$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft File: hypmcnatRHCKRH_b6IHxYueQ3WM.mft (raw, json) Hash identifier: 07J+eTexonaryotMGtwCARYMyZ+nOeztoD6A+OHw8mA= Subject key identifier: EB:53:F6:45:74:3F:D3:BD:1F:0B:E7:08:CE:6A:07:58:AE:EC:50:BF Authority key identifier: 87:2A:66:72:76:AD:44:70:8A:44:7F:DB:E8:81:F1:62:E7:90:DD:63 Certificate issuer: /CN=A91C5153/serialNumber=872A667276AD44708A447FDBE881F162E790DD63 Certificate serial: 0653 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hypmcnatRHCKRH_b6IHxYueQ3WM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft Manifest number: 064B Signing time: Thu 12 Jun 2025 22:14:22 +0000 Manifest this update: Thu 12 Jun 2025 22:14:22 +0000 Manifest next update: Thu 19 Jun 2025 22:14:22 +0000 Files and hashes: 1: hypmcnatRHCKRH_b6IHxYueQ3WM.crl (hash: uTTvUXNGv2zdqVRo7aq9zRgx4XV+m8eLhy8iE8+Dj2s=) 2: 5B194E5EDFF311EBBC814169C4F9AE02.roa (hash: bolwxGi/eUOKWmqsmWqcMpF1AWqbvnFw3vWt3JpNOcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.crl rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hypmcnatRHCKRH_b6IHxYueQ3WM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1619 (0x653) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5153, serialNumber=872A667276AD44708A447FDBE881F162E790DD63 Validity Not Before: Jun 12 22:14:22 2025 GMT Not After : Jun 19 22:14:22 2025 GMT Subject: CN=684b513e-94d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f9:74:68:e3:f7:af:f5:13:e7:90:76:55:39: 86:c7:17:33:24:4d:a5:6a:43:9e:30:88:18:73:b5: fe:c7:40:d9:c7:b3:54:5e:6e:ad:86:cd:f8:28:71: b0:6e:6d:76:b5:81:74:3f:a9:f3:fc:eb:b2:15:c4: 2c:05:0f:70:6e:80:32:89:f7:28:b9:1f:94:0d:9f: a9:6e:59:b5:5f:b2:64:d5:c2:86:fd:cb:72:61:0d: 65:13:a9:94:d8:88:44:b6:de:1b:1a:5f:6c:b9:40: e8:b5:f7:26:d2:ca:20:16:e2:cc:d5:eb:48:f5:30: 9b:03:ec:45:11:87:d6:a3:cf:5a:f7:ca:fc:e6:4f: ff:77:3a:06:54:c4:3f:46:b9:11:87:ed:9f:e3:6b: 71:1d:f6:f6:16:64:61:a3:9a:2e:48:34:a4:3b:16: ab:fe:38:86:98:fc:34:72:7f:5a:ef:fc:0f:de:9d: d9:d6:d4:00:e7:da:ea:76:c6:1c:6f:e9:39:c1:1c: f8:65:c1:67:a8:8e:f1:c9:a6:e9:a3:94:e1:48:6b: a4:12:21:e9:d4:aa:b7:9a:db:59:c8:42:20:16:2b: e2:84:ba:ef:fb:6d:97:61:45:25:93:67:25:8d:43: 84:a5:77:98:62:68:2b:83:9f:cb:e3:4b:83:ed:b7: 83:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:53:F6:45:74:3F:D3:BD:1F:0B:E7:08:CE:6A:07:58:AE:EC:50:BF X509v3 Authority Key Identifier: keyid:87:2A:66:72:76:AD:44:70:8A:44:7F:DB:E8:81:F1:62:E7:90:DD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hypmcnatRHCKRH_b6IHxYueQ3WM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:74:c4:13:c2:c4:98:63:b1:6d:6b:5e:4d:e6:64:49:ce:7e: cb:50:51:23:84:43:68:b2:ed:2c:05:7d:b1:c2:da:42:b7:e2: 2f:38:b7:3a:30:e3:a8:67:e2:eb:92:58:d2:d4:68:e4:19:d4: 21:ad:da:07:ec:48:e1:c5:9a:14:3a:ad:3c:86:86:aa:ea:c8: 18:b9:45:b8:ef:7e:0b:60:bf:f8:d3:66:56:b0:e2:d8:6c:87: 32:25:4e:d4:d0:c6:34:e7:a0:82:47:d8:f6:3c:46:b7:a5:12: db:27:1a:b6:8c:5c:db:b5:28:66:73:47:62:1e:f1:5e:67:1d: 1d:57:99:05:b7:17:a4:92:b6:68:33:5d:d3:0e:ea:85:d9:0e: 9b:dd:00:2a:23:e0:a5:b2:89:bd:23:42:bb:24:11:a6:d1:fe: 63:2b:35:96:62:ba:e9:8e:0e:ad:39:e9:52:22:3c:77:fe:94: 47:44:87:11:27:01:9e:a9:c1:a2:96:21:9c:82:2b:c2:7c:76: 8f:ee:ff:56:14:ec:30:61:db:83:e0:02:63:7c:5a:fb:91:71: 15:53:6b:3d:34:93:83:89:ce:c3:0e:cc:e7:b6:00:36:cc:3f: 19:21:76:e4:d7:6f:d1:a0:f6:d5:b7:31:1c:87:8a:ba:56:01: 4a:75:e3:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUxNTMxMTAvBgNVBAUTKDg3MkE2NjcyNzZBRDQ0NzA4QTQ0N0ZEQkU4ODFGMTYy RTc5MERENjMwHhcNMjUwNjEyMjIxNDIyWhcNMjUwNjE5MjIxNDIyWjAYMRYwFAYD VQQDEw02ODRiNTEzZS05NGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvl0aOP3r/UT55B2VTmGxxczJE2lakOeMIgYc7X+x0DZx7NUXm6ths34KHGw bm12tYF0P6nz/OuyFcQsBQ9wboAyifcouR+UDZ+pblm1X7Jk1cKG/ctyYQ1lE6mU 2IhEtt4bGl9suUDotfcm0sogFuLM1etI9TCbA+xFEYfWo89a98r85k//dzoGVMQ/ RrkRh+2f42txHfb2FmRho5ouSDSkOxar/jiGmPw0cn9a7/wP3p3Z1tQA59rqdsYc b+k5wRz4ZcFnqI7xyabpo5ThSGukEiHp1Kq3mttZyEIgFivihLrv+22XYUUlk2cl jUOEpXeYYmgrg5/L40uD7beD7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtT9kV0 P9O9HwvnCM5qB1iu7FC/MB8GA1UdIwQYMBaAFIcqZnJ2rURwikR/2+iB8WLnkN1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTE1My85NTQyODFDMjkw NDgxMUVCQTQ4RTk2MzBDNEY5QUUwMi9oeXBtY25hdFJIQ0tSSF9iNklIeFl1ZVEz V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5cG1jbmF0UkhDS1JIX2I2SUh4WXVlUTNXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTE1My85NTQyODFDMjkwNDgxMUVCQTQ4RTk2MzBDNEY5QUUwMi9oeXBtY25hdFJI Q0tSSF9iNklIeFl1ZVEzV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBedMQTwsSYY7Fta15N5mRJzn7LUFEjhENosu0sBX2xwtpCt+IvOLc6 MOOoZ+LrkljS1GjkGdQhrdoH7EjhxZoUOq08hoaq6sgYuUW4734LYL/402ZWsOLY bIcyJU7U0MY056CCR9j2PEa3pRLbJxq2jFzbtShmc0diHvFeZx0dV5kFtxekkrZo M13TDuqF2Q6b3QAqI+Clsom9I0K7JBGm0f5jKzWWYrrpjg6tOelSIjx3/pRHRIcR JwGeqcGiliGcgivCfHaP7v9WFOwwYduD4AJjfFr7kXEVU2s9NJODic7DDszntgA2 zD8ZIXbk12/RoPbVtzEch4q6VgFKdeM1 -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:58 2025 by rpki-client