$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft File: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft (raw, json) Hash identifier: iOzeHecapjWI8nAGVx/xvMsyAMkGFTZCUDcdN4B4rqc= Subject key identifier: 61:B8:6E:E4:A7:C0:0A:BE:AE:06:11:C0:B3:20:23:BE:DD:86:58:D4 Authority key identifier: 1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 Certificate issuer: /CN=A91F5BCC/serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft Manifest number: 52 Signing time: Sun 15 Jun 2025 06:20:25 +0000 Manifest this update: Sun 15 Jun 2025 06:20:25 +0000 Manifest next update: Sun 22 Jun 2025 06:20:25 +0000 Files and hashes: 1: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl (hash: YIR+ITADIGU208HKi5e3pgUlobQV1QJwNXQW/B0adQQ=) 2: 7A092C88E9E211EFAD188675C4F9AE02.roa (hash: Ih+3aaDaOz/d8dCkRSwBGnuzOxqfvTbU/QJJ8s8nf54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5BCC, serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Validity Not Before: Jun 15 06:20:25 2025 GMT Not After : Jun 22 06:20:25 2025 GMT Subject: CN=684e6629-023e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:5e:55:c8:37:57:1a:fd:fa:38:dc:fb:3b:a9: e3:4e:ca:b2:7d:c8:53:96:62:72:56:41:33:05:76: 79:c8:b7:82:96:41:63:f2:ce:d8:6d:67:a2:7c:3b: f5:d0:5d:c7:37:d8:73:25:ec:c2:0f:d6:3e:56:29: f9:72:bf:e4:71:89:48:69:19:22:56:83:cb:09:b0: ef:ee:a7:ce:c3:8e:4d:d4:e6:5c:57:87:b4:d9:e9: 4a:c5:fb:44:84:26:a3:a0:a2:d4:36:e4:37:a5:72: ba:73:53:2e:0d:29:96:59:3e:68:d2:7c:8c:29:82: 44:fc:2d:c9:93:27:20:1c:99:0e:60:e6:c0:7d:9b: d5:3e:94:ec:18:e6:3a:d1:2f:ca:66:47:83:1c:b6: f9:a7:13:ec:28:7a:70:22:04:94:2f:92:a0:84:18: 68:4a:94:41:43:9b:4c:e3:8c:f9:6a:36:73:15:0a: 8b:4f:b0:7f:b6:96:d2:49:18:3c:3a:a6:bb:62:1a: 9c:ef:7a:98:40:f5:c2:5f:d3:53:33:69:17:24:b0: 2b:ca:84:56:39:1a:a7:24:c8:e8:14:d9:31:fd:dc: 88:dc:e1:ae:24:db:b6:30:78:a4:20:2a:92:6d:a9: c9:91:70:51:89:81:c2:a9:02:27:5f:f7:d6:52:1d: 99:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:B8:6E:E4:A7:C0:0A:BE:AE:06:11:C0:B3:20:23:BE:DD:86:58:D4 X509v3 Authority Key Identifier: keyid:1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:e3:00:a2:c7:4e:a1:f8:bc:dd:a7:5f:b7:32:c4:4a:a8:be: ef:ec:09:3e:ac:db:a0:4a:c3:68:f3:08:58:77:a7:08:68:a2: df:51:bc:2b:ee:9a:c4:1b:01:bd:81:70:a6:c3:0f:8c:3a:fa: 8f:e6:f5:e5:5f:c7:30:c5:c3:af:8e:c1:87:95:7a:7c:0c:54: a5:73:d8:a7:52:ca:6e:58:17:5a:29:e3:6d:40:f8:0e:01:31: 6a:62:f2:d0:43:68:fb:61:6b:ac:8d:4d:21:75:58:f4:ca:47: 50:74:49:f5:f3:3b:a2:b1:cc:42:27:a5:51:ae:5a:88:e0:01: b3:1d:90:1f:0b:df:d4:28:05:5f:09:08:1f:c0:31:48:34:ee: ee:bb:45:a0:24:ec:fb:80:9f:90:0d:0d:08:38:ef:92:36:ed: 83:1f:c0:e8:4c:99:c9:43:52:bb:9f:55:de:5a:54:db:a4:07: c1:59:bc:21:1b:08:77:1a:11:d5:19:04:94:5c:85:cb:c2:e8: d2:e6:1c:9c:93:70:e4:a7:b6:1f:37:61:65:b9:65:65:14:2c: 05:a9:bc:c1:0a:35:b1:48:80:10:98:5e:15:70:61:b6:e4:8b: 74:6e:c6:73:99:32:84:c9:30:32:73:af:52:94:dc:98:5c:a2: 1b:ba:e7:00 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NUJDQzExMC8GA1UEBRMoMUU0OEVGRTUzRTYyRUQyMDRCQTdBNjk0Mzg0Q0JBQzky NDY3OTRBNzAeFw0yNTA2MTUwNjIwMjVaFw0yNTA2MjIwNjIwMjVaMBgxFjAUBgNV BAMTDTY4NGU2NjI5LTAyM2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDrXlXIN1ca/fo43Ps7qeNOyrJ9yFOWYnJWQTMFdnnIt4KWQWPyzthtZ6J8O/XQ Xcc32HMl7MIP1j5WKflyv+RxiUhpGSJWg8sJsO/up87Djk3U5lxXh7TZ6UrF+0SE JqOgotQ25DelcrpzUy4NKZZZPmjSfIwpgkT8LcmTJyAcmQ5g5sB9m9U+lOwY5jrR L8pmR4MctvmnE+woenAiBJQvkqCEGGhKlEFDm0zjjPlqNnMVCotPsH+2ltJJGDw6 prtiGpzvephA9cJf01MzaRcksCvKhFY5GqckyOgU2TH93Ijc4a4k27YweKQgKpJt qcmRcFGJgcKpAidf99ZSHZkFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYbhu5KfA Cr6uBhHAsyAjvt2GWNQwHwYDVR0jBBgwFoAUHkjv5T5i7SBLp6aUOEy6ySRnlKcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1QkNDL0I5NTg4QkFDQ0U3 ODExRUY4MEVGNEQ0NEM0RjlBRTAyL0hranY1VDVpN1NCTHA2YVVPRXk2eVNSbmxL Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGtqdjVUNWk3U0JMcDZhVU9FeTZ5U1JubEtjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1 QkNDL0I5NTg4QkFDQ0U3ODExRUY4MEVGNEQ0NEM0RjlBRTAyL0hranY1VDVpN1NC THA2YVVPRXk2eVNSbmxLYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKPjAKLHTqH4vN2nX7cyxEqovu/sCT6s26BKw2jzCFh3pwhoot9RvCvu msQbAb2BcKbDD4w6+o/m9eVfxzDFw6+OwYeVenwMVKVz2KdSym5YF1op421A+A4B MWpi8tBDaPtha6yNTSF1WPTKR1B0SfXzO6KxzEInpVGuWojgAbMdkB8L39QoBV8J CB/AMUg07u67RaAk7PuAn5ANDQg475I27YMfwOhMmclDUrufVd5aVNukB8FZvCEb CHcaEdUZBJRchcvC6NLmHJyTcOSnth83YWW5ZWUULAWpvMEKNbFIgBCYXhVwYbbk i3RuxnOZMoTJMDJzr1KU3Jhcohu65wA= -----END CERTIFICATE-----Generated at Sun Jun 15 09:30:21 2025 by rpki-client