$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft File: hy5atTm-Q4V0A9T11FpUcrsgem0.mft (raw, json) Hash identifier: dE/SKa8B7eV1gJxDEItw4/0FqiOw5egn6xgaCF2vpN0= Subject key identifier: 88:CD:76:11:FB:0C:80:D7:57:78:BB:9A:3D:EB:F0:5E:76:4C:3A:63 Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Certificate serial: 0375 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft Manifest number: 0366 Signing time: Mon 09 Jun 2025 00:32:01 +0000 Manifest this update: Mon 09 Jun 2025 00:32:00 +0000 Manifest next update: Mon 16 Jun 2025 00:32:00 +0000 Files and hashes: 1: hy5atTm-Q4V0A9T11FpUcrsgem0.crl (hash: 1uzs+n8XhBbi63CtGVPGGzFMvV+olLQ75+Pmk9aa2mc=) 2: A445EAA0B5B911EC8AADD413C4F9AE02.roa (hash: fxFlUsOaGScQkl9QgTozAWohlmX4iM9s7uV5Ua++ETg=) 3: 1D171A58C76211EC95B63648C4F9AE02.roa (hash: u3mehOty6gVz9qRridn7xauePsp938KB+uM0lLKTBHU=) 4: 2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa (hash: OvtIBWIONkhrTQi/ko/Qtu38pVg+GOOY2iprHCNF2R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 00:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 885 (0x375) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193339, serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Validity Not Before: Jun 9 00:32:00 2025 GMT Not After : Jun 16 00:32:00 2025 GMT Subject: CN=68462b81-a243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:1a:ec:b4:07:09:b9:ea:0e:7b:87:9b:25:99: 6c:70:9c:7f:fd:6b:db:59:5d:d5:6f:ee:32:97:67: 80:1a:5d:55:ac:f8:22:6d:aa:b4:77:10:ae:b1:27: f7:9b:33:6b:14:b9:e2:a9:9c:23:46:9b:6d:02:74: c3:c0:c1:33:1d:38:6c:45:07:d4:0b:90:d2:78:88: 12:57:dc:38:5e:c5:f4:8f:f0:3a:4b:49:d1:37:e1: 8d:9b:f4:7c:ed:c4:96:42:89:c8:a8:95:49:65:b5: 61:cb:39:b7:35:53:96:dd:0c:f8:d0:9a:f9:e9:39: a2:02:cc:45:82:24:51:a2:a3:f6:d6:07:a5:56:17: 51:ee:20:7d:f3:35:6a:aa:e1:38:bc:ec:c0:17:9c: bc:e4:09:1e:d2:74:db:1c:2b:8a:e9:b2:e4:e5:e1: 0d:2f:c2:fc:cd:19:c4:c2:ac:31:22:25:01:5d:28: ef:2c:dd:eb:9a:3e:95:43:69:45:5b:b4:3f:e2:27: 5e:15:8d:b4:6d:0e:2d:dc:48:e9:2d:4f:a9:dd:d0: 76:c2:2a:d4:3f:20:95:68:a8:5e:57:cb:5d:fe:26: 64:53:28:0f:d9:9a:f3:75:76:0a:17:8c:73:4b:10: c1:cd:12:9c:2c:81:49:0f:94:b7:00:c7:5d:4e:b2: 3b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:CD:76:11:FB:0C:80:D7:57:78:BB:9A:3D:EB:F0:5E:76:4C:3A:63 X509v3 Authority Key Identifier: keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:1c:33:85:3d:43:d2:84:1b:5f:7c:7e:ac:e7:89:a9:1b:13: dd:7c:35:ca:7d:6d:e6:96:01:97:c5:0f:4e:78:e6:98:9c:ef: 1c:28:91:fa:30:eb:fc:74:ec:91:79:6e:9a:c8:96:74:e6:27: e1:9c:a0:93:56:b9:cd:53:69:7b:13:4f:c0:89:66:21:2e:d5: eb:22:b2:d3:33:83:f6:83:77:4a:3c:c0:3a:ba:a3:c8:65:2b: 90:07:35:c1:fd:9b:a6:28:6f:60:76:8f:21:6a:83:f8:01:7c: 35:8e:1d:29:25:18:8d:03:07:1b:49:11:09:15:1b:8f:99:ff: 25:0d:db:65:ad:14:35:bb:95:99:bd:c5:98:eb:8c:9f:02:ca: 9e:d9:09:71:44:f5:e9:da:66:8b:9b:50:83:2c:e8:08:ef:d6: 8e:31:c3:a1:01:ac:72:d9:03:f0:fd:3c:32:e6:81:b3:0b:77: eb:46:dd:c1:08:84:3e:c2:e8:4e:b2:2d:60:f8:7c:77:9f:3f: 46:99:bf:a9:a3:a0:b8:8e:76:3c:a3:35:8f:7a:2d:f5:14:2a: 45:71:38:ae:07:dc:21:07:6d:9d:93:22:3b:3d:7d:ff:c0:16: 89:3a:b6:e8:b1:d0:62:a9:42:4d:67:ea:1f:c7:38:bb:2d:85: 28:67:9f:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzMzkxMTAvBgNVBAUTKDg3MkU1QUI1MzlCRTQzODU3NDAzRDRGNUQ0NUE1NDcy QkIyMDdBNkQwHhcNMjUwNjA5MDAzMjAwWhcNMjUwNjE2MDAzMjAwWjAYMRYwFAYD VQQDEw02ODQ2MmI4MS1hMjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6hrstAcJueoOe4ebJZlscJx//WvbWV3Vb+4yl2eAGl1VrPgibaq0dxCusSf3 mzNrFLniqZwjRpttAnTDwMEzHThsRQfUC5DSeIgSV9w4XsX0j/A6S0nRN+GNm/R8 7cSWQonIqJVJZbVhyzm3NVOW3Qz40Jr56TmiAsxFgiRRoqP21gelVhdR7iB98zVq quE4vOzAF5y85Ake0nTbHCuK6bLk5eENL8L8zRnEwqwxIiUBXSjvLN3rmj6VQ2lF W7Q/4ideFY20bQ4t3EjpLU+p3dB2wirUPyCVaKheV8td/iZkUygP2ZrzdXYKF4xz SxDBzRKcLIFJD5S3AMddTrI7VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIjNdhH7 DIDXV3i7mj3r8F52TDpjMB8GA1UdIwQYMBaAFIcuWrU5vkOFdAPU9dRaVHK7IHpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzMzOS80NTI2Nzk3MEIy RkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0VjBBOVQxMUZwVWNyc2dl bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5NWF0VG0tUTRWMEE5VDExRnBVY3JzZ2VtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzMzOS80NTI2Nzk3MEIyRkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0 VjBBOVQxMUZwVWNyc2dlbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqHDOFPUPShBtffH6s54mpGxPdfDXKfW3mlgGXxQ9OeOaYnO8cKJH6 MOv8dOyReW6ayJZ05ifhnKCTVrnNU2l7E0/AiWYhLtXrIrLTM4P2g3dKPMA6uqPI ZSuQBzXB/ZumKG9gdo8haoP4AXw1jh0pJRiNAwcbSREJFRuPmf8lDdtlrRQ1u5WZ vcWY64yfAsqe2QlxRPXp2maLm1CDLOgI79aOMcOhAaxy2QPw/Twy5oGzC3frRt3B CIQ+wuhOsi1g+Hx3nz9Gmb+po6C4jnY8ozWPei31FCpFcTiuB9whB22dkyI7PX3/ wBaJOrbosdBiqUJNZ+ofxzi7LYUoZ5+W -----END CERTIFICATE-----Generated at Mon Jun 9 22:49:23 2025 by rpki-client