$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: j8qgBJYGRPG6fwrP6knMakeRDQAfKdBdrAZDbaK7y6U= Subject key identifier: 8C:2C:F6:CC:BF:13:29:E4:F3:1A:4A:72:BD:55:7A:C1:5E:D6:58:17 Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 1546 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 1500 Signing time: Fri 16 May 2025 17:08:41 +0000 Manifest this update: Fri 16 May 2025 17:08:41 +0000 Manifest next update: Fri 23 May 2025 17:08:41 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: HfdLkppU+I0RQt+i+MnSL2lgwgdJ2U4LWo2zwDYOGac=) 2: 1E7AFF46066811ED8098BF45C4F9AE02.roa (hash: OaSlUtvROdaSv6WTbJ4MU8muweMVwN2k/zI99S2iy/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 15:46:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5446 (0x1546) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: May 16 17:08:41 2025 GMT Not After : May 23 17:08:41 2025 GMT Subject: CN=68277119-f940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:47:a6:75:e4:f0:d8:41:a9:d5:e3:86:6e:8e: 98:ef:bd:fe:5d:bd:5d:6a:2d:b3:53:1c:6d:ae:1b: cb:67:e7:4d:22:88:bf:c0:07:02:29:f4:2c:35:87: aa:cf:7e:e3:64:30:8e:09:e8:56:cf:b3:60:7c:08: 04:4f:84:81:31:58:de:80:2a:fb:d3:bc:23:6b:8e: 76:b0:d6:8f:48:06:22:59:da:1d:5c:00:cb:9b:07: 72:d0:6e:6e:f0:5e:60:79:94:39:0c:6e:4b:37:1e: 71:5f:b7:5a:e0:86:25:fe:2e:8a:a6:53:23:fe:2a: 87:b7:60:d6:4c:42:28:8c:7d:86:8a:2d:53:8a:e7: 2f:2d:41:e9:6d:8c:d3:99:e1:e2:34:0f:ef:49:86: b8:1b:38:11:b3:0a:ab:9b:14:30:c3:30:a4:a2:8c: 72:dc:d4:36:d6:d5:76:06:f6:84:0e:4b:46:05:83: 2b:91:30:7e:e4:d7:a7:85:ac:7e:0b:9a:f3:1e:24: 38:68:2c:2d:ba:32:a7:1e:39:1f:05:2d:4e:77:21: 02:5e:78:9e:d7:85:00:d4:4e:77:d2:65:17:49:26: 9f:9f:1d:9a:3d:2c:85:12:5f:26:8d:0c:02:aa:24: 65:b7:cc:5f:49:d6:56:93:91:e2:8c:8b:43:89:54: 94:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:2C:F6:CC:BF:13:29:E4:F3:1A:4A:72:BD:55:7A:C1:5E:D6:58:17 X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:1b:50:99:b5:ac:4b:74:bb:93:55:37:5c:45:95:7c:bb:56: 4e:c9:4b:f1:b5:cf:91:f8:aa:b0:54:5e:be:6e:18:8f:06:ce: 55:74:b4:09:a3:15:32:f4:36:fc:a9:3a:0e:37:8a:ce:db:c1: f3:f5:09:f7:08:2e:bc:c6:50:47:81:29:21:dc:6a:bd:a0:0a: f9:58:43:da:ab:5f:11:61:cf:42:97:ea:0b:b5:b9:a6:84:75: f1:5f:7c:52:21:df:7f:b1:97:55:5f:ae:9b:17:71:0b:b4:b4: fb:30:9f:88:3b:a2:a4:8e:98:42:ca:6d:cf:54:37:f9:e7:7d: c1:95:13:64:fe:36:82:94:d8:19:72:6c:70:b2:a1:92:92:16: 6c:72:f8:e2:91:b6:38:72:2b:06:53:e2:0c:1a:c9:74:45:23: e1:c5:0b:67:18:62:17:d0:98:d1:b5:1d:02:95:65:d7:0e:68: e6:59:dd:b0:56:03:ea:4e:16:73:fb:66:df:d8:80:d5:f3:70: 9f:1c:bb:d8:13:c9:48:83:56:59:e4:31:98:a2:b9:46:1b:1c: 78:22:96:d6:8a:b7:8f:35:e2:75:35:e3:ee:cc:91:89:c1:64: a2:05:d9:36:03:9b:da:cd:32:ae:db:99:98:2b:2d:cf:18:6a: 87:e5:b5:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjUwNTE2MTcwODQxWhcNMjUwNTIzMTcwODQxWjAYMRYwFAYD VQQDEw02ODI3NzExOS1mOTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5kemdeTw2EGp1eOGbo6Y773+Xb1dai2zUxxtrhvLZ+dNIoi/wAcCKfQsNYeq z37jZDCOCehWz7NgfAgET4SBMVjegCr707wja452sNaPSAYiWdodXADLmwdy0G5u 8F5geZQ5DG5LNx5xX7da4IYl/i6KplMj/iqHt2DWTEIojH2Gii1TiucvLUHpbYzT meHiNA/vSYa4GzgRswqrmxQwwzCkooxy3NQ21tV2BvaEDktGBYMrkTB+5Nenhax+ C5rzHiQ4aCwtujKnHjkfBS1OdyECXnie14UA1E530mUXSSafnx2aPSyFEl8mjQwC qiRlt8xfSdZWk5HijItDiVSUswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIws9sy/ Eynk8xpKcr1VesFe1lgXMB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRG1CZtaxLdLuTVTdcRZV8u1ZOyUvxtc+R+KqwVF6+bhiPBs5VdLQJ oxUy9Db8qToON4rO28Hz9Qn3CC68xlBHgSkh3Gq9oAr5WEPaq18RYc9Cl+oLtbmm hHXxX3xSId9/sZdVX66bF3ELtLT7MJ+IO6KkjphCym3PVDf5533BlRNk/jaClNgZ cmxwsqGSkhZscvjikbY4cisGU+IMGsl0RSPhxQtnGGIX0JjRtR0ClWXXDmjmWd2w VgPqThZz+2bf2IDV83CfHLvYE8lIg1ZZ5DGYorlGGxx4IpbWirePNeJ1NePuzJGJ wWSiBdk2A5vazTKu25mYKy3PGGqH5bXy -----END CERTIFICATE-----Generated at Sat May 17 00:14:12 2025 by rpki-client