$ rpki-client -vvf rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft File: hkRKM0kVEhS08nEbLF2gy5nlDxM.mft (raw, json) Hash identifier: 8kvlqUEBadgxs7lXycB5Bnnvor4a7UjE4M7zMVw8iu0= Subject key identifier: 17:A2:B6:DE:7F:F8:E1:58:98:47:08:96:3A:9C:DF:B3:7B:16:C2:37 Authority key identifier: 86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 Certificate issuer: /CN=A915C48D/serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft Manifest number: 67 Signing time: Fri 13 Jun 2025 05:58:06 +0000 Manifest this update: Fri 13 Jun 2025 05:58:06 +0000 Manifest next update: Fri 20 Jun 2025 05:58:06 +0000 Files and hashes: 1: hkRKM0kVEhS08nEbLF2gy5nlDxM.crl (hash: 0hfnDGXqb6sl6DzyXFnbvJWuZh4xr0UKTBlzr7bDTzE=) 2: DE1B9460EDF511EF86CB7315C4F9AE02.roa (hash: 1aGxRTXwu6ybjRU4JNrtMNFs2xwtsiTJtnAFcF9bvmg=) 3: 55EFA6C0ECF711EF88590A69C4F9AE02.roa (hash: FC93rdM/vdZQAg1QRdAMhOId3DELs7nG9wTwZW4DnWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:58:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C48D, serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Validity Not Before: Jun 13 05:58:06 2025 GMT Not After : Jun 20 05:58:06 2025 GMT Subject: CN=684bbdee-b39c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e2:ad:e3:11:df:a4:9d:03:67:15:b1:b5:b0: 98:98:28:09:8c:72:ef:ce:ea:b0:0f:30:44:51:bd: c6:18:cb:c6:3b:e4:20:12:84:c6:a2:3f:07:90:1b: 0d:bf:21:d5:96:cc:4a:a0:57:50:63:7e:17:a5:28: ac:35:3a:77:e0:f4:3b:22:9d:3a:3f:98:a5:74:28: 9c:d3:aa:04:31:05:3a:1f:a9:d6:93:3a:e9:6b:f1: a5:a6:db:7c:7d:60:9b:76:b7:05:c8:2b:3f:2c:33: e2:88:c8:e2:20:1e:41:96:25:5b:2b:d4:2e:8b:0c: 6d:9a:d6:98:9c:ea:8e:90:0c:d8:37:bd:cd:e2:86: 0d:4a:3e:92:62:df:b6:7c:ab:9d:c2:57:77:57:fb: 8a:37:bd:67:ce:5c:d5:26:40:80:c2:b0:0f:bb:58: 81:cc:90:5b:ca:bc:57:6e:d4:0b:c5:12:8d:9f:ed: ae:d7:e6:e1:b1:40:a9:8e:b0:1d:ef:aa:60:ea:18: 76:eb:bd:7c:48:fe:e5:fc:f8:1a:71:bf:70:46:5a: f5:d9:7a:3d:ce:85:d8:74:10:99:ee:b7:50:f8:c1: 61:db:ab:d0:e9:e8:77:ad:e7:c9:ec:55:e8:ad:3b: 92:7e:98:05:05:15:f5:77:e6:7b:ad:4b:06:cc:ca: 8f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A2:B6:DE:7F:F8:E1:58:98:47:08:96:3A:9C:DF:B3:7B:16:C2:37 X509v3 Authority Key Identifier: keyid:86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:2b:88:74:2a:67:6d:67:19:56:63:07:44:0d:3b:b5:86:37: cc:d6:b1:fa:4e:a0:2b:c1:26:a8:5e:e0:85:81:de:0d:af:ad: d0:6b:ad:75:63:50:1f:6d:2a:d1:b6:6c:fe:b4:fd:0c:3c:b0: 6e:94:bc:08:94:5e:7b:b9:4f:42:4d:a8:75:1a:4b:94:5c:10: 4d:af:96:77:98:b6:5d:9c:8c:f2:51:a6:fc:ce:ab:56:c3:1a: e4:2c:d4:4f:7b:47:56:e5:a7:62:bd:08:c0:67:d5:f5:a4:a1: 2f:6d:bd:94:34:cf:d1:96:cd:79:4d:62:75:b1:d8:63:d9:c2: a2:78:07:4e:5c:c0:f4:6f:1e:d3:0a:38:36:b6:b7:05:ff:1b: a9:83:2c:cb:6c:14:2b:97:94:87:2a:22:8b:82:13:c9:30:57: 15:7a:3d:d8:c0:ed:8b:b9:d5:dd:6d:99:a5:8c:29:31:ba:13: 13:0c:42:d3:f0:a3:90:bc:8c:26:4a:09:51:be:f0:0a:22:ca: b5:9e:da:36:6b:71:ed:0c:17:ea:f6:04:ce:31:04:43:14:c5: 61:49:03:d1:ea:21:2d:4f:de:92:09:2b:e0:b6:bd:55:9e:47: 13:c5:50:2c:5c:f6:da:da:0e:68:1a:ed:5b:7d:ed:6c:08:b9: 22:67:c6:55 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QzQ4RDExMC8GA1UEBRMoODY0NDRBMzM0OTE1MTIxNEI0RjI3MTFCMkM1REEwQ0I5 OUU1MEYxMzAeFw0yNTA2MTMwNTU4MDZaFw0yNTA2MjAwNTU4MDZaMBgxFjAUBgNV BAMTDTY4NGJiZGVlLWIzOWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC64q3jEd+knQNnFbG1sJiYKAmMcu/O6rAPMERRvcYYy8Y75CAShMaiPweQGw2/ IdWWzEqgV1BjfhelKKw1Onfg9DsinTo/mKV0KJzTqgQxBTofqdaTOulr8aWm23x9 YJt2twXIKz8sM+KIyOIgHkGWJVsr1C6LDG2a1pic6o6QDNg3vc3ihg1KPpJi37Z8 q53CV3dX+4o3vWfOXNUmQIDCsA+7WIHMkFvKvFdu1AvFEo2f7a7X5uGxQKmOsB3v qmDqGHbrvXxI/uX8+Bpxv3BGWvXZej3Ohdh0EJnut1D4wWHbq9Dp6Het58nsVeit O5J+mAUFFfV35nutSwbMyo+ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUF6K23n/4 4ViYRwiWOpzfs3sWwjcwHwYDVR0jBBgwFoAUhkRKM0kVEhS08nEbLF2gy5nlDxMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVDNDhELzBDMjE1OEIyQjJD OTExRUY5MDNGNzg4M0M0RjlBRTAyL2hrUktNMGtWRWhTMDhuRWJMRjJneTVubER4 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGtSS00wa1ZFaFMwOG5FYkxGMmd5NW5sRHhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVD NDhELzBDMjE1OEIyQjJDOTExRUY5MDNGNzg4M0M0RjlBRTAyL2hrUktNMGtWRWhT MDhuRWJMRjJneTVubER4TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAkriHQqZ21nGVZjB0QNO7WGN8zWsfpOoCvBJqhe4IWB3g2vrdBrrXVj UB9tKtG2bP60/Qw8sG6UvAiUXnu5T0JNqHUaS5RcEE2vlneYtl2cjPJRpvzOq1bD GuQs1E97R1blp2K9CMBn1fWkoS9tvZQ0z9GWzXlNYnWx2GPZwqJ4B05cwPRvHtMK ODa2twX/G6mDLMtsFCuXlIcqIouCE8kwVxV6PdjA7Yu51d1tmaWMKTG6ExMMQtPw o5C8jCZKCVG+8AoiyrWe2jZrce0MF+r2BM4xBEMUxWFJA9HqIS1P3pIJK+C2vVWe RxPFUCxc9traDmga7Vt97WwIuSJnxlU= -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:41 2025 by rpki-client