$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft File: hXm-LYNFaC8nrucGK71O92ZOVxs.mft (raw, json) Hash identifier: Xm/S4/uWZlWMfpNZqgcxkwsxtr1dio+n7ubs+bheSXo= Subject key identifier: 3E:59:24:F3:B2:B3:95:2A:D7:87:E3:60:1A:80:9F:BF:AC:11:D2:97 Authority key identifier: 85:79:BE:2D:83:45:68:2F:27:AE:E7:06:2B:BD:4E:F7:66:4E:57:1B Certificate issuer: /CN=A91D0B6B/serialNumber=8579BE2D8345682F27AEE7062BBD4EF7664E571B Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft Manifest number: 34 Signing time: Fri 13 Jun 2025 06:34:19 +0000 Manifest this update: Fri 13 Jun 2025 06:34:18 +0000 Manifest next update: Fri 20 Jun 2025 06:34:18 +0000 Files and hashes: 1: hXm-LYNFaC8nrucGK71O92ZOVxs.crl (hash: e66uyA+cAI7F6lfAXW92oL6z/k2eHhfT3yVOZmuzksw=) 2: 73DC435A39F511F09F296862C4F9AE02.roa (hash: v8UVd7Qbh3NtEsQhX1pG9Dfe5py3W8ZuLzV2zz17/Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.crl rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:34:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B6B, serialNumber=8579BE2D8345682F27AEE7062BBD4EF7664E571B Validity Not Before: Jun 13 06:34:18 2025 GMT Not After : Jun 20 06:34:18 2025 GMT Subject: CN=684bc66a-4b2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ff:69:09:01:02:b2:76:96:a4:44:51:a6:89: e5:35:aa:32:b2:66:bb:cd:c5:4b:72:9b:74:f3:c0: 28:5c:fb:f6:6e:cc:58:66:25:87:cf:71:56:5a:82: 89:97:41:1e:64:fa:50:d7:2a:60:f8:43:60:31:c8: 92:d9:fc:91:2c:87:c7:51:0b:07:24:5a:a3:d9:29: 4c:5c:40:ce:09:76:94:6d:ab:75:33:fe:8c:ae:e9: 96:fb:46:2a:7a:5c:a4:db:2d:29:5d:07:d7:39:c1: c8:00:da:a1:9d:6f:ff:cb:e2:5d:05:81:a5:77:b1: dc:0e:6f:c9:5e:b2:f6:d8:60:8e:98:a8:e3:f8:55: 7e:ab:0c:c2:3e:9e:9c:5a:15:f9:b9:11:34:99:01: d4:ed:ba:f6:82:98:62:50:83:6b:38:6f:e8:85:df: d2:7d:99:72:28:7b:b6:dc:bb:07:f2:1f:8b:d1:ec: 9d:40:7c:63:7e:aa:c3:c7:6f:f4:9c:b1:9b:14:8d: 8b:a9:7a:6a:bf:a6:cf:a1:c7:21:c3:d1:a6:41:58: 67:4d:6c:ad:2f:52:cb:03:5c:0a:34:31:3d:d4:61: a3:50:a7:5c:d9:1d:39:a3:d9:d1:c1:8e:10:43:03: 4b:e5:ce:9f:01:92:c0:66:c6:9b:aa:88:59:54:f8: 9c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:59:24:F3:B2:B3:95:2A:D7:87:E3:60:1A:80:9F:BF:AC:11:D2:97 X509v3 Authority Key Identifier: keyid:85:79:BE:2D:83:45:68:2F:27:AE:E7:06:2B:BD:4E:F7:66:4E:57:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:7c:5e:6f:fc:c4:58:c1:64:07:7a:ca:dc:8b:df:e6:03:0e: 19:39:66:5c:5a:5e:9c:5f:73:54:07:80:7a:87:e4:e7:0f:27: 37:a7:6c:67:6f:a4:c9:70:b4:e0:ab:62:f3:a6:f8:d5:a8:9b: d7:2f:c3:9e:38:65:e3:e6:8a:d3:4c:98:9c:40:28:ea:5c:7c: e3:53:24:83:87:1c:c9:f1:80:4d:c9:89:4a:f9:dc:4c:5b:1d: c2:68:72:2b:9e:e3:e3:54:90:d7:3a:a4:1b:b7:c7:bc:c2:03: 84:2f:05:d6:ee:4a:68:35:01:e3:90:83:5e:57:37:86:27:31: b3:f0:05:f4:05:19:a5:6e:60:42:7f:72:1b:68:82:60:6a:ed: b5:67:d0:be:c3:73:c4:05:87:02:72:b1:28:c7:f1:cd:10:3b: aa:5a:33:24:b6:f1:7f:d5:95:11:fa:e3:e6:e9:3d:3b:70:b4: 37:54:36:65:3f:df:89:f0:7b:cf:98:a9:92:3d:24:2c:f9:fe: c8:c3:e6:05:dd:40:c6:92:b5:b5:6b:3c:35:e3:5d:1f:a2:59: 62:f6:25:b9:2a:27:fd:3a:54:21:b4:31:06:b8:4b:37:89:14: 9e:8e:65:7a:d7:b8:40:b2:bd:9e:d9:c8:b6:1a:f0:3a:ff:55: e9:f1:8c:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEI2QjExMC8GA1UEBRMoODU3OUJFMkQ4MzQ1NjgyRjI3QUVFNzA2MkJCRDRFRjc2 NjRFNTcxQjAeFw0yNTA2MTMwNjM0MThaFw0yNTA2MjAwNjM0MThaMBgxFjAUBgNV BAMTDTY4NGJjNjZhLTRiMmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDA/2kJAQKydpakRFGmieU1qjKyZrvNxUtym3TzwChc+/ZuzFhmJYfPcVZagomX QR5k+lDXKmD4Q2AxyJLZ/JEsh8dRCwckWqPZKUxcQM4JdpRtq3Uz/oyu6Zb7Rip6 XKTbLSldB9c5wcgA2qGdb//L4l0FgaV3sdwOb8lesvbYYI6YqOP4VX6rDMI+npxa Ffm5ETSZAdTtuvaCmGJQg2s4b+iF39J9mXIoe7bcuwfyH4vR7J1AfGN+qsPHb/Sc sZsUjYupemq/ps+hxyHD0aZBWGdNbK0vUssDXAo0MT3UYaNQp1zZHTmj2dHBjhBD A0vlzp8BksBmxpuqiFlU+JxLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPlkk87Kz lSrXh+NgGoCfv6wR0pcwHwYDVR0jBBgwFoAUhXm+LYNFaC8nrucGK71O92ZOVxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQjZCLzdFQzAwNzZDRkUz RjExRUY4RkEyNzc1MkM0RjlBRTAyL2hYbS1MWU5GYUM4bnJ1Y0dLNzFPOTJaT1Z4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFhtLUxZTkZhQzhucnVjR0s3MU85MlpPVnhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw QjZCLzdFQzAwNzZDRkUzRjExRUY4RkEyNzc1MkM0RjlBRTAyL2hYbS1MWU5GYUM4 bnJ1Y0dLNzFPOTJaT1Z4cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFV8Xm/8xFjBZAd6ytyL3+YDDhk5ZlxaXpxfc1QHgHqH5OcPJzenbGdv pMlwtOCrYvOm+NWom9cvw544ZePmitNMmJxAKOpcfONTJIOHHMnxgE3JiUr53Exb HcJociue4+NUkNc6pBu3x7zCA4QvBdbuSmg1AeOQg15XN4YnMbPwBfQFGaVuYEJ/ chtogmBq7bVn0L7Dc8QFhwJysSjH8c0QO6paMyS28X/VlRH64+bpPTtwtDdUNmU/ 34nwe8+YqZI9JCz5/sjD5gXdQMaStbVrPDXjXR+iWWL2JbkqJ/06VCG0MQa4SzeJ FJ6OZXrXuECyvZ7ZyLYa8Dr/VenxjA8= -----END CERTIFICATE-----Generated at Sat Jun 14 19:27:36 2025 by rpki-client