$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: Y2xXOKbmOh4BgoK17pv8PwyHRanM7dtFrHgO0XB0TIU= Subject key identifier: 29:24:DC:A0:15:56:C7:95:10:FF:A7:50:48:C1:2C:B2:32:21:22:2B Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0DD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0DA6 Signing time: Thu 04 Sep 2025 18:06:55 +0000 Manifest this update: Thu 04 Sep 2025 18:06:55 +0000 Manifest next update: Thu 11 Sep 2025 18:06:55 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: 0bSzePw2i7naiseXWehuQv5+4UTRflOC1irKwmfkc9M=) 2: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: u8GCpF3JjtF0fC5bHONBso6P9ZKL07gluzKPfJhmpXI=) 3: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: 9OL0Nn9V+ede9DJf9mkaMrtLaF0tRZO3OAn8HvMuFRw=) 4: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: ccQHTXT/JWlYkUSlrHBZlxj0fPuZnF/MXZqxQxgBSSk=) 5: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: JsvlnopzOaOKTX3AuOnQGEvn3QbobkZ0VGpy6s7Zufs=) 6: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: W9F0AxXLeTRt9akhBBWzGaKX1wJNYfdBQQ5r+SkSiyU=) 7: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: TgzuO7T0sgwTCl2sRbtN58HlHEFkWtWHdI30YEepdig=) 8: D0551B50046411F09760073DC4F9AE02.roa (hash: Ml6MHIFRGUbHxsyGVzTTlekIkq7JzuhUAzoayMJcf6g=) 9: F2826A504FCF11EB88444467C4F9AE02.roa (hash: QqSGad7FxeptCh4lzX5ee03GteRq4SxJe8s+1HGe3x4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 18:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3540 (0xdd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Sep 4 18:06:55 2025 GMT Not After : Sep 11 18:06:55 2025 GMT Subject: CN=68b9d53f-f931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e0:d5:75:c2:be:73:b8:93:40:36:61:c3:ba: 9a:0a:7f:9c:14:4e:7d:54:04:71:bb:77:67:bb:cb: 58:82:2f:fb:65:3f:63:f9:12:36:d6:c5:7d:87:5b: 18:2b:d5:1e:58:2a:77:d9:e6:23:e0:b8:c8:67:7e: 38:e7:08:f1:36:2d:c5:a0:6a:ee:41:59:e2:45:7c: 0e:7b:db:b8:0a:9f:d4:65:8d:ce:02:d6:91:fc:57: 1d:e1:9d:5e:c7:b1:59:7a:96:0d:9d:6a:80:b9:9b: cb:e3:2a:e4:10:b1:e4:14:00:25:3d:19:7e:02:04: 3c:d9:4b:b6:f3:1b:64:5b:ac:d2:20:6b:9d:01:5b: 30:05:8f:14:13:a2:e7:2c:b5:41:5c:74:f0:42:8c: df:67:12:28:f2:c6:cd:ab:91:c2:81:2a:ff:be:94: e3:91:92:9a:31:f8:5c:57:f2:6c:3b:3d:0a:37:3f: cf:87:97:66:ce:34:29:05:ce:d8:47:c6:aa:82:84: 4e:7e:a9:c0:f2:ec:2a:46:7b:5f:83:ae:2c:ef:6f: 0f:40:6e:fa:e5:2f:f6:d4:e5:39:01:15:64:64:08: 52:b6:7f:7a:02:ff:18:2a:3a:90:4c:1e:b2:68:06: dc:bc:bf:43:cd:82:2f:17:aa:23:0a:d4:73:28:0c: 39:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:24:DC:A0:15:56:C7:95:10:FF:A7:50:48:C1:2C:B2:32:21:22:2B X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:81:41:f3:95:c5:ef:36:38:dc:c8:b2:be:f8:c3:15:00:b8: ec:8d:20:3e:1b:4f:32:d1:75:16:5c:12:47:d2:30:4a:77:29: f9:ac:23:ba:ce:46:65:92:20:ef:e7:bd:82:dd:c2:ce:9f:3d: 09:d9:23:c9:ea:6b:a0:8a:12:10:d5:02:dc:71:c6:91:8b:e5: 87:d2:8e:43:21:43:dc:11:30:a2:52:84:bc:2c:d3:c9:59:d7: 93:0a:06:84:9e:9f:87:c7:f4:d1:5e:53:3b:57:9c:61:fc:48: 8d:c7:9b:aa:40:2e:fb:4d:4c:82:48:84:55:5c:05:65:d9:27: d3:08:99:72:68:9b:88:18:06:9f:7c:73:26:d5:6a:a4:d4:b9: dc:4f:0f:1f:c0:47:22:45:52:de:ec:0e:17:51:b8:e0:7a:a8: d4:73:05:6b:62:d4:84:0f:7b:2a:39:84:90:8d:12:a7:28:f0: ab:a7:17:ea:55:72:5c:11:38:46:dd:c4:6f:ca:c9:33:77:c9: 58:f6:f4:a7:72:fe:fb:f3:20:fb:11:d0:04:07:20:75:92:5b: 6d:96:90:f9:93:29:31:ee:cf:f2:1f:20:2f:24:75:1b:97:1d: d6:fc:2f:c8:a6:6a:03:ae:e5:7b:7b:f3:74:f6:02:14:a4:bd: e8:03:11:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjUwOTA0MTgwNjU1WhcNMjUwOTExMTgwNjU1WjAYMRYwFAYD VQQDEw02OGI5ZDUzZi1mOTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5uDVdcK+c7iTQDZhw7qaCn+cFE59VARxu3dnu8tYgi/7ZT9j+RI21sV9h1sY K9UeWCp32eYj4LjIZ3445wjxNi3FoGruQVniRXwOe9u4Cp/UZY3OAtaR/Fcd4Z1e x7FZepYNnWqAuZvL4yrkELHkFAAlPRl+AgQ82Uu28xtkW6zSIGudAVswBY8UE6Ln LLVBXHTwQozfZxIo8sbNq5HCgSr/vpTjkZKaMfhcV/JsOz0KNz/Ph5dmzjQpBc7Y R8aqgoROfqnA8uwqRntfg64s728PQG765S/21OU5ARVkZAhStn96Av8YKjqQTB6y aAbcvL9DzYIvF6ojCtRzKAw55wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkk3KAV VseVEP+nUEjBLLIyISIrMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjgUHzlcXvNjjcyLK++MMVALjsjSA+G08y0XUWXBJH0jBKdyn5rCO6 zkZlkiDv572C3cLOnz0J2SPJ6mugihIQ1QLcccaRi+WH0o5DIUPcETCiUoS8LNPJ WdeTCgaEnp+Hx/TRXlM7V5xh/EiNx5uqQC77TUyCSIRVXAVl2SfTCJlyaJuIGAaf fHMm1Wqk1LncTw8fwEciRVLe7A4XUbjgeqjUcwVrYtSED3sqOYSQjRKnKPCrpxfq VXJcEThG3cRvyskzd8lY9vSncv778yD7EdAEByB1klttlpD5kykx7s/yHyAvJHUb lx3W/C/IpmoDruV7e/N09gIUpL3oAxFV -----END CERTIFICATE-----Generated at Sat Sep 6 15:06:21 2025 by rpki-client