$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: ysJtcbNnsh3s9ylNd53g7Mi09kpIYxg5sCPggpBMgg8= Subject key identifier: 73:30:5B:27:57:90:3B:21:D5:94:85:73:97:F1:14:16:94:F1:29:AC Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 0800 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 07F2 Signing time: Fri 22 Aug 2025 21:08:25 +0000 Manifest this update: Fri 22 Aug 2025 21:08:24 +0000 Manifest next update: Fri 29 Aug 2025 21:08:24 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: UWQvs8csJcefWWJllUdDNZdRQl/2nGOnVYJj+4D0GUM=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2048 (0x800) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Aug 22 21:08:24 2025 GMT Not After : Aug 29 21:08:24 2025 GMT Subject: CN=68a8dc49-db85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ef:d7:52:8c:09:3c:75:d6:0a:0b:d2:54:e2: b9:15:f9:84:7d:2d:05:51:3b:99:79:3b:18:70:a6: db:f4:24:f8:de:b7:2d:11:c8:64:a5:d3:e5:48:60: 30:d7:df:1c:64:4e:71:44:e5:3b:7d:ef:62:d3:5e: d1:98:d3:d2:c1:9f:be:17:62:6f:40:37:e3:5e:a2: 0c:0a:ff:2d:bb:45:eb:cc:61:a2:70:ce:71:a1:67: 99:7e:4e:3c:41:aa:13:4e:61:00:a8:66:4b:f9:63: d7:58:bb:52:1d:7b:73:52:e3:96:3a:0a:2a:97:34: 0b:59:06:38:0e:8f:25:ae:b9:a9:72:26:c3:2d:cd: 74:29:78:46:5e:37:d0:6b:11:8a:6a:28:9a:2e:83: 85:5a:12:3a:d1:7f:3a:1b:b5:e2:e8:14:79:d8:b2: c3:7f:f5:64:cd:94:ec:63:f9:8f:52:44:35:5d:21: 38:ee:13:c8:cc:aa:93:fb:56:d7:af:ff:dc:dd:ae: 1c:5b:d2:f4:56:4d:58:39:4b:09:de:d4:1b:9e:f0: a3:77:cd:7a:dc:29:85:bc:8d:3b:3c:33:e4:72:df: d4:1d:81:ae:d8:7f:26:86:dc:64:40:57:83:0c:44: b2:49:39:2c:34:7c:2e:77:9d:c8:8c:fb:4a:38:da: 1c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:30:5B:27:57:90:3B:21:D5:94:85:73:97:F1:14:16:94:F1:29:AC X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:4c:f9:a6:f2:06:83:59:c3:77:60:c6:b2:25:6b:51:b0:8b: c6:6d:f1:04:30:5e:68:a7:1c:60:6f:b0:9f:0a:2e:10:ea:1c: 83:81:b2:64:3b:0a:47:9c:ca:6c:8b:d1:5e:80:88:98:00:ae: 47:d0:d5:4f:35:4d:bc:7d:97:b2:4b:6a:c7:09:d4:10:74:5a: 88:bc:ba:cd:30:cb:b9:1a:0d:60:38:31:5c:da:da:92:eb:75: 85:65:6a:7f:f8:f2:57:06:0b:34:eb:38:3c:e9:05:9a:cd:ad: 2a:65:1c:34:16:a5:e4:aa:78:3f:62:43:eb:ae:9f:e2:94:8d: 1d:f8:20:e8:f7:e0:64:22:49:d8:c4:5d:ff:9f:42:65:02:0f: 0c:ab:0c:10:c5:09:5f:21:4d:eb:9b:70:00:3e:0a:9e:68:d1: 78:8f:56:06:ca:c7:5a:9e:d2:d8:88:c0:b8:be:ee:e4:6b:a1: 02:e5:66:31:28:fd:9c:9d:fc:07:03:b9:35:3c:bb:fc:08:ce: c1:0e:e0:40:55:90:97:21:c0:76:69:ae:e5:34:87:26:62:45: c0:78:57:ce:ce:b0:3f:f7:6b:49:52:9a:f9:62:69:42:f7:b9: ec:6c:97:31:f2:96:f8:e5:9d:67:90:da:8e:51:6b:4e:f4:93: c2:d6:b0:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjUwODIyMjEwODI0WhcNMjUwODI5MjEwODI0WjAYMRYwFAYD VQQDEw02OGE4ZGM0OS1kYjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+/XUowJPHXWCgvSVOK5FfmEfS0FUTuZeTsYcKbb9CT43rctEchkpdPlSGAw 198cZE5xROU7fe9i017RmNPSwZ++F2JvQDfjXqIMCv8tu0XrzGGicM5xoWeZfk48 QaoTTmEAqGZL+WPXWLtSHXtzUuOWOgoqlzQLWQY4Do8lrrmpcibDLc10KXhGXjfQ axGKaiiaLoOFWhI60X86G7Xi6BR52LLDf/VkzZTsY/mPUkQ1XSE47hPIzKqT+1bX r//c3a4cW9L0Vk1YOUsJ3tQbnvCjd8163CmFvI07PDPkct/UHYGu2H8mhtxkQFeD DESySTksNHwud53IjPtKONocawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHMwWydX kDsh1ZSFc5fxFBaU8SmsMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArTPmm8gaDWcN3YMayJWtRsIvGbfEEMF5opxxgb7CfCi4Q6hyDgbJk OwpHnMpsi9FegIiYAK5H0NVPNU28fZeyS2rHCdQQdFqIvLrNMMu5Gg1gODFc2tqS 63WFZWp/+PJXBgs06zg86QWaza0qZRw0FqXkqng/YkPrrp/ilI0d+CDo9+BkIknY xF3/n0JlAg8MqwwQxQlfIU3rm3AAPgqeaNF4j1YGysdantLYiMC4vu7ka6EC5WYx KP2cnfwHA7k1PLv8CM7BDuBAVZCXIcB2aa7lNIcmYkXAeFfOzrA/92tJUpr5YmlC 97nsbJcx8pb45Z1nkNqOUWtO9JPC1rD9 -----END CERTIFICATE-----Generated at Sat Aug 23 17:09:26 2025 by rpki-client