$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: 2W9bf7Ztx88Cbak3PCpNYm/gnV9UmUnco5EM6KdC4Uo= Subject key identifier: F1:58:BC:9F:0E:C2:43:77:2E:EE:3A:90:CF:56:97:F4:84:FB:99:5F Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 156F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 1522 Signing time: Wed 02 Jul 2025 17:03:36 +0000 Manifest this update: Wed 02 Jul 2025 17:03:36 +0000 Manifest next update: Wed 09 Jul 2025 17:03:36 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: 7b8My6JPggXkKU+qlBWrwqNXMpcplxwz5Rf1FHOk3Ro=) 2: 1E7AFF46066811ED8098BF45C4F9AE02.roa (hash: YQcN21HxyJTpEw1WNoDsxk8iyFt0fzPYL5urmcV/3s4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:03:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5487 (0x156f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: Jul 2 17:03:36 2025 GMT Not After : Jul 9 17:03:36 2025 GMT Subject: CN=68656668-ce1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4c:ff:0a:c9:62:57:83:ac:90:fd:54:93:b7: 0c:01:ab:22:89:6e:85:d6:03:df:a0:57:0d:8f:29: 7d:35:1e:57:c1:bd:cf:d5:38:66:6f:04:d2:98:32: 85:7d:6d:15:12:58:f3:4b:d1:d9:71:31:50:a9:b4: eb:5e:2d:fd:75:53:d3:33:ad:7c:5c:54:2b:d6:85: b1:46:5d:88:95:8e:a7:81:b8:b7:86:d5:d9:25:f5: 6e:e1:01:46:3e:6b:86:83:e0:c6:1b:b9:aa:9e:68: 3c:a9:dc:8a:cb:4b:fe:33:f7:66:ec:53:33:a8:18: e1:86:8a:b8:47:51:2f:c7:8b:88:c0:01:0e:0b:fa: 89:19:ce:af:05:b7:c8:e4:90:c8:97:ae:b0:00:fa: 2a:0d:fb:d4:6d:a2:ac:30:a3:63:7d:a6:2f:cb:04: 4e:56:df:67:a2:e6:32:bc:ed:b8:63:73:f2:e8:ad: c4:75:62:9e:92:51:16:95:23:cf:6e:77:ad:ec:45: 7b:ee:37:48:2b:65:65:bf:f3:ee:c3:30:b4:e4:d0: d3:81:19:dc:46:5a:13:43:74:62:91:98:ad:bc:a0: be:e7:4e:88:12:03:5a:49:09:a1:3d:95:8f:7c:96: ca:8c:a7:6f:ed:59:68:ee:b2:1a:ee:c3:43:0e:41: 4f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:58:BC:9F:0E:C2:43:77:2E:EE:3A:90:CF:56:97:F4:84:FB:99:5F X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:cd:9a:5d:85:2f:7a:7f:17:6d:f7:55:8d:1f:a3:5b:37:b9: 95:04:65:e2:c5:d6:ef:3d:dc:4c:ff:df:61:71:f6:ea:88:a9: 3a:c0:02:ef:55:c2:38:45:0c:c3:e2:9c:bf:25:ef:cd:5d:11: 34:f8:37:f3:72:dc:81:d7:57:3e:ee:c4:79:58:30:29:1a:c8: ab:8d:0e:33:00:03:2d:af:04:02:99:ee:c5:46:5a:ee:90:98: c2:6b:89:1f:3e:6e:1e:55:2c:db:5a:5b:d0:92:88:fd:41:9e: 7f:20:d9:ac:25:76:69:83:48:03:80:e7:e3:a7:d2:77:f8:50: fe:43:9f:fd:0c:48:22:63:dd:21:40:26:a7:ea:e7:71:12:5e: b5:1f:67:33:6d:00:f2:fd:bf:3a:2f:fd:22:5c:a6:e0:2b:71: d4:6d:47:8b:bf:7e:47:f5:79:7d:8c:21:aa:09:05:52:7c:f1: 9e:c7:a6:21:dd:24:11:f0:7c:ac:ee:46:df:99:e6:c2:14:60: 15:bd:f5:80:80:25:c2:d8:b7:69:6b:96:3b:a4:f6:89:f7:b2: 97:d7:73:44:1e:4a:08:67:41:3c:0f:95:69:7b:9d:9d:9f:29: 97:cb:bc:e2:e0:1b:b7:77:b9:a4:4b:c1:26:1b:dc:b2:74:7e: 99:46:7a:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjUwNzAyMTcwMzM2WhcNMjUwNzA5MTcwMzM2WjAYMRYwFAYD VQQDEw02ODY1NjY2OC1jZTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3kz/CsliV4OskP1Uk7cMAasiiW6F1gPfoFcNjyl9NR5Xwb3P1ThmbwTSmDKF fW0VEljzS9HZcTFQqbTrXi39dVPTM618XFQr1oWxRl2IlY6ngbi3htXZJfVu4QFG PmuGg+DGG7mqnmg8qdyKy0v+M/dm7FMzqBjhhoq4R1Evx4uIwAEOC/qJGc6vBbfI 5JDIl66wAPoqDfvUbaKsMKNjfaYvywROVt9nouYyvO24Y3Py6K3EdWKeklEWlSPP bnet7EV77jdIK2Vlv/PuwzC05NDTgRncRloTQ3RikZitvKC+506IEgNaSQmhPZWP fJbKjKdv7Vlo7rIa7sNDDkFPYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFYvJ8O wkN3Lu46kM9Wl/SE+5lfMB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCszZpdhS96fxdt91WNH6NbN7mVBGXixdbvPdxM/99hcfbqiKk6wALv VcI4RQzD4py/Je/NXRE0+DfzctyB11c+7sR5WDApGsirjQ4zAAMtrwQCme7FRlru kJjCa4kfPm4eVSzbWlvQkoj9QZ5/INmsJXZpg0gDgOfjp9J3+FD+Q5/9DEgiY90h QCan6udxEl61H2czbQDy/b86L/0iXKbgK3HUbUeLv35H9Xl9jCGqCQVSfPGex6Yh 3SQR8Hys7kbfmebCFGAVvfWAgCXC2Ldpa5Y7pPaJ97KX13NEHkoIZ0E8D5Vpe52d nymXy7zi4Bu3d7mkS8EmG9yydH6ZRnok -----END CERTIFICATE-----Generated at Thu Jul 3 21:43:23 2025 by rpki-client