$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: 56MLRXlQUJ07cJD9WoQzJ6waa448358FSbi/3rm0Gqk= Subject key identifier: DD:39:6F:56:D6:58:2A:9E:17:BA:2F:73:B1:D8:3A:90:89:5D:9D:3A Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0DAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0D7E Signing time: Wed 18 Jun 2025 17:54:55 +0000 Manifest this update: Wed 18 Jun 2025 17:54:54 +0000 Manifest next update: Wed 25 Jun 2025 17:54:54 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: Uu0h+CSY2QqQpJJ/h/sc/hvV1fcNdExVwGMUG0Y8zcs=) 2: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: u8GCpF3JjtF0fC5bHONBso6P9ZKL07gluzKPfJhmpXI=) 3: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: 9OL0Nn9V+ede9DJf9mkaMrtLaF0tRZO3OAn8HvMuFRw=) 4: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: ccQHTXT/JWlYkUSlrHBZlxj0fPuZnF/MXZqxQxgBSSk=) 5: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: JsvlnopzOaOKTX3AuOnQGEvn3QbobkZ0VGpy6s7Zufs=) 6: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: W9F0AxXLeTRt9akhBBWzGaKX1wJNYfdBQQ5r+SkSiyU=) 7: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: TgzuO7T0sgwTCl2sRbtN58HlHEFkWtWHdI30YEepdig=) 8: F2826A504FCF11EB88444467C4F9AE02.roa (hash: QqSGad7FxeptCh4lzX5ee03GteRq4SxJe8s+1HGe3x4=) 9: D0551B50046411F09760073DC4F9AE02.roa (hash: Ml6MHIFRGUbHxsyGVzTTlekIkq7JzuhUAzoayMJcf6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:54:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3500 (0xdac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Jun 18 17:54:54 2025 GMT Not After : Jun 25 17:54:54 2025 GMT Subject: CN=6852fd6f-8599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:71:01:4b:7a:91:1c:64:31:52:3a:f0:79:21: 82:06:9d:98:6d:26:7f:80:f1:05:d9:f6:82:f9:5b: 77:a9:e5:5f:7a:7e:8f:11:3a:3a:1a:2c:d6:40:2a: 35:5e:a9:d3:06:23:98:52:a0:47:82:04:a7:9d:f0: 19:71:4a:6b:c0:fd:5a:2c:f8:32:f1:1f:aa:9d:89: 85:75:2b:42:22:ba:ee:df:df:51:b1:e4:4f:af:a9: 3d:2e:35:45:06:13:7b:91:2e:ce:2a:fb:18:4a:86: 92:b2:c5:da:6c:f6:6c:36:67:3f:e7:3b:ad:5a:99: 6c:0a:5f:b4:aa:11:70:23:19:c8:2d:06:b2:74:c7: 32:3a:6d:b1:fc:5f:95:31:96:d9:e6:c7:96:8d:cf: 5e:c9:82:d8:99:e5:64:b4:0f:3f:25:1a:c8:aa:d7: 0b:38:e7:66:06:5c:30:53:1a:ee:cb:ac:ad:77:77: f6:de:52:79:fc:fe:18:c9:cd:48:2b:70:e9:9c:49: 52:87:61:85:e5:68:d2:e9:d6:6e:b2:04:78:5b:9a: 3f:6b:9e:8f:cb:05:9d:7b:26:7e:c8:59:32:f0:28: f5:34:cd:e1:2f:95:9e:1b:07:89:57:65:89:94:d8: ec:3f:92:95:c6:43:65:5f:80:e5:1e:e4:63:54:5d: e1:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:39:6F:56:D6:58:2A:9E:17:BA:2F:73:B1:D8:3A:90:89:5D:9D:3A X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:da:98:26:be:08:d4:c2:03:dd:a9:01:bf:c7:7d:ec:ca:8d: b0:c1:2c:50:9c:a9:61:43:1c:61:c7:85:01:eb:0f:a0:75:1d: e6:36:0b:96:d0:cc:27:22:35:e9:f3:07:66:0c:1f:b9:89:f7: b5:0f:ff:b9:86:6b:7b:9f:3b:48:1c:ff:f3:fd:75:24:5c:ff: 02:1a:68:c4:51:90:ab:89:a2:1c:1d:18:f8:ac:ca:fa:6b:06: 68:9f:cf:f6:9e:38:a5:83:33:d2:80:e3:a2:50:66:16:10:5a: 55:67:27:9c:55:6c:42:5f:78:7d:7e:69:fa:c6:98:45:e4:b1: 0a:d4:4a:fa:aa:7d:4d:89:76:1b:a1:a4:13:de:e1:65:a8:d2: 47:7e:05:54:aa:6f:26:5f:0f:f6:9d:02:d7:5d:81:9d:43:f1: 50:c3:f0:d4:99:a4:61:1b:26:3f:84:4d:5c:12:bb:ea:09:69: ac:c8:e6:67:94:05:47:07:0f:16:35:dd:48:ce:a6:48:72:43: 7c:96:07:87:8b:1c:cf:34:47:55:cd:8c:b0:50:3a:b8:32:d0: b6:50:f6:53:33:d0:d4:41:eb:f9:15:6e:6f:0b:9b:05:1b:b6: bf:4b:6c:93:97:a6:4f:9e:3c:ea:22:c3:f3:22:ce:e5:ce:12: c2:c7:c5:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjUwNjE4MTc1NDU0WhcNMjUwNjI1MTc1NDU0WjAYMRYwFAYD VQQDEw02ODUyZmQ2Zi04NTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXEBS3qRHGQxUjrweSGCBp2YbSZ/gPEF2faC+Vt3qeVfen6PETo6GizWQCo1 XqnTBiOYUqBHggSnnfAZcUprwP1aLPgy8R+qnYmFdStCIrru399RseRPr6k9LjVF BhN7kS7OKvsYSoaSssXabPZsNmc/5zutWplsCl+0qhFwIxnILQaydMcyOm2x/F+V MZbZ5seWjc9eyYLYmeVktA8/JRrIqtcLOOdmBlwwUxruy6ytd3f23lJ5/P4Yyc1I K3DpnElSh2GF5WjS6dZusgR4W5o/a56PywWdeyZ+yFky8Cj1NM3hL5WeGweJV2WJ lNjsP5KVxkNlX4DlHuRjVF3hEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN05b1bW WCqeF7ovc7HYOpCJXZ06MB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu2pgmvgjUwgPdqQG/x33syo2wwSxQnKlhQxxhx4UB6w+gdR3mNguW 0MwnIjXp8wdmDB+5ife1D/+5hmt7nztIHP/z/XUkXP8CGmjEUZCriaIcHRj4rMr6 awZon8/2njilgzPSgOOiUGYWEFpVZyecVWxCX3h9fmn6xphF5LEK1Er6qn1NiXYb oaQT3uFlqNJHfgVUqm8mXw/2nQLXXYGdQ/FQw/DUmaRhGyY/hE1cErvqCWmsyOZn lAVHBw8WNd1IzqZIckN8lgeHixzPNEdVzYywUDq4MtC2UPZTM9DUQev5FW5vC5sF G7a/S2yTl6ZPnjzqIsPzIs7lzhLCx8V4 -----END CERTIFICATE-----Generated at Thu Jun 19 03:33:03 2025 by rpki-client