$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft File: HsyXilPvK-iOXyatm4q4g3PRl6Y.mft (raw, json) Hash identifier: wzJ2/Qjziu2tHEHb790rwrBnpunRdYV/5p+ZNCqer40= Subject key identifier: D2:E2:B0:BA:49:56:0F:77:10:01:2A:AD:E4:71:F6:6A:9D:91:63:DC Authority key identifier: 1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 Certificate issuer: /CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Certificate serial: 34A8 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft Manifest number: 34A8 Signing time: Fri 18 Jul 2025 14:22:23 +0000 Manifest this update: Fri 18 Jul 2025 14:22:22 +0000 Manifest next update: Fri 25 Jul 2025 14:22:22 +0000 Files and hashes: 1: HsyXilPvK-iOXyatm4q4g3PRl6Y.crl (hash: qvZWi9OGligsEW4ujeGnC5gKz9P/1KLGnW6R00tczLc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13480 (0x34a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Validity Not Before: Jul 18 14:22:22 2025 GMT Not After : Jul 25 14:22:22 2025 GMT Subject: CN=687a589f-86bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e7:5e:ca:7a:a5:3e:bd:f6:8a:31:b9:ae:f8: a8:cc:31:10:8e:20:3a:ff:29:28:57:c5:3d:b0:7d: 19:44:96:fc:a3:15:ba:31:98:e3:17:b6:29:5b:d6: 38:96:26:65:5d:3c:26:aa:63:3d:a8:33:03:45:71: 37:2f:b9:e6:51:29:11:fe:d7:1a:f6:a4:bb:90:98: 4c:bb:bc:73:a0:fd:1c:a7:8e:7e:d9:c6:bd:5f:b0: bc:8d:93:bf:c2:d0:f5:89:14:17:71:c6:15:aa:c8: 06:53:17:4f:46:4f:ff:02:c5:e9:67:fa:c1:6a:76: 58:bb:3a:fa:c3:38:f1:56:88:64:60:1d:57:2d:f6: af:4d:a3:87:cf:d8:3e:1f:7b:e3:e0:7e:2d:5b:8f: c0:39:c7:7e:d8:99:94:15:a7:19:2c:f9:09:a6:4f: 68:30:2f:29:73:c3:5d:52:d5:a5:91:5c:b6:04:4a: 34:08:97:8d:bd:76:7a:51:9e:2a:89:f1:ca:05:21: b7:11:62:00:cd:48:48:cb:86:a4:4e:f7:37:0f:c1: 76:1f:81:20:dc:4b:a5:17:0d:fb:e2:90:68:ec:66: e0:06:de:e2:a4:3a:10:08:01:31:93:91:bf:4b:41: ab:b3:9b:b4:86:32:4d:3d:f5:6d:4c:e6:58:4b:13: 45:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E2:B0:BA:49:56:0F:77:10:01:2A:AD:E4:71:F6:6A:9D:91:63:DC X509v3 Authority Key Identifier: keyid:1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:38:35:2e:77:26:c2:c0:e1:4a:2f:9b:a9:2f:1c:fc:b3:44: 48:0a:45:a2:00:d6:c0:b6:d2:56:5f:b3:70:27:ef:84:73:6b: 04:0f:ef:d7:88:e7:77:48:06:49:d9:a8:40:10:4a:ee:2e:a6: 25:a7:61:93:24:49:a6:49:68:8d:4c:c0:ae:2e:53:0c:8f:61: 80:15:12:5c:27:62:a3:cd:ef:d1:f5:92:41:cf:2b:5a:2d:61: f0:30:ee:8f:c4:4f:91:ad:8a:0d:a0:f2:88:7e:58:4e:cf:09: c8:3a:5b:6b:b8:15:8a:53:a3:a2:d4:50:10:de:40:c3:bf:2c: 5b:c2:8b:63:fb:32:fa:c9:dc:b1:3a:24:9d:1a:ae:31:f6:cc: 42:a8:28:a4:a2:a5:00:ef:f6:15:87:c6:35:23:9f:42:a0:2d: 85:c5:d0:2c:14:21:e5:6c:90:9d:e2:e1:d8:1a:28:ca:9a:c2: 95:5c:fb:04:b2:ea:f9:68:0f:65:01:96:e9:94:f8:cc:1a:f2: 4e:5c:81:9d:c6:8f:b6:ab:41:ab:b8:5b:c4:46:ad:c0:b4:f9: ea:f6:a6:8f:ba:22:a9:1a:99:a3:60:2a:9e:1f:d2:54:9c:c6: 70:3c:c6:f6:9e:ea:99:f4:ef:4b:cf:a7:5c:19:5b:0f:1b:c7: 27:09:e9:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKDFFQ0M5NzhBNTNFRjJCRTg4RTVGMjZBRDlCOEFCODgz NzNEMTk3QTYwHhcNMjUwNzE4MTQyMjIyWhcNMjUwNzI1MTQyMjIyWjAYMRYwFAYD VQQDEw02ODdhNTg5Zi04NmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5udeynqlPr32ijG5rviozDEQjiA6/ykoV8U9sH0ZRJb8oxW6MZjjF7YpW9Y4 liZlXTwmqmM9qDMDRXE3L7nmUSkR/tca9qS7kJhMu7xzoP0cp45+2ca9X7C8jZO/ wtD1iRQXccYVqsgGUxdPRk//AsXpZ/rBanZYuzr6wzjxVohkYB1XLfavTaOHz9g+ H3vj4H4tW4/AOcd+2JmUFacZLPkJpk9oMC8pc8NdUtWlkVy2BEo0CJeNvXZ6UZ4q ifHKBSG3EWIAzUhIy4akTvc3D8F2H4Eg3EulFw374pBo7GbgBt7ipDoQCAExk5G/ S0Grs5u0hjJNPfVtTOZYSxNFowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLisLpJ Vg93EAEqreRx9mqdkWPcMB8GA1UdIwQYMBaAFB7Ml4pT7yvojl8mrZuKuINz0Zem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9CRkVCMDAwODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkstaU9YeWF0bTRxNGczUFJs NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0hzeVhpbFB2Sy1pT1h5YXRtNHE0ZzNQUmw2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUYzRS9CRkVCMDAwODFEODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkst aU9YeWF0bTRxNGczUFJsNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAODUudybCwOFKL5upLxz8s0RICkWiANbAttJWX7NwJ++Ec2sED+/X iOd3SAZJ2ahAEEruLqYlp2GTJEmmSWiNTMCuLlMMj2GAFRJcJ2Kjze/R9ZJBzyta LWHwMO6PxE+RrYoNoPKIflhOzwnIOltruBWKU6Oi1FAQ3kDDvyxbwotj+zL6ydyx OiSdGq4x9sxCqCikoqUA7/YVh8Y1I59CoC2FxdAsFCHlbJCd4uHYGijKmsKVXPsE sur5aA9lAZbplPjMGvJOXIGdxo+2q0GruFvERq3AtPnq9qaPuiKpGpmjYCqeH9JU nMZwPMb2nuqZ9O9Lz6dcGVsPG8cnCen/ -----END CERTIFICATE-----Generated at Sun Jul 20 15:21:00 2025 by rpki-client