$ rpki-client -vvf rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft File: hkRKM0kVEhS08nEbLF2gy5nlDxM.mft (raw, json) Hash identifier: J/Anol8sGY8ZGfh43GAkken74jA2L2wlzVqCI9f6SR4= Subject key identifier: D5:CC:34:B4:84:F6:68:73:CE:44:CF:C5:6A:22:1F:77:05:E6:6F:27 Authority key identifier: 86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 Certificate issuer: /CN=A915C48D/serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft Manifest number: 59 Signing time: Thu 15 May 2025 06:31:35 +0000 Manifest this update: Thu 15 May 2025 06:31:34 +0000 Manifest next update: Thu 22 May 2025 06:31:34 +0000 Files and hashes: 1: hkRKM0kVEhS08nEbLF2gy5nlDxM.crl (hash: pd1rItEOIw9/gct/ATr3nxlvSkQTGZyv0jy66WaMMgM=) 2: DE1B9460EDF511EF86CB7315C4F9AE02.roa (hash: 1aGxRTXwu6ybjRU4JNrtMNFs2xwtsiTJtnAFcF9bvmg=) 3: 55EFA6C0ECF711EF88590A69C4F9AE02.roa (hash: FC93rdM/vdZQAg1QRdAMhOId3DELs7nG9wTwZW4DnWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:31:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C48D, serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Validity Not Before: May 15 06:31:34 2025 GMT Not After : May 22 06:31:34 2025 GMT Subject: CN=68258a47-8750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cd:4b:bf:af:a2:cf:b4:73:e6:05:0b:f1:82: 67:2f:6c:e1:e4:90:f7:08:61:7f:e4:6b:27:10:a0: c8:d7:56:86:74:e4:8e:f5:c8:e2:b6:b4:d9:13:f9: 15:33:71:82:96:cb:00:4c:06:0f:21:d4:8a:77:ba: 58:3f:72:69:ea:3a:2e:59:01:b4:a1:3b:88:cc:83: 61:b7:f0:57:84:3b:68:aa:bd:16:de:5a:d4:02:67: 37:34:2c:0f:cc:68:71:63:4d:2c:f7:c4:da:b3:ef: f3:c3:dc:42:b5:99:63:be:11:b6:5d:5b:5f:f1:51: 49:72:ea:d3:d7:25:48:ec:12:a2:4b:8d:34:ab:04: 65:b2:ca:c1:50:21:e9:16:c1:d5:43:1f:1d:b7:28: 14:11:1c:2f:57:aa:57:38:e9:02:09:8a:44:45:9b: 62:9c:6d:e3:a8:1f:b2:7e:a3:7f:25:e1:f7:cc:f9: d6:83:51:76:1a:e8:80:c2:9d:57:ba:72:f8:12:e2: d6:a6:47:ac:86:d9:f7:dc:af:1a:63:97:49:aa:66: e1:a7:90:21:3a:0a:88:0f:8c:cf:f6:4f:05:fc:fa: ac:0c:3f:9c:7b:1f:2c:c6:63:6d:b6:bc:b9:1c:96: 49:14:f0:1e:a9:c7:19:69:8f:b4:53:07:da:95:37: 42:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:CC:34:B4:84:F6:68:73:CE:44:CF:C5:6A:22:1F:77:05:E6:6F:27 X509v3 Authority Key Identifier: keyid:86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:aa:b4:90:ed:1b:f4:d9:84:29:b6:8f:02:30:74:48:2a:45: 11:94:a3:5e:07:5d:3b:26:e6:4e:38:14:c2:22:d8:4d:b6:91: be:f0:10:47:2c:ac:7f:7c:84:bc:5e:e9:3c:a7:d4:01:e6:6e: 04:73:3c:20:14:f9:db:6c:88:03:86:6d:ed:ad:01:30:f7:de: b3:62:e1:91:0b:b5:82:83:62:9e:d3:6d:4f:85:97:86:6a:a3: 23:58:10:b8:7b:d1:96:7d:80:67:f2:bb:62:5e:16:0d:68:ab: 77:0e:84:7d:97:b8:fe:13:d0:53:6f:6c:23:fa:6e:d0:ae:38: c3:37:3f:ec:7b:2e:dd:6c:a8:2d:d1:2b:81:06:8d:5e:90:ed: 18:91:8e:90:94:48:f6:3d:fe:09:d7:ae:2a:e6:a7:58:11:28: 25:b8:3e:c3:8c:26:07:bc:fa:44:01:54:99:b5:7f:a2:c3:78: 64:1d:09:1d:2c:9c:cd:14:25:68:e1:c6:c1:9a:c0:24:38:95: 2e:06:fb:fa:fc:65:75:69:6c:93:fb:66:48:59:eb:28:04:e3: c9:47:b1:7c:70:96:b7:0f:60:74:bf:34:42:0e:e3:33:f2:13: 3f:ef:81:96:4d:97:92:4f:5c:51:04:d1:7e:5d:44:ed:cd:b0: 1b:7d:77:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QzQ4RDExMC8GA1UEBRMoODY0NDRBMzM0OTE1MTIxNEI0RjI3MTFCMkM1REEwQ0I5 OUU1MEYxMzAeFw0yNTA1MTUwNjMxMzRaFw0yNTA1MjIwNjMxMzRaMBgxFjAUBgNV BAMTDTY4MjU4YTQ3LTg3NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyzUu/r6LPtHPmBQvxgmcvbOHkkPcIYX/kaycQoMjXVoZ05I71yOK2tNkT+RUz cYKWywBMBg8h1Ip3ulg/cmnqOi5ZAbShO4jMg2G38FeEO2iqvRbeWtQCZzc0LA/M aHFjTSz3xNqz7/PD3EK1mWO+EbZdW1/xUUly6tPXJUjsEqJLjTSrBGWyysFQIekW wdVDHx23KBQRHC9Xqlc46QIJikRFm2KcbeOoH7J+o38l4ffM+daDUXYa6IDCnVe6 cvgS4tamR6yG2ffcrxpjl0mqZuGnkCE6CogPjM/2TwX8+qwMP5x7HyzGY222vLkc lkkU8B6pxxlpj7RTB9qVN0IpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1cw0tIT2 aHPORM/FaiIfdwXmbycwHwYDVR0jBBgwFoAUhkRKM0kVEhS08nEbLF2gy5nlDxMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVDNDhELzBDMjE1OEIyQjJD OTExRUY5MDNGNzg4M0M0RjlBRTAyL2hrUktNMGtWRWhTMDhuRWJMRjJneTVubER4 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGtSS00wa1ZFaFMwOG5FYkxGMmd5NW5sRHhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVD NDhELzBDMjE1OEIyQjJDOTExRUY5MDNGNzg4M0M0RjlBRTAyL2hrUktNMGtWRWhT MDhuRWJMRjJneTVubER4TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAWqtJDtG/TZhCm2jwIwdEgqRRGUo14HXTsm5k44FMIi2E22kb7wEEcs rH98hLxe6Tyn1AHmbgRzPCAU+dtsiAOGbe2tATD33rNi4ZELtYKDYp7TbU+Fl4Zq oyNYELh70ZZ9gGfyu2JeFg1oq3cOhH2XuP4T0FNvbCP6btCuOMM3P+x7Lt1sqC3R K4EGjV6Q7RiRjpCUSPY9/gnXrirmp1gRKCW4PsOMJge8+kQBVJm1f6LDeGQdCR0s nM0UJWjhxsGawCQ4lS4G+/r8ZXVpbJP7ZkhZ6ygE48lHsXxwlrcPYHS/NEIO4zPy Ez/vgZZNl5JPXFEE0X5dRO3NsBt9d3E= -----END CERTIFICATE-----Generated at Fri May 16 20:59:07 2025 by rpki-client