$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft File: hYBFlRf-HXfU04pCnx0hxskt6TQ.mft (raw, json) Hash identifier: zh9kw9FT1759l19Xt7FyclXq1HIIqHGqVMjtnVumCi4= Subject key identifier: 3C:C9:BF:13:5E:BD:22:64:A3:14:08:39:27:81:AC:80:53:C2:2D:A2 Authority key identifier: 85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 Certificate issuer: /CN=A9145B5E/serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft Manifest number: C7 Signing time: Mon 11 Aug 2025 05:57:55 +0000 Manifest this update: Mon 11 Aug 2025 05:57:55 +0000 Manifest next update: Mon 18 Aug 2025 05:57:55 +0000 Files and hashes: 1: hYBFlRf-HXfU04pCnx0hxskt6TQ.crl (hash: 9eE56njdRrxRzGN45HpSLY+KtBL9jdwMs1aZvcd2i9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:57:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B5E, serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Validity Not Before: Aug 11 05:57:55 2025 GMT Not After : Aug 18 05:57:55 2025 GMT Subject: CN=68998663-3976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:68:d1:53:f3:38:26:b3:25:0a:71:6d:2f:53: 5e:bb:a8:16:a8:de:12:3a:69:6b:62:9a:c1:db:3e: f1:2e:59:f9:75:5b:0e:a1:cc:94:af:23:48:9c:de: 18:ba:51:37:28:2a:16:d5:74:c7:d5:38:0b:b0:cd: 9b:4e:a8:61:c9:bc:7b:c7:e5:4f:cf:05:59:06:ee: d2:19:d5:18:c9:39:3f:de:c5:d5:3e:e0:19:8d:3d: 68:2e:9b:11:83:90:1a:21:3a:36:33:d4:78:a2:9c: 2c:7b:2c:7a:46:c2:70:49:11:a3:da:bd:a2:21:7d: 73:61:b3:95:00:28:37:3a:2e:25:f6:72:41:a9:2d: 89:35:fa:fa:14:a5:42:63:7e:44:08:44:2e:6b:b9: a4:6a:b0:4b:2d:19:54:d1:d7:01:d1:e4:da:2a:71: ce:c5:2b:47:14:a7:97:35:6a:57:7f:86:92:ee:a0: 65:39:cf:11:b3:2b:3e:07:dc:04:1a:d3:ec:7f:fd: db:30:20:be:e7:14:65:df:52:fe:ea:46:c6:24:c2: 7f:25:5f:64:93:bb:00:42:66:86:ef:d6:d0:24:81: 48:40:76:f9:37:1c:37:a5:ce:48:83:ea:b5:59:cc: 50:52:18:ac:f4:53:39:4f:4d:2a:f1:f9:a6:63:aa: 8d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:C9:BF:13:5E:BD:22:64:A3:14:08:39:27:81:AC:80:53:C2:2D:A2 X509v3 Authority Key Identifier: keyid:85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:d9:85:f3:21:e4:ec:f5:95:b5:55:f6:d8:bb:1c:af:6c:81: a2:67:f4:f7:b8:17:12:cc:f4:51:a5:2f:e9:3f:54:e7:1d:72: 90:ec:25:18:35:65:49:b3:17:a3:41:13:98:18:b4:03:ce:a3: 40:a7:0e:3a:9e:33:01:eb:8b:a7:bd:74:ff:a7:bd:14:21:48: fa:1b:a0:64:f2:6d:5d:b4:a8:b2:36:b1:43:86:d5:1c:42:3b: 0f:4c:e9:f2:4f:83:8b:ea:cc:b2:08:0b:14:6a:31:b0:ab:4f: d9:5a:49:a0:a6:1e:ff:a4:53:23:a6:8a:61:96:37:23:57:6f: 99:72:ee:4f:43:fc:ae:91:88:89:dd:32:be:34:9e:e9:29:b4: 36:28:5f:96:b8:1c:f4:53:c1:c8:4c:24:25:11:e4:25:75:09: 66:3d:a1:63:35:35:e3:1e:1a:59:91:6e:44:4c:00:e7:cc:c8: 86:28:0e:a1:2f:95:4d:82:68:7d:a0:26:4f:51:d3:66:17:18: 34:d5:71:08:39:22:0b:55:ec:bb:c4:50:fc:10:ba:4a:5e:1b: 1d:7c:a5:6d:18:1d:50:7f:0a:1a:ea:58:cd:55:e3:c0:20:be: 15:64:a4:a6:22:3e:d6:bb:5b:82:6d:ad:92:bb:79:26:8b:42: bc:13:6c:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCNUUxMTAvBgNVBAUTKDg1ODA0NTk1MTdGRTFENzdENEQzOEE0MjlGMUQyMUM2 QzkyREU5MzQwHhcNMjUwODExMDU1NzU1WhcNMjUwODE4MDU1NzU1WjAYMRYwFAYD VQQDEw02ODk5ODY2My0zOTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mjRU/M4JrMlCnFtL1Neu6gWqN4SOmlrYprB2z7xLln5dVsOocyUryNInN4Y ulE3KCoW1XTH1TgLsM2bTqhhybx7x+VPzwVZBu7SGdUYyTk/3sXVPuAZjT1oLpsR g5AaITo2M9R4opwseyx6RsJwSRGj2r2iIX1zYbOVACg3Oi4l9nJBqS2JNfr6FKVC Y35ECEQua7mkarBLLRlU0dcB0eTaKnHOxStHFKeXNWpXf4aS7qBlOc8Rsys+B9wE GtPsf/3bMCC+5xRl31L+6kbGJMJ/JV9kk7sAQmaG79bQJIFIQHb5Nxw3pc5Ig+q1 WcxQUhis9FM5T00q8fmmY6qNGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzJvxNe vSJkoxQIOSeBrIBTwi2iMB8GA1UdIwQYMBaAFIWARZUX/h131NOKQp8dIcbJLek0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUI1RS84NUJDRUU0QzQ1 QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhYZlUwNHBDbngwaHhza3Q2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZQkZsUmYtSFhmVTA0cENueDBoeHNrdDZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUI1RS84NUJDRUU0QzQ1QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhY ZlUwNHBDbngwaHhza3Q2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB62YXzIeTs9ZW1VfbYuxyvbIGiZ/T3uBcSzPRRpS/pP1TnHXKQ7CUY NWVJsxejQROYGLQDzqNApw46njMB64unvXT/p70UIUj6G6Bk8m1dtKiyNrFDhtUc QjsPTOnyT4OL6syyCAsUajGwq0/ZWkmgph7/pFMjpophljcjV2+Zcu5PQ/yukYiJ 3TK+NJ7pKbQ2KF+WuBz0U8HITCQlEeQldQlmPaFjNTXjHhpZkW5ETADnzMiGKA6h L5VNgmh9oCZPUdNmFxg01XEIOSILVey7xFD8ELpKXhsdfKVtGB1Qfwoa6ljNVePA IL4VZKSmIj7Wu1uCba2Su3kmi0K8E2xL -----END CERTIFICATE-----Generated at Tue Aug 12 13:44:27 2025 by rpki-client