$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: r1Bie38JA/jbRXov9bjsL9jrNp7XM+8G6WlgOspbz70= Subject key identifier: 39:AB:61:9B:00:66:C4:65:62:91:44:DA:C5:0F:81:31:7C:B5:BC:C4 Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 081D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 080F Signing time: Sat 18 Oct 2025 22:08:59 +0000 Manifest this update: Sat 18 Oct 2025 22:08:58 +0000 Manifest next update: Sat 25 Oct 2025 22:08:58 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: 0YXquhRIZvBZd1TtuGHw/p127FdYAcSYMgDOgiiiVcc=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2077 (0x81d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Oct 18 22:08:58 2025 GMT Not After : Oct 25 22:08:58 2025 GMT Subject: CN=68f40ffb-521c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:67:37:54:27:dd:32:01:e3:fd:63:25:23:3f: 8e:a5:15:a2:7f:d4:c3:eb:8b:ea:53:e7:db:ce:cd: 24:74:ef:a9:d4:f0:7e:55:13:95:8d:02:a0:f6:73: 49:8b:4c:6c:00:97:50:20:43:d5:de:a6:6e:3e:1e: 32:ca:de:de:d8:a0:6a:86:56:3e:e6:a9:ea:21:e3: 1d:a3:ad:ba:4f:82:a8:85:ff:3c:cc:d6:1c:c9:6c: e7:9d:32:6c:30:30:8d:ca:f4:a6:b7:2f:da:e5:7d: dc:68:c6:64:eb:e8:02:24:46:97:f0:e2:a7:78:02: f3:44:ef:f7:88:a0:5d:9d:82:8a:c2:4b:37:45:7f: 41:1c:0c:84:fa:92:6c:d1:b6:c5:6c:dd:6e:68:71: 6a:8a:86:eb:2d:31:e3:a5:24:8d:8d:d1:4e:fb:27: f1:10:78:31:b9:08:56:23:19:57:db:92:54:53:9b: 0a:f6:5e:32:e8:2f:b6:42:72:3f:8f:5b:60:eb:80: de:34:82:00:7a:b2:9f:83:f5:e7:f2:7c:44:d4:39: 13:fb:16:97:4e:47:e7:3b:46:1c:f5:33:6c:6f:29: 39:b8:e5:69:d9:45:e8:99:5a:5b:c2:f7:09:cc:20: a0:8b:c6:12:08:79:64:64:0c:44:65:12:2f:1c:c5: 10:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:AB:61:9B:00:66:C4:65:62:91:44:DA:C5:0F:81:31:7C:B5:BC:C4 X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:a7:d1:52:67:a0:34:33:b2:45:b6:6d:ac:17:e5:4a:22:09: 69:a8:3b:b0:c4:e1:3e:4d:b9:40:7f:49:71:d6:5e:7b:d3:62: 8e:2d:c0:3e:a2:04:39:05:bb:e5:c2:ad:20:d9:2b:24:b8:56: 08:76:9a:7c:d1:c1:aa:85:09:10:02:71:cc:46:7d:c9:68:d1: 02:69:25:2b:23:f2:a0:88:57:48:cb:fd:df:e4:07:cd:78:27: ff:23:32:83:c9:a2:6d:14:2f:44:21:d0:e3:ae:c5:6a:7e:0a: 83:ec:8c:bf:93:3b:72:9e:33:8b:f8:6d:44:dc:75:97:69:e3: ca:34:01:e3:a7:10:ce:63:4e:36:b2:12:da:cc:2e:d4:95:52: f7:87:36:95:f4:c7:87:6e:41:a5:77:b2:e5:9d:f3:54:3a:99: 54:ee:ff:80:f9:bd:61:49:35:3c:b7:67:e2:0e:63:f4:11:4e: 51:a1:a8:b7:4e:26:d3:27:30:67:3b:e5:f7:f1:be:d2:5b:2c: 85:27:50:0e:6e:02:f5:b0:7d:8a:55:72:16:29:f8:db:81:95: 8e:5a:e2:65:ae:64:96:cc:45:dd:9b:a5:1e:fd:64:bb:ab:09: ee:3f:23:16:11:eb:79:15:08:49:c2:8f:4a:ec:4a:b4:1b:60: 44:eb:65:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjUxMDE4MjIwODU4WhcNMjUxMDI1MjIwODU4WjAYMRYwFAYD VQQDEw02OGY0MGZmYi01MjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2c3VCfdMgHj/WMlIz+OpRWif9TD64vqU+fbzs0kdO+p1PB+VROVjQKg9nNJ i0xsAJdQIEPV3qZuPh4yyt7e2KBqhlY+5qnqIeMdo626T4Kohf88zNYcyWznnTJs MDCNyvSmty/a5X3caMZk6+gCJEaX8OKneALzRO/3iKBdnYKKwks3RX9BHAyE+pJs 0bbFbN1uaHFqiobrLTHjpSSNjdFO+yfxEHgxuQhWIxlX25JUU5sK9l4y6C+2QnI/ j1tg64DeNIIAerKfg/Xn8nxE1DkT+xaXTkfnO0Yc9TNsbyk5uOVp2UXomVpbwvcJ zCCgi8YSCHlkZAxEZRIvHMUQiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDmrYZsA ZsRlYpFE2sUPgTF8tbzEMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfp9FSZ6A0M7JFtm2sF+VKIglpqDuwxOE+TblAf0lx1l5702KOLcA+ ogQ5Bbvlwq0g2SskuFYIdpp80cGqhQkQAnHMRn3JaNECaSUrI/KgiFdIy/3f5AfN eCf/IzKDyaJtFC9EIdDjrsVqfgqD7Iy/kztynjOL+G1E3HWXaePKNAHjpxDOY042 shLazC7UlVL3hzaV9MeHbkGld7LlnfNUOplU7v+A+b1hSTU8t2fiDmP0EU5Roai3 TibTJzBnO+X38b7SWyyFJ1AObgL1sH2KVXIWKfjbgZWOWuJlrmSWzEXdm6Ue/WS7 qwnuPyMWEet5FQhJwo9K7Eq0G2BE62X4 -----END CERTIFICATE-----Generated at Mon Oct 20 04:26:28 2025 by rpki-client