$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: SXH9twR6AAHJ+i0dCr2Zz9/rt2DYIEATqRvwvM9+yQ4= Subject key identifier: 64:EE:BB:69:9B:01:9E:DF:20:EB:8A:19:F6:E4:07:12:0D:C6:E4:E2 Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0D9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0D6C Signing time: Mon 12 May 2025 17:52:39 +0000 Manifest this update: Mon 12 May 2025 17:52:38 +0000 Manifest next update: Mon 19 May 2025 17:52:38 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: o8wwxFrLd6ViDBJ57IVePwfUuk0Y2wjUjU2Sv1WJJ3U=) 2: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: u8GCpF3JjtF0fC5bHONBso6P9ZKL07gluzKPfJhmpXI=) 3: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: 9OL0Nn9V+ede9DJf9mkaMrtLaF0tRZO3OAn8HvMuFRw=) 4: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: ccQHTXT/JWlYkUSlrHBZlxj0fPuZnF/MXZqxQxgBSSk=) 5: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: JsvlnopzOaOKTX3AuOnQGEvn3QbobkZ0VGpy6s7Zufs=) 6: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: W9F0AxXLeTRt9akhBBWzGaKX1wJNYfdBQQ5r+SkSiyU=) 7: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: TgzuO7T0sgwTCl2sRbtN58HlHEFkWtWHdI30YEepdig=) 8: F2826A504FCF11EB88444467C4F9AE02.roa (hash: QqSGad7FxeptCh4lzX5ee03GteRq4SxJe8s+1HGe3x4=) 9: D0551B50046411F09760073DC4F9AE02.roa (hash: Ml6MHIFRGUbHxsyGVzTTlekIkq7JzuhUAzoayMJcf6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3482 (0xd9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: May 12 17:52:38 2025 GMT Not After : May 19 17:52:38 2025 GMT Subject: CN=68223567-c713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1d:1f:c6:0d:b7:53:d7:b6:2a:39:d9:de:c5: 30:e4:95:71:cd:2d:1d:7b:d8:01:f4:9d:61:ac:f0: ff:05:31:82:1f:2a:6f:78:50:33:33:a4:20:49:fa: f3:bc:50:ac:7e:74:bf:bd:8c:4c:81:1c:e9:e8:e2: f4:09:42:b4:35:d5:bc:a9:b0:42:31:dd:a3:dd:fe: 1b:17:51:3b:df:3a:b6:0b:b2:4b:da:9f:bd:35:80: 02:bd:3c:34:0e:3d:63:93:0d:2a:c1:bc:3d:ba:4f: 83:28:69:73:cb:9c:da:ee:cf:43:a7:7d:80:c5:09: 5b:e8:30:05:c9:c7:79:5f:58:79:c0:46:a4:6c:aa: fc:cd:8b:cc:4e:6e:ad:79:0c:8f:41:96:ef:8b:8c: 2b:15:50:3d:84:da:79:19:47:a2:29:a9:10:aa:63: fb:b1:fb:6a:76:94:8a:b6:60:69:c6:b7:2a:10:f6: 63:6e:fd:7a:86:0c:55:d8:60:9a:32:ee:57:d7:37: 3a:53:26:3e:62:f9:95:c5:d0:59:a8:2d:8f:b9:29: 65:03:12:6f:73:88:bc:53:59:c3:84:3a:e9:b6:ba: 49:9c:7c:8c:76:f6:31:ea:50:ae:bd:a8:1c:16:b1: 39:26:c1:18:e7:3a:d3:9e:21:a2:80:fe:76:2c:62: 50:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:EE:BB:69:9B:01:9E:DF:20:EB:8A:19:F6:E4:07:12:0D:C6:E4:E2 X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:a5:15:13:bb:4d:f7:20:c6:20:31:9a:1b:6c:cf:f5:ce:14: e3:00:eb:4c:53:22:f2:a0:6d:8e:29:90:4e:da:a4:e9:58:d7: 26:99:ba:3a:80:36:aa:44:dc:9c:c7:fb:56:db:bf:af:65:37: 7b:4c:90:23:06:ec:71:d3:d3:a8:5d:b5:4c:b0:9e:6c:0e:4e: b6:5d:ad:0f:c8:78:1b:27:5f:cb:fa:ad:eb:88:90:68:3c:67: 34:36:7e:0c:94:2e:83:16:1d:6e:6b:21:56:dc:c6:bf:a6:43: 40:de:69:db:7f:04:25:73:15:f9:51:c1:98:f1:a7:f7:72:35: 69:b4:f7:84:7f:c9:b5:7a:c4:d5:69:f3:6f:bf:99:7f:82:57: 98:2b:17:52:0c:c8:f3:51:3c:a5:e0:4e:c4:f0:39:0a:6b:19: 0c:8b:10:0a:10:7e:fa:4b:0e:53:93:0c:7e:24:58:1b:48:23: 2e:74:32:6d:0b:59:20:74:71:1e:76:13:fb:b6:0a:b2:56:05: 06:7e:2e:ce:4c:95:95:dd:47:27:25:bf:4a:74:b9:50:5a:61: d0:61:6e:20:62:eb:60:88:6c:5f:f2:29:6e:f5:b1:2a:15:c6: be:c3:ab:fd:9f:72:84:09:f6:7a:08:ae:56:15:40:9e:c9:73: cc:84:bb:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjUwNTEyMTc1MjM4WhcNMjUwNTE5MTc1MjM4WjAYMRYwFAYD VQQDEw02ODIyMzU2Ny1jNzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArh0fxg23U9e2KjnZ3sUw5JVxzS0de9gB9J1hrPD/BTGCHypveFAzM6QgSfrz vFCsfnS/vYxMgRzp6OL0CUK0NdW8qbBCMd2j3f4bF1E73zq2C7JL2p+9NYACvTw0 Dj1jkw0qwbw9uk+DKGlzy5za7s9Dp32AxQlb6DAFycd5X1h5wEakbKr8zYvMTm6t eQyPQZbvi4wrFVA9hNp5GUeiKakQqmP7sftqdpSKtmBpxrcqEPZjbv16hgxV2GCa Mu5X1zc6UyY+YvmVxdBZqC2PuSllAxJvc4i8U1nDhDrptrpJnHyMdvYx6lCuvagc FrE5JsEY5zrTniGigP52LGJQDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTuu2mb AZ7fIOuKGfbkBxINxuTiMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIpRUTu033IMYgMZobbM/1zhTjAOtMUyLyoG2OKZBO2qTpWNcmmbo6 gDaqRNycx/tW27+vZTd7TJAjBuxx09OoXbVMsJ5sDk62Xa0PyHgbJ1/L+q3riJBo PGc0Nn4MlC6DFh1uayFW3Ma/pkNA3mnbfwQlcxX5UcGY8af3cjVptPeEf8m1esTV afNvv5l/gleYKxdSDMjzUTyl4E7E8DkKaxkMixAKEH76Sw5Tkwx+JFgbSCMudDJt C1kgdHEedhP7tgqyVgUGfi7OTJWV3UcnJb9KdLlQWmHQYW4gYutgiGxf8ilu9bEq Fca+w6v9n3KECfZ6CK5WFUCeyXPMhLs1 -----END CERTIFICATE-----Generated at Tue May 13 11:35:02 2025 by rpki-client