$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft File: Hy55yPeszIoD-1tKOvzF9pMbN4I.mft (raw, json) Hash identifier: U3twlWLWu/XrcNa0efowTxZgs+1yVR+CaKKNnAP60jQ= Subject key identifier: 50:46:8A:5C:F7:CF:B8:FC:2A:C2:60:5D:54:75:41:5F:83:96:02:75 Authority key identifier: 1F:2E:79:C8:F7:AC:CC:8A:03:FB:5B:4A:3A:FC:C5:F6:93:1B:37:82 Certificate issuer: /CN=A91BB09C/serialNumber=1F2E79C8F7ACCC8A03FB5B4A3AFCC5F6931B3782 Certificate serial: 174F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hy55yPeszIoD-1tKOvzF9pMbN4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft Manifest number: 1745 Signing time: Tue 22 Jul 2025 16:45:14 +0000 Manifest this update: Tue 22 Jul 2025 16:45:14 +0000 Manifest next update: Tue 29 Jul 2025 16:45:14 +0000 Files and hashes: 1: Hy55yPeszIoD-1tKOvzF9pMbN4I.crl (hash: 1V5kcOmQiSr9lbPzIiQbGFVM3c2Jv9BBZZNaBFMsVDM=) 2: 02181C4CE13511E7B0D71C83C4F9AE02.roa (hash: kYdi56Vh70Qo/SN0C8R4CSPhNox0X9SfOcU95n5XzCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.crl rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hy55yPeszIoD-1tKOvzF9pMbN4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 16:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5967 (0x174f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB09C, serialNumber=1F2E79C8F7ACCC8A03FB5B4A3AFCC5F6931B3782 Validity Not Before: Jul 22 16:45:14 2025 GMT Not After : Jul 29 16:45:14 2025 GMT Subject: CN=687fc01a-1ad9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8c:f5:4f:9f:d4:60:3d:e4:4b:01:2e:37:ce: 89:58:3a:04:cf:19:a2:a5:4d:a6:d1:08:94:9d:f0: e8:74:cc:4a:29:03:88:fb:dd:bc:ee:c9:8a:f1:17: ff:0e:bc:1b:aa:37:24:03:95:cc:79:b8:96:0e:b6: 99:ae:28:22:b3:c7:29:69:0e:70:03:63:f9:20:eb: 4f:3e:02:05:73:9d:42:fa:42:c6:26:06:3e:bc:03: 1c:e6:c6:f2:4b:d9:75:0d:a0:e1:bb:c7:dd:90:3a: 31:f4:78:53:a4:72:fc:11:a5:44:09:80:3b:fa:4a: 62:a4:95:5d:f7:ae:4e:31:dd:db:ce:b9:46:43:c0: 72:30:91:28:4f:2a:46:e0:cf:e1:cd:b0:6c:a6:47: b4:df:c7:7e:83:5c:08:0a:11:f0:1e:80:36:a9:3e: fe:3f:ee:cb:8b:ad:fe:8b:40:82:f7:42:04:6b:56: 55:49:5f:4e:a1:aa:88:ec:10:c2:11:6e:b6:53:5e: a5:a6:9b:56:90:d3:48:5a:c7:61:26:10:a3:bd:cc: f4:80:a6:a1:27:f7:94:5d:7f:09:8b:90:e6:5b:e0: 53:62:df:3d:d1:ff:e5:18:e1:39:1f:41:e3:00:6c: 6b:25:96:84:20:f2:08:1b:8d:20:99:2c:0e:22:4a: f7:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:46:8A:5C:F7:CF:B8:FC:2A:C2:60:5D:54:75:41:5F:83:96:02:75 X509v3 Authority Key Identifier: keyid:1F:2E:79:C8:F7:AC:CC:8A:03:FB:5B:4A:3A:FC:C5:F6:93:1B:37:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hy55yPeszIoD-1tKOvzF9pMbN4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:9e:85:79:20:83:5e:ff:68:09:cc:71:82:8e:ee:91:ab:89: 97:9f:80:1c:26:30:23:61:de:e9:e6:2a:0a:61:18:f2:6f:fe: 6c:98:7f:2c:b2:67:ca:81:b8:81:ab:49:08:cc:06:1f:58:4d: d5:30:78:51:46:9c:4f:14:01:4b:21:ef:09:24:93:c7:45:0b: f5:af:9b:3f:73:2c:db:aa:6c:73:f3:33:d2:e3:cf:41:0e:79: 08:dc:e2:7c:c1:ef:ef:8f:8d:85:f2:2e:0f:ae:28:9e:81:4b: 33:bf:d2:6c:53:35:e7:c2:65:49:0b:21:95:e4:0c:bf:e8:60: 00:95:8f:56:b8:7a:41:b4:a9:7f:67:f0:6d:f4:a4:15:ea:96: fa:28:57:81:f5:c2:83:30:55:d9:ed:cd:43:9f:e6:4b:b1:17: 3c:6d:b3:b6:1d:a1:96:d3:92:34:68:7e:fc:5b:a2:4a:8a:ea: e5:2f:8e:5f:a7:05:64:53:6d:6d:b2:bc:03:10:d3:7d:30:24: cc:ae:c0:0e:1e:d4:20:6f:ad:e4:28:a9:6e:5e:24:00:3e:d1: 9a:1c:27:f5:78:9f:04:05:44:21:57:ba:7c:c5:37:bf:61:02: b4:07:70:aa:7e:8a:35:94:28:1b:97:f6:66:e5:db:66:3e:6c: 52:44:9d:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIwOUMxMTAvBgNVBAUTKDFGMkU3OUM4RjdBQ0NDOEEwM0ZCNUI0QTNBRkNDNUY2 OTMxQjM3ODIwHhcNMjUwNzIyMTY0NTE0WhcNMjUwNzI5MTY0NTE0WjAYMRYwFAYD VQQDEw02ODdmYzAxYS0xYWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4z1T5/UYD3kSwEuN86JWDoEzxmipU2m0QiUnfDodMxKKQOI+9287smK8Rf/ DrwbqjckA5XMebiWDraZrigis8cpaQ5wA2P5IOtPPgIFc51C+kLGJgY+vAMc5sby S9l1DaDhu8fdkDox9HhTpHL8EaVECYA7+kpipJVd965OMd3bzrlGQ8ByMJEoTypG 4M/hzbBspke038d+g1wIChHwHoA2qT7+P+7Li63+i0CC90IEa1ZVSV9OoaqI7BDC EW62U16lpptWkNNIWsdhJhCjvcz0gKahJ/eUXX8Ji5DmW+BTYt890f/lGOE5H0Hj AGxrJZaEIPIIG40gmSwOIkr3YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBGilz3 z7j8KsJgXVR1QV+DlgJ1MB8GA1UdIwQYMBaAFB8uecj3rMyKA/tbSjr8xfaTGzeC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjA5Qy8xRkNEMTVFMEUx MzQxMUU3ODI1MzEwODJDNEY5QUUwMi9IeTU1eVBlc3pJb0QtMXRLT3Z6RjlwTWJO NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h5NTV5UGVzeklvRC0xdEtPdnpGOXBNYk40SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjA5Qy8xRkNEMTVFMEUxMzQxMUU3ODI1MzEwODJDNEY5QUUwMi9IeTU1eVBlc3pJ b0QtMXRLT3Z6RjlwTWJONEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALnoV5IINe/2gJzHGCju6Rq4mXn4AcJjAjYd7p5ioKYRjyb/5smH8s smfKgbiBq0kIzAYfWE3VMHhRRpxPFAFLIe8JJJPHRQv1r5s/cyzbqmxz8zPS489B DnkI3OJ8we/vj42F8i4PriiegUszv9JsUzXnwmVJCyGV5Ay/6GAAlY9WuHpBtKl/ Z/Bt9KQV6pb6KFeB9cKDMFXZ7c1Dn+ZLsRc8bbO2HaGW05I0aH78W6JKiurlL45f pwVkU21tsrwDENN9MCTMrsAOHtQgb63kKKluXiQAPtGaHCf1eJ8EBUQhV7p8xTe/ YQK0B3Cqfoo1lCgbl/Zm5dtmPmxSRJ2D -----END CERTIFICATE-----Generated at Thu Jul 24 05:03:29 2025 by rpki-client