 1f:8d:d3:c8:f4:ef:06:f0:4e:f2:fe:9b:61:e0:33: 1d:cd:17:6b:46:2c:05:a5:08:3a:74:57:2d:46:07: 21:98:ce:c1:72:77:ff:a2:01:34:f3:06:d1:a2:64: b7:c3:97:6e:a9:0b:f9:0b:ad:f0:cf:42:69:57:d7: cb:10:fe:26:62:98:06:2f:34:b5:c2:de:a0:1a:20: 48:f7:8e:c3:30:5b:ff:30:bd:30:ca:d3:3b:b7:8c: c3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B4:C9:51:25:20:9C:91:BE:F9:CA:9D:76:3C:F1:6C:44:31:74:19 X509v3 Authority Key Identifier: keyid:87:5E:C7:2E:46:F2:CD:16:3F:06:B8:22:E7:04:12:9A:EF:E3:19:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h17HLkbyzRY_Brgi5wQSmu_jGRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:20:e0:1c:3f:af:8e:1a:46:96:f9:e9:b6:49:d4:41:a7:45: 46:dc:f2:9e:2b:0e:a9:9c:62:f6:e6:ca:a6:38:96:0d:cb:b2: 17:b0:96:7c:39:5b:9f:c2:39:1f:9f:12:5b:74:01:d2:23:34: 41:81:38:49:fc:ac:4e:9e:39:aa:29:b7:5a:44:41:cc:fd:33: 31:47:b8:a9:44:a5:c8:df:1c:07:d4:86:92:3a:1b:db:8e:32: e1:f6:fb:28:c4:35:ab:a2:99:92:4f:c6:c7:cc:ff:72:8e:af: 07:46:0d:17:c3:6e:39:ec:ea:de:17:19:ee:79:69:14:64:0e: 5a:28:57:db:3a:cf:76:05:05:25:39:04:f4:02:69:74:14:6a: db:b5:7f:43:7e:c3:5e:8a:d5:b3:32:03:58:93:61:f1:bd:26: 03:3b:39:0d:32:4f:fc:54:de:36:bb:ef:71:cc:37:c0:65:d6: cf:14:34:c7:37:7b:71:38:7e:5f:f2:b4:fb:77:1c:a0:72:f6: 85:0f:28:6e:62:25:26:84:17:8b:72:fd:b9:ec:86:68:fa:da: b4:14:23:0e:44:7e:4e:29:bb:b9:5f:b2:fb:ec:9a:05:3a:a1: 3b:53:cc:2f:53:e0:c5:c8:3e:fb:a3:f7:0a:7a:ad:17:e0:bf: db:70:a0:2a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzcxNjExMC8GA1UEBRMoODc1RUM3MkU0NkYyQ0QxNjNGMDZCODIyRTcwNDEyOUFF RkUzMTkxMDAeFw0yNTExMDMwMTI1MjNaFw0yNTExMTAwMTI1MjNaMBgxFjAUBgNV BAMTDTY5MDgwNDgzLWFkZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnd/IC7duEPdPWkLzy1MNMfnDbmODCQx6os6gTGnQmytiLa2zILvk/+/slFO6C F/hsPmWuu+JTnJX+83+cFrdAJjpNGZPLXq80zfDVy1xPGQQnyyw3Kgi70N/ehQMx keBPM0xvWovsYIqV9qVlHFJhNt4nTePhMP57qpCOhksBY7wY3nQKVFH4gHcfQKcy +RK8e/vLqsgPXbz4gzFOBRNcZwX0fx+N08j07wbwTvL+m2HgMx3NF2tGLAWlCDp0 Vy1GByGYzsFyd/+iATTzBtGiZLfDl26pC/kLrfDPQmlX18sQ/iZimAYvNLXC3qAa IEj3jsMwW/8wvTDK0zu3jMMhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuLTJUSUg nJG++cqddjzxbEQxdBkwHwYDVR0jBBgwFoAUh17HLkbyzRY/Brgi5wQSmu/jGRAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDNzE2LzREQjlDQUM0MTQw MjExRURCOTY2MzQxNUM0RjlBRTAyL2gxN0hMa2J5elJZX0JyZ2k1d1FTbXVfakdS QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDE3SExrYnl6UllfQnJnaTV3UVNtdV9qR1JBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD NzE2LzREQjlDQUM0MTQwMjExRURCOTY2MzQxNUM0RjlBRTAyL2gxN0hMa2J5elJZ X0JyZ2k1d1FTbXVfakdSQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEgg4Bw/r44aRpb56bZJ1EGnRUbc8p4rDqmcYvbmyqY4lg3Lshewlnw5 W5/COR+fElt0AdIjNEGBOEn8rE6eOaopt1pEQcz9MzFHuKlEpcjfHAfUhpI6G9uO MuH2+yjENauimZJPxsfM/3KOrwdGDRfDbjns6t4XGe55aRRkDlooV9s6z3YFBSU5 BPQCaXQUatu1f0N+w16K1bMyA1iTYfG9JgM7OQ0yT/xU3ja773HMN8Bl1s8UNMc3 e3E4fl/ytPt3HKBy9oUPKG5iJSaEF4ty/bnshmj62rQUIw5Efk4pu7lfsvvsmgU6 oTtTzC9T4MXIPvuj9wp6rRfgv9twoCo= -----END CERTIFICATE-----Generated at Tue Nov 4 08:01:29 2025 by rpki-client