$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: 8C+Ch5a194oglwTyoAxSy7aoBi/eAVwUQ3muJjo1PoY= Subject key identifier: 55:24:ED:82:D1:ED:38:E6:5D:F4:C3:2C:3D:0B:B5:79:32:8D:83:DE Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0D85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0D5F Signing time: Thu 24 Apr 2025 17:57:25 +0000 Manifest this update: Thu 24 Apr 2025 17:57:24 +0000 Manifest next update: Thu 01 May 2025 17:57:24 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: udSi67LE0Oo0y2nE6cq69IdrLLPbaP/ugDd75XvG1WU=) 2: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: 7Q1sj7h/kM6xF990j8/QO8w1Qkfx36SwQEh39xIk1I4=) 3: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: QFGP47I0YdoniF040iEHzt2spsQy+KQ0P183ANxKYBw=) 4: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: nKPGiKm/0x5gSVPdolM9Kvr6Qyb+vWukLGBNYOdi6hU=) 5: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: 5Sbcqk2T+f7133+xiA46KTuH8zKP6892tENeVV/50JM=) 6: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: 4WLEo+7utrf3YQ5HW1B5C1Kpj6dVRKES3SiFL4z/3Rk=) 7: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: fwAHRlN4Uw1i6q04q/JVTmB/uglpgox90dvfugvMuyA=) 8: F2826A504FCF11EB88444467C4F9AE02.roa (hash: fD4ExFVU3zuArt3Xhftg8Dy8YqVccg0NtHG1ZHrBEJ4=) 9: D0551B50046411F09760073DC4F9AE02.roa (hash: el3Plc+WJmYSPNAmnJ6k/gtdNZJt+5aUgVhJBKFg6BE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:57:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3461 (0xd85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Apr 24 17:57:24 2025 GMT Not After : May 1 17:57:24 2025 GMT Subject: CN=680a7b85-c43b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a8:90:97:bd:96:69:5f:c7:9a:91:a4:48:ed: 6c:02:6b:1f:6d:2b:3b:13:8b:0f:41:05:0e:db:9a: 0d:b1:94:b4:57:9e:c2:80:5e:ad:8e:4f:83:23:96: e5:fc:22:ac:61:d3:4f:05:52:f0:c3:b2:fa:59:c6: fd:9b:1e:cc:d9:50:93:81:2f:b8:17:16:2e:af:1b: 5e:c2:5c:ac:fa:df:ca:da:ba:c1:15:f1:c8:d7:5e: 24:fd:24:a2:05:26:09:65:7f:5b:b8:4b:d9:6c:01: 43:6c:c5:aa:b9:c0:16:e6:4f:9d:00:ad:b3:e5:31: fe:ee:38:29:0d:4a:81:5e:fc:42:20:5f:51:93:d6: f4:1c:31:ee:0d:e0:de:19:d0:f9:bb:85:b7:71:94: 78:a3:4b:5c:31:a1:72:9a:5c:fa:03:c8:15:d5:e7: 65:fc:14:f3:a6:7b:b8:d6:08:6f:69:34:56:ac:4e: f8:d0:75:6f:1f:b3:05:49:52:4e:e0:59:8b:6e:1f: 63:1c:91:bb:98:62:58:76:d5:b3:20:ab:1d:7f:97: 68:fa:d7:4a:d4:77:85:65:d4:5d:1b:e6:05:9c:2f: 65:3a:48:c5:a4:30:bb:fa:97:48:6b:31:92:05:92: 5e:aa:3e:23:60:37:05:34:fe:0d:cc:a1:2f:7e:f8: 16:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:24:ED:82:D1:ED:38:E6:5D:F4:C3:2C:3D:0B:B5:79:32:8D:83:DE X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:d5:d7:10:98:c6:a1:a2:55:68:4d:86:d2:7d:5f:b5:1c:87: fe:13:1e:4d:ae:fc:cf:31:78:e0:12:fc:b4:7c:d7:2f:9e:3f: 5f:1b:59:fb:a0:c9:ef:4f:48:dc:a1:62:d7:ca:92:da:72:2c: c5:b3:ae:4e:fe:94:f4:6d:35:1f:17:5a:51:28:e0:2b:60:7c: 17:57:90:cc:80:5e:8d:be:da:27:df:88:70:bc:91:8c:af:ef: 05:6e:8d:1c:1a:f1:a6:3f:f4:8a:ef:07:5c:f7:f9:f6:fe:0c: fe:a8:1f:f7:b0:82:7e:f4:11:b3:99:df:0e:7b:52:89:96:41: 04:4a:d7:0b:5a:69:1a:40:e3:00:25:c4:47:9f:74:90:fa:d5: 5a:31:34:63:3a:6b:8c:3b:bf:0f:57:b3:14:59:4d:e5:77:2a: b6:ee:c7:7f:d4:22:3e:4c:4d:80:a0:a0:9d:5a:46:e0:10:2b: 7b:4b:98:28:24:e1:87:83:74:5d:5c:8f:d9:2c:a0:f0:7d:8f: bc:da:91:99:7c:39:34:d8:86:9e:fa:0d:22:33:9a:e0:45:56: 32:06:2f:b3:ab:31:39:69:6b:bd:e3:31:e6:16:2f:83:92:8f: ac:b8:58:f3:35:c6:03:5d:88:ff:21:b0:59:f1:88:46:de:d2: 3f:cb:00:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjUwNDI0MTc1NzI0WhcNMjUwNTAxMTc1NzI0WjAYMRYwFAYD VQQDEw02ODBhN2I4NS1jNDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06iQl72WaV/HmpGkSO1sAmsfbSs7E4sPQQUO25oNsZS0V57CgF6tjk+DI5bl /CKsYdNPBVLww7L6Wcb9mx7M2VCTgS+4FxYurxtewlys+t/K2rrBFfHI114k/SSi BSYJZX9buEvZbAFDbMWqucAW5k+dAK2z5TH+7jgpDUqBXvxCIF9Rk9b0HDHuDeDe GdD5u4W3cZR4o0tcMaFymlz6A8gV1edl/BTzpnu41ghvaTRWrE740HVvH7MFSVJO 4FmLbh9jHJG7mGJYdtWzIKsdf5do+tdK1HeFZdRdG+YFnC9lOkjFpDC7+pdIazGS BZJeqj4jYDcFNP4NzKEvfvgW5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUk7YLR 7TjmXfTDLD0LtXkyjYPeMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd1dcQmMaholVoTYbSfV+1HIf+Ex5NrvzPMXjgEvy0fNcvnj9fG1n7 oMnvT0jcoWLXypLacizFs65O/pT0bTUfF1pRKOArYHwXV5DMgF6Nvton34hwvJGM r+8Fbo0cGvGmP/SK7wdc9/n2/gz+qB/3sIJ+9BGzmd8Oe1KJlkEEStcLWmkaQOMA JcRHn3SQ+tVaMTRjOmuMO78PV7MUWU3ldyq27sd/1CI+TE2AoKCdWkbgECt7S5go JOGHg3RdXI/ZLKDwfY+82pGZfDk02Iae+g0iM5rgRVYyBi+zqzE5aWu94zHmFi+D ko+suFjzNcYDXYj/IbBZ8YhG3tI/ywCy -----END CERTIFICATE-----Generated at Sat Apr 26 03:46:30 2025 by rpki-client