$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft File: HsyXilPvK-iOXyatm4q4g3PRl6Y.mft (raw, json) Hash identifier: fOBRvOmwdHN2FVAq85vgnXs+Hy1M2YjxaBGC3xgtMmE= Subject key identifier: 09:52:84:82:79:E1:6B:56:C7:1B:E0:8F:16:0F:65:8A:6E:67:2D:78 Authority key identifier: 1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 Certificate issuer: /CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Certificate serial: 34BA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft Manifest number: 34BA Signing time: Fri 22 Aug 2025 14:22:09 +0000 Manifest this update: Fri 22 Aug 2025 14:22:08 +0000 Manifest next update: Fri 29 Aug 2025 14:22:08 +0000 Files and hashes: 1: HsyXilPvK-iOXyatm4q4g3PRl6Y.crl (hash: aXPKoWILNxSxhROgw0dXlsnP6OPqASdld6w9QEQYaXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:22:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13498 (0x34ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Validity Not Before: Aug 22 14:22:08 2025 GMT Not After : Aug 29 14:22:08 2025 GMT Subject: CN=68a87d11-e2f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ce:46:cc:1e:e0:eb:29:31:e1:c1:bc:06:ff: 2b:dd:8a:c3:0c:77:dd:76:f1:37:69:00:bc:e4:20: cb:f0:19:15:93:28:42:2d:41:cc:c6:40:d0:99:20: 7f:22:be:2a:1a:b4:81:99:15:fa:cc:43:0a:f3:92: d2:73:b1:7c:50:c5:b7:68:ad:40:47:94:8c:f6:c2: b5:e3:38:bb:77:1b:58:8b:66:16:20:ad:7e:ba:a0: 72:57:46:03:29:5c:50:cf:08:8d:59:87:cb:f4:1a: 3a:4d:e7:c1:5a:8c:81:9d:ac:66:de:19:18:a5:c0: 1c:0e:03:6b:63:49:74:10:f5:71:56:3d:35:7c:45: cc:3b:03:0c:d0:0c:2f:01:db:2c:ae:6c:69:58:dc: 69:b1:b5:c5:92:25:1f:f5:26:2d:2d:b5:51:5e:2e: 4b:b5:3b:3d:a1:80:fe:0d:f5:10:97:9e:a1:7f:5c: 70:7b:8c:0f:3a:01:66:3b:cf:a4:df:df:90:70:4b: 89:fb:85:f1:83:2e:b2:72:6b:43:60:4e:64:56:e0: 0c:85:69:a2:c7:ef:64:c8:a1:c6:77:13:21:db:03: c3:5c:16:d3:0d:fe:86:7f:3e:a8:fa:95:93:1e:26: 8a:39:89:3d:ce:30:e6:be:bb:03:a6:cf:ad:fe:26: 0f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:52:84:82:79:E1:6B:56:C7:1B:E0:8F:16:0F:65:8A:6E:67:2D:78 X509v3 Authority Key Identifier: keyid:1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:26:cc:bc:d3:2d:31:01:c4:e3:0d:a7:31:f6:0b:ca:c8:9a: 45:23:1e:b1:2b:cb:8d:8b:53:17:11:2a:4e:94:74:c6:83:56: bd:a9:e4:bd:3d:1e:29:7d:6e:d1:db:63:af:24:ed:55:8c:2d: 6c:78:ee:5a:b8:f8:93:cd:d7:6d:18:9a:fc:f4:61:e5:3a:6d: fb:28:4f:8b:a7:6b:d5:80:61:55:06:41:3c:25:e9:58:21:30: b8:e4:68:a1:6d:3d:de:df:4a:f0:1b:2c:dc:06:85:78:48:d3: f2:40:78:3b:b6:85:7c:7d:44:be:5f:2d:42:3d:89:61:34:be: 5e:86:39:c1:46:e1:e2:39:2f:95:6d:4b:7a:94:9c:97:46:56: 25:36:2a:d8:8f:28:e4:29:5a:45:2d:42:cc:04:c8:10:0c:8a: 15:7f:aa:d2:c7:5a:b8:0a:f9:c5:71:4e:ef:cb:49:0d:51:96: e2:d6:06:bb:92:e9:da:65:6f:b7:8c:d3:8e:4a:8a:ad:88:db: 6f:4d:af:1f:ea:09:9e:27:e6:b1:ff:5e:ae:b5:02:8f:11:89: 20:68:26:92:92:01:7b:f3:8d:03:98:db:c0:f7:72:0d:79:a6: f1:45:ac:bd:20:c9:92:f1:4e:d0:4a:e9:f4:b7:c3:98:f5:33: b2:db:e4:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKDFFQ0M5NzhBNTNFRjJCRTg4RTVGMjZBRDlCOEFCODgz NzNEMTk3QTYwHhcNMjUwODIyMTQyMjA4WhcNMjUwODI5MTQyMjA4WjAYMRYwFAYD VQQDEw02OGE4N2QxMS1lMmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu85GzB7g6ykx4cG8Bv8r3YrDDHfddvE3aQC85CDL8BkVkyhCLUHMxkDQmSB/ Ir4qGrSBmRX6zEMK85LSc7F8UMW3aK1AR5SM9sK14zi7dxtYi2YWIK1+uqByV0YD KVxQzwiNWYfL9Bo6TefBWoyBnaxm3hkYpcAcDgNrY0l0EPVxVj01fEXMOwMM0Awv AdssrmxpWNxpsbXFkiUf9SYtLbVRXi5LtTs9oYD+DfUQl56hf1xwe4wPOgFmO8+k 39+QcEuJ+4Xxgy6ycmtDYE5kVuAMhWmix+9kyKHGdxMh2wPDXBbTDf6Gfz6o+pWT HiaKOYk9zjDmvrsDps+t/iYP/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlShIJ5 4WtWxxvgjxYPZYpuZy14MB8GA1UdIwQYMBaAFB7Ml4pT7yvojl8mrZuKuINz0Zem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9CRkVCMDAwODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkstaU9YeWF0bTRxNGczUFJs NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0hzeVhpbFB2Sy1pT1h5YXRtNHE0ZzNQUmw2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUYzRS9CRkVCMDAwODFEODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkst aU9YeWF0bTRxNGczUFJsNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClJsy80y0xAcTjDacx9gvKyJpFIx6xK8uNi1MXESpOlHTGg1a9qeS9 PR4pfW7R22OvJO1VjC1seO5auPiTzddtGJr89GHlOm37KE+Lp2vVgGFVBkE8JelY ITC45GihbT3e30rwGyzcBoV4SNPyQHg7toV8fUS+Xy1CPYlhNL5ehjnBRuHiOS+V bUt6lJyXRlYlNirYjyjkKVpFLULMBMgQDIoVf6rSx1q4CvnFcU7vy0kNUZbi1ga7 kunaZW+3jNOOSoqtiNtvTa8f6gmeJ+ax/16utQKPEYkgaCaSkgF7840DmNvA93IN eabxRay9IMmS8U7QSun0t8OY9TOy2+QH -----END CERTIFICATE-----Generated at Sat Aug 23 16:46:05 2025 by rpki-client