$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: Ava0vYkuus30R7Cy8eRb7N9lIY7mHipjel4h+XX3LuI= Subject key identifier: 45:D4:DC:66:6A:B7:24:80:39:70:B9:FC:5C:9A:3A:82:F7:24:DF:4E Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0DCD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0D9F Signing time: Fri 22 Aug 2025 18:03:35 +0000 Manifest this update: Fri 22 Aug 2025 18:03:34 +0000 Manifest next update: Fri 29 Aug 2025 18:03:34 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: oBa3OBerwlFSSkklHKmGZhGqM1Ru0BHiAxXwFUfiKF8=) 2: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: u8GCpF3JjtF0fC5bHONBso6P9ZKL07gluzKPfJhmpXI=) 3: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: 9OL0Nn9V+ede9DJf9mkaMrtLaF0tRZO3OAn8HvMuFRw=) 4: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: ccQHTXT/JWlYkUSlrHBZlxj0fPuZnF/MXZqxQxgBSSk=) 5: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: JsvlnopzOaOKTX3AuOnQGEvn3QbobkZ0VGpy6s7Zufs=) 6: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: W9F0AxXLeTRt9akhBBWzGaKX1wJNYfdBQQ5r+SkSiyU=) 7: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: TgzuO7T0sgwTCl2sRbtN58HlHEFkWtWHdI30YEepdig=) 8: D0551B50046411F09760073DC4F9AE02.roa (hash: Ml6MHIFRGUbHxsyGVzTTlekIkq7JzuhUAzoayMJcf6g=) 9: F2826A504FCF11EB88444467C4F9AE02.roa (hash: QqSGad7FxeptCh4lzX5ee03GteRq4SxJe8s+1HGe3x4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3533 (0xdcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Aug 22 18:03:34 2025 GMT Not After : Aug 29 18:03:34 2025 GMT Subject: CN=68a8b0f6-6673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:dd:ea:05:17:6f:7d:d1:93:9c:c0:88:81:76: d3:30:57:d5:dc:a8:e2:3a:78:67:4d:68:93:3d:aa: 80:f2:c7:fa:31:bc:62:41:87:b3:f5:82:0b:6c:fc: 32:46:86:e3:1b:86:f6:49:4d:03:d1:6d:56:df:e8: ae:c5:da:e0:36:13:b3:5e:83:95:bc:b8:93:a8:bf: 4b:f4:66:3b:58:5d:1c:f8:0d:a1:ae:c4:6d:d7:6c: 1d:f7:bb:70:94:8a:4e:83:98:cb:6d:0c:c3:ec:69: bd:d3:40:8f:12:a7:7e:df:4a:7b:c8:79:ae:e4:f5: 82:6a:d5:66:3a:2b:59:a0:f0:51:aa:ca:42:af:b4: 02:e4:db:1c:35:8e:54:cd:de:48:39:20:78:8e:06: 45:5f:0a:ef:b2:bd:b1:da:5c:d1:0c:41:72:8b:c2: 83:fb:62:51:dd:48:c0:b2:cb:e7:05:f4:c9:8d:bc: d8:e0:26:08:8d:81:c0:0b:ab:ab:9f:b9:d3:f6:0d: 0b:77:06:8c:46:89:3b:75:66:1c:27:91:0d:7c:ff: a6:31:6d:8b:bd:d3:82:7c:2b:50:4c:34:64:3b:90: 2c:a2:bd:54:9c:d3:54:c1:1e:bf:74:8b:98:42:0d: ce:d0:f0:23:37:0f:08:87:26:fc:97:40:46:47:2f: 60:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D4:DC:66:6A:B7:24:80:39:70:B9:FC:5C:9A:3A:82:F7:24:DF:4E X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:5d:f1:80:d1:0f:b9:34:4f:72:13:4e:52:58:17:2f:e3:13: 94:c9:b0:70:4f:19:fd:74:eb:d9:7a:cf:e9:9b:81:42:89:61: 70:64:75:19:96:a0:5a:c7:54:aa:2b:e2:84:78:ac:b6:95:b7: 25:90:1b:7f:21:b7:64:98:d5:45:1d:1b:45:30:ad:94:62:c8: 34:36:0a:2c:66:5f:ee:23:11:41:40:92:14:78:34:7d:73:73: c7:cc:6a:26:1e:0f:7b:fb:d9:1f:ac:03:a1:3d:3b:73:2c:86: 5e:ce:02:3f:8a:3d:bc:7e:00:74:a3:08:a3:bf:70:bc:7a:f3: ee:c6:b2:94:ac:3a:c2:5a:7a:71:dd:14:46:09:53:cb:07:be: 09:ab:1d:a7:a3:a1:09:b4:66:6e:b0:ce:d2:a2:1e:1d:3a:fa: 36:8f:2c:e2:84:98:6a:6a:74:56:a8:fa:31:12:b7:c9:4a:1d: c9:97:0c:17:67:0f:ae:f4:5d:c1:91:09:45:7a:04:b4:8d:e3: 6d:74:ee:73:3f:7b:29:f4:0a:b7:d4:62:0b:8b:21:af:d5:ac: 25:37:cc:a3:45:89:9d:d1:4e:f4:49:9a:16:b8:2a:db:3e:86: bc:13:ec:06:df:3f:43:04:20:8b:b4:32:b0:82:74:0c:02:22: 2b:da:a6:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjUwODIyMTgwMzM0WhcNMjUwODI5MTgwMzM0WjAYMRYwFAYD VQQDEw02OGE4YjBmNi02NjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsd3qBRdvfdGTnMCIgXbTMFfV3KjiOnhnTWiTPaqA8sf6MbxiQYez9YILbPwy RobjG4b2SU0D0W1W3+iuxdrgNhOzXoOVvLiTqL9L9GY7WF0c+A2hrsRt12wd97tw lIpOg5jLbQzD7Gm900CPEqd+30p7yHmu5PWCatVmOitZoPBRqspCr7QC5NscNY5U zd5IOSB4jgZFXwrvsr2x2lzRDEFyi8KD+2JR3UjAssvnBfTJjbzY4CYIjYHAC6ur n7nT9g0LdwaMRok7dWYcJ5ENfP+mMW2LvdOCfCtQTDRkO5Asor1UnNNUwR6/dIuY Qg3O0PAjNw8Ihyb8l0BGRy9gaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXU3GZq tySAOXC5/FyaOoL3JN9OMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOXfGA0Q+5NE9yE05SWBcv4xOUybBwTxn9dOvZes/pm4FCiWFwZHUZ lqBax1SqK+KEeKy2lbclkBt/IbdkmNVFHRtFMK2UYsg0NgosZl/uIxFBQJIUeDR9 c3PHzGomHg97+9kfrAOhPTtzLIZezgI/ij28fgB0owijv3C8evPuxrKUrDrCWnpx 3RRGCVPLB74Jqx2no6EJtGZusM7Soh4dOvo2jyzihJhqanRWqPoxErfJSh3JlwwX Zw+u9F3BkQlFegS0jeNtdO5zP3sp9Aq31GILiyGv1awlN8yjRYmd0U70SZoWuCrb Poa8E+wG3z9DBCCLtDKwgnQMAiIr2qb6 -----END CERTIFICATE-----Generated at Sat Aug 23 21:27:07 2025 by rpki-client