$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft File: hHItvUIme93Vm4hBUpklNTHgY2Q.mft (raw, json) Hash identifier: xmd/JE+yp7tdQDz4a40TuOEvDS3TeG+fdtLtMJBQZ78= Subject key identifier: 1C:81:C7:8C:84:0C:AC:6E:40:57:BE:72:13:80:7A:FC:12:39:F6:A7 Authority key identifier: 84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 Certificate issuer: /CN=A918FEF3/serialNumber=84722DBD42267BDDD59B88415299253531E06364 Certificate serial: 17FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft Manifest number: 17FB Signing time: Fri 08 Aug 2025 16:42:08 +0000 Manifest this update: Fri 08 Aug 2025 16:42:07 +0000 Manifest next update: Fri 15 Aug 2025 16:42:07 +0000 Files and hashes: 1: hHItvUIme93Vm4hBUpklNTHgY2Q.crl (hash: D4eipJ3ewQeiMTN8uxjD6GPCoCHPlAlkD1nW/hgu7aw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6139 (0x17fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FEF3, serialNumber=84722DBD42267BDDD59B88415299253531E06364 Validity Not Before: Aug 8 16:42:07 2025 GMT Not After : Aug 15 16:42:07 2025 GMT Subject: CN=689628df-1432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b2:ab:a5:c7:79:2d:0c:75:c2:57:27:bf:24: a2:e4:65:e2:c8:34:26:88:6a:05:c9:9c:c8:fc:97: 6d:10:a0:45:f9:bf:a4:9b:d1:08:29:c6:0c:85:6f: fe:9c:a0:6e:8f:bd:c0:20:5c:c8:19:92:48:70:e7: 17:0c:fc:d3:f8:f3:f5:8e:2d:f1:5b:45:73:81:f1: 5d:8d:f9:66:c2:cd:0b:f2:b8:42:ad:ab:a3:be:8b: b4:92:8b:e4:70:06:8b:b9:a2:b1:8f:d5:3f:82:d0: 74:47:18:eb:e3:f2:ae:e4:7a:c1:07:d7:ad:39:59: 2f:62:ee:cc:97:59:72:a1:a9:f4:43:72:35:56:b1: 2a:52:bb:6b:83:4b:d2:b8:bb:7a:c4:fb:5a:67:63: 0b:c0:48:a4:19:33:c5:bb:d7:15:2b:d6:bb:96:f5: d7:79:b6:74:b9:39:a7:7e:b1:ab:10:19:0b:e6:2f: 43:ba:ab:da:40:6e:1f:6f:ca:3f:42:76:dc:4f:7f: 7b:c3:96:25:fa:8f:db:fc:ce:7a:58:b2:3e:40:6e: aa:73:0d:68:de:44:73:d8:15:e2:ec:a0:16:2b:8c: a8:c7:09:85:9c:e3:93:6d:f8:e2:4b:7d:e8:2a:51: 8e:e3:d2:ec:2a:a7:67:15:45:3b:c7:46:ac:c8:a3: a6:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:81:C7:8C:84:0C:AC:6E:40:57:BE:72:13:80:7A:FC:12:39:F6:A7 X509v3 Authority Key Identifier: keyid:84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:c7:60:02:d2:01:0e:3c:9a:38:81:ee:ec:15:de:66:11:51: 01:a1:f4:45:8c:8f:40:ca:2d:3d:f6:86:4a:d9:21:fb:c3:c5: 9c:db:ef:d1:4e:81:3e:87:10:38:18:b7:0b:7e:cb:52:ce:28: 8a:5a:47:91:37:bc:1b:ad:06:98:fd:ad:c5:74:28:4d:84:cb: 72:12:10:52:5c:12:8c:cc:cc:bb:d5:24:de:92:13:41:a0:b6: 8f:bc:0d:bc:c5:69:68:e9:2d:bb:ee:bf:c0:52:1e:9c:49:ef: 67:e1:64:60:8b:00:22:ac:72:f0:30:cc:59:b9:e1:0e:17:88: 0b:53:46:c6:48:20:86:a8:c3:7d:bb:23:17:62:c8:72:77:35: c5:bd:52:f2:07:22:37:4e:c4:22:72:31:7c:f7:07:dc:19:71: c0:36:f5:10:e1:25:b3:ed:31:76:14:21:f0:68:1a:41:2f:06: 82:97:56:b9:a4:a5:c4:e4:e9:26:49:e3:4b:84:e1:cb:14:97: 20:88:5f:d4:5d:90:eb:a6:72:0e:e4:c6:30:23:91:fa:2e:ef: 90:ce:a2:ea:88:d6:79:87:4d:01:16:3f:59:ab:b1:b0:47:1b: 51:78:4b:99:cb:7b:3e:a2:01:d4:e2:52:13:ad:4b:bf:07:4d: 0d:3d:2c:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFRjMxMTAvBgNVBAUTKDg0NzIyREJENDIyNjdCRERENTlCODg0MTUyOTkyNTM1 MzFFMDYzNjQwHhcNMjUwODA4MTY0MjA3WhcNMjUwODE1MTY0MjA3WjAYMRYwFAYD VQQDEw02ODk2MjhkZi0xNDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7Krpcd5LQx1wlcnvySi5GXiyDQmiGoFyZzI/JdtEKBF+b+km9EIKcYMhW/+ nKBuj73AIFzIGZJIcOcXDPzT+PP1ji3xW0VzgfFdjflmws0L8rhCraujvou0kovk cAaLuaKxj9U/gtB0Rxjr4/Ku5HrBB9etOVkvYu7Ml1lyoan0Q3I1VrEqUrtrg0vS uLt6xPtaZ2MLwEikGTPFu9cVK9a7lvXXebZ0uTmnfrGrEBkL5i9DuqvaQG4fb8o/ QnbcT397w5Yl+o/b/M56WLI+QG6qcw1o3kRz2BXi7KAWK4yoxwmFnOOTbfjiS33o KlGO49LsKqdnFUU7x0asyKOmuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFByBx4yE DKxuQFe+chOAevwSOfanMB8GA1UdIwQYMBaAFIRyLb1CJnvd1ZuIQVKZJTUx4GNk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGMy9FNjMzN0QzMEJE MzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5M1ZtNGhCVXBrbE5USGdZ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hISXR2VUltZTkzVm00aEJVcGtsTlRIZ1kyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkVGMy9FNjMzN0QzMEJEMzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5 M1ZtNGhCVXBrbE5USGdZMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChx2AC0gEOPJo4ge7sFd5mEVEBofRFjI9Ayi099oZK2SH7w8Wc2+/R ToE+hxA4GLcLfstSziiKWkeRN7wbrQaY/a3FdChNhMtyEhBSXBKMzMy71STekhNB oLaPvA28xWlo6S277r/AUh6cSe9n4WRgiwAirHLwMMxZueEOF4gLU0bGSCCGqMN9 uyMXYshydzXFvVLyByI3TsQicjF89wfcGXHANvUQ4SWz7TF2FCHwaBpBLwaCl1a5 pKXE5OkmSeNLhOHLFJcgiF/UXZDrpnIO5MYwI5H6Lu+QzqLqiNZ5h00BFj9Zq7Gw RxtReEuZy3s+ogHU4lITrUu/B00NPSwM -----END CERTIFICATE-----Generated at Sat Aug 9 23:12:49 2025 by rpki-client