$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: 6NO3DMoY+Lp67qh2RNpQPgi+IW4glMaeZMa3po+mwGw= Subject key identifier: AE:C0:17:18:18:5F:52:A6:85:06:BD:88:DA:F1:F0:A2:FF:73:6A:11 Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 1564 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 1519 Signing time: Fri 20 Jun 2025 16:54:39 +0000 Manifest this update: Fri 20 Jun 2025 16:54:38 +0000 Manifest next update: Fri 27 Jun 2025 16:54:38 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: M6cEYOYPKV0T+sqo6iDcPR1KqjXXYLXx1TlU2FOhJC8=) 2: 1E7AFF46066811ED8098BF45C4F9AE02.roa (hash: SCOcImgORIfO8b7Sx9HUbjlVKWnnJsQttWH8wzwZbmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 16:54:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5476 (0x1564) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: Jun 20 16:54:38 2025 GMT Not After : Jun 27 16:54:38 2025 GMT Subject: CN=6855924f-a4c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:79:eb:65:57:a4:53:df:ba:87:4f:e5:7a:93: f6:ad:f0:34:58:14:c4:0a:09:43:42:d2:26:9f:86: 49:9d:c7:28:3a:17:87:22:78:70:5b:db:fd:08:ee: ab:75:c2:df:d1:b3:b0:fb:bd:4b:bd:52:78:5e:ad: 05:04:03:80:26:ec:34:e4:b5:2d:92:6b:36:87:aa: 62:6c:2e:60:3b:1c:fa:49:b2:18:ae:00:cb:9b:c7: 00:48:43:0e:2f:06:be:be:77:4a:60:85:4e:5a:f0: 88:c9:21:84:ea:63:61:3a:33:0a:f3:31:82:f2:6b: 16:33:43:8d:68:bc:02:ed:ed:b5:a6:9b:90:fe:35: 35:62:db:3d:db:9c:36:7f:12:c1:9b:6f:5a:ce:88: 02:0d:d9:bd:45:bc:e5:30:c5:20:14:ea:60:3a:cc: 74:5a:dd:ad:2d:62:a1:3e:3d:d8:ce:62:54:16:43: 3c:05:b5:98:80:26:5d:d6:b9:c6:86:73:af:3e:e9: 2c:99:4b:fc:46:ad:35:13:d6:a8:ed:b4:f9:60:5e: 74:fe:45:42:08:b6:57:5e:ae:db:e0:3a:8c:44:be: a8:a3:0a:50:5c:b8:f0:1e:30:b5:b9:47:e7:84:bd: 89:a0:6d:3a:22:60:ef:d2:a9:a5:db:6b:58:d2:4b: 2f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:C0:17:18:18:5F:52:A6:85:06:BD:88:DA:F1:F0:A2:FF:73:6A:11 X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:45:1a:82:cb:67:aa:62:b7:48:85:d7:2e:44:c4:c7:17:dc: 16:00:6f:cf:c5:c8:bf:86:3a:9b:ba:d2:59:e9:e3:4c:3f:76: 77:b1:6c:92:61:f0:cc:b4:c4:48:9c:f7:eb:8f:5b:38:00:e5: ee:c7:7a:92:a1:ff:46:21:90:f5:35:88:52:6f:5b:06:3b:5c: c8:cd:85:2a:44:52:69:05:d0:8a:82:e8:c9:92:bb:89:dc:64: 32:d2:ea:53:0f:5d:ac:dd:bc:15:04:23:28:29:54:a7:9d:ef: 7e:56:37:d3:e4:96:67:43:60:ed:58:7c:c8:af:3d:0a:bc:63: 19:f0:08:6c:d2:58:30:90:46:14:64:4b:5c:cf:7a:87:f8:c1: cb:47:5e:6f:27:dc:f9:d5:1a:03:4b:34:9f:cc:9f:07:ec:4d: 77:19:1d:0e:48:e8:e8:5b:aa:51:bc:e9:38:17:92:ff:ad:3a: 62:c4:cc:7e:98:a7:77:c2:1e:1c:c7:f5:c0:44:43:5f:19:b3: 84:9b:25:78:00:04:e2:4c:e0:e4:9d:4c:be:f4:cb:19:5a:c0: 59:35:13:9c:7f:80:40:8b:8f:84:ba:37:23:4e:3a:ff:f3:a0: 92:93:b8:6f:23:5b:20:54:4f:ed:b8:55:d7:4e:c5:96:ca:68: 39:06:60:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjUwNjIwMTY1NDM4WhcNMjUwNjI3MTY1NDM4WjAYMRYwFAYD VQQDEw02ODU1OTI0Zi1hNGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7HnrZVekU9+6h0/lepP2rfA0WBTECglDQtImn4ZJnccoOheHInhwW9v9CO6r dcLf0bOw+71LvVJ4Xq0FBAOAJuw05LUtkms2h6pibC5gOxz6SbIYrgDLm8cASEMO Lwa+vndKYIVOWvCIySGE6mNhOjMK8zGC8msWM0ONaLwC7e21ppuQ/jU1Yts925w2 fxLBm29azogCDdm9RbzlMMUgFOpgOsx0Wt2tLWKhPj3YzmJUFkM8BbWYgCZd1rnG hnOvPuksmUv8Rq01E9ao7bT5YF50/kVCCLZXXq7b4DqMRL6oowpQXLjwHjC1uUfn hL2JoG06ImDv0qml22tY0ksv2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7AFxgY X1KmhQa9iNrx8KL/c2oRMB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2RRqCy2eqYrdIhdcuRMTHF9wWAG/Pxci/hjqbutJZ6eNMP3Z3sWyS YfDMtMRInPfrj1s4AOXux3qSof9GIZD1NYhSb1sGO1zIzYUqRFJpBdCKgujJkruJ 3GQy0upTD12s3bwVBCMoKVSnne9+VjfT5JZnQ2DtWHzIrz0KvGMZ8Ahs0lgwkEYU ZEtcz3qH+MHLR15vJ9z51RoDSzSfzJ8H7E13GR0OSOjoW6pRvOk4F5L/rTpixMx+ mKd3wh4cx/XARENfGbOEmyV4AATiTODknUy+9MsZWsBZNROcf4BAi4+EujcjTjr/ 86CSk7hvI1sgVE/tuFXXTsWWymg5BmDS -----END CERTIFICATE-----Generated at Sat Jun 21 00:14:32 2025 by rpki-client