$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft File: hYBFlRf-HXfU04pCnx0hxskt6TQ.mft (raw, json) Hash identifier: pEit6YqfJfIKRO0uOVZ7PPc0b/sg41T99Uux1U+uOtc= Subject key identifier: 81:18:23:1B:87:8B:2B:29:D3:94:DA:5F:DA:91:2C:CA:1F:56:9B:87 Authority key identifier: 85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 Certificate issuer: /CN=A9145B5E/serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft Manifest number: CD Signing time: Sat 23 Aug 2025 05:51:35 +0000 Manifest this update: Sat 23 Aug 2025 05:51:35 +0000 Manifest next update: Sat 30 Aug 2025 05:51:34 +0000 Files and hashes: 1: hYBFlRf-HXfU04pCnx0hxskt6TQ.crl (hash: UIru/EMPy5YaWoDT24GAUXMUS5+aJdI16tnkeLehsP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B5E, serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Validity Not Before: Aug 23 05:51:35 2025 GMT Not After : Aug 30 05:51:34 2025 GMT Subject: CN=68a956e7-a222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:07:70:08:6b:c7:f5:47:e3:b4:08:32:0a:06: 55:09:37:51:7f:37:9d:9a:fd:4c:3f:54:55:06:4f: 59:ba:ad:63:f7:34:cd:e0:5a:b9:ff:1a:ac:16:5a: b1:62:cc:7f:5b:f9:48:dd:58:7a:23:b4:a1:fb:04: 3c:34:98:b2:ba:22:c5:5f:f1:47:e3:07:5e:3b:10: 50:a0:b8:d2:f9:14:3c:a1:cd:4a:78:4d:1a:40:90: e8:73:dc:5f:31:6d:19:70:2a:0e:ad:ff:9b:c2:a1: b7:05:80:4d:6b:28:30:49:64:aa:f2:86:62:40:45: 20:95:bc:02:b9:22:79:61:9a:7d:0e:d0:c5:df:2f: 5c:48:6d:ab:74:74:dd:3a:37:89:9a:a3:7f:f4:f5: 40:77:3d:00:fd:93:1c:3a:9e:78:e2:b6:38:50:50: 9b:26:c2:4b:cd:1e:44:46:7f:49:28:c9:40:66:66: 5f:58:0e:64:c9:ca:01:33:db:34:c8:90:7b:bb:01: db:be:61:6e:d5:fc:d5:cb:79:71:7c:fd:cf:7a:11: b8:32:a1:a0:af:d5:99:9e:4a:7f:7e:ab:3f:6a:ef: 0f:d3:37:24:bb:1f:bc:1c:5d:c3:d9:d2:66:64:f7: ce:9d:d9:58:02:99:f5:91:b9:db:50:21:8d:c3:c8: cd:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:18:23:1B:87:8B:2B:29:D3:94:DA:5F:DA:91:2C:CA:1F:56:9B:87 X509v3 Authority Key Identifier: keyid:85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:69:71:41:3e:b3:cf:37:b2:16:87:ad:1f:0e:13:fd:14:b0: 3b:fd:cf:97:9d:99:d4:52:fb:83:d9:55:fb:7e:63:f9:4a:b0: 33:bc:a9:7a:2a:55:b8:89:1c:19:f4:f3:19:7e:56:cc:38:1a: b8:b0:0b:70:38:ff:11:c6:7d:fa:f0:34:48:cb:9c:ec:42:31: 8e:eb:80:bb:16:19:1f:36:a0:0c:bf:3a:6a:9f:91:af:94:6f: 00:b7:14:19:40:ed:b4:99:05:8c:0c:d5:5a:46:9f:8b:85:cd: b0:96:fe:30:e3:3b:04:7e:27:13:35:82:ea:f1:ba:ad:a0:db: 28:c3:1c:5e:6c:28:fd:3e:0e:ea:b3:b8:05:42:80:a7:f4:00: dd:20:92:4a:f2:fb:45:15:37:5a:c8:d5:08:fb:66:8d:51:10: 5c:51:66:43:ae:83:8d:4b:80:27:66:3b:c5:6b:9d:86:df:e9: fd:a2:ad:6b:7a:48:af:3a:4c:f0:7e:ae:be:81:02:ea:02:7d: 21:bc:e8:38:9d:08:c1:5b:14:70:f5:9c:45:43:b4:13:da:3a: 12:e7:e5:08:67:5f:e3:29:ea:f7:71:f4:f8:1b:f4:38:ed:8b: 1f:36:16:0d:5d:ff:7c:22:a6:37:b8:9f:86:1c:83:cf:f9:59: c5:2f:d5:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCNUUxMTAvBgNVBAUTKDg1ODA0NTk1MTdGRTFENzdENEQzOEE0MjlGMUQyMUM2 QzkyREU5MzQwHhcNMjUwODIzMDU1MTM1WhcNMjUwODMwMDU1MTM0WjAYMRYwFAYD VQQDEw02OGE5NTZlNy1hMjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQdwCGvH9UfjtAgyCgZVCTdRfzedmv1MP1RVBk9Zuq1j9zTN4Fq5/xqsFlqx Ysx/W/lI3Vh6I7Sh+wQ8NJiyuiLFX/FH4wdeOxBQoLjS+RQ8oc1KeE0aQJDoc9xf MW0ZcCoOrf+bwqG3BYBNaygwSWSq8oZiQEUglbwCuSJ5YZp9DtDF3y9cSG2rdHTd OjeJmqN/9PVAdz0A/ZMcOp544rY4UFCbJsJLzR5ERn9JKMlAZmZfWA5kycoBM9s0 yJB7uwHbvmFu1fzVy3lxfP3PehG4MqGgr9WZnkp/fqs/au8P0zckux+8HF3D2dJm ZPfOndlYApn1kbnbUCGNw8jNYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIEYIxuH iysp05TaX9qRLMofVpuHMB8GA1UdIwQYMBaAFIWARZUX/h131NOKQp8dIcbJLek0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUI1RS84NUJDRUU0QzQ1 QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhYZlUwNHBDbngwaHhza3Q2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZQkZsUmYtSFhmVTA0cENueDBoeHNrdDZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUI1RS84NUJDRUU0QzQ1QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhY ZlUwNHBDbngwaHhza3Q2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6aXFBPrPPN7IWh60fDhP9FLA7/c+XnZnUUvuD2VX7fmP5SrAzvKl6 KlW4iRwZ9PMZflbMOBq4sAtwOP8Rxn368DRIy5zsQjGO64C7FhkfNqAMvzpqn5Gv lG8AtxQZQO20mQWMDNVaRp+Lhc2wlv4w4zsEficTNYLq8bqtoNsowxxebCj9Pg7q s7gFQoCn9ADdIJJK8vtFFTdayNUI+2aNURBcUWZDroONS4AnZjvFa52G3+n9oq1r ekivOkzwfq6+gQLqAn0hvOg4nQjBWxRw9ZxFQ7QT2joS5+UIZ1/jKer3cfT4G/Q4 7YsfNhYNXf98IqY3uJ+GHIPP+VnFL9Xu -----END CERTIFICATE-----Generated at Sat Aug 23 14:16:55 2025 by rpki-client