$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft File: HsyXilPvK-iOXyatm4q4g3PRl6Y.mft (raw, json) Hash identifier: 5HT6BxpNDH/w49hJVkgYMG4PAGQedo1LSnbZAyfzSQ8= Subject key identifier: 7E:AD:27:1A:50:BE:87:0F:33:30:C4:37:69:D3:D0:C8:F1:5D:1A:82 Authority key identifier: 1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 Certificate issuer: /CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Certificate serial: 349F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft Manifest number: 349F Signing time: Wed 02 Jul 2025 14:22:05 +0000 Manifest this update: Wed 02 Jul 2025 14:22:04 +0000 Manifest next update: Wed 09 Jul 2025 14:22:04 +0000 Files and hashes: 1: HsyXilPvK-iOXyatm4q4g3PRl6Y.crl (hash: sSXM7OPfdtywBBW8qpqVzhw/pV6vThaLZzyX4hxJ7NA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:22:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13471 (0x349f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Validity Not Before: Jul 2 14:22:04 2025 GMT Not After : Jul 9 14:22:04 2025 GMT Subject: CN=6865408c-70b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:83:5a:4d:44:c1:26:c0:b1:9e:01:a8:12:7b: e0:36:5a:84:37:22:c9:0e:65:2e:45:65:5c:79:0a: 6f:2d:3a:f5:4b:25:3d:82:3b:1e:11:3f:91:09:1d: 2b:5a:6e:0f:bd:b3:02:ee:2c:72:61:87:0b:96:88: 1a:be:c5:9e:b2:61:a9:25:7b:5f:c4:1c:4e:3a:36: 42:3a:63:ff:54:13:ce:04:07:9a:b8:38:5c:62:4d: 57:d3:31:72:b6:b2:49:3a:f8:1d:0c:8a:cb:c4:ef: ce:8c:8d:3f:14:15:34:74:84:01:5b:0a:b7:f6:b5: 9e:dc:32:96:66:6c:4b:c8:0a:90:ad:bb:86:26:39: 7f:ef:cd:c4:77:40:b8:54:88:80:98:d6:46:5b:1a: 22:ba:10:3e:f4:43:87:18:89:d0:88:19:03:b9:36: 43:c0:72:eb:b1:1b:ed:91:93:17:ec:4e:ec:e1:1d: e0:a0:7e:c9:b7:6c:d7:37:b2:c3:40:51:d4:96:c5: 1d:6f:f4:bb:2c:42:14:d7:b0:62:30:84:46:3f:20: 82:a3:37:90:3f:2a:97:b2:1f:9b:04:73:89:0b:be: ae:30:12:b0:46:9a:98:6a:93:39:fc:8c:4d:80:c5: 28:66:39:e1:a1:24:4c:62:80:9e:ed:96:e2:ae:70: 52:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:AD:27:1A:50:BE:87:0F:33:30:C4:37:69:D3:D0:C8:F1:5D:1A:82 X509v3 Authority Key Identifier: keyid:1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:bf:29:ad:e7:a0:e9:bf:7f:10:be:5e:38:ce:58:ae:91:53: 8a:00:f3:02:6d:a9:17:4b:5d:cd:54:cd:bb:6a:44:23:06:f9: b0:c2:f8:41:0a:51:2c:6e:cb:94:97:c3:8e:7b:27:62:f6:59: a5:f2:43:56:56:9b:44:07:b7:95:39:43:81:22:8c:cf:fb:c0: 02:99:5e:04:7f:e7:61:98:a0:e9:6a:b1:b4:08:1b:3a:1c:6b: 45:e1:86:f2:17:f9:a6:8a:88:07:45:c2:85:98:8d:59:4a:14: df:08:c7:bc:0b:de:3a:22:be:f6:a5:e1:7f:90:bc:f2:ae:de: d2:ad:19:06:b0:d8:3b:9f:48:7e:76:a8:c9:af:0a:7a:0a:d6: d4:ed:6c:ce:53:af:4d:02:2e:1b:ef:57:19:f2:e4:5d:e9:ba: d1:3b:dc:32:d7:23:e6:45:a5:dc:32:3e:29:3e:a1:0f:23:2d: 1b:5c:bb:69:cb:69:fa:48:60:9f:9e:8f:25:95:46:f2:b6:27: ee:92:57:6a:71:56:da:92:64:d7:b6:1f:68:de:4e:45:13:e9: 23:a9:5f:73:46:66:39:63:ff:91:a3:7f:0b:44:a6:24:14:c4: 03:8f:90:ef:98:72:55:94:5f:f4:63:41:b6:ef:bf:8e:5c:5a: b4:6d:e9:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKDFFQ0M5NzhBNTNFRjJCRTg4RTVGMjZBRDlCOEFCODgz NzNEMTk3QTYwHhcNMjUwNzAyMTQyMjA0WhcNMjUwNzA5MTQyMjA0WjAYMRYwFAYD VQQDEw02ODY1NDA4Yy03MGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxoNaTUTBJsCxngGoEnvgNlqENyLJDmUuRWVceQpvLTr1SyU9gjseET+RCR0r Wm4PvbMC7ixyYYcLlogavsWesmGpJXtfxBxOOjZCOmP/VBPOBAeauDhcYk1X0zFy trJJOvgdDIrLxO/OjI0/FBU0dIQBWwq39rWe3DKWZmxLyAqQrbuGJjl/783Ed0C4 VIiAmNZGWxoiuhA+9EOHGInQiBkDuTZDwHLrsRvtkZMX7E7s4R3goH7Jt2zXN7LD QFHUlsUdb/S7LEIU17BiMIRGPyCCozeQPyqXsh+bBHOJC76uMBKwRpqYapM5/IxN gMUoZjnhoSRMYoCe7ZbirnBS4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6tJxpQ vocPMzDEN2nT0MjxXRqCMB8GA1UdIwQYMBaAFB7Ml4pT7yvojl8mrZuKuINz0Zem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9CRkVCMDAwODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkstaU9YeWF0bTRxNGczUFJs NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0hzeVhpbFB2Sy1pT1h5YXRtNHE0ZzNQUmw2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUYzRS9CRkVCMDAwODFEODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkst aU9YeWF0bTRxNGczUFJsNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQvymt56Dpv38Qvl44zliukVOKAPMCbakXS13NVM27akQjBvmwwvhB ClEsbsuUl8OOeydi9lml8kNWVptEB7eVOUOBIozP+8ACmV4Ef+dhmKDparG0CBs6 HGtF4YbyF/mmiogHRcKFmI1ZShTfCMe8C946Ir72peF/kLzyrt7SrRkGsNg7n0h+ dqjJrwp6CtbU7WzOU69NAi4b71cZ8uRd6brRO9wy1yPmRaXcMj4pPqEPIy0bXLtp y2n6SGCfno8llUbytifukldqcVbakmTXth9o3k5FE+kjqV9zRmY5Y/+Ro38LRKYk FMQDj5DvmHJVlF/0Y0G277+OXFq0bekx -----END CERTIFICATE-----Generated at Fri Jul 4 02:22:19 2025 by rpki-client