$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft File: hy5atTm-Q4V0A9T11FpUcrsgem0.mft (raw, json) Hash identifier: k5+8hRrBI2PnlzjFGZXcSN0tQcdZpnjtc5cjBf/k9Gg= Subject key identifier: 7F:72:F7:FA:17:33:53:A4:2D:71:C9:D9:C2:86:01:D4:66:5C:12:E8 Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Certificate serial: 0355 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft Manifest number: 0346 Signing time: Sat 05 Apr 2025 01:11:32 +0000 Manifest this update: Sat 05 Apr 2025 01:11:31 +0000 Manifest next update: Sat 12 Apr 2025 01:11:31 +0000 Files and hashes: 1: hy5atTm-Q4V0A9T11FpUcrsgem0.crl (hash: nRChGDwZRO7N/e+C74IEEPibZmRtSvEM2PRaSi4+kmI=) 2: A445EAA0B5B911EC8AADD413C4F9AE02.roa (hash: fxFlUsOaGScQkl9QgTozAWohlmX4iM9s7uV5Ua++ETg=) 3: 1D171A58C76211EC95B63648C4F9AE02.roa (hash: u3mehOty6gVz9qRridn7xauePsp938KB+uM0lLKTBHU=) 4: 2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa (hash: OvtIBWIONkhrTQi/ko/Qtu38pVg+GOOY2iprHCNF2R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:11:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 853 (0x355) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193339 Validity Not Before: Apr 5 01:11:31 2025 GMT Not After : Apr 12 01:11:31 2025 GMT Subject: CN=67f08344-bd4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:53:b6:d3:76:a2:53:71:dd:54:99:81:a7:11: a8:ab:d2:84:c6:1e:09:2a:eb:12:68:48:8c:41:63: 5d:e2:c6:2c:13:ff:cc:1b:d3:ea:c7:1c:42:fe:5f: 3e:b4:ff:84:90:79:d3:32:65:0c:48:4d:92:c0:d6: 2c:e5:4e:71:10:56:51:29:ee:d2:a3:8a:54:b3:51: 9b:15:11:6e:a1:f0:e0:37:d7:84:f5:e9:21:19:83: 8d:ee:6c:93:ab:7a:2b:85:cc:69:66:60:8f:c4:b3: d3:77:43:e7:83:40:30:7f:75:b0:1b:7d:eb:e1:09: a6:44:72:f0:43:99:8b:34:3d:44:0e:5e:67:d5:af: 90:81:0b:5d:13:9d:59:bf:c4:82:97:66:45:fb:a9: 67:66:5e:78:96:32:da:f0:df:3d:51:f7:84:04:bf: 12:eb:45:d4:bc:2e:23:fc:56:a6:ca:90:d0:0f:55: dc:98:4a:10:8f:12:c7:b8:d5:0e:60:5a:d7:e4:8a: e5:d1:f2:a0:fb:8c:b4:03:28:1e:63:73:fd:cd:90: 5a:86:4a:95:14:9e:1f:fe:34:c8:f4:26:27:10:7a: 66:be:80:c1:05:10:f0:13:ed:59:44:f5:21:af:bb: 3d:ec:db:23:e0:d2:02:24:54:85:a2:27:e9:c9:f0: ff:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:72:F7:FA:17:33:53:A4:2D:71:C9:D9:C2:86:01:D4:66:5C:12:E8 X509v3 Authority Key Identifier: keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:a6:56:05:c6:c9:62:6a:09:b0:08:e9:a5:c2:1d:5c:4c:e5: e5:36:c0:c0:81:43:e2:d6:c0:85:f8:65:83:52:12:68:48:dc: 5c:fb:94:d5:b4:e5:6a:d4:6a:58:39:69:8a:08:92:8e:b2:bf: f1:94:f5:58:c1:c7:e7:09:58:aa:c6:8d:05:68:61:63:dc:a6: 57:ac:a6:f7:69:50:96:9a:d7:05:96:ed:4e:e4:92:7f:92:5f: a4:1c:cb:42:06:87:4f:d6:64:f6:c3:50:f7:2b:86:c6:fe:e5: fc:1d:a8:b4:78:bc:5a:30:c9:22:5d:45:ec:f2:0d:47:44:f4: 1d:6c:77:34:51:c7:2b:00:94:70:0d:80:b6:ec:9b:bd:3a:69: 94:9c:4d:92:fc:5e:1c:dc:d1:7a:71:3a:94:c1:9c:9e:38:a8: ac:18:2c:2e:fd:aa:5f:48:97:e8:78:ce:95:d1:ba:03:9c:68: a0:3a:46:fc:38:2c:b9:16:77:65:46:bf:1c:b1:6e:44:d4:db: ae:11:fa:6c:07:86:5b:40:1c:15:4d:a4:60:45:ff:70:64:d1: fc:11:c7:85:96:0d:a5:32:f6:7e:b0:7b:5b:93:cd:a6:51:e7: 0b:e7:a1:cf:12:0d:a2:72:83:ed:0a:7b:d3:36:b6:40:4e:29: 67:a0:d5:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzMzkxMTAvBgNVBAUTKDg3MkU1QUI1MzlCRTQzODU3NDAzRDRGNUQ0NUE1NDcy QkIyMDdBNkQwHhcNMjUwNDA1MDExMTMxWhcNMjUwNDEyMDExMTMxWjAYMRYwFAYD VQQDEw02N2YwODM0NC1iZDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylO203aiU3HdVJmBpxGoq9KExh4JKusSaEiMQWNd4sYsE//MG9PqxxxC/l8+ tP+EkHnTMmUMSE2SwNYs5U5xEFZRKe7So4pUs1GbFRFuofDgN9eE9ekhGYON7myT q3orhcxpZmCPxLPTd0Png0Awf3WwG33r4QmmRHLwQ5mLND1EDl5n1a+QgQtdE51Z v8SCl2ZF+6lnZl54ljLa8N89UfeEBL8S60XUvC4j/FamypDQD1XcmEoQjxLHuNUO YFrX5Irl0fKg+4y0AygeY3P9zZBahkqVFJ4f/jTI9CYnEHpmvoDBBRDwE+1ZRPUh r7s97Nsj4NICJFSFoifpyfD/uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH9y9/oX M1OkLXHJ2cKGAdRmXBLoMB8GA1UdIwQYMBaAFIcuWrU5vkOFdAPU9dRaVHK7IHpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzMzOS80NTI2Nzk3MEIy RkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0VjBBOVQxMUZwVWNyc2dl bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5NWF0VG0tUTRWMEE5VDExRnBVY3JzZ2VtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzMzOS80NTI2Nzk3MEIyRkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0 VjBBOVQxMUZwVWNyc2dlbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMplYFxsliagmwCOmlwh1cTOXlNsDAgUPi1sCF+GWDUhJoSNxc+5TV tOVq1GpYOWmKCJKOsr/xlPVYwcfnCViqxo0FaGFj3KZXrKb3aVCWmtcFlu1O5JJ/ kl+kHMtCBodP1mT2w1D3K4bG/uX8Hai0eLxaMMkiXUXs8g1HRPQdbHc0UccrAJRw DYC27Ju9OmmUnE2S/F4c3NF6cTqUwZyeOKisGCwu/apfSJfoeM6V0boDnGigOkb8 OCy5FndlRr8csW5E1NuuEfpsB4ZbQBwVTaRgRf9wZNH8EceFlg2lMvZ+sHtbk82m UecL56HPEg2icoPtCnvTNrZATilnoNW1 -----END CERTIFICATE-----Generated at Sun Apr 6 19:54:30 2025 by rpki-client