$ rpki-client -vvf rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft File: hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft (raw, json) Hash identifier: YoHeQn1Zqa25guuCHqAygcTpL32L7EhHbd8oHoUhkuY= Subject key identifier: 14:79:DD:CC:C9:88:BF:33:52:1D:27:DE:54:E9:46:0E:A1:A6:63:48 Authority key identifier: 87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 Certificate issuer: /CN=A919AC9A/serialNumber=8728B828F318603E44711070C24ECC088A190060 Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft Manifest number: 013D Signing time: Sat 23 Aug 2025 04:33:22 +0000 Manifest this update: Sat 23 Aug 2025 04:33:22 +0000 Manifest next update: Sat 30 Aug 2025 04:33:22 +0000 Files and hashes: 1: hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl (hash: rVbSDfkVyn+ekDMBXLCJNGFTqaayh7vk7EzuNe/8mZ8=) 2: F0D7EB5097FA11EE90066875C4F9AE02.roa (hash: vxxrjf6mh6He/Qk48r/ND4XKn6+HAksWQduimGVP494=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AC9A, serialNumber=8728B828F318603E44711070C24ECC088A190060 Validity Not Before: Aug 23 04:33:22 2025 GMT Not After : Aug 30 04:33:22 2025 GMT Subject: CN=68a94492-c7c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7b:2d:1f:f2:82:f1:b8:af:7c:36:cc:51:a2: 95:82:51:84:4f:e9:a7:63:61:45:d2:af:75:c8:37: 94:c2:f1:e9:46:69:e7:b6:91:a1:0d:b7:00:24:a4: 47:1f:3b:b9:16:e8:32:c4:33:b8:5b:7e:bd:53:53: 8e:54:1c:45:4d:9b:dd:07:20:e8:12:93:79:44:c3: c5:bb:13:a7:fe:f6:56:f5:57:ea:d9:38:15:af:1e: 24:f4:12:bd:c4:b8:7b:aa:f5:f1:cd:1c:53:d5:30: 07:3e:99:ae:99:c7:1b:5d:ff:67:91:6d:16:c1:8a: ab:60:21:34:8c:5b:f3:2b:bd:c9:f6:9d:72:b1:a9: a6:43:74:29:70:e8:bc:ad:87:2d:01:25:88:80:87: 90:c7:32:71:cc:53:3f:f3:54:6f:1f:23:9d:82:d2: 3b:3e:48:4a:da:8a:59:3a:65:3c:db:cf:77:f8:ba: dd:1d:53:b7:b6:0e:e1:34:d6:64:ab:75:8c:b0:a4: ca:b3:3e:fb:86:cf:f2:57:b4:f4:9a:ef:54:30:d5: 56:39:53:62:db:ea:6d:4f:c3:49:b0:a9:50:bd:d9: da:97:b7:48:11:98:9b:36:14:fc:fe:99:f3:f2:8c: a3:2e:0a:96:96:a0:1d:a8:9b:ab:e1:12:f2:89:e5: 7d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:79:DD:CC:C9:88:BF:33:52:1D:27:DE:54:E9:46:0E:A1:A6:63:48 X509v3 Authority Key Identifier: keyid:87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:07:be:05:ca:c6:2b:54:c4:95:f1:f7:49:a4:d4:fb:4f:a4: 2d:e3:5e:65:fd:f6:7a:30:1e:56:31:7f:8a:c5:18:0b:1a:c8: 8b:c3:e9:0c:ba:f1:9e:ce:d6:79:d6:90:6c:d3:33:ac:50:2c: 60:fa:2a:e5:25:78:53:35:77:84:d0:d9:e1:2a:9f:d3:c2:fc: 3b:d2:98:3e:e3:77:96:35:35:16:f5:4f:3a:4c:8f:13:2c:94: eb:5f:c0:3a:8e:f3:f1:e8:2a:52:b6:e2:4a:46:85:47:6e:58: 4d:75:4b:02:0a:25:e8:79:21:2a:3b:35:57:ac:cb:ed:14:8b: c4:88:c2:32:91:7c:1e:37:92:7d:40:d9:e4:4e:21:3b:95:15: c8:a5:4a:69:d3:b3:62:a8:37:6b:5d:dd:7b:9f:01:2e:1b:4f: 49:7d:aa:88:af:ca:25:3e:38:6a:5a:c8:5c:c8:17:5a:a5:64: ee:50:cc:3a:be:d9:34:5a:54:c2:29:0e:9a:12:9d:10:35:f2: c8:f0:96:74:a8:b2:87:2b:65:95:17:cc:23:42:70:9f:74:7f: 78:43:63:4e:b2:9e:53:99:83:42:02:2a:82:11:0c:aa:f0:9e: 41:25:21:87:32:ad:25:bf:9a:6a:69:67:54:f0:64:70:b1:17: 46:dc:a3:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFDOUExMTAvBgNVBAUTKDg3MjhCODI4RjMxODYwM0U0NDcxMTA3MEMyNEVDQzA4 OEExOTAwNjAwHhcNMjUwODIzMDQzMzIyWhcNMjUwODMwMDQzMzIyWjAYMRYwFAYD VQQDEw02OGE5NDQ5Mi1jN2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3stH/KC8bivfDbMUaKVglGET+mnY2FF0q91yDeUwvHpRmnntpGhDbcAJKRH Hzu5FugyxDO4W369U1OOVBxFTZvdByDoEpN5RMPFuxOn/vZW9Vfq2TgVrx4k9BK9 xLh7qvXxzRxT1TAHPpmumccbXf9nkW0WwYqrYCE0jFvzK73J9p1ysammQ3QpcOi8 rYctASWIgIeQxzJxzFM/81RvHyOdgtI7PkhK2opZOmU82893+LrdHVO3tg7hNNZk q3WMsKTKsz77hs/yV7T0mu9UMNVWOVNi2+ptT8NJsKlQvdnal7dIEZibNhT8/pnz 8oyjLgqWlqAdqJur4RLyieV9RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBR53czJ iL8zUh0n3lTpRg6hpmNIMB8GA1UdIwQYMBaAFIcouCjzGGA+RHEQcMJOzAiKGQBg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUM5QS9FMTlBMjU3ODk3 RjQxMUVFQkNFREMzNEZDNEY5QUUwMi9oeWk0S1BNWVlENUVjUkJ3d2s3TUNJb1pB R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5aTRLUE1ZWUQ1RWNSQnd3azdNQ0lvWkFHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUM5QS9FMTlBMjU3ODk3RjQxMUVFQkNFREMzNEZDNEY5QUUwMi9oeWk0S1BNWVlE NUVjUkJ3d2s3TUNJb1pBR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5B74FysYrVMSV8fdJpNT7T6Qt415l/fZ6MB5WMX+KxRgLGsiLw+kM uvGeztZ51pBs0zOsUCxg+irlJXhTNXeE0NnhKp/Twvw70pg+43eWNTUW9U86TI8T LJTrX8A6jvPx6CpStuJKRoVHblhNdUsCCiXoeSEqOzVXrMvtFIvEiMIykXweN5J9 QNnkTiE7lRXIpUpp07NiqDdrXd17nwEuG09JfaqIr8olPjhqWshcyBdapWTuUMw6 vtk0WlTCKQ6aEp0QNfLI8JZ0qLKHK2WVF8wjQnCfdH94Q2NOsp5TmYNCAiqCEQyq 8J5BJSGHMq0lv5pqaWdU8GRwsRdG3KOH -----END CERTIFICATE-----Generated at Sat Aug 23 15:18:13 2025 by rpki-client