$ rpki-client -vvf rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft File: hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft (raw, json) Hash identifier: d8yT4a3sBcIBT9qeVkjhv1b52ox8plefe6hAlku80YA= Subject key identifier: AD:A2:7B:42:F5:F8:E8:C3:5C:0A:B2:2C:61:A0:2E:76:46:C2:9C:F5 Authority key identifier: 87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 Certificate issuer: /CN=A919AC9A/serialNumber=8728B828F318603E44711070C24ECC088A190060 Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft Manifest number: 0144 Signing time: Fri 05 Sep 2025 04:42:07 +0000 Manifest this update: Fri 05 Sep 2025 04:42:06 +0000 Manifest next update: Fri 12 Sep 2025 04:42:06 +0000 Files and hashes: 1: hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl (hash: MGA4ffU2fozwklbASNkEEJUBmdZ3Rh8lIDUNYGNwpmc=) 2: F0D7EB5097FA11EE90066875C4F9AE02.roa (hash: vxxrjf6mh6He/Qk48r/ND4XKn6+HAksWQduimGVP494=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AC9A, serialNumber=8728B828F318603E44711070C24ECC088A190060 Validity Not Before: Sep 5 04:42:06 2025 GMT Not After : Sep 12 04:42:06 2025 GMT Subject: CN=68ba6a1e-19ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6c:38:e8:8b:fb:ac:4e:06:47:d8:67:f7:a2: d5:66:bf:9c:49:36:01:b3:0f:6b:57:3c:52:27:c5: 4e:8c:f7:d9:dc:5a:93:55:2a:dc:66:25:c7:9a:56: 79:22:26:41:8f:94:6e:4d:8f:35:75:5e:3f:1c:79: 3b:54:57:32:d6:a7:09:82:b0:60:c9:df:de:a2:0b: 7c:b1:3a:e8:e2:d1:d8:04:35:48:bb:b1:ef:71:83: 7e:c7:2e:41:f8:da:86:67:90:4f:ea:d2:3c:22:0b: ff:5a:c9:ed:a9:bf:b6:4c:08:4d:e1:c8:55:89:78: 3d:05:62:e8:85:8e:d2:eb:43:11:40:ca:bb:86:c5: 95:64:62:32:62:9c:66:e6:dd:00:9b:97:31:6e:aa: b2:ce:87:dd:16:ac:5e:be:b4:dc:c7:20:f3:5a:75: b7:a0:13:0d:82:77:4b:b6:a3:1a:3c:46:4b:ba:d2: d9:58:fa:a5:12:54:22:d0:99:16:94:ba:b5:26:81: 9f:8a:b7:f6:cf:0f:70:65:fb:74:e2:63:2e:0b:83: 6a:86:fa:5e:fb:d1:87:ae:08:62:8c:77:10:27:87: 03:00:89:32:48:bf:74:c6:45:c3:89:1c:88:ce:30: f5:a9:70:db:e8:f9:96:f8:8f:55:c7:90:68:21:a6: 3b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:A2:7B:42:F5:F8:E8:C3:5C:0A:B2:2C:61:A0:2E:76:46:C2:9C:F5 X509v3 Authority Key Identifier: keyid:87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:19:04:0a:20:d9:8c:61:36:34:b4:2f:d3:d5:66:20:0d:b6: 95:26:8a:45:4d:99:4b:ab:cf:1e:45:d4:ef:14:70:81:f3:e6: ad:3d:e0:d6:7e:6a:8e:47:d8:14:82:7b:52:6e:8f:23:bd:e8: e8:3a:1d:8e:0c:b0:36:20:64:06:29:f2:d0:92:1b:d1:2a:71: 9b:75:53:8d:dc:58:8f:bc:ba:d6:0b:00:fb:48:86:75:b4:06: 2f:f3:09:89:49:c8:0b:15:02:40:62:f7:f7:13:cf:77:32:40: f5:24:59:3d:00:28:00:1f:f3:86:63:90:18:06:59:84:1d:da: ab:dd:2a:11:89:06:90:50:ce:67:7f:2c:17:db:dd:f0:ae:6b: c3:67:cf:7a:ab:b9:94:c4:2e:f9:9b:78:11:66:f3:2c:fe:b8: 6e:e9:ca:34:75:e1:7e:67:d6:e6:14:4e:71:5e:49:90:8d:85: 6c:12:40:66:ca:9e:82:0b:cd:bb:1d:31:43:91:94:12:6e:5d: e0:6f:24:37:2e:e8:65:0a:e6:21:16:83:00:84:27:65:73:ba: a4:60:00:b9:f7:99:06:7d:ef:1b:99:b2:2d:19:37:cc:50:f8: e8:5f:12:2a:5e:e1:ae:8f:22:bc:ce:e6:fc:5d:2c:85:88:57: 45:80:10:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFDOUExMTAvBgNVBAUTKDg3MjhCODI4RjMxODYwM0U0NDcxMTA3MEMyNEVDQzA4 OEExOTAwNjAwHhcNMjUwOTA1MDQ0MjA2WhcNMjUwOTEyMDQ0MjA2WjAYMRYwFAYD VQQDEw02OGJhNmExZS0xOWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmw46Iv7rE4GR9hn96LVZr+cSTYBsw9rVzxSJ8VOjPfZ3FqTVSrcZiXHmlZ5 IiZBj5RuTY81dV4/HHk7VFcy1qcJgrBgyd/eogt8sTro4tHYBDVIu7HvcYN+xy5B +NqGZ5BP6tI8Igv/Wsntqb+2TAhN4chViXg9BWLohY7S60MRQMq7hsWVZGIyYpxm 5t0Am5cxbqqyzofdFqxevrTcxyDzWnW3oBMNgndLtqMaPEZLutLZWPqlElQi0JkW lLq1JoGfirf2zw9wZft04mMuC4Nqhvpe+9GHrghijHcQJ4cDAIkySL90xkXDiRyI zjD1qXDb6PmW+I9Vx5BoIaY7IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2ie0L1 +OjDXAqyLGGgLnZGwpz1MB8GA1UdIwQYMBaAFIcouCjzGGA+RHEQcMJOzAiKGQBg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUM5QS9FMTlBMjU3ODk3 RjQxMUVFQkNFREMzNEZDNEY5QUUwMi9oeWk0S1BNWVlENUVjUkJ3d2s3TUNJb1pB R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5aTRLUE1ZWUQ1RWNSQnd3azdNQ0lvWkFHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUM5QS9FMTlBMjU3ODk3RjQxMUVFQkNFREMzNEZDNEY5QUUwMi9oeWk0S1BNWVlE NUVjUkJ3d2s3TUNJb1pBR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtGQQKINmMYTY0tC/T1WYgDbaVJopFTZlLq88eRdTvFHCB8+atPeDW fmqOR9gUgntSbo8jvejoOh2ODLA2IGQGKfLQkhvRKnGbdVON3FiPvLrWCwD7SIZ1 tAYv8wmJScgLFQJAYvf3E893MkD1JFk9ACgAH/OGY5AYBlmEHdqr3SoRiQaQUM5n fywX293wrmvDZ896q7mUxC75m3gRZvMs/rhu6co0deF+Z9bmFE5xXkmQjYVsEkBm yp6CC827HTFDkZQSbl3gbyQ3LuhlCuYhFoMAhCdlc7qkYAC595kGfe8bmbItGTfM UPjoXxIqXuGujyK8zub8XSyFiFdFgBDs -----END CERTIFICATE-----Generated at Sat Sep 6 07:01:03 2025 by rpki-client