$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft File: hy5atTm-Q4V0A9T11FpUcrsgem0.mft (raw, json) Hash identifier: c+mtw/Uz/alhajkqoQ08Iu3TLVyPQ7L/fGE3kn45/qc= Subject key identifier: 65:9D:33:DF:CE:BD:3D:CF:A4:11:08:D7:F5:54:A8:CD:C9:7E:11:BE Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Certificate serial: 039B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft Manifest number: 038C Signing time: Sat 23 Aug 2025 01:04:30 +0000 Manifest this update: Sat 23 Aug 2025 01:04:29 +0000 Manifest next update: Sat 30 Aug 2025 01:04:29 +0000 Files and hashes: 1: hy5atTm-Q4V0A9T11FpUcrsgem0.crl (hash: NndKNjHGZWUjG8+IS7wlcyubDFUnbP9PeMzQtgcUkYM=) 2: A445EAA0B5B911EC8AADD413C4F9AE02.roa (hash: fxFlUsOaGScQkl9QgTozAWohlmX4iM9s7uV5Ua++ETg=) 3: 1D171A58C76211EC95B63648C4F9AE02.roa (hash: u3mehOty6gVz9qRridn7xauePsp938KB+uM0lLKTBHU=) 4: 2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa (hash: OvtIBWIONkhrTQi/ko/Qtu38pVg+GOOY2iprHCNF2R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:04:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 923 (0x39b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193339, serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Validity Not Before: Aug 23 01:04:29 2025 GMT Not After : Aug 30 01:04:29 2025 GMT Subject: CN=68a9139e-1e59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:73:68:45:7b:2d:90:e0:30:3b:a8:43:5a:91: a7:55:c2:db:08:f0:ee:b0:47:b5:a0:67:34:d0:e6: ac:78:89:41:0d:49:f7:2f:f9:9d:8c:a7:d8:84:4b: d7:05:a1:95:7c:79:87:94:7b:49:6b:bc:b0:4e:ca: af:95:a8:a0:02:0a:3f:63:b9:59:b8:d7:af:d2:a9: 74:ac:ec:b2:49:48:0c:60:8b:c2:3f:52:83:83:4a: d2:f6:4b:31:ac:ff:9d:59:99:c8:24:23:b3:e9:ef: f1:d5:40:63:cd:f1:f3:f9:e4:01:e2:cd:d0:51:6d: 97:54:d8:28:29:70:6c:81:60:25:2a:69:22:0e:2f: 71:af:e9:d8:db:4a:ca:69:d5:a7:5a:57:25:fb:41: 52:64:f6:f1:f1:0a:d2:71:b2:d7:f4:5f:0f:51:de: 9a:2a:75:8a:53:24:e8:32:19:e9:22:fc:92:f1:2d: d2:17:8f:18:29:1d:88:48:c6:22:08:cf:ba:72:f0: 87:2b:3b:8f:e8:05:d8:73:93:98:2f:f8:76:aa:c5: 76:a4:f5:48:ad:eb:76:d5:d3:7b:e1:58:b5:52:bb: cb:97:f8:d2:0e:35:eb:7c:c5:22:87:1b:7d:60:24: 22:90:e4:e8:0e:52:58:03:c8:16:1a:4b:54:44:6d: 94:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:9D:33:DF:CE:BD:3D:CF:A4:11:08:D7:F5:54:A8:CD:C9:7E:11:BE X509v3 Authority Key Identifier: keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:b6:63:a8:9a:71:68:4d:ea:cd:4f:0f:57:50:6e:2f:4f:cf: d5:e6:12:58:1a:4f:8b:29:ff:15:ab:f7:d8:76:be:7e:9f:0b: 04:26:e1:63:27:6a:be:07:a2:a0:2c:c3:21:04:b6:9b:4f:2e: 79:fa:c6:0c:40:28:2a:59:16:51:6e:6e:73:fb:a6:ea:29:eb: b6:39:0d:c1:1d:21:a4:55:3f:fd:01:28:92:09:13:34:59:a9: ae:bb:07:a2:af:f0:b2:cd:ab:32:08:0d:14:f0:d7:1d:0d:d3: 34:4a:f0:0f:54:d2:cd:94:79:6e:92:9e:47:d5:78:60:ed:87: 32:34:80:f2:23:99:62:04:c6:ab:2c:5e:55:d7:32:c4:67:39: e8:4a:07:e4:0b:6f:dc:a7:68:3a:bf:a7:9f:bf:2a:26:15:f4: 36:c4:56:29:e4:56:90:80:11:f7:8d:74:0e:e2:54:ef:03:33: 22:ba:4b:fc:6c:a0:0b:a2:03:a9:80:5b:5b:fb:e1:b2:a9:17: 64:13:71:31:7d:f3:4c:9f:af:dc:e7:9f:0c:49:01:2c:2a:45: 1d:a1:af:cd:75:4e:07:a6:64:5d:9d:f7:ea:83:17:fa:e5:a8: 46:be:8b:9c:77:eb:0d:75:98:f4:cd:d2:c6:74:4e:3c:54:0e: bc:fd:1e:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzMzkxMTAvBgNVBAUTKDg3MkU1QUI1MzlCRTQzODU3NDAzRDRGNUQ0NUE1NDcy QkIyMDdBNkQwHhcNMjUwODIzMDEwNDI5WhcNMjUwODMwMDEwNDI5WjAYMRYwFAYD VQQDEw02OGE5MTM5ZS0xZTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3NoRXstkOAwO6hDWpGnVcLbCPDusEe1oGc00OaseIlBDUn3L/mdjKfYhEvX BaGVfHmHlHtJa7ywTsqvlaigAgo/Y7lZuNev0ql0rOyySUgMYIvCP1KDg0rS9ksx rP+dWZnIJCOz6e/x1UBjzfHz+eQB4s3QUW2XVNgoKXBsgWAlKmkiDi9xr+nY20rK adWnWlcl+0FSZPbx8QrScbLX9F8PUd6aKnWKUyToMhnpIvyS8S3SF48YKR2ISMYi CM+6cvCHKzuP6AXYc5OYL/h2qsV2pPVIret21dN74Vi1UrvLl/jSDjXrfMUihxt9 YCQikOToDlJYA8gWGktURG2ULQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWdM9/O vT3PpBEI1/VUqM3JfhG+MB8GA1UdIwQYMBaAFIcuWrU5vkOFdAPU9dRaVHK7IHpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzMzOS80NTI2Nzk3MEIy RkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0VjBBOVQxMUZwVWNyc2dl bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5NWF0VG0tUTRWMEE5VDExRnBVY3JzZ2VtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzMzOS80NTI2Nzk3MEIyRkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0 VjBBOVQxMUZwVWNyc2dlbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZtmOomnFoTerNTw9XUG4vT8/V5hJYGk+LKf8Vq/fYdr5+nwsEJuFj J2q+B6KgLMMhBLabTy55+sYMQCgqWRZRbm5z+6bqKeu2OQ3BHSGkVT/9ASiSCRM0 Wamuuweir/CyzasyCA0U8NcdDdM0SvAPVNLNlHlukp5H1Xhg7YcyNIDyI5liBMar LF5V1zLEZznoSgfkC2/cp2g6v6efvyomFfQ2xFYp5FaQgBH3jXQO4lTvAzMiukv8 bKALogOpgFtb++GyqRdkE3ExffNMn6/c558MSQEsKkUdoa/NdU4HpmRdnffqgxf6 5ahGvoucd+sNdZj0zdLGdE48VA68/R4I -----END CERTIFICATE-----Generated at Sat Aug 23 20:44:23 2025 by rpki-client