$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: Ks1svh/iwhbf9YeY8xJUIPGUaF75rPMWSiCS7LSL0yk= Subject key identifier: EB:71:59:68:5F:E0:92:7D:50:1E:81:1E:EE:D6:DB:7B:DA:64:78:D6 Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 15C2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 156B Signing time: Mon 20 Oct 2025 17:15:54 +0000 Manifest this update: Mon 20 Oct 2025 17:15:53 +0000 Manifest next update: Mon 27 Oct 2025 17:15:53 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: hqz+SDgweum0bHo1AM42YB4XZiwyr9VzaM+xGiVABkg=) 2: 1E7AFF46066811ED8098BF45C4F9AE02.roa (hash: DfNj+35duToCe3Gw0TkK/ekaVs5oFQDYwJM0zF6fRx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5570 (0x15c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: Oct 20 17:15:53 2025 GMT Not After : Oct 27 17:15:53 2025 GMT Subject: CN=68f66e4a-aa67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f1:78:16:63:34:dd:7f:70:d7:47:3a:a7:f0: 7c:b0:1e:fe:b3:bc:03:76:85:03:bf:db:86:f1:5c: d5:f1:93:db:d4:4d:4a:f7:af:80:f9:4a:1c:0d:52: 35:8d:51:3d:07:a5:18:0e:37:59:b1:29:4f:dd:a4: 30:8a:11:28:9f:4e:b6:c7:31:f5:4a:6e:05:d0:6a: 47:c4:b0:a2:a3:a3:c9:f3:0c:22:d5:a5:4d:c9:58: 24:c5:4c:fe:78:2d:14:38:88:96:dc:03:0d:ec:f5: 94:b0:cf:5b:e4:2f:c2:3d:b9:6d:6f:1a:b7:e6:cd: 48:64:ad:a8:bf:71:61:d9:a1:ad:5f:f7:03:09:a9: e9:38:b3:bc:f2:1c:ab:47:a7:1d:a8:c0:53:a4:fe: a3:7a:55:aa:1d:1f:81:42:1b:48:00:ac:b4:ca:91: c9:8d:21:fa:42:05:b6:bd:57:ec:c8:05:87:42:bb: 9c:63:c9:06:54:92:18:c5:0f:90:5e:06:4e:73:24: d6:6e:e5:f8:4d:62:75:f9:4a:e4:77:9e:92:08:9a: 73:91:7b:5e:d4:c2:50:44:62:04:e3:4f:8b:f5:87: ea:ff:69:ea:80:f8:fa:04:dd:c3:44:4a:a4:65:01: 46:e2:6d:6c:cd:4e:99:10:32:bf:95:5d:d5:53:79: 16:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:71:59:68:5F:E0:92:7D:50:1E:81:1E:EE:D6:DB:7B:DA:64:78:D6 X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:47:fc:6c:db:26:28:b7:dd:76:35:3a:fa:e5:09:5d:fc:0f: d4:2e:8c:ec:7d:23:a3:6e:3d:fb:be:2a:ba:19:e9:47:b3:db: ae:cd:d8:fe:50:8f:59:cd:12:9b:f9:7c:21:e9:2f:a1:63:73: 72:95:fe:79:2d:86:93:9a:e2:50:0c:5b:e5:3d:87:1e:c7:2e: e6:a9:f1:f1:0c:17:7e:be:83:37:a8:44:94:5f:a5:37:d1:ec: 89:66:af:79:34:64:51:3f:10:7c:02:5d:73:9b:3e:06:2e:3a: 19:b1:b3:50:e5:db:14:5c:74:7e:6c:44:81:ec:21:bc:07:d6: da:bc:b4:c2:05:26:fc:d8:a1:1d:91:f2:8d:ee:ee:86:67:81: 9c:44:ed:2e:08:d0:03:2b:d4:51:9f:10:68:4b:af:fc:73:8a: d5:af:e6:83:73:36:fa:15:e7:aa:f5:6b:b3:cb:dc:30:b0:34: 87:26:cd:af:02:68:2c:1e:5d:51:65:37:93:10:3a:11:7a:ff: 8c:62:91:0e:da:21:6b:b5:c7:6a:89:c5:75:a4:b5:cd:1a:aa: 77:28:5f:a7:50:20:3c:db:cd:ae:e5:1a:d2:76:1e:0b:af:4b: f4:68:7e:ba:5f:21:d7:32:6b:d6:dd:a4:ca:19:36:7f:99:fa: 23:2b:ef:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjUxMDIwMTcxNTUzWhcNMjUxMDI3MTcxNTUzWjAYMRYwFAYD VQQDEw02OGY2NmU0YS1hYTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPF4FmM03X9w10c6p/B8sB7+s7wDdoUDv9uG8VzV8ZPb1E1K96+A+UocDVI1 jVE9B6UYDjdZsSlP3aQwihEon062xzH1Sm4F0GpHxLCio6PJ8wwi1aVNyVgkxUz+ eC0UOIiW3AMN7PWUsM9b5C/CPbltbxq35s1IZK2ov3Fh2aGtX/cDCanpOLO88hyr R6cdqMBTpP6jelWqHR+BQhtIAKy0ypHJjSH6QgW2vVfsyAWHQrucY8kGVJIYxQ+Q XgZOcyTWbuX4TWJ1+Urkd56SCJpzkXte1MJQRGIE40+L9Yfq/2nqgPj6BN3DREqk ZQFG4m1szU6ZEDK/lV3VU3kWWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtxWWhf 4JJ9UB6BHu7W23vaZHjWMB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCER/xs2yYot912NTr65Qld/A/ULozsfSOjbj37viq6GelHs9uuzdj+ UI9ZzRKb+Xwh6S+hY3Nylf55LYaTmuJQDFvlPYcexy7mqfHxDBd+voM3qESUX6U3 0eyJZq95NGRRPxB8Al1zmz4GLjoZsbNQ5dsUXHR+bESB7CG8B9bavLTCBSb82KEd kfKN7u6GZ4GcRO0uCNADK9RRnxBoS6/8c4rVr+aDczb6Feeq9Wuzy9wwsDSHJs2v AmgsHl1RZTeTEDoRev+MYpEO2iFrtcdqicV1pLXNGqp3KF+nUCA8282u5RrSdh4L r0v0aH66XyHXMmvW3aTKGTZ/mfojK+9A -----END CERTIFICATE-----Generated at Mon Oct 20 21:26:26 2025 by rpki-client