$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: HNhdy9jbr/bnhcU+4jgpTH6Ex5kzdUNyIdNKGhNAUCU= Subject key identifier: FB:4D:95:2B:37:F9:06:76:99:AF:03:08:73:B9:5D:04:B4:06:77:6C Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0DC6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0D98 Signing time: Fri 08 Aug 2025 18:09:46 +0000 Manifest this update: Fri 08 Aug 2025 18:09:45 +0000 Manifest next update: Fri 15 Aug 2025 18:09:45 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: aa+m2trsWifZ8jmpXjOUnzh29+gHeYbaFeCBVfFnNX0=) 2: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: u8GCpF3JjtF0fC5bHONBso6P9ZKL07gluzKPfJhmpXI=) 3: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: 9OL0Nn9V+ede9DJf9mkaMrtLaF0tRZO3OAn8HvMuFRw=) 4: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: ccQHTXT/JWlYkUSlrHBZlxj0fPuZnF/MXZqxQxgBSSk=) 5: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: JsvlnopzOaOKTX3AuOnQGEvn3QbobkZ0VGpy6s7Zufs=) 6: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: W9F0AxXLeTRt9akhBBWzGaKX1wJNYfdBQQ5r+SkSiyU=) 7: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: TgzuO7T0sgwTCl2sRbtN58HlHEFkWtWHdI30YEepdig=) 8: D0551B50046411F09760073DC4F9AE02.roa (hash: Ml6MHIFRGUbHxsyGVzTTlekIkq7JzuhUAzoayMJcf6g=) 9: F2826A504FCF11EB88444467C4F9AE02.roa (hash: QqSGad7FxeptCh4lzX5ee03GteRq4SxJe8s+1HGe3x4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3526 (0xdc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Aug 8 18:09:45 2025 GMT Not After : Aug 15 18:09:45 2025 GMT Subject: CN=68963d69-2b75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a2:78:eb:dc:b6:0c:31:ec:05:1c:c0:d7:81: ff:17:81:ff:6c:89:2e:0a:17:53:f1:60:dd:af:9a: cf:08:cd:1e:dc:b7:ab:ea:1d:57:39:86:b0:a4:13: 58:60:de:77:3e:94:1a:ab:1d:0d:d8:f1:a7:c8:7d: 60:26:5f:d1:7c:21:29:5e:43:db:0d:28:74:bf:5d: ab:94:6b:22:a6:d6:cb:8e:30:06:78:dd:04:1d:ae: 20:68:cc:ae:f3:6e:e2:43:ce:53:96:83:a4:58:cc: 4f:70:96:3b:9f:c1:4d:e9:9a:96:7a:58:46:d5:66: 43:17:09:0c:e7:35:04:09:59:c2:9b:89:2c:4a:78: 54:31:b8:20:29:f5:ca:e6:67:1b:ef:a1:bd:13:a7: 45:63:72:e3:37:a1:d3:44:26:88:f4:ce:fc:43:73: fb:f3:1d:ef:9a:bd:c1:2b:10:05:91:28:33:ad:69: 86:39:1d:32:c7:0d:b0:75:5a:6c:74:22:e9:0d:d0: ec:64:bb:ba:20:4c:d2:48:23:78:fb:11:99:61:0a: a3:21:aa:02:53:a5:25:dc:9d:96:a9:07:78:7a:3a: f6:af:01:2a:7e:10:2f:0b:78:36:9d:f2:21:d8:94: 97:58:8d:70:6e:1f:59:09:c6:b1:9d:f1:23:63:d9: a1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:4D:95:2B:37:F9:06:76:99:AF:03:08:73:B9:5D:04:B4:06:77:6C X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:40:ee:eb:2e:0b:e5:8e:00:3d:ab:fd:9d:0c:6e:65:aa:05: 96:ba:d7:f3:45:75:20:47:65:9e:33:04:75:c7:2a:3c:c3:97: 9d:5f:a0:ee:88:f5:fe:f2:2f:e6:db:36:bb:09:53:25:1d:31: 56:dd:0d:34:b4:41:9a:4d:79:f5:f4:35:1d:e2:56:47:41:b8: 9c:e8:44:b5:88:bd:4c:ec:1c:84:c9:c0:92:b8:ef:b9:e1:d8: d2:c6:3d:ca:2b:92:08:c8:bd:85:62:76:e8:3e:b0:91:7a:f1: c7:f0:4b:e1:54:14:be:1a:0d:f0:a5:95:76:ce:90:10:36:18: 3d:95:0c:42:8c:2b:8b:1e:5c:1b:0e:24:51:1c:76:69:1d:73: 29:71:c6:85:cf:4a:83:d8:a1:ef:a1:5f:90:89:10:f6:b9:b5: 76:f0:ad:fe:b7:de:ea:35:8a:ac:c3:6a:80:f9:bd:93:25:d2: b5:12:55:03:0d:08:dc:b3:a3:e0:5a:27:be:59:1b:af:8f:9e: ca:92:4a:fd:87:2f:14:60:3c:fc:34:7b:85:9f:c9:90:24:cd: 28:e1:e1:77:ee:f2:ac:cd:85:c4:c1:be:2b:eb:0a:0d:20:c2: 75:e5:93:92:36:05:e3:b8:e8:66:2f:bc:84:c6:ac:58:b4:2f: 47:cd:c2:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjUwODA4MTgwOTQ1WhcNMjUwODE1MTgwOTQ1WjAYMRYwFAYD VQQDEw02ODk2M2Q2OS0yYjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6J469y2DDHsBRzA14H/F4H/bIkuChdT8WDdr5rPCM0e3Ler6h1XOYawpBNY YN53PpQaqx0N2PGnyH1gJl/RfCEpXkPbDSh0v12rlGsiptbLjjAGeN0EHa4gaMyu 827iQ85TloOkWMxPcJY7n8FN6ZqWelhG1WZDFwkM5zUECVnCm4ksSnhUMbggKfXK 5mcb76G9E6dFY3LjN6HTRCaI9M78Q3P78x3vmr3BKxAFkSgzrWmGOR0yxw2wdVps dCLpDdDsZLu6IEzSSCN4+xGZYQqjIaoCU6Ul3J2WqQd4ejr2rwEqfhAvC3g2nfIh 2JSXWI1wbh9ZCcaxnfEjY9mhCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPtNlSs3 +QZ2ma8DCHO5XQS0BndsMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZQO7rLgvljgA9q/2dDG5lqgWWutfzRXUgR2WeMwR1xyo8w5edX6Du iPX+8i/m2za7CVMlHTFW3Q00tEGaTXn19DUd4lZHQbic6ES1iL1M7ByEycCSuO+5 4djSxj3KK5IIyL2FYnboPrCRevHH8EvhVBS+Gg3wpZV2zpAQNhg9lQxCjCuLHlwb DiRRHHZpHXMpccaFz0qD2KHvoV+QiRD2ubV28K3+t97qNYqsw2qA+b2TJdK1ElUD DQjcs6PgWie+WRuvj57Kkkr9hy8UYDz8NHuFn8mQJM0o4eF37vKszYXEwb4r6woN IMJ15ZOSNgXjuOhmL7yExqxYtC9HzcIr -----END CERTIFICATE-----Generated at Sat Aug 9 15:11:54 2025 by rpki-client