$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: Ud1D9GkVKD9xhGGwC3FIkLKFfSsTqM5B/hW1ekZmXTM= Subject key identifier: FC:85:B4:37:1B:CE:52:47:0C:C8:A0:0F:24:5A:A5:E2:95:5C:B9:C4 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 01CF Signing time: Sun 11 May 2025 01:54:12 +0000 Manifest this update: Sun 11 May 2025 01:54:11 +0000 Manifest next update: Sun 18 May 2025 01:54:11 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: G+q0gaynaeDPapkk/wnFdFzrfErmppiGI9d3eQD+F+8=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: mCCSZ+9WYvhaMFX9tC0Iaz2gMx4GH4ZGb0UPoAirqT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:54:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: May 11 01:54:11 2025 GMT Not After : May 18 01:54:11 2025 GMT Subject: CN=68200343-9c7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:18:df:bf:c1:4a:1a:c8:8c:63:fa:16:58:9b: 13:c5:20:4b:59:99:48:9b:88:6b:58:b4:a0:4e:bb: 44:41:44:0e:ef:58:da:55:1a:34:65:5b:e0:fc:60: 95:e9:17:17:79:2f:0c:af:18:4a:47:5a:2f:5b:5e: 72:12:78:b2:d8:6c:0f:8d:5a:66:23:18:13:07:9d: 6c:11:a0:3a:5a:ca:ac:13:7d:28:68:69:ae:48:82: 14:72:7a:d9:05:ea:f1:46:2f:b8:c3:4f:0b:56:2f: 08:85:47:09:de:4e:16:b6:06:71:08:91:fa:54:c5: 78:af:73:b8:62:2b:a6:a6:4b:d6:80:38:04:03:4f: 1d:60:f2:8b:3e:7a:3d:d4:95:b3:ac:2e:23:df:9e: 0b:47:01:06:16:c5:0e:a0:f9:c8:f9:0a:80:2b:1d: b6:a7:d2:49:5e:2e:e6:53:c1:9d:ba:43:cc:38:7b: ab:1e:7b:79:32:e8:9b:ab:2d:20:6f:24:9a:a2:6e: 31:1c:28:57:07:cd:c1:a4:ca:ec:5c:cc:0c:b6:95: 08:7f:b3:51:39:2b:fe:51:18:06:86:1e:43:f2:88: 04:fe:5e:d7:95:7a:2e:8f:54:91:f3:fa:e4:d0:0f: ea:d4:6a:11:44:50:8b:d7:cb:e3:47:e2:b0:3d:df: 83:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:85:B4:37:1B:CE:52:47:0C:C8:A0:0F:24:5A:A5:E2:95:5C:B9:C4 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:56:08:aa:05:f9:d7:b9:85:72:bc:50:74:a1:80:47:24:e0: ec:4b:a6:b0:33:51:e0:8c:73:f5:5f:fc:c0:7a:81:db:83:68: 0e:a6:06:5b:23:6c:f5:c9:41:82:47:c9:84:9a:a3:be:1a:77: f5:97:f4:75:d7:c7:59:56:7e:13:e0:27:3e:67:e7:62:e5:93: 56:1c:4c:7c:47:28:2e:8d:9c:16:66:ed:5d:a3:f2:fd:21:70: 70:93:d8:30:a2:a8:03:3b:0d:1d:50:aa:dd:f8:5a:4f:58:43: 40:4a:10:bf:9a:f7:04:fb:99:7d:d6:39:51:e4:36:df:fa:84: 06:aa:33:24:23:02:ce:42:3a:94:f5:86:dc:a2:f5:4e:da:52: 56:e1:84:ed:00:77:5d:77:a8:f8:69:91:cf:f9:48:fb:de:ac: a8:8c:fb:35:a2:1e:e2:70:da:d6:99:b5:37:55:25:e5:84:5a: 9b:25:a6:e6:96:0e:4a:b3:dd:ed:c0:7b:7c:a1:f8:82:35:0e: 15:0d:2a:ba:fb:e7:3a:7f:43:56:ef:e3:6a:c6:f5:4f:f5:50: 3a:3b:a0:94:ef:d7:d6:98:91:91:1b:71:ff:5b:f7:73:64:9a: 92:16:00:19:ba:ba:db:ad:b1:7f:27:17:01:78:a7:84:85:a1: 90:23:64:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjUwNTExMDE1NDExWhcNMjUwNTE4MDE1NDExWjAYMRYwFAYD VQQDEw02ODIwMDM0My05YzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBjfv8FKGsiMY/oWWJsTxSBLWZlIm4hrWLSgTrtEQUQO71jaVRo0ZVvg/GCV 6RcXeS8MrxhKR1ovW15yEniy2GwPjVpmIxgTB51sEaA6WsqsE30oaGmuSIIUcnrZ BerxRi+4w08LVi8IhUcJ3k4WtgZxCJH6VMV4r3O4YiumpkvWgDgEA08dYPKLPno9 1JWzrC4j354LRwEGFsUOoPnI+QqAKx22p9JJXi7mU8GdukPMOHurHnt5Muibqy0g bySaom4xHChXB83BpMrsXMwMtpUIf7NROSv+URgGhh5D8ogE/l7XlXouj1SR8/rk 0A/q1GoRRFCL18vjR+KwPd+DwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPyFtDcb zlJHDMigDyRapeKVXLnEMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEVgiqBfnXuYVyvFB0oYBHJODsS6awM1HgjHP1X/zAeoHbg2gOpgZb I2z1yUGCR8mEmqO+Gnf1l/R118dZVn4T4Cc+Z+di5ZNWHEx8RygujZwWZu1do/L9 IXBwk9gwoqgDOw0dUKrd+FpPWENAShC/mvcE+5l91jlR5Dbf+oQGqjMkIwLOQjqU 9YbcovVO2lJW4YTtAHddd6j4aZHP+Uj73qyojPs1oh7icNrWmbU3VSXlhFqbJabm lg5Ks93twHt8ofiCNQ4VDSq6++c6f0NW7+NqxvVP9VA6O6CU79fWmJGRG3H/W/dz ZJqSFgAZurrbrbF/JxcBeKeEhaGQI2SH -----END CERTIFICATE-----Generated at Sun May 11 15:17:33 2025 by rpki-client