$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: A34/Btso0pnDG/eTTXKAgimY8uDrLFnnjtByzgYyIi4= Subject key identifier: 7F:8D:09:35:37:1E:6C:DD:99:81:68:0B:9A:DB:CF:DA:94:DF:68:FC Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 137C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 1352 Signing time: Sat 28 Jun 2025 16:52:56 +0000 Manifest this update: Sat 28 Jun 2025 16:52:55 +0000 Manifest next update: Sat 05 Jul 2025 16:52:55 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: z1ld817DV5fUfNxeWxVle2X0uEyVwVyqg4PKKWOcI1A=) 2: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: YO0KSyMg3rhBagYoGztB5o5uMcRrrSiw068DI4yqRmI=) 3: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WXuqlnvJ/kQYgmajvkp6WqRXIhVjEPtrsEAuBi7s1vA=) 4: 538F7B12B1D711EBB3C0A24AC4F9AE02.roa (hash: VriM0YGDOfhzo18xUQqToLLJGd+19KKo1Yju23Rp1tg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 16:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4988 (0x137c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Jun 28 16:52:55 2025 GMT Not After : Jul 5 16:52:55 2025 GMT Subject: CN=68601de7-6bac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b0:a0:62:93:76:9b:41:26:79:3f:f5:9c:47: c1:ab:49:46:98:41:d8:0e:c3:75:36:69:fb:37:29: b8:98:26:eb:ab:3d:b5:4b:bd:13:ad:31:a6:fe:d8: b3:bb:c2:3d:d4:a4:7b:1e:ca:a2:6a:89:e3:07:9f: d9:63:c1:d6:7a:19:bd:13:07:17:b6:20:08:2b:5d: e1:ce:d6:c8:39:30:48:5b:dd:44:98:46:47:70:a1: 3b:c3:a6:40:7c:34:a5:35:70:49:66:7b:5c:18:1f: ea:28:68:b9:8d:e5:f3:12:ae:3d:bf:f4:d3:d5:4e: 4c:9e:4b:a6:db:12:31:30:20:38:a0:ef:37:77:69: bd:c4:b0:a0:d2:61:ba:43:82:11:c5:cd:b3:f7:e4: 5f:97:01:fd:e5:49:48:d9:dc:44:b2:da:b3:8c:ef: 88:47:4d:c9:d7:8a:9a:86:76:66:3d:46:4e:bd:f8: 43:16:29:30:b9:84:00:19:70:61:fc:4a:c4:2a:2f: a0:ea:ba:4d:d9:3f:f9:b7:ec:85:1a:00:4f:7d:a5: fa:72:2f:2a:0e:4a:04:23:10:3b:bf:5b:f2:ae:26: e9:6a:35:1a:1f:b7:62:fc:97:19:5c:32:99:8f:a8: 6c:fb:7b:95:c5:2a:95:0c:1a:b3:ec:f1:23:94:f8: d4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:8D:09:35:37:1E:6C:DD:99:81:68:0B:9A:DB:CF:DA:94:DF:68:FC X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:a0:c2:33:6a:5b:a9:98:f6:18:30:63:ed:c8:e9:70:31:9a: db:26:59:ed:ed:8e:05:78:98:a9:8f:49:6c:b2:f3:19:17:2a: 12:46:e2:ad:69:ca:7e:22:df:b9:dc:fa:b0:e7:4b:1c:50:7f: d2:e0:56:54:5e:39:41:ed:2a:9f:81:f4:5c:1f:62:10:1b:3d: 34:d4:0c:08:a9:ba:32:b1:58:dd:03:68:19:21:3d:72:5b:88: 6d:cf:2f:53:a3:6a:16:d4:43:86:ca:21:64:11:09:15:05:c1: bd:52:e9:a7:d5:d2:28:be:f8:e1:1b:2e:be:43:52:7b:59:62: 2f:ba:ac:d4:9d:2f:1e:f4:dc:b0:42:49:7f:4a:74:38:19:8b: a2:a9:a0:ad:14:cf:3b:a6:56:9f:4e:3b:81:ab:9f:af:1f:7d: 80:86:3e:69:6c:ce:90:a9:e1:b5:ee:d5:56:dc:67:40:9f:10: 6b:c9:ce:80:c3:6d:5a:87:4b:5c:2c:6d:fa:18:d0:ee:37:47: a8:8d:4b:23:95:f5:1e:0e:f5:d3:2b:29:ae:16:a5:a0:72:49: 89:c0:59:13:19:f8:c1:23:3d:84:5d:b1:58:50:f7:2b:9f:98: 3d:2a:fc:20:b9:56:29:d5:1c:bf:86:98:e7:9b:50:91:d0:cb: 2a:d0:e3:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjUwNjI4MTY1MjU1WhcNMjUwNzA1MTY1MjU1WjAYMRYwFAYD VQQDEw02ODYwMWRlNy02YmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7CgYpN2m0EmeT/1nEfBq0lGmEHYDsN1Nmn7Nym4mCbrqz21S70TrTGm/tiz u8I91KR7HsqiaonjB5/ZY8HWehm9EwcXtiAIK13hztbIOTBIW91EmEZHcKE7w6ZA fDSlNXBJZntcGB/qKGi5jeXzEq49v/TT1U5Mnkum2xIxMCA4oO83d2m9xLCg0mG6 Q4IRxc2z9+RflwH95UlI2dxEstqzjO+IR03J14qahnZmPUZOvfhDFikwuYQAGXBh /ErEKi+g6rpN2T/5t+yFGgBPfaX6ci8qDkoEIxA7v1vyribpajUaH7di/JcZXDKZ j6hs+3uVxSqVDBqz7PEjlPjUxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+NCTU3 HmzdmYFoC5rbz9qU32j8MB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSoMIzalupmPYYMGPtyOlwMZrbJlnt7Y4FeJipj0lssvMZFyoSRuKt acp+It+53Pqw50scUH/S4FZUXjlB7SqfgfRcH2IQGz001AwIqboysVjdA2gZIT1y W4htzy9To2oW1EOGyiFkEQkVBcG9Uumn1dIovvjhGy6+Q1J7WWIvuqzUnS8e9Nyw Qkl/SnQ4GYuiqaCtFM87plafTjuBq5+vH32Ahj5pbM6QqeG17tVW3GdAnxBryc6A w21ah0tcLG36GNDuN0eojUsjlfUeDvXTKymuFqWgckmJwFkTGfjBIz2EXbFYUPcr n5g9KvwguVYp1Ry/hpjnm1CR0Msq0OPn -----END CERTIFICATE-----Generated at Sun Jun 29 20:03:56 2025 by rpki-client