$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: x/QhVvBrlyLM703mJhOfGUsCnd1Jgk5Ah9h00WFC2Pg= Subject key identifier: 39:5C:1F:92:04:D0:75:9A:98:56:FF:D6:71:42:3E:86:92:C4:E3:BD Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 158E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 153D Signing time: Sun 10 Aug 2025 16:52:33 +0000 Manifest this update: Sun 10 Aug 2025 16:52:33 +0000 Manifest next update: Sun 17 Aug 2025 16:52:33 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: qrXWi/Wc4Miqto3m0SZ5cPXyHRN86OlolTgEYh2++JE=) 2: 1E7AFF46066811ED8098BF45C4F9AE02.roa (hash: Rzrsr+dJQIYcq8aW2EiDCJcaR1sqHKce6naLbocgxlY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5518 (0x158e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: Aug 10 16:52:33 2025 GMT Not After : Aug 17 16:52:33 2025 GMT Subject: CN=6898ce51-df46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:41:34:a5:ff:5a:d5:09:f6:10:af:a3:b0:86: dd:dc:28:02:8a:b1:c6:bd:b3:c7:c8:58:a9:a5:6b: d6:4a:cb:be:32:28:b3:1a:a2:9a:f7:2c:04:2b:0e: 52:36:78:31:ea:76:87:e2:74:4a:23:9a:6a:01:04: 76:03:a3:f8:86:16:4b:3f:15:79:52:a2:53:55:f4: 46:02:0a:f2:ee:28:67:9c:4f:89:69:59:08:de:dc: 52:27:a4:1f:3f:45:93:ed:81:94:41:8e:21:8e:e3: 04:19:75:e9:80:fd:51:71:7a:58:26:00:a4:98:a7: 83:c9:df:ed:fb:7f:80:14:29:32:73:2c:c7:c0:a7: 62:13:09:59:5d:63:1d:2c:9c:f7:bc:d6:29:17:93: 0d:c1:99:ee:60:bb:c5:a6:75:bb:3f:ed:b3:b8:9d: 12:75:6c:58:e4:e6:ac:9a:92:6a:c9:c0:e1:be:28: 7a:80:96:88:85:c4:27:a9:f4:bd:2b:e7:ee:3a:66: eb:01:df:34:27:6a:93:48:12:11:77:97:de:8a:d3: 94:87:05:08:82:63:a7:9e:d7:26:fb:19:49:af:f8: 03:da:9a:92:ec:32:37:46:81:ae:3b:35:8d:2b:e7: f1:ca:d6:93:f7:9b:2d:80:05:6e:03:d8:ad:8b:e8: 22:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:5C:1F:92:04:D0:75:9A:98:56:FF:D6:71:42:3E:86:92:C4:E3:BD X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:d6:13:7b:30:59:51:78:ca:7b:e2:8e:f0:33:ac:47:52:82: e4:98:34:6d:d2:f4:40:3b:71:b4:09:7b:2a:ce:d7:e9:0a:a7: f8:83:06:c5:73:fb:e0:e6:b0:a8:23:87:e2:36:e7:7e:f2:f5: 7a:f6:87:de:b9:a1:40:03:7a:67:2d:85:1f:7d:83:f7:fa:70: a9:73:4f:57:69:e4:7a:73:54:a8:4e:73:d2:0f:12:cc:24:af: 2a:98:20:c2:de:be:59:90:45:7c:6e:e9:f0:b8:0e:4d:42:72: 2d:70:35:6e:62:2a:a9:8c:77:e4:2a:c1:36:cb:57:71:36:f3: d4:19:4b:ba:55:13:98:3c:ff:82:ee:ad:f4:c6:15:a3:0f:c1: 5c:24:20:23:66:7d:3c:90:90:25:5c:7a:00:60:aa:11:3f:d0: 90:fb:31:cb:8a:f2:42:f4:17:f1:18:d9:0d:f7:2d:15:73:28: ca:c7:b0:f4:9b:b5:ad:09:31:38:a4:d9:df:c8:0a:bd:c9:76: 5b:9f:9f:2f:f8:ce:c5:be:af:db:5b:c9:52:61:64:f7:0e:a5: 95:98:aa:72:5f:21:ae:f6:4a:f8:45:55:5b:96:a1:62:16:34: a8:70:65:f7:08:32:87:52:4f:c5:3a:c6:f7:4b:c8:5a:ca:37: fc:d8:d3:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjUwODEwMTY1MjMzWhcNMjUwODE3MTY1MjMzWjAYMRYwFAYD VQQDEw02ODk4Y2U1MS1kZjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0E0pf9a1Qn2EK+jsIbd3CgCirHGvbPHyFippWvWSsu+MiizGqKa9ywEKw5S Nngx6naH4nRKI5pqAQR2A6P4hhZLPxV5UqJTVfRGAgry7ihnnE+JaVkI3txSJ6Qf P0WT7YGUQY4hjuMEGXXpgP1RcXpYJgCkmKeDyd/t+3+AFCkycyzHwKdiEwlZXWMd LJz3vNYpF5MNwZnuYLvFpnW7P+2zuJ0SdWxY5OasmpJqycDhvih6gJaIhcQnqfS9 K+fuOmbrAd80J2qTSBIRd5feitOUhwUIgmOnntcm+xlJr/gD2pqS7DI3RoGuOzWN K+fxytaT95stgAVuA9iti+giDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlcH5IE 0HWamFb/1nFCPoaSxOO9MB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCP1hN7MFlReMp74o7wM6xHUoLkmDRt0vRAO3G0CXsqztfpCqf4gwbF c/vg5rCoI4fiNud+8vV69ofeuaFAA3pnLYUffYP3+nCpc09XaeR6c1SoTnPSDxLM JK8qmCDC3r5ZkEV8bunwuA5NQnItcDVuYiqpjHfkKsE2y1dxNvPUGUu6VROYPP+C 7q30xhWjD8FcJCAjZn08kJAlXHoAYKoRP9CQ+zHLivJC9BfxGNkN9y0VcyjKx7D0 m7WtCTE4pNnfyAq9yXZbn58v+M7Fvq/bW8lSYWT3DqWVmKpyXyGu9kr4RVVblqFi FjSocGX3CDKHUk/FOsb3S8hayjf82NPV -----END CERTIFICATE-----Generated at Sun Aug 10 19:52:16 2025 by rpki-client