$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft File: hemZwivuAcMmTT0iZ1ghCS__0Cw.mft (raw, json) Hash identifier: UU95B+hY+LxSZy5oilqcTsD6Zx/wHnOudpw6QLm5sCs= Subject key identifier: 43:B5:C3:91:24:6B:12:05:91:40:33:DB:D5:C6:B4:13:D8:FF:8F:A8 Authority key identifier: 85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C Certificate issuer: /CN=A91AC132/serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft Manifest number: 68 Signing time: Sun 29 Jun 2025 06:02:57 +0000 Manifest this update: Sun 29 Jun 2025 06:02:57 +0000 Manifest next update: Sun 06 Jul 2025 06:02:57 +0000 Files and hashes: 1: hemZwivuAcMmTT0iZ1ghCS__0Cw.crl (hash: 4fzmZI4YoHoB+uN7Ut+xBZa5C+baXRqPbK3aYsUEmZE=) 2: 8B91AD8CD6B811EF86FC5149C4F9AE02.roa (hash: nKrpei7NHXS/yvzIer9NaLALl/Q2sUCsHstVjHOpR2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 06:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC132, serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Validity Not Before: Jun 29 06:02:57 2025 GMT Not After : Jul 6 06:02:57 2025 GMT Subject: CN=6860d711-cf9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:79:38:e6:1b:4e:0d:03:94:82:ff:e2:91:38: 15:94:5a:b2:f9:6f:0d:cb:35:d4:ea:1a:9a:ab:7f: 4e:ec:fe:99:a8:6a:98:c1:81:b2:fa:1e:bd:5e:98: 65:d1:1b:5e:90:4b:97:bc:6a:76:05:3e:ed:c4:3b: a3:09:e3:5a:dd:08:98:9a:e1:c0:92:89:eb:1b:eb: c4:43:b5:b3:0f:2a:08:48:77:9a:9b:e6:09:90:82: d9:e2:a8:b6:1b:24:4c:9d:b7:f3:49:7a:e9:e2:06: 5e:23:1a:93:3a:5c:a6:9c:1f:0f:5e:fe:68:23:09: 64:a3:08:ac:8f:37:62:00:85:9c:be:b8:18:99:e0: d2:ae:3e:53:2f:5c:21:87:87:68:1f:1a:97:3d:9a: 63:97:23:d4:72:7c:ca:04:9e:1b:66:e6:3f:7d:68: b5:63:af:1a:1d:1b:63:e0:6b:6e:ca:89:05:ea:15: ce:12:28:47:14:69:7f:f9:50:77:22:9e:68:52:36: 6e:02:f9:49:4b:31:e2:23:6f:c6:04:71:7d:9e:53: 88:00:8e:f0:69:74:d1:cb:a8:17:25:50:bd:fb:ed: 97:e9:5b:c1:cd:3a:90:7b:e2:8a:e0:c2:a1:57:e1: 17:85:25:af:ae:be:ed:ec:5f:0a:f4:f1:9a:38:ab: f9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:B5:C3:91:24:6B:12:05:91:40:33:DB:D5:C6:B4:13:D8:FF:8F:A8 X509v3 Authority Key Identifier: keyid:85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:59:6e:ca:6a:3b:bf:b9:6f:55:92:79:2c:a5:7a:1c:79:7f: c4:73:ee:4e:4f:fc:b4:3a:96:f4:99:ac:a2:d8:0a:c3:b9:a4: 70:23:92:69:2b:d9:a1:86:45:94:8f:a1:a0:4c:14:4a:e1:e1: 88:52:50:d5:63:21:2c:af:91:d2:cc:3d:6c:87:af:dd:0f:01: 99:a9:79:73:d4:24:83:e9:de:c3:d5:69:d2:6d:5f:05:96:87: 0b:aa:9d:df:63:e9:3f:62:86:fe:5e:ea:1b:9e:6b:9d:f0:c4: 85:bb:7b:fb:4c:70:6e:0b:0d:56:98:2b:44:24:d2:f8:a3:a1: a2:82:40:8b:15:9f:3f:04:92:cb:a3:14:09:a8:35:4d:59:72: 04:47:3a:9a:04:5c:0a:d3:6a:8a:9f:2f:e3:52:f5:24:5e:51: 6f:66:72:bd:b9:63:c1:9f:d5:ec:d2:58:21:c6:df:86:f0:f0: 8c:6a:66:8a:5a:47:b5:3a:b4:c7:95:a6:68:19:f9:62:ad:7c: 2b:5a:97:88:ea:a3:ff:f6:bb:87:18:60:10:67:07:aa:da:ba: 8a:a6:b9:f2:83:ce:15:4c:fb:b7:12:cb:c9:78:79:90:49:fb: e2:e7:d3:7c:a8:0b:38:66:64:b0:ef:60:5c:35:98:a2:b0:6d: 32:e1:86:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QzEzMjExMC8GA1UEBRMoODVFOTk5QzIyQkVFMDFDMzI2NEQzRDIyNjc1ODIxMDky RkZGRDAyQzAeFw0yNTA2MjkwNjAyNTdaFw0yNTA3MDYwNjAyNTdaMBgxFjAUBgNV BAMTDTY4NjBkNzExLWNmOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgeTjmG04NA5SC/+KROBWUWrL5bw3LNdTqGpqrf07s/pmoapjBgbL6Hr1emGXR G16QS5e8anYFPu3EO6MJ41rdCJia4cCSiesb68RDtbMPKghId5qb5gmQgtniqLYb JEydt/NJeuniBl4jGpM6XKacHw9e/mgjCWSjCKyPN2IAhZy+uBiZ4NKuPlMvXCGH h2gfGpc9mmOXI9RyfMoEnhtm5j99aLVjrxodG2Pga27KiQXqFc4SKEcUaX/5UHci nmhSNm4C+UlLMeIjb8YEcX2eU4gAjvBpdNHLqBclUL377ZfpW8HNOpB74orgwqFX 4ReFJa+uvu3sXwr08Zo4q/m7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQ7XDkSRr EgWRQDPb1ca0E9j/j6gwHwYDVR0jBBgwFoAUhemZwivuAcMmTT0iZ1ghCS//0Cww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFDMTMyL0M0RkExNEY4Qjgw QzExRUY4NEZBM0UzNUM0RjlBRTAyL2hlbVp3aXZ1QWNNbVRUMGlaMWdoQ1NfXzBD dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGVtWndpdnVBY01tVFQwaVoxZ2hDU19fMEN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFD MTMyL0M0RkExNEY4QjgwQzExRUY4NEZBM0UzNUM0RjlBRTAyL2hlbVp3aXZ1QWNN bVRUMGlaMWdoQ1NfXzBDdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADxZbspqO7+5b1WSeSylehx5f8Rz7k5P/LQ6lvSZrKLYCsO5pHAjkmkr 2aGGRZSPoaBMFErh4YhSUNVjISyvkdLMPWyHr90PAZmpeXPUJIPp3sPVadJtXwWW hwuqnd9j6T9ihv5e6huea53wxIW7e/tMcG4LDVaYK0Qk0vijoaKCQIsVnz8Eksuj FAmoNU1ZcgRHOpoEXArTaoqfL+NS9SReUW9mcr25Y8Gf1ezSWCHG34bw8IxqZopa R7U6tMeVpmgZ+WKtfCtal4jqo//2u4cYYBBnB6rauoqmufKDzhVM+7cSy8l4eZBJ ++Ln03yoCzhmZLDvYFw1mKKwbTLhhp0= -----END CERTIFICATE-----Generated at Sun Jun 29 21:01:54 2025 by rpki-client