$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft File: hy5atTm-Q4V0A9T11FpUcrsgem0.mft (raw, json) Hash identifier: QqRo6sm2HzP82KHoj+v4qjO483pKGseUxtl2MZXA/y4= Subject key identifier: 81:C9:2D:06:F3:6D:66:D0:5A:38:7E:35:2A:DC:95:7A:59:4F:DB:B9 Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Certificate serial: 036A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft Manifest number: 035B Signing time: Sat 17 May 2025 01:14:01 +0000 Manifest this update: Sat 17 May 2025 01:14:01 +0000 Manifest next update: Sat 24 May 2025 01:14:01 +0000 Files and hashes: 1: hy5atTm-Q4V0A9T11FpUcrsgem0.crl (hash: Qs3+MkvhR2kXuz6JEOJ+M6zuca0cwIR2JeLuVxhn08U=) 2: A445EAA0B5B911EC8AADD413C4F9AE02.roa (hash: fxFlUsOaGScQkl9QgTozAWohlmX4iM9s7uV5Ua++ETg=) 3: 1D171A58C76211EC95B63648C4F9AE02.roa (hash: u3mehOty6gVz9qRridn7xauePsp938KB+uM0lLKTBHU=) 4: 2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa (hash: OvtIBWIONkhrTQi/ko/Qtu38pVg+GOOY2iprHCNF2R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 01:14:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 874 (0x36a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193339, serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Validity Not Before: May 17 01:14:01 2025 GMT Not After : May 24 01:14:01 2025 GMT Subject: CN=6827e2d9-38a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:21:85:98:14:d5:3e:10:5f:65:37:cb:84:41: 91:39:db:c9:f7:31:c3:53:44:59:ce:23:d9:22:3e: 68:d4:c1:8f:46:03:d1:bf:d3:11:e3:6c:23:ce:2b: 4c:49:71:b3:2d:6e:be:51:7d:6f:82:31:d4:51:ee: 47:37:7d:b6:a7:13:c2:23:a0:b9:8c:94:03:e5:5a: e1:7a:77:43:04:10:6f:43:b1:4c:f1:fa:e4:71:de: 86:ea:0f:80:ab:5f:41:f6:b9:e0:2e:db:61:c7:dd: 23:87:d3:0f:7d:de:2d:1e:a7:0f:98:ab:a0:fe:c0: 81:7b:0b:0b:f8:63:1d:41:d5:ea:35:5f:77:9d:55: 07:fc:d4:16:13:62:bb:43:a5:b2:f9:db:d0:17:e7: 4f:97:1e:4f:37:f4:61:58:05:cd:a5:f7:8c:7f:a7: 72:2f:07:9a:ba:cb:4e:38:a3:34:2f:51:b9:94:4f: 50:94:bd:31:11:03:8e:37:7b:40:65:71:b2:00:53: d6:84:90:5f:92:af:6b:85:af:b1:4b:23:13:09:78: 96:a0:c4:89:66:0f:d6:e7:95:f9:5f:67:ee:9b:0e: 25:69:74:29:7b:95:23:27:cc:e6:1a:b7:e9:89:ec: 50:19:b1:9a:30:2d:34:5e:b4:06:9c:df:30:a1:be: 18:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:C9:2D:06:F3:6D:66:D0:5A:38:7E:35:2A:DC:95:7A:59:4F:DB:B9 X509v3 Authority Key Identifier: keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:43:d8:e6:74:a0:a5:d7:b7:a3:63:90:6e:25:14:75:4f:0b: 96:df:86:c7:09:2e:07:e2:d4:f4:6d:e0:92:c4:ea:ec:fd:4d: f2:2b:3e:9b:95:a7:ff:b7:d7:4b:8e:bf:b0:83:aa:9a:ab:cc: ea:11:58:25:13:26:b7:d5:fd:4f:f2:a2:97:49:64:bd:71:b9: 58:c1:32:33:2e:fd:3c:de:72:e6:8f:90:ca:5f:01:d8:d2:e1: a6:20:86:39:d8:dd:84:f3:ef:d9:b9:bd:e6:87:de:26:49:c7: 1c:06:bd:a2:ef:d8:b1:d3:53:7c:7a:a3:28:be:cd:98:6e:ca: ea:e2:3a:f8:e3:be:3f:36:fb:f5:5d:30:e5:a7:9b:0c:0e:2b: b4:e2:bd:e2:4a:3f:c8:7e:49:ab:8a:f7:06:9b:28:21:13:53: 2c:05:92:97:9a:d2:c9:b2:3e:b8:bb:23:02:e9:46:b5:0e:c1: 06:4e:ee:f1:50:05:18:1f:5a:b1:c7:28:a7:d1:1b:80:ee:2a: 35:a4:8b:0a:da:ef:ab:6e:49:b2:f9:33:56:92:fb:d7:ec:50: 02:48:d0:38:6a:d6:80:1b:66:a8:e2:20:98:7d:b0:78:3e:13: b3:68:69:91:f1:61:e1:87:b7:2f:99:ab:45:2f:2c:8a:4c:8f: 3a:36:14:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzMzkxMTAvBgNVBAUTKDg3MkU1QUI1MzlCRTQzODU3NDAzRDRGNUQ0NUE1NDcy QkIyMDdBNkQwHhcNMjUwNTE3MDExNDAxWhcNMjUwNTI0MDExNDAxWjAYMRYwFAYD VQQDEw02ODI3ZTJkOS0zOGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCGFmBTVPhBfZTfLhEGROdvJ9zHDU0RZziPZIj5o1MGPRgPRv9MR42wjzitM SXGzLW6+UX1vgjHUUe5HN322pxPCI6C5jJQD5VrhendDBBBvQ7FM8frkcd6G6g+A q19B9rngLtthx90jh9MPfd4tHqcPmKug/sCBewsL+GMdQdXqNV93nVUH/NQWE2K7 Q6Wy+dvQF+dPlx5PN/RhWAXNpfeMf6dyLweaustOOKM0L1G5lE9QlL0xEQOON3tA ZXGyAFPWhJBfkq9rha+xSyMTCXiWoMSJZg/W55X5X2fumw4laXQpe5UjJ8zmGrfp iexQGbGaMC00XrQGnN8wob4YiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHJLQbz bWbQWjh+NSrclXpZT9u5MB8GA1UdIwQYMBaAFIcuWrU5vkOFdAPU9dRaVHK7IHpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzMzOS80NTI2Nzk3MEIy RkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0VjBBOVQxMUZwVWNyc2dl bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5NWF0VG0tUTRWMEE5VDExRnBVY3JzZ2VtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzMzOS80NTI2Nzk3MEIyRkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0 VjBBOVQxMUZwVWNyc2dlbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTQ9jmdKCl17ejY5BuJRR1TwuW34bHCS4H4tT0beCSxOrs/U3yKz6b laf/t9dLjr+wg6qaq8zqEVglEya31f1P8qKXSWS9cblYwTIzLv083nLmj5DKXwHY 0uGmIIY52N2E8+/Zub3mh94mScccBr2i79ix01N8eqMovs2Ybsrq4jr4474/Nvv1 XTDlp5sMDiu04r3iSj/IfkmrivcGmyghE1MsBZKXmtLJsj64uyMC6Ua1DsEGTu7x UAUYH1qxxyin0RuA7io1pIsK2u+rbkmy+TNWkvvX7FACSNA4ataAG2ao4iCYfbB4 PhOzaGmR8WHhh7cvmatFLyyKTI86NhTT -----END CERTIFICATE-----Generated at Sat May 17 05:04:01 2025 by rpki-client