$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft File: hy5atTm-Q4V0A9T11FpUcrsgem0.mft (raw, json) Hash identifier: pfFWPAziC/CDtXekNsI2oXFKuseyWOXXO+scTq3D68g= Subject key identifier: 30:06:17:85:A6:87:33:0B:C9:83:CA:64:CC:8F:3D:31:09:5F:F3:55 Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Certificate serial: 0381 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft Manifest number: 0372 Signing time: Thu 03 Jul 2025 01:16:19 +0000 Manifest this update: Thu 03 Jul 2025 01:16:18 +0000 Manifest next update: Thu 10 Jul 2025 01:16:18 +0000 Files and hashes: 1: hy5atTm-Q4V0A9T11FpUcrsgem0.crl (hash: hSa8l+RCOkAnn6oqgQpi60JYQ0mSrBeao5e6LoHEUxE=) 2: A445EAA0B5B911EC8AADD413C4F9AE02.roa (hash: fxFlUsOaGScQkl9QgTozAWohlmX4iM9s7uV5Ua++ETg=) 3: 1D171A58C76211EC95B63648C4F9AE02.roa (hash: u3mehOty6gVz9qRridn7xauePsp938KB+uM0lLKTBHU=) 4: 2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa (hash: OvtIBWIONkhrTQi/ko/Qtu38pVg+GOOY2iprHCNF2R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 897 (0x381) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193339, serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Validity Not Before: Jul 3 01:16:18 2025 GMT Not After : Jul 10 01:16:18 2025 GMT Subject: CN=6865d9e2-a154 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bc:53:75:0a:e4:2d:5b:d7:00:46:d4:22:06: bc:70:4c:30:06:29:33:78:43:54:8a:30:8d:b0:8e: 49:61:55:46:63:47:4a:8a:50:11:a0:71:07:ac:c3: d5:4b:1a:54:b3:45:9b:4f:c0:b6:81:97:13:84:91: a8:51:65:0b:44:91:51:0a:37:f2:ea:ff:1c:90:62: d5:50:bb:2f:03:69:e6:ae:e5:17:49:f7:c4:b2:47: a9:90:c4:fc:90:57:57:e7:92:06:cc:e7:59:48:a7: ab:59:07:4a:6b:eb:8f:2e:4c:86:04:94:85:32:d5: 27:86:a2:0b:ba:eb:d4:a7:1e:7e:3c:1b:34:79:ab: 14:8c:d3:27:a5:b6:e2:07:61:e6:a9:d5:87:89:cc: 95:d7:88:a8:42:3f:85:09:c6:0f:12:1b:45:7b:ed: 9e:df:17:d7:de:df:cc:83:ef:3d:d2:67:17:ee:36: c2:c0:f6:c7:91:18:58:0d:4a:3b:33:ac:50:66:6a: 34:f8:ce:28:27:73:39:35:fc:66:04:20:8e:d2:ab: 69:11:d5:59:72:6d:ba:30:b7:ff:fb:46:05:02:dd: c0:14:72:69:15:a0:ae:27:53:c1:8b:ec:6c:91:cd: 50:15:c4:13:56:a9:fc:20:5d:ee:e8:17:e5:c0:d1: 98:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:06:17:85:A6:87:33:0B:C9:83:CA:64:CC:8F:3D:31:09:5F:F3:55 X509v3 Authority Key Identifier: keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:9f:a3:b8:be:57:60:cb:11:17:54:9b:fb:39:6e:09:89:08: 2a:52:5f:3f:f9:be:c8:63:27:69:fc:49:dc:60:23:4a:f4:e0: 0b:5b:71:9e:4f:ca:ce:00:7c:75:9b:6d:c0:c1:65:86:44:03: 18:e8:64:2d:12:0d:45:8d:88:d7:d8:03:47:a7:0f:e7:fb:a2: d1:73:23:e7:a1:10:75:f9:f5:ba:82:3e:70:e5:db:82:13:19: 83:17:be:9b:93:3c:f3:c0:4e:39:d1:91:d9:e5:6d:16:01:3f: 17:f6:e7:1f:36:9d:83:bc:e6:04:f9:4b:71:5d:24:99:8d:f4: d1:3b:3c:e2:7b:b6:ba:99:c5:49:f0:ec:00:0b:13:2c:67:d5: 41:e2:6b:f0:c0:c3:3c:49:20:ee:4e:b0:f1:d7:7e:bd:6a:90: b6:57:d4:95:2b:25:d0:5a:27:88:27:44:6c:18:71:07:0b:5b: b8:7a:d9:c4:37:e7:94:82:54:b6:b7:d6:e9:d4:be:c6:48:9d: 91:a5:3b:7c:00:79:ce:26:21:a5:b9:fe:8d:50:26:99:a1:9b: eb:c2:b2:56:94:16:b2:b7:a6:da:59:b1:5a:cd:d9:93:62:56: b1:a4:d0:4c:d5:09:1f:46:2a:83:03:b0:b3:b8:6c:63:56:39: 1d:8f:d6:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzMzkxMTAvBgNVBAUTKDg3MkU1QUI1MzlCRTQzODU3NDAzRDRGNUQ0NUE1NDcy QkIyMDdBNkQwHhcNMjUwNzAzMDExNjE4WhcNMjUwNzEwMDExNjE4WjAYMRYwFAYD VQQDEw02ODY1ZDllMi1hMTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7xTdQrkLVvXAEbUIga8cEwwBikzeENUijCNsI5JYVVGY0dKilARoHEHrMPV SxpUs0WbT8C2gZcThJGoUWULRJFRCjfy6v8ckGLVULsvA2nmruUXSffEskepkMT8 kFdX55IGzOdZSKerWQdKa+uPLkyGBJSFMtUnhqILuuvUpx5+PBs0easUjNMnpbbi B2HmqdWHicyV14ioQj+FCcYPEhtFe+2e3xfX3t/Mg+890mcX7jbCwPbHkRhYDUo7 M6xQZmo0+M4oJ3M5NfxmBCCO0qtpEdVZcm26MLf/+0YFAt3AFHJpFaCuJ1PBi+xs kc1QFcQTVqn8IF3u6BflwNGY8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDAGF4Wm hzMLyYPKZMyPPTEJX/NVMB8GA1UdIwQYMBaAFIcuWrU5vkOFdAPU9dRaVHK7IHpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzMzOS80NTI2Nzk3MEIy RkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0VjBBOVQxMUZwVWNyc2dl bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5NWF0VG0tUTRWMEE5VDExRnBVY3JzZ2VtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzMzOS80NTI2Nzk3MEIyRkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0 VjBBOVQxMUZwVWNyc2dlbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCen6O4vldgyxEXVJv7OW4JiQgqUl8/+b7IYydp/EncYCNK9OALW3Ge T8rOAHx1m23AwWWGRAMY6GQtEg1FjYjX2ANHpw/n+6LRcyPnoRB1+fW6gj5w5duC ExmDF76bkzzzwE450ZHZ5W0WAT8X9ucfNp2DvOYE+UtxXSSZjfTROzzie7a6mcVJ 8OwACxMsZ9VB4mvwwMM8SSDuTrDx1369apC2V9SVKyXQWieIJ0RsGHEHC1u4etnE N+eUglS2t9bp1L7GSJ2RpTt8AHnOJiGluf6NUCaZoZvrwrJWlBayt6baWbFazdmT YlaxpNBM1QkfRiqDA7CzuGxjVjkdj9Zg -----END CERTIFICATE-----Generated at Thu Jul 3 21:46:50 2025 by rpki-client