$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft File: hHItvUIme93Vm4hBUpklNTHgY2Q.mft (raw, json) Hash identifier: hjGZfplX1Frc8l1iP0z6GVvoVFWHs8OCCyPrfd6Q9zc= Subject key identifier: 2D:F9:FF:E0:B9:E3:DD:C2:3E:3C:C0:FB:F6:A5:7B:0F:FF:33:C3:65 Authority key identifier: 84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 Certificate issuer: /CN=A918FEF3/serialNumber=84722DBD42267BDDD59B88415299253531E06364 Certificate serial: 17DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft Manifest number: 17DF Signing time: Sat 14 Jun 2025 16:30:15 +0000 Manifest this update: Sat 14 Jun 2025 16:30:14 +0000 Manifest next update: Sat 21 Jun 2025 16:30:14 +0000 Files and hashes: 1: hHItvUIme93Vm4hBUpklNTHgY2Q.crl (hash: KxIryNDDU1TECAHDYtMxi2KHfXeFtIPZNzzsFIlayhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:30:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6111 (0x17df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FEF3, serialNumber=84722DBD42267BDDD59B88415299253531E06364 Validity Not Before: Jun 14 16:30:14 2025 GMT Not After : Jun 21 16:30:14 2025 GMT Subject: CN=684da396-e51d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c3:8b:8c:8b:8b:b3:15:21:4f:52:cf:e7:ef: b3:74:8a:b6:59:d2:59:a8:b9:a8:d9:53:e4:44:ad: 33:6f:1d:63:6f:02:fa:06:e3:46:33:99:66:0f:20: bf:be:b9:6d:ef:fa:0d:db:fa:e7:64:c2:ed:75:0c: a0:ea:8e:1e:be:59:d5:97:c6:9c:d5:76:a8:d8:f6: 54:0a:ff:9c:38:6e:be:87:a2:4e:e9:6f:27:6d:fb: fd:e5:32:6d:5e:f1:a5:c7:70:37:07:07:77:fa:17: 04:2d:06:d1:b2:59:77:52:04:8b:8d:f7:5e:ca:06: fc:90:a8:c2:ea:cf:5b:ff:3b:7a:55:2f:94:29:ad: 0e:42:fd:09:ca:28:ea:fa:eb:25:d0:8d:92:c0:c9: d4:19:9e:8e:09:b2:9f:fc:fa:6e:ad:aa:5e:f3:29: 8c:71:3e:24:06:d9:37:73:15:b5:94:71:ad:96:bd: 4a:55:11:32:0f:ec:b1:4d:2b:fe:d5:36:7d:bd:08: 7e:e8:9f:23:4c:c5:58:fa:2d:fb:36:f9:14:09:54: 40:7e:f5:a5:05:75:19:83:fd:3f:90:bd:a5:e1:f3: 7f:de:99:59:9c:1c:f8:8d:58:f6:b3:43:50:90:b7: 7f:6c:4e:73:99:9e:53:0e:d6:a4:47:bf:40:9a:98: 7a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F9:FF:E0:B9:E3:DD:C2:3E:3C:C0:FB:F6:A5:7B:0F:FF:33:C3:65 X509v3 Authority Key Identifier: keyid:84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:d6:ee:b6:5b:c1:68:16:ac:2f:36:28:a7:4b:70:fc:67:4e: c7:2b:75:21:e1:23:ec:40:5b:69:79:d6:dc:b2:85:18:eb:06: 6d:8d:b4:b1:95:fb:25:fd:c7:4f:b2:31:81:5a:ce:56:91:ea: f8:e9:f4:c3:d8:a3:ff:6c:8a:ba:53:f6:c2:12:55:e7:84:04: dd:7c:f9:46:b1:e9:35:75:22:6a:50:8f:38:8f:5e:bb:05:3e: 08:58:a2:a3:c1:c4:8b:1d:c4:76:44:4e:93:94:2a:f5:91:0b: 6e:7b:ff:8c:ac:2c:dc:b3:4d:c7:38:fc:fc:0c:70:04:8a:f2: e5:e8:2d:ae:55:c5:18:63:6a:89:a5:ae:30:62:18:cc:d7:cc: 7e:85:5b:b1:48:a4:44:24:11:a9:5d:5f:78:89:b8:68:60:2c: 00:29:d3:b9:02:6b:d4:38:87:02:6b:68:67:1f:15:95:92:8d: 82:db:98:5f:e7:4a:d0:f4:8d:5f:3b:88:e3:2f:1b:75:b0:dd: 94:4c:41:d6:34:8f:6b:0a:b0:7f:78:b6:93:b8:a2:e9:61:6c: 9d:6b:19:8b:58:de:0c:fb:0c:ab:82:c1:46:32:95:fb:d7:3f: b7:38:a1:70:e5:d9:ca:7f:4b:e5:2a:48:25:13:fd:ed:a0:8d: 27:b3:5b:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFRjMxMTAvBgNVBAUTKDg0NzIyREJENDIyNjdCRERENTlCODg0MTUyOTkyNTM1 MzFFMDYzNjQwHhcNMjUwNjE0MTYzMDE0WhcNMjUwNjIxMTYzMDE0WjAYMRYwFAYD VQQDEw02ODRkYTM5Ni1lNTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycOLjIuLsxUhT1LP5++zdIq2WdJZqLmo2VPkRK0zbx1jbwL6BuNGM5lmDyC/ vrlt7/oN2/rnZMLtdQyg6o4evlnVl8ac1Xao2PZUCv+cOG6+h6JO6W8nbfv95TJt XvGlx3A3Bwd3+hcELQbRsll3UgSLjfdeygb8kKjC6s9b/zt6VS+UKa0OQv0Jyijq +usl0I2SwMnUGZ6OCbKf/Ppurape8ymMcT4kBtk3cxW1lHGtlr1KVREyD+yxTSv+ 1TZ9vQh+6J8jTMVY+i37NvkUCVRAfvWlBXUZg/0/kL2l4fN/3plZnBz4jVj2s0NQ kLd/bE5zmZ5TDtakR79Amph6ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC35/+C5 493CPjzA+/alew//M8NlMB8GA1UdIwQYMBaAFIRyLb1CJnvd1ZuIQVKZJTUx4GNk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGMy9FNjMzN0QzMEJE MzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5M1ZtNGhCVXBrbE5USGdZ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hISXR2VUltZTkzVm00aEJVcGtsTlRIZ1kyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkVGMy9FNjMzN0QzMEJEMzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5 M1ZtNGhCVXBrbE5USGdZMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB1u62W8FoFqwvNiinS3D8Z07HK3Uh4SPsQFtpedbcsoUY6wZtjbSx lfsl/cdPsjGBWs5Wker46fTD2KP/bIq6U/bCElXnhATdfPlGsek1dSJqUI84j167 BT4IWKKjwcSLHcR2RE6TlCr1kQtue/+MrCzcs03HOPz8DHAEivLl6C2uVcUYY2qJ pa4wYhjM18x+hVuxSKREJBGpXV94ibhoYCwAKdO5AmvUOIcCa2hnHxWVko2C25hf 50rQ9I1fO4jjLxt1sN2UTEHWNI9rCrB/eLaTuKLpYWydaxmLWN4M+wyrgsFGMpX7 1z+3OKFw5dnKf0vlKkglE/3toI0ns1s0 -----END CERTIFICATE-----Generated at Sun Jun 15 08:41:56 2025 by rpki-client