$ rpki-client -vvf rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft File: hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft (raw, json) Hash identifier: xvhqUkhzNojV26zEXkC+HhnIGxfHIP+hT/d23repgbQ= Subject key identifier: 33:67:52:00:95:2F:C5:34:87:71:E9:66:28:E3:12:8F:8F:36:C0:5C Authority key identifier: 87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 Certificate issuer: /CN=A919AC9A/serialNumber=8728B828F318603E44711070C24ECC088A190060 Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft Manifest number: 0105 Signing time: Sat 03 May 2025 04:25:22 +0000 Manifest this update: Sat 03 May 2025 04:25:22 +0000 Manifest next update: Sat 10 May 2025 04:25:22 +0000 Files and hashes: 1: hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl (hash: tsbHA8OIcBa6Bqoui6FlmBhVD5Watp1wjrWyRKcgQNY=) 2: F0D7EB5097FA11EE90066875C4F9AE02.roa (hash: vxxrjf6mh6He/Qk48r/ND4XKn6+HAksWQduimGVP494=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 04:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AC9A, serialNumber=8728B828F318603E44711070C24ECC088A190060 Validity Not Before: May 3 04:25:22 2025 GMT Not After : May 10 04:25:22 2025 GMT Subject: CN=68159ab2-8e7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2d:b6:29:fd:da:cb:bd:e3:64:8a:27:b7:2c: 62:d1:dd:7b:ce:f5:3c:c7:27:06:3d:ad:93:cc:45: 51:05:47:b3:a7:9f:db:83:5b:c0:7c:7e:2d:08:98: 13:20:72:15:7b:e0:2a:31:8e:cf:59:5a:60:28:34: 03:6e:d9:f9:7d:77:2a:15:0b:e9:25:c0:83:66:aa: 0d:f1:60:12:9d:b5:01:58:55:03:f2:49:56:28:ec: 4c:b5:fd:db:5d:8c:4b:6d:d0:63:44:3b:28:91:aa: dd:a9:d1:0b:46:89:bb:8f:e9:c7:78:44:01:3a:b1: 0e:7d:48:16:fb:3b:d4:df:62:c5:2a:2d:10:84:f8: ac:dd:1f:32:ca:ac:35:98:31:78:56:31:95:6d:22: cc:e0:ae:97:89:ea:45:76:a9:3a:87:50:2e:3b:dc: 22:d1:5c:2b:6e:63:4c:f9:82:3a:1e:7f:83:6e:ce: 37:dd:73:fd:dd:33:ab:f8:7f:a1:20:54:84:61:5b: 63:af:12:68:7c:82:8a:84:88:e4:fe:4c:81:ae:99: 5a:a4:9c:b1:32:1c:e7:bb:3a:aa:a0:7e:f7:c5:f4: 24:ce:b7:9b:3d:be:3b:bc:c2:e3:fe:29:09:12:84: fe:68:95:5a:7c:99:7a:e2:dd:3e:09:b2:13:90:f1: 4b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:67:52:00:95:2F:C5:34:87:71:E9:66:28:E3:12:8F:8F:36:C0:5C X509v3 Authority Key Identifier: keyid:87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:ab:68:f1:3d:97:f5:fb:f8:b7:be:8f:ea:70:19:af:66:4d: 9a:38:dc:7a:9c:46:56:3a:09:92:c4:df:7c:ce:81:a0:1c:71: f7:0a:bd:1a:93:e3:15:8f:9d:bc:33:03:5d:71:2b:61:f0:04: 58:72:86:00:71:93:89:68:0a:91:e5:f2:8f:da:dd:3e:03:3d: 66:c6:c6:3a:59:4e:17:a2:0d:bd:65:19:12:e6:84:85:bf:af: c2:76:03:68:01:cd:50:be:04:18:aa:3f:10:c4:26:78:87:dc: b9:33:ee:24:29:ec:46:12:fd:f9:84:43:5a:11:56:92:ef:3c: dd:47:80:bb:2f:9c:cc:72:6b:73:52:11:22:66:80:0f:f3:c7: 4a:b7:1c:a1:f6:9c:05:19:99:5b:83:7f:4c:88:d7:37:a8:65: b8:71:be:42:ef:6a:1f:f0:a8:14:bb:ec:98:ce:34:2c:89:24: b4:0e:2f:7d:d1:ca:86:c6:b2:f0:52:e7:d8:a2:6d:5c:e2:08: 61:64:40:82:51:25:25:aa:d5:50:ee:4e:6c:56:2c:b3:ed:66: 09:cd:84:5a:95:6a:67:7e:e4:69:9d:4f:39:56:32:b4:48:e9: f8:a2:26:9a:30:a4:26:45:fa:67:b9:ea:68:22:d5:18:d0:81: 03:9f:ab:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFDOUExMTAvBgNVBAUTKDg3MjhCODI4RjMxODYwM0U0NDcxMTA3MEMyNEVDQzA4 OEExOTAwNjAwHhcNMjUwNTAzMDQyNTIyWhcNMjUwNTEwMDQyNTIyWjAYMRYwFAYD VQQDEw02ODE1OWFiMi04ZTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzi22Kf3ay73jZIontyxi0d17zvU8xycGPa2TzEVRBUezp5/bg1vAfH4tCJgT IHIVe+AqMY7PWVpgKDQDbtn5fXcqFQvpJcCDZqoN8WASnbUBWFUD8klWKOxMtf3b XYxLbdBjRDsokardqdELRom7j+nHeEQBOrEOfUgW+zvU32LFKi0QhPis3R8yyqw1 mDF4VjGVbSLM4K6XiepFdqk6h1AuO9wi0VwrbmNM+YI6Hn+Dbs433XP93TOr+H+h IFSEYVtjrxJofIKKhIjk/kyBrplapJyxMhznuzqqoH73xfQkzrebPb47vMLj/ikJ EoT+aJVafJl64t0+CbITkPFL1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNnUgCV L8U0h3HpZijjEo+PNsBcMB8GA1UdIwQYMBaAFIcouCjzGGA+RHEQcMJOzAiKGQBg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUM5QS9FMTlBMjU3ODk3 RjQxMUVFQkNFREMzNEZDNEY5QUUwMi9oeWk0S1BNWVlENUVjUkJ3d2s3TUNJb1pB R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5aTRLUE1ZWUQ1RWNSQnd3azdNQ0lvWkFHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUM5QS9FMTlBMjU3ODk3RjQxMUVFQkNFREMzNEZDNEY5QUUwMi9oeWk0S1BNWVlE NUVjUkJ3d2s3TUNJb1pBR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMq2jxPZf1+/i3vo/qcBmvZk2aONx6nEZWOgmSxN98zoGgHHH3Cr0a k+MVj528MwNdcSth8ARYcoYAcZOJaAqR5fKP2t0+Az1mxsY6WU4Xog29ZRkS5oSF v6/CdgNoAc1QvgQYqj8QxCZ4h9y5M+4kKexGEv35hENaEVaS7zzdR4C7L5zMcmtz UhEiZoAP88dKtxyh9pwFGZlbg39MiNc3qGW4cb5C72of8KgUu+yYzjQsiSS0Di99 0cqGxrLwUufYom1c4ghhZECCUSUlqtVQ7k5sViyz7WYJzYRalWpnfuRpnU85VjK0 SOn4oiaaMKQmRfpnuepoItUY0IEDn6tk -----END CERTIFICATE-----Generated at Mon May 5 03:19:46 2025 by rpki-client