$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: P4B9sXHjsD0uARKUdFvtmA31fSqS3Hh0MqlFExpuSe8= Subject key identifier: 79:89:EA:B2:D7:4A:59:6E:24:70:0B:7B:0D:A3:26:7D:CD:93:88:93 Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0DEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0DBC Signing time: Sat 18 Oct 2025 18:35:10 +0000 Manifest this update: Sat 18 Oct 2025 18:35:09 +0000 Manifest next update: Sat 25 Oct 2025 18:35:09 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: HcLUCnS6Q0BsIPyKKk1nplx8jCwUEzL3o6mKcLjtWf8=) 2: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: u8GCpF3JjtF0fC5bHONBso6P9ZKL07gluzKPfJhmpXI=) 3: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: 9OL0Nn9V+ede9DJf9mkaMrtLaF0tRZO3OAn8HvMuFRw=) 4: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: ccQHTXT/JWlYkUSlrHBZlxj0fPuZnF/MXZqxQxgBSSk=) 5: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: JsvlnopzOaOKTX3AuOnQGEvn3QbobkZ0VGpy6s7Zufs=) 6: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: W9F0AxXLeTRt9akhBBWzGaKX1wJNYfdBQQ5r+SkSiyU=) 7: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: TgzuO7T0sgwTCl2sRbtN58HlHEFkWtWHdI30YEepdig=) 8: D0551B50046411F09760073DC4F9AE02.roa (hash: Ml6MHIFRGUbHxsyGVzTTlekIkq7JzuhUAzoayMJcf6g=) 9: F2826A504FCF11EB88444467C4F9AE02.roa (hash: QqSGad7FxeptCh4lzX5ee03GteRq4SxJe8s+1HGe3x4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:35:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3562 (0xdea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Oct 18 18:35:09 2025 GMT Not After : Oct 25 18:35:09 2025 GMT Subject: CN=68f3dddd-cffe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ec:b5:21:f6:c8:03:29:dd:53:75:d8:2b:4c: 74:53:92:5b:48:fd:10:fe:a6:a3:a1:bf:47:21:62: 62:a6:9f:ed:e8:df:74:84:37:bd:4b:fd:bd:97:bb: 2c:a1:be:fd:da:df:03:db:2e:a4:64:81:fc:d0:ba: a6:e3:ee:27:41:f6:35:74:3e:b4:ec:4a:89:f1:08: 04:75:46:5a:37:6c:bd:e4:c6:f4:38:97:71:68:92: ec:82:d7:42:b9:29:bb:a0:26:92:4d:73:8c:f1:1e: 91:2e:99:78:6b:97:bd:6e:03:eb:11:14:cd:5a:07: 65:9f:2f:92:62:e4:00:95:c2:d7:37:3b:4b:a8:2b: 39:e1:63:aa:9b:9b:84:ff:82:44:f9:81:4a:1e:8b: 4c:9b:a4:e3:21:93:4b:a9:b9:4d:d9:6b:9d:a7:ff: bd:55:fc:de:cf:e0:23:bd:5d:6b:6d:c1:d6:b1:f0: b9:71:c2:0b:10:82:61:bc:70:44:88:59:cd:c9:7c: 17:80:84:e3:4e:68:fd:ef:89:d0:95:7e:e9:87:33: 94:a1:e5:86:52:06:74:5f:2f:3c:ce:cf:b8:9a:91: aa:0b:25:ed:02:19:8b:5e:49:cf:6c:36:c4:46:92: 9a:74:7e:98:f1:f1:c7:f6:2d:d3:75:92:e2:e3:26: b9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:89:EA:B2:D7:4A:59:6E:24:70:0B:7B:0D:A3:26:7D:CD:93:88:93 X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:8d:79:33:ff:31:a2:b6:a8:16:90:e0:c1:ac:77:42:fe:dc: 35:b0:5a:21:22:91:de:89:d2:0e:6b:ec:9c:e0:da:32:11:3b: dd:23:9f:89:f9:bc:09:b4:a2:7f:b8:55:bc:da:6a:b9:9e:b8: d6:e6:66:66:77:e5:0e:e4:94:61:9d:32:cf:c8:06:47:93:b0: 11:44:76:b8:05:e0:d7:8d:bb:e5:6a:83:0d:1f:ad:3b:03:ca: 05:6c:ac:c6:74:bd:1e:92:ee:08:75:f1:3f:d8:98:8a:29:9f: c6:ed:a2:5f:f3:93:0c:ac:41:3d:a0:18:e2:63:9a:9a:d3:4c: b7:91:33:aa:57:d0:5d:aa:29:f3:3b:19:b9:72:ce:9e:89:3c: 0b:bf:78:64:7a:8c:f9:5f:4d:fd:ed:95:79:4d:c6:02:03:e4: 01:53:5c:af:0f:68:14:f8:2d:b5:64:e5:fa:bd:7c:2b:35:bd: 43:5d:7a:59:61:23:32:86:87:08:d8:92:2d:e0:5e:2d:50:55: 56:7c:7c:d7:b1:9b:7c:1b:f7:c6:9c:d9:fb:6b:07:27:ae:2e: 20:fb:cc:ac:35:24:86:5b:ad:0d:f6:52:c7:2a:29:01:0f:0e: 7d:98:c0:86:29:0f:af:ce:95:bd:54:01:8e:e8:17:de:5a:8a: 86:9d:26:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjUxMDE4MTgzNTA5WhcNMjUxMDI1MTgzNTA5WjAYMRYwFAYD VQQDEw02OGYzZGRkZC1jZmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzey1IfbIAyndU3XYK0x0U5JbSP0Q/qajob9HIWJipp/t6N90hDe9S/29l7ss ob792t8D2y6kZIH80Lqm4+4nQfY1dD607EqJ8QgEdUZaN2y95Mb0OJdxaJLsgtdC uSm7oCaSTXOM8R6RLpl4a5e9bgPrERTNWgdlny+SYuQAlcLXNztLqCs54WOqm5uE /4JE+YFKHotMm6TjIZNLqblN2Wudp/+9Vfzez+AjvV1rbcHWsfC5ccILEIJhvHBE iFnNyXwXgITjTmj974nQlX7phzOUoeWGUgZ0Xy88zs+4mpGqCyXtAhmLXknPbDbE RpKadH6Y8fHH9i3TdZLi4ya5JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmJ6rLX SlluJHALew2jJn3Nk4iTMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMjXkz/zGitqgWkODBrHdC/tw1sFohIpHeidIOa+yc4NoyETvdI5+J +bwJtKJ/uFW82mq5nrjW5mZmd+UO5JRhnTLPyAZHk7ARRHa4BeDXjbvlaoMNH607 A8oFbKzGdL0eku4IdfE/2JiKKZ/G7aJf85MMrEE9oBjiY5qa00y3kTOqV9Bdqinz Oxm5cs6eiTwLv3hkeoz5X0397ZV5TcYCA+QBU1yvD2gU+C21ZOX6vXwrNb1DXXpZ YSMyhocI2JIt4F4tUFVWfHzXsZt8G/fGnNn7awcnri4g+8ysNSSGW60N9lLHKikB Dw59mMCGKQ+vzpW9VAGO6BfeWoqGnSb+ -----END CERTIFICATE-----Generated at Mon Oct 20 04:48:43 2025 by rpki-client