$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.mft File: hYony1wEyt-u_biTvwbhp7fZ8cE.mft (raw, json) Hash identifier: Cd4/WsrQHtpdyCIvYtyRC8WnvTGc2AOZTwun8mzm2X8= Subject key identifier: 8F:B9:32:73:3E:72:AD:68:01:22:58:DA:62:92:58:44:83:52:3E:89 Authority key identifier: 85:8A:27:CB:5C:04:CA:DF:AE:FD:B8:93:BF:06:E1:A7:B7:D9:F1:C1 Certificate issuer: /CN=A91CBE2E/serialNumber=858A27CB5C04CADFAEFDB893BF06E1A7B7D9F1C1 Certificate serial: 033D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYony1wEyt-u_biTvwbhp7fZ8cE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.mft Manifest number: 0333 Signing time: Mon 21 Jul 2025 01:24:06 +0000 Manifest this update: Mon 21 Jul 2025 01:24:05 +0000 Manifest next update: Mon 28 Jul 2025 01:24:05 +0000 Files and hashes: 1: hYony1wEyt-u_biTvwbhp7fZ8cE.crl (hash: c5NAfqGrUp3XrESHiiio7O1W4qRl7L+FP8wji8kdt0g=) 2: A0879902F15711EC846A5F29C4F9AE02.roa (hash: 7/5fZwleDVzsoLoxdmlvx46DZvj38NfAJm5JPzwN8K4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.crl rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYony1wEyt-u_biTvwbhp7fZ8cE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 01:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 829 (0x33d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBE2E, serialNumber=858A27CB5C04CADFAEFDB893BF06E1A7B7D9F1C1 Validity Not Before: Jul 21 01:24:05 2025 GMT Not After : Jul 28 01:24:05 2025 GMT Subject: CN=687d96b6-4ce9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:88:5e:69:ad:82:0e:ae:f2:6f:f8:30:bd:d7: b0:29:51:fd:23:86:a5:ce:a0:81:c5:5c:d1:ae:78: 07:db:2f:10:47:5d:a2:6e:d4:cc:26:55:d7:ca:2a: 83:d4:94:b7:61:f9:49:4a:2c:99:02:6a:b7:00:d9: be:b5:2b:d2:38:da:71:4f:64:aa:89:c7:3e:e8:e2: aa:48:9f:95:57:d7:e9:6f:26:21:de:f3:f5:61:d0: 43:21:a0:64:62:3a:0c:98:3c:38:48:c5:96:ec:a8: 7f:2a:a8:8a:e1:63:b8:0f:a6:8b:9d:23:d1:8b:be: 89:2c:0a:c4:a3:9f:77:35:90:78:31:8e:b6:37:c5: 73:bf:c5:da:ee:ad:17:0c:a5:1e:c6:64:48:ee:26: ce:3d:25:b8:c2:9f:d1:eb:4e:95:d9:70:34:56:dd: 32:9d:25:2b:e8:70:7e:04:c5:77:b3:b1:87:fe:89: 02:48:7a:df:b6:92:11:67:3d:44:a0:fd:19:6c:da: 3a:ca:d9:56:de:96:3e:ec:bf:8c:8c:ec:27:e4:48: c2:a0:2a:69:76:df:60:6c:cc:92:65:46:eb:55:2d: b2:bb:6d:74:13:02:84:eb:f6:3e:b8:6d:ff:76:2b: 63:b1:7d:c5:51:aa:6e:00:d6:55:92:b4:85:26:12: 6d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:B9:32:73:3E:72:AD:68:01:22:58:DA:62:92:58:44:83:52:3E:89 X509v3 Authority Key Identifier: keyid:85:8A:27:CB:5C:04:CA:DF:AE:FD:B8:93:BF:06:E1:A7:B7:D9:F1:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYony1wEyt-u_biTvwbhp7fZ8cE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:1a:99:76:73:88:4f:0b:20:18:3f:81:36:dc:90:86:6d:00: 4e:10:45:39:0c:6d:9a:27:7e:c6:cd:2a:c9:35:46:28:e7:3b: f5:c0:5e:01:d0:54:81:26:96:0b:1a:0d:f6:a3:bc:e1:49:f6: 4a:80:17:4b:3f:78:6b:4b:5c:65:85:a5:a3:5e:46:63:6b:72: a2:b9:83:53:94:ca:34:6a:c3:12:c7:56:eb:80:75:f6:dd:63: 73:40:88:41:c5:3e:51:87:a3:9e:98:5d:c2:e3:ef:29:0b:75: ad:b6:ac:f1:e9:8a:7b:65:97:a2:e8:1c:59:dd:d1:23:43:e1: 68:c2:03:d3:58:ea:78:71:dd:36:b7:71:db:80:72:a3:78:de: 2a:11:10:90:37:4e:4c:41:70:26:7b:70:f0:a0:28:f1:a4:36: 60:20:ee:2a:8c:4e:8e:c5:2e:a3:cd:a0:95:54:1d:c0:1f:3a: 9a:30:3a:58:a5:5b:f6:f6:91:ec:11:b7:a4:5e:7f:6f:e7:ca: e3:82:4c:a7:73:26:70:4f:35:fd:4b:b5:d7:e4:ae:4b:4b:ce: 6b:72:74:89:16:d8:c6:8c:bb:2f:22:d2:49:63:86:37:ab:c6: 96:3d:82:35:4d:ed:ef:f1:96:e8:8a:5f:c5:c2:96:2c:d0:2e: b4:4c:1a:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JFMkUxMTAvBgNVBAUTKDg1OEEyN0NCNUMwNENBREZBRUZEQjg5M0JGMDZFMUE3 QjdEOUYxQzEwHhcNMjUwNzIxMDEyNDA1WhcNMjUwNzI4MDEyNDA1WjAYMRYwFAYD VQQDEw02ODdkOTZiNi00Y2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIheaa2CDq7yb/gwvdewKVH9I4alzqCBxVzRrngH2y8QR12ibtTMJlXXyiqD 1JS3YflJSiyZAmq3ANm+tSvSONpxT2Sqicc+6OKqSJ+VV9fpbyYh3vP1YdBDIaBk YjoMmDw4SMWW7Kh/KqiK4WO4D6aLnSPRi76JLArEo593NZB4MY62N8Vzv8Xa7q0X DKUexmRI7ibOPSW4wp/R606V2XA0Vt0ynSUr6HB+BMV3s7GH/okCSHrftpIRZz1E oP0ZbNo6ytlW3pY+7L+MjOwn5EjCoCppdt9gbMySZUbrVS2yu210EwKE6/Y+uG3/ ditjsX3FUapuANZVkrSFJhJtvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+5MnM+ cq1oASJY2mKSWESDUj6JMB8GA1UdIwQYMBaAFIWKJ8tcBMrfrv24k78G4ae32fHB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkUyRS9EOEFCQUZFOEQw RkIxMUVDQTI3QUYyMkZDNEY5QUUwMi9oWW9ueTF3RXl0LXVfYmlUdndiaHA3Zlo4 Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZb255MXdFeXQtdV9iaVR2d2JocDdmWjhjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkUyRS9EOEFCQUZFOEQwRkIxMUVDQTI3QUYyMkZDNEY5QUUwMi9oWW9ueTF3RXl0 LXVfYmlUdndiaHA3Zlo4Y0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6Gpl2c4hPCyAYP4E23JCGbQBOEEU5DG2aJ37GzSrJNUYo5zv1wF4B 0FSBJpYLGg32o7zhSfZKgBdLP3hrS1xlhaWjXkZja3KiuYNTlMo0asMSx1brgHX2 3WNzQIhBxT5Rh6OemF3C4+8pC3Wttqzx6Yp7ZZei6BxZ3dEjQ+FowgPTWOp4cd02 t3HbgHKjeN4qERCQN05MQXAme3DwoCjxpDZgIO4qjE6OxS6jzaCVVB3AHzqaMDpY pVv29pHsEbekXn9v58rjgkyncyZwTzX9S7XX5K5LS85rcnSJFtjGjLsvItJJY4Y3 q8aWPYI1Te3v8Zboil/FwpYs0C60TBpJ -----END CERTIFICATE-----Generated at Mon Jul 21 05:53:29 2025 by rpki-client