$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft File: hYBFlRf-HXfU04pCnx0hxskt6TQ.mft (raw, json) Hash identifier: 7U4PsRyjV0m9U150UuoZgqxCM8syHIOrlqmkceI2hS0= Subject key identifier: 15:6B:7B:BA:DD:AB:B8:F9:09:49:0F:6D:F6:0F:4F:58:D5:90:90:54 Authority key identifier: 85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 Certificate issuer: /CN=A9145B5E/serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft Manifest number: B3 Signing time: Thu 03 Jul 2025 06:11:44 +0000 Manifest this update: Thu 03 Jul 2025 06:11:43 +0000 Manifest next update: Thu 10 Jul 2025 06:11:43 +0000 Files and hashes: 1: hYBFlRf-HXfU04pCnx0hxskt6TQ.crl (hash: TxV5KAyHtRSM5Ji1CCm/Gh2WVpiovSuJA0oKbxwp5/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B5E, serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Validity Not Before: Jul 3 06:11:43 2025 GMT Not After : Jul 10 06:11:43 2025 GMT Subject: CN=68661f20-b232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0c:ad:c0:14:67:e2:3b:36:24:7b:3b:37:5f: 89:77:bc:c8:aa:5b:54:f3:62:59:ba:2b:83:d8:62: cf:cf:1f:f1:d4:58:f0:06:59:90:a6:42:69:b7:85: 09:e7:45:39:21:cc:ce:99:a2:b2:fb:14:a1:26:d3: 45:b3:b0:c7:89:e1:20:ee:4f:b4:4d:41:65:05:bc: 5e:f6:c1:04:9f:84:43:c8:f3:d2:1b:64:6b:12:d1: 88:b4:02:53:e0:48:e8:18:52:02:b6:b1:75:dd:2c: cb:ac:0d:5f:a4:a7:64:18:e9:a2:19:46:5d:e2:8e: 02:26:7d:e0:22:b6:5d:6c:20:69:47:ff:de:45:f9: 64:80:e5:8f:22:d9:aa:fc:6e:99:ce:20:77:2d:f0: c5:f9:c7:45:7f:94:6d:d8:55:09:13:55:02:ec:d6: fc:06:eb:b1:c4:b5:82:f4:a1:f3:5a:f7:79:a9:c4: ea:53:17:91:1a:72:2c:41:08:26:09:01:0c:75:5b: 29:74:fb:90:00:1a:84:c7:52:a9:58:57:40:cc:78: d7:dd:1f:50:a0:5b:48:4d:e5:19:5d:52:28:cd:8a: 3f:80:f2:f4:bf:f6:ed:91:a1:a5:22:ef:87:10:0c: 47:7c:e2:be:3a:2e:01:db:98:40:ec:4b:c1:34:27: a4:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:6B:7B:BA:DD:AB:B8:F9:09:49:0F:6D:F6:0F:4F:58:D5:90:90:54 X509v3 Authority Key Identifier: keyid:85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:d8:73:d2:35:54:4d:d2:76:d9:f9:bc:49:cb:bc:9e:a7:99: 5c:17:be:d1:88:77:79:2a:01:0b:3b:a6:6b:d3:64:00:0b:aa: 50:f5:a3:14:5d:56:d5:c0:c7:d4:cf:ef:0a:29:ff:63:91:a1: 30:bc:0b:07:c5:a5:2a:56:17:d7:71:98:e9:9f:8a:ae:86:4a: 01:12:1f:3e:9c:a8:f9:96:5b:2a:d6:ff:3f:6e:9e:4c:25:fb: c3:14:75:41:4e:5b:02:18:ce:f1:32:04:d7:15:d4:b6:42:8c: ec:18:56:24:e4:9a:7b:f8:9b:5c:d8:55:e9:ce:19:4f:22:71: 20:40:ef:55:d8:06:d1:d0:1b:fb:a3:a5:e8:dd:4a:ad:a3:d4: f0:1d:e9:9c:fc:00:d5:df:55:69:93:b8:9a:ab:38:d1:b4:49: 03:78:d6:b1:84:5f:c5:c9:d7:b0:25:ce:37:86:37:fe:08:06: c9:9e:f3:87:64:f4:1e:a5:9d:5f:bb:37:d7:13:87:8b:31:5b: 61:cd:d9:b9:d7:be:4e:51:8e:f9:40:d2:4d:33:77:08:ed:46: ae:07:1e:48:29:00:59:ec:b9:c8:ad:1b:0b:5a:5c:2c:76:4a: d2:9d:42:d0:63:89:a6:61:da:63:81:6c:1e:58:6d:16:19:38: 3b:16:e6:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCNUUxMTAvBgNVBAUTKDg1ODA0NTk1MTdGRTFENzdENEQzOEE0MjlGMUQyMUM2 QzkyREU5MzQwHhcNMjUwNzAzMDYxMTQzWhcNMjUwNzEwMDYxMTQzWjAYMRYwFAYD VQQDEw02ODY2MWYyMC1iMjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswytwBRn4js2JHs7N1+Jd7zIqltU82JZuiuD2GLPzx/x1FjwBlmQpkJpt4UJ 50U5IczOmaKy+xShJtNFs7DHieEg7k+0TUFlBbxe9sEEn4RDyPPSG2RrEtGItAJT 4EjoGFICtrF13SzLrA1fpKdkGOmiGUZd4o4CJn3gIrZdbCBpR//eRflkgOWPItmq /G6ZziB3LfDF+cdFf5Rt2FUJE1UC7Nb8BuuxxLWC9KHzWvd5qcTqUxeRGnIsQQgm CQEMdVspdPuQABqEx1KpWFdAzHjX3R9QoFtITeUZXVIozYo/gPL0v/btkaGlIu+H EAxHfOK+Oi4B25hA7EvBNCek3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVre7rd q7j5CUkPbfYPT1jVkJBUMB8GA1UdIwQYMBaAFIWARZUX/h131NOKQp8dIcbJLek0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUI1RS84NUJDRUU0QzQ1 QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhYZlUwNHBDbngwaHhza3Q2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZQkZsUmYtSFhmVTA0cENueDBoeHNrdDZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUI1RS84NUJDRUU0QzQ1QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhY ZlUwNHBDbngwaHhza3Q2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI2HPSNVRN0nbZ+bxJy7yep5lcF77RiHd5KgELO6Zr02QAC6pQ9aMU XVbVwMfUz+8KKf9jkaEwvAsHxaUqVhfXcZjpn4quhkoBEh8+nKj5llsq1v8/bp5M JfvDFHVBTlsCGM7xMgTXFdS2QozsGFYk5Jp7+Jtc2FXpzhlPInEgQO9V2AbR0Bv7 o6Xo3Uqto9TwHemc/ADV31Vpk7iaqzjRtEkDeNaxhF/FydewJc43hjf+CAbJnvOH ZPQepZ1fuzfXE4eLMVthzdm5175OUY75QNJNM3cI7UauBx5IKQBZ7LnIrRsLWlws dkrSnULQY4mmYdpjgWweWG0WGTg7Fual -----END CERTIFICATE-----Generated at Thu Jul 3 23:04:02 2025 by rpki-client