$ rpki-client -vvf rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft File: h17HLkbyzRY_Brgi5wQSmu_jGRA.mft (raw, json) Hash identifier: uXd4iz77Vu/ItZkb0X1QrfWxaHZQ5Q4nHkL55nL3BPs= Subject key identifier: 36:DE:2E:52:6B:44:ED:6F:37:77:EC:E0:A3:65:7F:D7:69:C3:7E:20 Authority key identifier: 87:5E:C7:2E:46:F2:CD:16:3F:06:B8:22:E7:04:12:9A:EF:E3:19:10 Certificate issuer: /CN=A917C716/serialNumber=875EC72E46F2CD163F06B822E704129AEFE31910 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h17HLkbyzRY_Brgi5wQSmu_jGRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft Manifest number: 03AE Signing time: Sat 23 Aug 2025 01:52:02 +0000 Manifest this update: Sat 23 Aug 2025 01:52:01 +0000 Manifest next update: Sat 30 Aug 2025 01:52:01 +0000 Files and hashes: 1: h17HLkbyzRY_Brgi5wQSmu_jGRA.crl (hash: VbM5eLr4FGZl06PJLYY+7qHeQA+OyUy80vPd09NFvBE=) 2: 9BC8AC96555C11F0AF866966C4F9AE02.roa (hash: aBG6SO8r5rIticJAwQ3F1F0hRoqPZrUVOKMtrK+PpMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.crl rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h17HLkbyzRY_Brgi5wQSmu_jGRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:52:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C716, serialNumber=875EC72E46F2CD163F06B822E704129AEFE31910 Validity Not Before: Aug 23 01:52:01 2025 GMT Not After : Aug 30 01:52:01 2025 GMT Subject: CN=68a91ec1-ee52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:55:02:0c:6f:38:e5:3b:23:90:f8:d6:44:a0: 02:ff:cb:cf:bb:e8:70:ef:7a:15:a6:4e:3a:15:87: 85:d9:f9:27:ed:4b:60:a8:d7:fe:ad:8a:b8:80:51: 99:44:a2:4d:ba:c7:81:ac:59:e5:c8:d8:ed:c5:03: 7b:9a:8d:a0:f4:8f:8f:9d:53:e3:f5:bc:83:5c:1a: 0e:eb:4c:ea:60:47:e5:6a:1f:b9:4d:2a:88:6e:83: 7f:f3:36:f2:dc:db:a8:10:a5:cd:94:58:d0:d4:b1: 75:f1:16:0e:a7:3c:8d:b7:e3:d5:14:ff:d5:7a:37: 82:96:85:50:01:5e:b0:d1:57:5b:f6:29:77:02:b2: 3f:9e:4d:d2:ff:18:71:92:e8:e9:7e:e6:45:10:fe: 56:d2:15:6b:c2:11:99:6e:90:a5:fb:b5:6a:32:a2: 17:92:09:51:ca:84:0a:21:3b:7f:de:19:6c:ad:f6: 65:08:03:2e:e8:3e:17:f2:85:e6:e9:fc:2a:fb:ed: a2:30:64:9a:d8:b5:27:47:6b:1e:28:d4:09:4f:36: 12:0a:1f:8b:11:43:96:2e:68:8a:e1:b3:db:dd:dd: f0:64:9e:03:6e:9a:12:d4:d4:88:87:a7:8b:6c:41: df:a4:78:c7:c5:82:2c:cc:47:ea:6c:ee:ab:d0:58: 7c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:DE:2E:52:6B:44:ED:6F:37:77:EC:E0:A3:65:7F:D7:69:C3:7E:20 X509v3 Authority Key Identifier: keyid:87:5E:C7:2E:46:F2:CD:16:3F:06:B8:22:E7:04:12:9A:EF:E3:19:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h17HLkbyzRY_Brgi5wQSmu_jGRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:fe:69:da:04:79:c4:92:ff:5d:74:43:0b:4f:9a:22:37:3a: 12:aa:64:53:63:a9:42:80:55:67:72:5b:1c:2c:c6:04:1b:4e: 1e:60:36:a2:b9:ad:36:5e:31:fe:f4:54:86:80:4e:f7:11:53: 0a:0b:fb:a6:27:fd:a9:ff:ba:88:3c:ae:2d:d8:45:fd:d1:8d: bf:0f:31:a8:34:2b:b7:f3:e8:6b:3f:2b:4d:70:36:c4:c4:2e: 3a:cd:35:1f:43:0b:19:94:8a:41:e9:e2:29:db:13:51:ec:a4: 89:50:d9:f4:0f:da:74:0b:10:76:8e:80:8d:ec:0f:f0:7b:30: 81:34:e8:50:08:f0:e4:4c:39:5c:bc:2d:bd:b9:a4:8c:81:66: 35:8b:ec:b9:c7:1d:ce:e8:6d:94:bb:b9:e2:ce:6a:ab:3c:6c: b1:6b:33:c7:6c:48:ac:a7:6c:b3:df:fa:aa:38:7a:d9:66:d1: 75:bb:c0:84:75:31:a8:df:e7:0e:ec:b6:b4:e3:4d:c2:b5:99: 44:ec:63:99:47:f1:d4:7d:92:5e:6f:61:c1:fe:61:52:c2:60: a5:0e:bb:68:2c:44:3b:f5:d2:77:3e:e0:d4:d6:36:b8:fe:94: 09:03:8b:25:f7:be:6d:74:c9:cf:09:9a:24:53:13:3a:22:7e: d3:5f:a3:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzcxNjExMC8GA1UEBRMoODc1RUM3MkU0NkYyQ0QxNjNGMDZCODIyRTcwNDEyOUFF RkUzMTkxMDAeFw0yNTA4MjMwMTUyMDFaFw0yNTA4MzAwMTUyMDFaMBgxFjAUBgNV BAMTDTY4YTkxZWMxLWVlNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEVQIMbzjlOyOQ+NZEoAL/y8+76HDvehWmTjoVh4XZ+SftS2Co1/6tiriAUZlE ok26x4GsWeXI2O3FA3uajaD0j4+dU+P1vINcGg7rTOpgR+VqH7lNKohug3/zNvLc 26gQpc2UWNDUsXXxFg6nPI2349UU/9V6N4KWhVABXrDRV1v2KXcCsj+eTdL/GHGS 6Ol+5kUQ/lbSFWvCEZlukKX7tWoyoheSCVHKhAohO3/eGWyt9mUIAy7oPhfyhebp /Cr77aIwZJrYtSdHax4o1AlPNhIKH4sRQ5YuaIrhs9vd3fBkngNumhLU1IiHp4ts Qd+keMfFgizMR+ps7qvQWHwtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNt4uUmtE 7W83d+zgo2V/12nDfiAwHwYDVR0jBBgwFoAUh17HLkbyzRY/Brgi5wQSmu/jGRAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDNzE2LzREQjlDQUM0MTQw MjExRURCOTY2MzQxNUM0RjlBRTAyL2gxN0hMa2J5elJZX0JyZ2k1d1FTbXVfakdS QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDE3SExrYnl6UllfQnJnaTV3UVNtdV9qR1JBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD NzE2LzREQjlDQUM0MTQwMjExRURCOTY2MzQxNUM0RjlBRTAyL2gxN0hMa2J5elJZ X0JyZ2k1d1FTbXVfakdSQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACD+adoEecSS/110QwtPmiI3OhKqZFNjqUKAVWdyWxwsxgQbTh5gNqK5 rTZeMf70VIaATvcRUwoL+6Yn/an/uog8ri3YRf3Rjb8PMag0K7fz6Gs/K01wNsTE LjrNNR9DCxmUikHp4inbE1HspIlQ2fQP2nQLEHaOgI3sD/B7MIE06FAI8ORMOVy8 Lb25pIyBZjWL7LnHHc7obZS7ueLOaqs8bLFrM8dsSKynbLPf+qo4etlm0XW7wIR1 Majf5w7strTjTcK1mUTsY5lH8dR9kl5vYcH+YVLCYKUOu2gsRDv10nc+4NTWNrj+ lAkDiyX3vm10yc8JmiRTEzoiftNfo9o= -----END CERTIFICATE-----Generated at Sat Aug 23 14:27:07 2025 by rpki-client