$ rpki-client -vvf rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft File: hkRKM0kVEhS08nEbLF2gy5nlDxM.mft (raw, json) Hash identifier: CUgPmy8EJue5YlMFL5mvJO7snqSNuKFiBmHHUo8j884= Subject key identifier: 3B:58:C6:1E:23:23:37:54:AF:DF:BE:4C:3E:D8:F7:36:5F:13:95:04 Authority key identifier: 86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 Certificate issuer: /CN=A915C48D/serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft Manifest number: 71 Signing time: Thu 03 Jul 2025 07:10:04 +0000 Manifest this update: Thu 03 Jul 2025 07:10:04 +0000 Manifest next update: Thu 10 Jul 2025 07:10:03 +0000 Files and hashes: 1: hkRKM0kVEhS08nEbLF2gy5nlDxM.crl (hash: qNwCqa8oMNGAgzQwqbNNcdEgpJSRYXceMzPYA+YBryg=) 2: DE1B9460EDF511EF86CB7315C4F9AE02.roa (hash: 1aGxRTXwu6ybjRU4JNrtMNFs2xwtsiTJtnAFcF9bvmg=) 3: 55EFA6C0ECF711EF88590A69C4F9AE02.roa (hash: FC93rdM/vdZQAg1QRdAMhOId3DELs7nG9wTwZW4DnWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C48D, serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Validity Not Before: Jul 3 07:10:04 2025 GMT Not After : Jul 10 07:10:03 2025 GMT Subject: CN=68662ccc-08ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ec:4f:f6:7e:15:00:c6:d4:0f:2d:ef:1e:a7: 31:9a:ca:df:73:d3:31:79:75:27:9e:c4:42:16:2b: 75:60:85:1a:18:bd:b9:54:b2:68:fc:6b:97:2d:47: 42:c9:e3:c4:c4:ad:55:55:48:21:bd:33:13:29:94: 27:df:08:ec:2a:a3:34:03:52:56:52:80:e3:8c:4f: 11:4b:4b:81:b4:51:d2:2e:63:03:c9:90:65:c0:15: 6c:15:60:ae:65:5f:4e:c9:15:8b:4a:30:42:c8:bb: 72:53:79:95:70:1b:5d:cf:a1:db:45:a4:34:47:ec: c8:86:0e:09:35:e7:51:36:19:d4:fa:12:0b:57:fa: 4d:ce:1f:8b:49:09:d9:e4:db:3b:e0:bc:9d:64:bb: 4b:b2:ce:11:f8:4b:cf:86:30:a5:82:06:e7:69:ad: ef:21:dc:6e:09:78:0d:a6:f0:b3:02:b1:2a:65:9a: 06:a8:95:06:f9:49:ba:54:d8:de:d9:7d:e6:fc:14: 61:b9:fb:97:52:c4:46:51:5b:60:bf:cf:4e:d6:8d: 0f:81:3f:69:15:62:cd:58:07:18:bf:c5:84:45:c4: f3:a3:e6:b8:70:78:59:a7:58:a3:a9:66:02:5b:73: c2:e0:21:65:1f:15:2b:71:54:9a:5e:28:d6:a7:c7: b3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:58:C6:1E:23:23:37:54:AF:DF:BE:4C:3E:D8:F7:36:5F:13:95:04 X509v3 Authority Key Identifier: keyid:86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:51:5f:d9:3a:f8:e1:d1:79:d9:97:fa:44:a4:ab:d0:1c:0c: ec:a7:0f:16:a3:23:c9:55:66:37:9f:74:09:06:89:dd:c5:b4: 20:28:cf:7b:2e:f4:78:e3:fc:ef:42:b0:09:85:08:b8:1d:f4: b7:7e:5c:8c:a7:63:5f:b2:d1:fb:95:80:d6:23:44:a9:72:46: 2b:85:d8:26:b8:0e:99:bf:e0:2d:33:1c:b8:ae:3e:38:66:40: 76:a5:59:92:d9:1e:a7:fa:fc:a3:0b:4c:35:c1:d6:ea:dd:ac: 49:ba:e6:7b:42:9d:cc:87:d5:28:b1:0b:4a:b9:a5:62:b4:47: ef:78:38:c6:e3:cc:3f:af:55:12:9f:98:1b:5d:40:1d:d4:1f: 87:21:9a:1e:9d:6b:5e:5b:97:3b:e3:a6:5a:de:ca:12:81:7c: c4:fd:27:19:d3:b8:ba:e2:c3:c1:70:fc:63:3d:87:a3:3a:cf: 99:3b:e0:59:8a:75:ca:4b:7c:fa:0f:8b:e1:c2:16:27:27:75: 9b:11:b9:f0:dd:3d:91:70:a9:bd:98:d2:91:3e:ab:39:b9:8c: 71:d6:66:44:ed:11:22:e7:89:85:56:ff:73:2c:90:8a:a1:50: 68:bf:e9:af:6d:15:79:59:fe:2b:49:a3:e9:d1:97:f4:f2:2a: 50:3d:27:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QzQ4RDExMC8GA1UEBRMoODY0NDRBMzM0OTE1MTIxNEI0RjI3MTFCMkM1REEwQ0I5 OUU1MEYxMzAeFw0yNTA3MDMwNzEwMDRaFw0yNTA3MTAwNzEwMDNaMBgxFjAUBgNV BAMTDTY4NjYyY2NjLTA4YmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDE7E/2fhUAxtQPLe8epzGayt9z0zF5dSeexEIWK3VghRoYvblUsmj8a5ctR0LJ 48TErVVVSCG9MxMplCffCOwqozQDUlZSgOOMTxFLS4G0UdIuYwPJkGXAFWwVYK5l X07JFYtKMELIu3JTeZVwG13PodtFpDRH7MiGDgk151E2GdT6EgtX+k3OH4tJCdnk 2zvgvJ1ku0uyzhH4S8+GMKWCBudpre8h3G4JeA2m8LMCsSplmgaolQb5SbpU2N7Z feb8FGG5+5dSxEZRW2C/z07WjQ+BP2kVYs1YBxi/xYRFxPOj5rhweFmnWKOpZgJb c8LgIWUfFStxVJpeKNanx7OdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUO1jGHiMj N1Sv375MPtj3Nl8TlQQwHwYDVR0jBBgwFoAUhkRKM0kVEhS08nEbLF2gy5nlDxMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVDNDhELzBDMjE1OEIyQjJD OTExRUY5MDNGNzg4M0M0RjlBRTAyL2hrUktNMGtWRWhTMDhuRWJMRjJneTVubER4 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGtSS00wa1ZFaFMwOG5FYkxGMmd5NW5sRHhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVD NDhELzBDMjE1OEIyQjJDOTExRUY5MDNGNzg4M0M0RjlBRTAyL2hrUktNMGtWRWhT MDhuRWJMRjJneTVubER4TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG5RX9k6+OHRedmX+kSkq9AcDOynDxajI8lVZjefdAkGid3FtCAoz3su 9Hjj/O9CsAmFCLgd9Ld+XIynY1+y0fuVgNYjRKlyRiuF2Ca4Dpm/4C0zHLiuPjhm QHalWZLZHqf6/KMLTDXB1urdrEm65ntCncyH1SixC0q5pWK0R+94OMbjzD+vVRKf mBtdQB3UH4chmh6da15blzvjplreyhKBfMT9JxnTuLriw8Fw/GM9h6M6z5k74FmK dcpLfPoPi+HCFicndZsRufDdPZFwqb2Y0pE+qzm5jHHWZkTtESLniYVW/3MskIqh UGi/6a9tFXlZ/itJo+nRl/TyKlA9J9o= -----END CERTIFICATE-----Generated at Thu Jul 3 11:27:13 2025 by rpki-client