$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: 3XTd9s8ThxicTbTIDM4JSUZdp8I6hBL9okJvvAcflvM= Subject key identifier: 1F:66:05:73:A7:20:E0:31:BD:23:C3:21:24:52:31:61:E6:4E:75:8C Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0DA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0D74 Signing time: Fri 30 May 2025 18:09:14 +0000 Manifest this update: Fri 30 May 2025 18:09:13 +0000 Manifest next update: Fri 06 Jun 2025 18:09:13 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: SKFvm9ggZmKxDzFE6KHeCaVrHgGRm0KIOuXQ622/l9w=) 2: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: u8GCpF3JjtF0fC5bHONBso6P9ZKL07gluzKPfJhmpXI=) 3: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: 9OL0Nn9V+ede9DJf9mkaMrtLaF0tRZO3OAn8HvMuFRw=) 4: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: ccQHTXT/JWlYkUSlrHBZlxj0fPuZnF/MXZqxQxgBSSk=) 5: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: JsvlnopzOaOKTX3AuOnQGEvn3QbobkZ0VGpy6s7Zufs=) 6: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: W9F0AxXLeTRt9akhBBWzGaKX1wJNYfdBQQ5r+SkSiyU=) 7: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: TgzuO7T0sgwTCl2sRbtN58HlHEFkWtWHdI30YEepdig=) 8: F2826A504FCF11EB88444467C4F9AE02.roa (hash: QqSGad7FxeptCh4lzX5ee03GteRq4SxJe8s+1HGe3x4=) 9: D0551B50046411F09760073DC4F9AE02.roa (hash: Ml6MHIFRGUbHxsyGVzTTlekIkq7JzuhUAzoayMJcf6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:09:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3490 (0xda2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: May 30 18:09:13 2025 GMT Not After : Jun 6 18:09:13 2025 GMT Subject: CN=6839f44a-9023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:68:12:74:81:71:fc:c6:97:b1:f1:a0:a4:16: 24:da:65:1b:76:dd:98:22:d1:44:f0:d4:25:9d:ce: 2a:9a:9f:8b:ff:5c:19:40:06:66:3a:ed:f1:c0:09: 1e:71:23:eb:e5:1d:e9:89:07:9a:2b:c5:e6:89:ce: c7:94:1b:f1:dc:6c:dd:87:74:71:fe:17:19:44:2c: fa:92:4f:11:4d:47:23:ed:ce:9d:1c:51:ff:35:bb: de:60:84:a8:28:90:49:56:fc:fc:d5:61:08:d0:d9: 72:3f:fd:e6:bc:52:32:19:10:82:72:16:62:5f:52: ce:f3:ee:d0:88:84:a5:c1:6a:d5:e9:24:1c:78:b6: 29:5c:e8:62:e7:f0:de:b5:62:2e:ad:f9:7b:fb:45: a8:0c:9f:32:8a:ea:07:26:61:20:d8:c3:89:1a:fc: 10:30:f6:71:1e:61:88:cb:7d:72:ef:19:6b:90:64: a0:ea:e9:57:4d:2c:99:40:dd:42:be:0e:2f:0b:49: 4d:1e:46:18:39:52:c9:35:94:19:a4:b4:46:46:93: 1a:85:07:cb:74:ef:a4:45:74:30:fa:e5:82:1b:2f: 0e:a6:94:94:9d:2d:33:a7:57:ec:22:c4:cf:a9:82: 0a:65:a4:d6:38:c3:cb:b3:cb:d6:27:9e:a1:06:91: 6b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:66:05:73:A7:20:E0:31:BD:23:C3:21:24:52:31:61:E6:4E:75:8C X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:b9:3d:46:c5:3b:96:f5:ae:4a:e7:0a:d1:3a:7f:23:77:1f: 01:7c:b6:1d:2b:4b:82:95:08:f2:b0:0b:83:46:14:41:21:bb: d3:23:97:1c:da:ad:e1:46:ba:ae:aa:a1:f4:bd:7d:60:2f:91: 12:16:b5:c9:35:34:64:40:8b:bb:18:8e:ef:78:1c:2e:06:40: f4:a2:e4:da:e8:9c:b9:60:c6:89:c7:d2:42:3b:54:66:6b:f6: ea:9c:56:7d:4f:a5:49:d4:67:d0:da:b8:4d:bb:40:5b:81:40: c8:42:ea:7d:12:d2:52:bb:f3:e5:98:36:9d:70:dd:c4:c2:6a: 35:47:47:69:0a:26:c8:75:81:0b:3b:e1:c5:ce:d4:2c:6c:4a: 91:9b:57:6e:19:db:3c:34:45:01:c4:29:04:82:65:f6:6f:74: 0d:78:d0:e2:2b:9f:e0:4d:07:b1:5b:25:1e:91:d8:d8:9f:29: e0:d1:d4:c9:e9:de:29:c0:29:87:28:b8:c5:a8:c5:8e:c8:fa: ea:d7:4a:81:9d:b5:0e:6b:04:0e:8c:ae:89:77:2d:2b:50:75: 6d:8a:30:ae:0c:bf:80:e5:e6:ed:01:1b:a4:6f:0a:92:15:7b: cc:b7:49:1f:87:1d:98:05:75:af:ec:98:d6:30:e1:69:a9:f9: 1c:25:9a:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjUwNTMwMTgwOTEzWhcNMjUwNjA2MTgwOTEzWjAYMRYwFAYD VQQDEw02ODM5ZjQ0YS05MDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWgSdIFx/MaXsfGgpBYk2mUbdt2YItFE8NQlnc4qmp+L/1wZQAZmOu3xwAke cSPr5R3piQeaK8Xmic7HlBvx3Gzdh3Rx/hcZRCz6kk8RTUcj7c6dHFH/NbveYISo KJBJVvz81WEI0NlyP/3mvFIyGRCCchZiX1LO8+7QiISlwWrV6SQceLYpXOhi5/De tWIurfl7+0WoDJ8yiuoHJmEg2MOJGvwQMPZxHmGIy31y7xlrkGSg6ulXTSyZQN1C vg4vC0lNHkYYOVLJNZQZpLRGRpMahQfLdO+kRXQw+uWCGy8OppSUnS0zp1fsIsTP qYIKZaTWOMPLs8vWJ56hBpFrQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9mBXOn IOAxvSPDISRSMWHmTnWMMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDuT1GxTuW9a5K5wrROn8jdx8BfLYdK0uClQjysAuDRhRBIbvTI5cc 2q3hRrquqqH0vX1gL5ESFrXJNTRkQIu7GI7veBwuBkD0ouTa6Jy5YMaJx9JCO1Rm a/bqnFZ9T6VJ1GfQ2rhNu0BbgUDIQup9EtJSu/PlmDadcN3Ewmo1R0dpCibIdYEL O+HFztQsbEqRm1duGds8NEUBxCkEgmX2b3QNeNDiK5/gTQexWyUekdjYnyng0dTJ 6d4pwCmHKLjFqMWOyPrq10qBnbUOawQOjK6Jdy0rUHVtijCuDL+A5ebtARukbwqS FXvMt0kfhx2YBXWv7JjWMOFpqfkcJZq4 -----END CERTIFICATE-----Generated at Sat May 31 17:02:17 2025 by rpki-client