$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft File: hypmcnatRHCKRH_b6IHxYueQ3WM.mft (raw, json) Hash identifier: rbmDdxrG6ZKf3t4TG4OHZXuiK415nuv9zp9e3T+b6fo= Subject key identifier: 20:3B:BC:D4:19:CF:7D:AB:83:E3:50:A2:25:86:78:04:D3:4C:7B:8B Authority key identifier: 87:2A:66:72:76:AD:44:70:8A:44:7F:DB:E8:81:F1:62:E7:90:DD:63 Certificate issuer: /CN=A91C5153/serialNumber=872A667276AD44708A447FDBE881F162E790DD63 Certificate serial: 0672 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hypmcnatRHCKRH_b6IHxYueQ3WM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft Manifest number: 066A Signing time: Tue 12 Aug 2025 22:53:23 +0000 Manifest this update: Tue 12 Aug 2025 22:53:23 +0000 Manifest next update: Tue 19 Aug 2025 22:53:22 +0000 Files and hashes: 1: hypmcnatRHCKRH_b6IHxYueQ3WM.crl (hash: MU1MRnTXnVidkla6cAOOpAjwATsFxe8RIst6L2Hhwwc=) 2: 5B194E5EDFF311EBBC814169C4F9AE02.roa (hash: bolwxGi/eUOKWmqsmWqcMpF1AWqbvnFw3vWt3JpNOcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.crl rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hypmcnatRHCKRH_b6IHxYueQ3WM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 22:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1650 (0x672) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5153, serialNumber=872A667276AD44708A447FDBE881F162E790DD63 Validity Not Before: Aug 12 22:53:23 2025 GMT Not After : Aug 19 22:53:22 2025 GMT Subject: CN=689bc5e3-4e47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cf:b4:9b:2a:19:6e:27:fa:43:42:86:d0:03: b4:d8:1b:23:f9:17:9e:bb:4e:9e:25:58:99:ab:11: dc:dc:2d:c8:15:a3:83:f0:c3:63:b9:63:5c:be:98: 6c:32:ca:e7:10:13:7f:ff:47:ad:3b:52:ca:bc:db: 81:bc:c4:cb:d1:66:b0:06:f2:b7:39:8f:6c:9f:ae: 81:43:24:68:1e:01:b8:d9:e4:80:e6:d3:3f:ac:b8: a4:e0:de:d4:92:c6:ac:fd:b2:a0:9d:5f:46:e3:3b: dd:30:fb:8c:1c:bc:4e:bb:b6:63:55:50:15:d5:d5: e2:5a:9d:97:c8:4e:de:dc:18:2e:45:b1:66:ab:ea: 76:de:25:03:c5:cc:41:7a:5c:ef:dd:c0:10:ef:07: be:54:23:fe:2b:40:69:a4:d9:13:9d:f1:d7:d4:48: 1f:7a:15:46:1b:db:4f:c4:78:68:e7:d8:62:ee:c5: 95:e6:4c:48:a9:b8:68:ac:ec:26:84:d4:50:78:d5: 6a:e0:b6:7e:f0:19:b0:e9:90:96:10:a1:ea:47:5c: 8e:75:62:59:73:aa:36:2d:c7:bc:d9:fc:49:f0:d0: 8a:f4:93:c3:3e:21:c9:4d:5f:37:3f:fd:85:4f:a5: f5:a5:f0:20:2a:ad:7a:c0:d3:31:dd:3d:2a:3a:ba: 50:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:3B:BC:D4:19:CF:7D:AB:83:E3:50:A2:25:86:78:04:D3:4C:7B:8B X509v3 Authority Key Identifier: keyid:87:2A:66:72:76:AD:44:70:8A:44:7F:DB:E8:81:F1:62:E7:90:DD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hypmcnatRHCKRH_b6IHxYueQ3WM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:24:8a:46:4d:f5:cf:68:65:61:0a:37:40:5d:10:a9:08:d7: 3a:ba:6b:d4:4e:29:b6:65:52:b2:7e:cb:7e:b0:f0:f2:1d:86: b4:9e:42:78:95:c0:83:95:ab:f8:a1:c5:d5:12:94:a5:99:3a: c1:c0:57:17:cb:bf:bf:b5:58:fe:27:f9:b0:14:75:f2:22:1c: 88:0d:d6:4e:18:26:c3:f3:f0:94:de:65:67:cc:fe:5b:4d:31: ca:5c:fe:85:35:ce:cb:d8:33:ea:4e:69:ea:9c:4f:6a:aa:ab: 45:51:c3:cb:0d:8b:87:0e:65:8b:99:ca:65:ba:12:5c:c5:db: cc:61:ec:43:fa:21:03:a8:b5:23:e2:ed:9e:4b:49:12:28:cf: 22:59:62:e5:f0:c1:ef:cf:89:5b:dd:1c:7d:56:cf:35:b8:5c: 5f:a1:38:e1:3e:45:8b:2b:4a:81:85:36:fd:09:41:6d:4c:23: 23:e8:c0:7f:d3:7b:20:62:69:25:41:80:70:5d:18:a2:8e:b9: f2:78:26:3b:dc:42:ec:ff:fa:10:34:64:54:9a:cd:a0:01:c0: 1f:cf:d4:8e:75:2a:76:61:6f:6a:27:be:74:31:54:1e:b0:77: af:f1:30:63:01:f3:00:ca:31:b0:c1:75:02:d4:8c:c7:47:5e: 35:65:41:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUxNTMxMTAvBgNVBAUTKDg3MkE2NjcyNzZBRDQ0NzA4QTQ0N0ZEQkU4ODFGMTYy RTc5MERENjMwHhcNMjUwODEyMjI1MzIzWhcNMjUwODE5MjI1MzIyWjAYMRYwFAYD VQQDEw02ODliYzVlMy00ZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8+0myoZbif6Q0KG0AO02Bsj+Reeu06eJViZqxHc3C3IFaOD8MNjuWNcvphs MsrnEBN//0etO1LKvNuBvMTL0WawBvK3OY9sn66BQyRoHgG42eSA5tM/rLik4N7U ksas/bKgnV9G4zvdMPuMHLxOu7ZjVVAV1dXiWp2XyE7e3BguRbFmq+p23iUDxcxB elzv3cAQ7we+VCP+K0BppNkTnfHX1EgfehVGG9tPxHho59hi7sWV5kxIqbhorOwm hNRQeNVq4LZ+8Bmw6ZCWEKHqR1yOdWJZc6o2Lce82fxJ8NCK9JPDPiHJTV83P/2F T6X1pfAgKq16wNMx3T0qOrpQpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCA7vNQZ z32rg+NQoiWGeATTTHuLMB8GA1UdIwQYMBaAFIcqZnJ2rURwikR/2+iB8WLnkN1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTE1My85NTQyODFDMjkw NDgxMUVCQTQ4RTk2MzBDNEY5QUUwMi9oeXBtY25hdFJIQ0tSSF9iNklIeFl1ZVEz V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5cG1jbmF0UkhDS1JIX2I2SUh4WXVlUTNXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTE1My85NTQyODFDMjkwNDgxMUVCQTQ4RTk2MzBDNEY5QUUwMi9oeXBtY25hdFJI Q0tSSF9iNklIeFl1ZVEzV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIJIpGTfXPaGVhCjdAXRCpCNc6umvUTim2ZVKyfst+sPDyHYa0nkJ4 lcCDlav4ocXVEpSlmTrBwFcXy7+/tVj+J/mwFHXyIhyIDdZOGCbD8/CU3mVnzP5b TTHKXP6FNc7L2DPqTmnqnE9qqqtFUcPLDYuHDmWLmcpluhJcxdvMYexD+iEDqLUj 4u2eS0kSKM8iWWLl8MHvz4lb3Rx9Vs81uFxfoTjhPkWLK0qBhTb9CUFtTCMj6MB/ 03sgYmklQYBwXRiijrnyeCY73ELs//oQNGRUms2gAcAfz9SOdSp2YW9qJ750MVQe sHev8TBjAfMAyjGwwXUC1IzHR141ZUEz -----END CERTIFICATE-----Generated at Wed Aug 13 04:30:00 2025 by rpki-client