$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft File: hy5atTm-Q4V0A9T11FpUcrsgem0.mft (raw, json) Hash identifier: +c0aAE/ua8qpftAKigpA44fW8Qk4aT53KfoA0EW6mko= Subject key identifier: 71:60:C1:61:1A:A3:0F:FF:A8:D6:C3:9F:8D:BA:2B:D4:29:29:F1:67 Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Certificate serial: 039A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft Manifest number: 038B Signing time: Thu 21 Aug 2025 00:59:30 +0000 Manifest this update: Thu 21 Aug 2025 00:59:29 +0000 Manifest next update: Thu 28 Aug 2025 00:59:29 +0000 Files and hashes: 1: hy5atTm-Q4V0A9T11FpUcrsgem0.crl (hash: wcZl2VHjK/JwkBA/rMJTo8IrjpwO3p6iwgWHIlYz9os=) 2: A445EAA0B5B911EC8AADD413C4F9AE02.roa (hash: fxFlUsOaGScQkl9QgTozAWohlmX4iM9s7uV5Ua++ETg=) 3: 1D171A58C76211EC95B63648C4F9AE02.roa (hash: u3mehOty6gVz9qRridn7xauePsp938KB+uM0lLKTBHU=) 4: 2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa (hash: OvtIBWIONkhrTQi/ko/Qtu38pVg+GOOY2iprHCNF2R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 00:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 922 (0x39a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193339, serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Validity Not Before: Aug 21 00:59:29 2025 GMT Not After : Aug 28 00:59:29 2025 GMT Subject: CN=68a66f71-ed7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4b:f9:ed:cd:97:d1:10:e5:88:0d:a0:26:18: 51:e8:b9:b5:65:35:86:29:21:ba:60:bf:82:d5:1b: b5:3c:e4:20:80:a7:73:46:4a:d0:08:48:9a:84:90: 7f:d4:2b:c7:75:c5:25:67:0d:f6:e3:50:7c:79:e8: 05:e3:20:0f:86:b1:e8:e4:b6:ed:e9:93:1c:78:49: ff:82:46:7a:8f:60:94:f3:20:40:1d:19:33:f5:70: f3:f5:c6:d9:51:d4:70:b9:19:19:40:7e:a7:07:12: ba:4f:36:7a:46:a3:e0:ed:e8:66:04:e4:3d:e5:fa: d2:39:9d:df:16:20:b6:04:7f:f0:9a:ca:0e:3c:0c: 98:5d:6e:48:65:fa:c5:84:08:9d:3e:73:08:b5:59: 32:c7:03:d2:18:11:a3:01:33:12:57:9d:ef:bd:fd: d2:3c:18:13:ed:90:22:ec:aa:a6:d3:47:f6:f6:94: 1c:c7:6c:53:f0:fe:3b:3f:90:df:c3:f6:65:e8:ee: 07:28:8e:f4:27:a7:1d:84:b0:2d:a8:13:4e:1f:95: a3:46:12:74:d6:0a:24:75:e4:6d:3f:bb:fd:9c:bf: d6:0a:89:c8:a5:18:52:1e:b2:70:30:26:3e:d1:c9: 75:52:37:55:8b:a8:a1:bb:b7:11:82:dd:60:3b:b8: 27:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:60:C1:61:1A:A3:0F:FF:A8:D6:C3:9F:8D:BA:2B:D4:29:29:F1:67 X509v3 Authority Key Identifier: keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:33:ed:44:0a:d5:6c:78:49:54:82:72:aa:bd:19:76:0b:66: c7:cb:14:e8:0d:04:d1:b5:d2:eb:1c:f8:5e:31:c6:fc:06:71: 15:7a:9a:fd:41:05:ad:1a:b0:c9:47:6c:1a:81:69:d5:6f:60: 86:f8:7e:a5:b5:2b:7f:b1:b1:cb:1e:97:56:0f:ac:73:0d:02: 1d:4d:e1:bf:58:cb:c5:58:c2:8a:ff:ad:b2:d3:4c:03:fd:c4: 3c:63:cb:83:3f:45:17:92:be:e2:98:67:95:99:47:70:fb:a0: 37:73:75:87:81:86:52:0b:2c:3e:95:07:7f:13:99:f1:09:6e: 92:dd:f3:c1:44:12:05:5b:00:c9:b2:7b:4a:ca:6b:37:ba:91: 9b:08:7c:48:3b:9b:48:48:93:1f:c7:5e:51:c6:50:f8:6b:df: 2e:60:04:07:eb:93:1f:a3:92:77:09:4a:33:b1:b1:83:9f:c8: 41:d7:cf:48:56:5e:51:3c:7c:30:ac:70:5f:a1:45:10:17:c9: aa:9a:50:07:52:2d:7a:0d:93:76:80:0f:0e:c6:c2:a3:f2:18: b8:bf:39:5f:ce:5a:7d:ae:b3:3b:3b:32:ae:44:e3:ba:5d:00: 3a:36:5c:73:af:f8:20:7b:4d:61:9f:48:44:ef:fd:25:7e:0b: 9e:81:7c:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzMzkxMTAvBgNVBAUTKDg3MkU1QUI1MzlCRTQzODU3NDAzRDRGNUQ0NUE1NDcy QkIyMDdBNkQwHhcNMjUwODIxMDA1OTI5WhcNMjUwODI4MDA1OTI5WjAYMRYwFAYD VQQDEw02OGE2NmY3MS1lZDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20v57c2X0RDliA2gJhhR6Lm1ZTWGKSG6YL+C1Ru1POQggKdzRkrQCEiahJB/ 1CvHdcUlZw3241B8eegF4yAPhrHo5Lbt6ZMceEn/gkZ6j2CU8yBAHRkz9XDz9cbZ UdRwuRkZQH6nBxK6TzZ6RqPg7ehmBOQ95frSOZ3fFiC2BH/wmsoOPAyYXW5IZfrF hAidPnMItVkyxwPSGBGjATMSV53vvf3SPBgT7ZAi7Kqm00f29pQcx2xT8P47P5Df w/Zl6O4HKI70J6cdhLAtqBNOH5WjRhJ01gokdeRtP7v9nL/WConIpRhSHrJwMCY+ 0cl1UjdVi6ihu7cRgt1gO7gnVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFgwWEa ow//qNbDn426K9QpKfFnMB8GA1UdIwQYMBaAFIcuWrU5vkOFdAPU9dRaVHK7IHpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzMzOS80NTI2Nzk3MEIy RkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0VjBBOVQxMUZwVWNyc2dl bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5NWF0VG0tUTRWMEE5VDExRnBVY3JzZ2VtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzMzOS80NTI2Nzk3MEIyRkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0 VjBBOVQxMUZwVWNyc2dlbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFM+1ECtVseElUgnKqvRl2C2bHyxToDQTRtdLrHPheMcb8BnEVepr9 QQWtGrDJR2wagWnVb2CG+H6ltSt/sbHLHpdWD6xzDQIdTeG/WMvFWMKK/62y00wD /cQ8Y8uDP0UXkr7imGeVmUdw+6A3c3WHgYZSCyw+lQd/E5nxCW6S3fPBRBIFWwDJ sntKyms3upGbCHxIO5tISJMfx15RxlD4a98uYAQH65Mfo5J3CUozsbGDn8hB189I Vl5RPHwwrHBfoUUQF8mqmlAHUi16DZN2gA8OxsKj8hi4vzlfzlp9rrM7OzKuROO6 XQA6Nlxzr/gge01hn0hE7/0lfguegXw1 -----END CERTIFICATE-----Generated at Fri Aug 22 16:35:16 2025 by rpki-client