$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: eF6E0FyaVn6x+GgmDdPOojuQUXramFt0cRPM5GRp7pQ= Subject key identifier: DF:58:FE:C3:04:45:4E:F4:30:1A:D5:C0:24:9A:F0:A9:6A:6D:79:EF Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 07E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 07D7 Signing time: Mon 30 Jun 2025 21:17:14 +0000 Manifest this update: Mon 30 Jun 2025 21:17:14 +0000 Manifest next update: Mon 07 Jul 2025 21:17:14 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: Gyl8cttJkYmMPYpwLZPg0aCWvNb1uucPVB1v7Cs8aNg=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2021 (0x7e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Jun 30 21:17:14 2025 GMT Not After : Jul 7 21:17:14 2025 GMT Subject: CN=6862feda-b1e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e2:6c:76:15:46:f0:52:1e:8b:0e:10:24:a2: 01:87:ab:7e:c8:71:2b:c0:e8:65:d8:67:54:cf:81: 3e:f3:c7:52:f9:62:98:49:b8:6d:92:0e:5f:ef:99: b1:58:32:04:a2:41:ad:5d:2c:1f:60:7a:67:e6:da: 33:ab:d4:50:c4:37:38:9b:af:7d:f2:ac:1f:d4:de: ae:ea:86:a4:c7:b7:fd:18:95:0b:70:9f:52:28:de: 8d:85:e9:e8:78:6f:c1:43:54:68:74:4b:ff:c9:b8: d6:1b:25:f1:06:87:c8:1d:f4:4d:34:85:0d:fb:ef: 88:5a:ac:88:94:2c:26:01:1b:ff:da:c3:f1:22:a5: bc:49:77:1f:ca:72:f3:30:f6:9d:0b:0d:aa:ee:38: 80:1b:34:fe:e6:3a:c3:5e:8b:a9:72:d1:8a:c7:98: ed:98:b2:50:48:47:07:13:28:50:50:bc:01:b9:e8: f6:6a:c5:19:a8:e4:fc:12:f7:21:2d:39:ef:4f:b8: 5c:5d:2c:1a:7a:0d:17:fd:ab:bf:30:c7:a3:bc:91: b4:46:92:77:b7:1f:a3:48:24:74:56:0c:d2:e7:57: 53:a4:67:0c:f7:13:e1:d3:57:d3:a9:e4:a7:27:45: 4e:9d:10:1d:a5:b5:37:dc:80:e1:f5:b9:50:db:8f: 53:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:58:FE:C3:04:45:4E:F4:30:1A:D5:C0:24:9A:F0:A9:6A:6D:79:EF X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:29:fb:f7:de:3a:85:cd:d5:e7:5b:95:92:c0:45:78:c5:15: 42:45:60:9b:7f:76:02:72:ef:5e:30:f5:d2:ae:8b:94:c2:88: 18:8e:a4:a7:f7:40:4c:11:b9:00:a5:65:51:e3:43:7d:a8:06: 85:af:30:63:0a:6a:18:7b:2e:1e:9c:90:f1:84:ed:44:3f:a2: 1b:ae:df:7b:5b:1e:76:df:39:a8:31:2d:d7:0b:5d:dc:50:58: 3a:84:58:28:b6:a9:35:53:e8:4f:64:45:0a:34:a7:8a:52:6e: 6b:1b:18:17:e3:9c:69:00:af:ad:84:59:e6:98:b9:22:87:68: a5:dc:fc:81:ad:c2:58:cd:82:31:be:39:22:26:68:0e:aa:3d: de:8e:3b:64:03:42:f9:a0:51:4f:4e:a9:2d:fe:b3:67:7f:c2: 99:a8:f8:fb:8e:8c:19:96:b6:6d:de:c2:8d:fc:9e:68:12:22: 20:ca:fe:e9:47:d1:91:ef:15:e4:2f:bd:c8:bb:39:1c:40:95: 93:6c:16:c9:c9:2d:11:d1:fc:c7:41:6b:89:1c:4a:ed:db:39: 1c:81:0a:58:4c:21:ce:1d:e2:26:35:73:bf:2b:95:69:e7:e2: 72:9c:11:1c:15:eb:ba:42:94:16:ab:c9:50:44:5b:93:80:6d: d5:9b:ef:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjUwNjMwMjExNzE0WhcNMjUwNzA3MjExNzE0WjAYMRYwFAYD VQQDEw02ODYyZmVkYS1iMWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoeJsdhVG8FIeiw4QJKIBh6t+yHErwOhl2GdUz4E+88dS+WKYSbhtkg5f75mx WDIEokGtXSwfYHpn5tozq9RQxDc4m6998qwf1N6u6oakx7f9GJULcJ9SKN6Nheno eG/BQ1RodEv/ybjWGyXxBofIHfRNNIUN+++IWqyIlCwmARv/2sPxIqW8SXcfynLz MPadCw2q7jiAGzT+5jrDXoupctGKx5jtmLJQSEcHEyhQULwBuej2asUZqOT8Evch LTnvT7hcXSwaeg0X/au/MMejvJG0RpJ3tx+jSCR0VgzS51dTpGcM9xPh01fTqeSn J0VOnRAdpbU33IDh9blQ249TzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9Y/sME RU70MBrVwCSa8KlqbXnvMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDKfv33jqFzdXnW5WSwEV4xRVCRWCbf3YCcu9eMPXSrouUwogYjqSn 90BMEbkApWVR40N9qAaFrzBjCmoYey4enJDxhO1EP6Ibrt97Wx523zmoMS3XC13c UFg6hFgotqk1U+hPZEUKNKeKUm5rGxgX45xpAK+thFnmmLkih2il3PyBrcJYzYIx vjkiJmgOqj3ejjtkA0L5oFFPTqkt/rNnf8KZqPj7jowZlrZt3sKN/J5oEiIgyv7p R9GR7xXkL73IuzkcQJWTbBbJyS0R0fzHQWuJHErt2zkcgQpYTCHOHeImNXO/K5Vp 5+JynBEcFeu6QpQWq8lQRFuTgG3Vm+92 -----END CERTIFICATE-----Generated at Wed Jul 2 16:10:55 2025 by rpki-client