$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft File: hYBFlRf-HXfU04pCnx0hxskt6TQ.mft (raw, json) Hash identifier: 4zFLIppMU2gnq2nuhArFGO0Z0RoLWfXa5+wyfAZzL58= Subject key identifier: DF:53:CF:D3:26:A9:E3:08:AD:2D:CD:5D:F6:96:C6:8F:1D:09:EA:BC Authority key identifier: 85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 Certificate issuer: /CN=A9145B5E/serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft Manifest number: A9 Signing time: Fri 13 Jun 2025 05:04:05 +0000 Manifest this update: Fri 13 Jun 2025 05:04:04 +0000 Manifest next update: Fri 20 Jun 2025 05:04:04 +0000 Files and hashes: 1: hYBFlRf-HXfU04pCnx0hxskt6TQ.crl (hash: uuclhpg5YquZcVa5obTOJG9OI5a3Bfb2H3FPYQZfaF8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:04:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B5E, serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Validity Not Before: Jun 13 05:04:04 2025 GMT Not After : Jun 20 05:04:04 2025 GMT Subject: CN=684bb144-886a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b5:34:a7:70:22:5a:2f:8e:2c:88:17:4d:23: c4:1c:95:5c:2c:29:05:f5:06:1f:71:ca:09:3b:25: c2:e0:2b:c5:f2:4d:75:69:56:49:ae:6a:a8:7d:ca: 94:1a:9e:af:fc:28:ad:10:97:10:79:6d:16:13:11: 72:a5:03:38:5c:d3:15:9e:d0:5f:f3:6a:ee:d5:c1: 23:e6:15:ff:f2:1a:d2:fe:22:42:c7:49:2a:27:4b: 07:83:af:03:38:7e:e5:ff:ea:87:a5:e4:38:a6:fa: e3:f9:e7:e2:9a:28:a1:d1:68:5a:67:df:4f:00:f8: 6b:95:3a:ea:db:af:41:17:7b:76:b4:d3:d3:23:e6: 16:ba:24:cf:4a:81:c6:eb:b8:f7:fc:05:b5:c2:ee: 44:8a:f6:6b:a7:39:47:9c:ec:ac:66:a6:36:10:a8: 32:ad:8f:9b:3d:c1:9f:fb:4a:b0:1f:d9:62:6c:d5: a7:d0:15:03:79:d6:0c:f6:08:40:ba:24:a5:6d:fc: 86:a8:9c:86:8d:6c:96:ce:68:85:e0:fc:cc:4e:98: 2e:f2:5f:88:58:6c:fb:1b:1b:b6:60:35:c3:9e:e0: 0b:12:be:13:89:3d:e1:5a:f1:5e:d7:67:bb:da:f3: 4b:d8:19:ee:c6:7a:d5:a7:94:2b:a2:7a:37:1c:48: ac:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:53:CF:D3:26:A9:E3:08:AD:2D:CD:5D:F6:96:C6:8F:1D:09:EA:BC X509v3 Authority Key Identifier: keyid:85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:83:a8:f6:e0:76:d6:5e:fe:14:45:5a:34:04:80:d5:bf:26: 90:3e:c9:13:cc:0d:6b:75:2a:bd:0b:b4:fe:01:80:96:eb:ba: ff:e5:1f:0e:3e:e5:e0:50:02:1f:21:4b:df:cb:d5:3f:f3:52: a1:c2:02:10:b8:16:6d:ee:1b:5d:52:92:83:35:66:80:08:bb: 04:c4:f5:a3:88:c9:44:10:3e:e0:62:45:9d:1f:32:29:68:0c: e8:bd:47:35:94:e7:95:55:31:0d:86:5c:76:bd:e4:63:3a:20: 06:40:23:76:4b:87:e7:00:99:1c:9f:ae:74:44:da:73:df:a3: e4:8c:c0:58:48:f2:2d:61:14:5a:9b:58:19:b1:09:39:21:79: f6:2f:b2:5a:52:4a:61:4f:07:be:af:6e:68:58:56:a3:85:1c: 0b:c4:b6:55:df:76:ad:97:71:b6:dd:34:0a:19:73:40:6c:ec: 28:de:c8:91:4a:77:52:e8:88:cd:df:e7:9c:56:f7:dd:8c:57: 09:24:7c:ed:94:d6:c3:a5:3e:2b:9b:8b:37:de:df:5a:a7:52: b3:8e:ed:92:37:da:3a:17:62:a5:b5:93:86:92:65:17:09:5b: b1:23:6b:38:ad:04:71:f5:a0:4b:a6:6a:1f:ec:8f:ab:e5:ed: 07:71:a3:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCNUUxMTAvBgNVBAUTKDg1ODA0NTk1MTdGRTFENzdENEQzOEE0MjlGMUQyMUM2 QzkyREU5MzQwHhcNMjUwNjEzMDUwNDA0WhcNMjUwNjIwMDUwNDA0WjAYMRYwFAYD VQQDEw02ODRiYjE0NC04ODZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5LU0p3AiWi+OLIgXTSPEHJVcLCkF9QYfccoJOyXC4CvF8k11aVZJrmqofcqU Gp6v/CitEJcQeW0WExFypQM4XNMVntBf82ru1cEj5hX/8hrS/iJCx0kqJ0sHg68D OH7l/+qHpeQ4pvrj+efimiih0WhaZ99PAPhrlTrq269BF3t2tNPTI+YWuiTPSoHG 67j3/AW1wu5EivZrpzlHnOysZqY2EKgyrY+bPcGf+0qwH9libNWn0BUDedYM9ghA uiSlbfyGqJyGjWyWzmiF4PzMTpgu8l+IWGz7Gxu2YDXDnuALEr4TiT3hWvFe12e7 2vNL2BnuxnrVp5Qrono3HEisTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9Tz9Mm qeMIrS3NXfaWxo8dCeq8MB8GA1UdIwQYMBaAFIWARZUX/h131NOKQp8dIcbJLek0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUI1RS84NUJDRUU0QzQ1 QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhYZlUwNHBDbngwaHhza3Q2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZQkZsUmYtSFhmVTA0cENueDBoeHNrdDZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUI1RS84NUJDRUU0QzQ1QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhY ZlUwNHBDbngwaHhza3Q2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClg6j24HbWXv4URVo0BIDVvyaQPskTzA1rdSq9C7T+AYCW67r/5R8O PuXgUAIfIUvfy9U/81KhwgIQuBZt7htdUpKDNWaACLsExPWjiMlEED7gYkWdHzIp aAzovUc1lOeVVTENhlx2veRjOiAGQCN2S4fnAJkcn650RNpz36PkjMBYSPItYRRa m1gZsQk5IXn2L7JaUkphTwe+r25oWFajhRwLxLZV33atl3G23TQKGXNAbOwo3siR SndS6IjN3+ecVvfdjFcJJHztlNbDpT4rm4s33t9ap1Kzju2SN9o6F2KltZOGkmUX CVuxI2s4rQRx9aBLpmof7I+r5e0HcaMM -----END CERTIFICATE-----Generated at Sat Jun 14 18:51:41 2025 by rpki-client