$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: 3TwMxkvewsl66exiwvkIbDkoQHtUuMhZuqiJuOSIdBM= Subject key identifier: 06:39:2C:11:A7:79:60:7D:98:5A:44:E2:54:E2:AA:DE:1D:0F:26:EA Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0DB3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0D85 Signing time: Wed 02 Jul 2025 18:10:52 +0000 Manifest this update: Wed 02 Jul 2025 18:10:52 +0000 Manifest next update: Wed 09 Jul 2025 18:10:52 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: iXteqpmPM9afaGdR1koRD3asXaGrgw1QHPKoBYR2Zl8=) 2: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: u8GCpF3JjtF0fC5bHONBso6P9ZKL07gluzKPfJhmpXI=) 3: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: 9OL0Nn9V+ede9DJf9mkaMrtLaF0tRZO3OAn8HvMuFRw=) 4: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: ccQHTXT/JWlYkUSlrHBZlxj0fPuZnF/MXZqxQxgBSSk=) 5: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: JsvlnopzOaOKTX3AuOnQGEvn3QbobkZ0VGpy6s7Zufs=) 6: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: W9F0AxXLeTRt9akhBBWzGaKX1wJNYfdBQQ5r+SkSiyU=) 7: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: TgzuO7T0sgwTCl2sRbtN58HlHEFkWtWHdI30YEepdig=) 8: F2826A504FCF11EB88444467C4F9AE02.roa (hash: QqSGad7FxeptCh4lzX5ee03GteRq4SxJe8s+1HGe3x4=) 9: D0551B50046411F09760073DC4F9AE02.roa (hash: Ml6MHIFRGUbHxsyGVzTTlekIkq7JzuhUAzoayMJcf6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:10:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3507 (0xdb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Jul 2 18:10:52 2025 GMT Not After : Jul 9 18:10:52 2025 GMT Subject: CN=6865762c-40a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:39:43:ee:55:97:78:ef:32:b3:de:51:4c:a5: 56:c3:5b:48:3b:c2:be:90:4b:bc:4b:06:33:62:b4: 50:6c:2f:47:50:3b:41:8f:24:39:68:37:ec:57:52: d6:8d:48:05:bc:c1:cd:34:29:2f:6b:b6:84:6f:34: 67:e6:67:7a:d6:7e:60:51:ed:92:1f:b4:4a:3f:ca: 60:61:e9:5f:90:07:0a:39:eb:f7:10:b7:50:c6:e2: 71:9b:5f:c9:a5:6d:5e:be:3b:3f:da:8a:73:b3:62: 21:6c:b7:70:b3:a2:c1:8e:4e:31:c3:7f:4e:d4:ad: 11:1e:e9:02:a4:9a:f2:bd:10:cf:da:57:5c:3f:0e: 31:27:af:e9:49:95:88:ca:71:d3:78:fa:5c:4f:29: 04:e8:cc:b3:ec:49:09:e2:d8:7d:23:22:48:4e:74: a0:e7:14:66:f3:9d:97:fa:fa:84:e2:f4:b7:65:de: 2d:61:01:21:a1:17:61:ba:99:16:29:16:1f:6c:72: 42:46:16:5c:eb:2a:6f:71:87:c1:e2:f1:01:22:4f: 6e:fa:95:7b:cc:0f:af:40:de:7d:45:8f:f8:f5:81: e4:54:00:ad:30:c0:76:e4:73:c1:b8:40:ab:52:4c: d1:5e:d6:9c:8d:ce:60:db:46:83:42:51:c0:48:64: 89:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:39:2C:11:A7:79:60:7D:98:5A:44:E2:54:E2:AA:DE:1D:0F:26:EA X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:97:a4:34:68:bb:0e:18:2d:4c:04:86:9a:7d:b8:83:e1:ef: 1f:69:9c:60:8e:e6:b3:66:ca:ac:2d:bd:ba:c1:5f:50:ab:71: c6:fd:cd:d5:fe:8c:e3:a8:01:a3:f6:19:ec:10:e5:50:b1:b8: d5:76:a8:8a:c6:21:51:81:13:9a:15:52:e7:22:16:48:69:a6: 59:8d:93:6a:ac:1c:69:1a:f1:cd:91:38:c0:64:06:e2:1e:f4: 10:93:0d:21:40:af:d8:2c:de:a5:f6:2a:e3:c2:de:79:8b:27: db:fa:3f:82:76:43:f1:d3:43:5a:d5:23:71:38:6e:5b:c0:e9: 4f:4d:b8:72:d6:73:8f:50:f4:84:cd:19:ad:8d:59:42:b8:96: b9:50:ff:55:46:13:8b:be:f4:7b:70:8d:c0:a6:02:e2:47:a5: 80:32:99:1b:5a:1d:12:41:36:b4:22:28:f4:81:2a:a5:75:81: b0:62:9d:70:ef:85:d8:62:d2:47:98:2b:38:65:c0:aa:ed:1d: ca:78:96:e7:12:7e:dc:92:bf:f1:1d:f3:f1:eb:9f:32:c4:78: 82:aa:6a:7f:9e:f1:67:87:2b:ad:7b:7a:cd:c2:7f:92:89:a0: ff:b0:93:6b:31:e7:f5:b0:be:83:3f:3a:20:25:40:01:b2:f2: 82:5b:5a:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjUwNzAyMTgxMDUyWhcNMjUwNzA5MTgxMDUyWjAYMRYwFAYD VQQDEw02ODY1NzYyYy00MGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjlD7lWXeO8ys95RTKVWw1tIO8K+kEu8SwYzYrRQbC9HUDtBjyQ5aDfsV1LW jUgFvMHNNCkva7aEbzRn5md61n5gUe2SH7RKP8pgYelfkAcKOev3ELdQxuJxm1/J pW1evjs/2opzs2IhbLdws6LBjk4xw39O1K0RHukCpJryvRDP2ldcPw4xJ6/pSZWI ynHTePpcTykE6Myz7EkJ4th9IyJITnSg5xRm852X+vqE4vS3Zd4tYQEhoRdhupkW KRYfbHJCRhZc6ypvcYfB4vEBIk9u+pV7zA+vQN59RY/49YHkVACtMMB25HPBuECr UkzRXtacjc5g20aDQlHASGSJEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAY5LBGn eWB9mFpE4lTiqt4dDybqMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7l6Q0aLsOGC1MBIaafbiD4e8faZxgjuazZsqsLb26wV9Qq3HG/c3V /ozjqAGj9hnsEOVQsbjVdqiKxiFRgROaFVLnIhZIaaZZjZNqrBxpGvHNkTjAZAbi HvQQkw0hQK/YLN6l9irjwt55iyfb+j+CdkPx00Na1SNxOG5bwOlPTbhy1nOPUPSE zRmtjVlCuJa5UP9VRhOLvvR7cI3ApgLiR6WAMpkbWh0SQTa0Iij0gSqldYGwYp1w 74XYYtJHmCs4ZcCq7R3KeJbnEn7ckr/xHfPx658yxHiCqmp/nvFnhyute3rNwn+S iaD/sJNrMef1sL6DPzogJUABsvKCW1qW -----END CERTIFICATE-----Generated at Wed Jul 2 21:59:45 2025 by rpki-client