$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: dTRbThAbDUZJ+2CdDVPWygRLlSxNBU92dGrc3YGnKaM= Subject key identifier: 1E:B7:6D:32:4D:D9:13:36:64:69:CF:35:7F:BA:8C:9D:76:C6:3C:8D Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 1398 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 136E Signing time: Fri 22 Aug 2025 17:08:56 +0000 Manifest this update: Fri 22 Aug 2025 17:08:55 +0000 Manifest next update: Fri 29 Aug 2025 17:08:55 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: 4M3Ymm88djqi8mMweBqggWM0+BDF74r5xXxSgG3Vw4E=) 2: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: YO0KSyMg3rhBagYoGztB5o5uMcRrrSiw068DI4yqRmI=) 3: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WXuqlnvJ/kQYgmajvkp6WqRXIhVjEPtrsEAuBi7s1vA=) 4: 538F7B12B1D711EBB3C0A24AC4F9AE02.roa (hash: VriM0YGDOfhzo18xUQqToLLJGd+19KKo1Yju23Rp1tg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:08:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5016 (0x1398) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Aug 22 17:08:55 2025 GMT Not After : Aug 29 17:08:55 2025 GMT Subject: CN=68a8a428-dbaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7b:60:8a:21:02:c9:47:60:6b:74:6d:90:dd: 87:fd:d0:a5:5a:d6:48:c7:30:fc:8b:6d:99:ce:e3: 9c:9f:b2:59:19:68:56:da:14:d5:75:a4:1a:35:71: 1c:13:2b:c6:0d:2c:ba:3e:d6:8f:87:94:0d:90:1d: 69:68:02:6e:29:fe:25:92:35:16:43:ca:9b:fc:d3: de:ae:d3:22:15:9d:eb:5c:e7:9f:4e:2f:6f:f7:96: ad:1a:e3:db:27:0f:b9:05:05:e3:ea:22:80:12:23: 05:eb:7d:4d:d7:bf:d6:cd:b1:0a:99:97:c5:29:6d: d9:8f:a5:27:44:9c:29:0d:07:3d:9a:71:ca:8a:06: bc:4d:a3:0c:9d:d9:18:8a:cf:c1:2a:da:f1:0f:ba: fc:e9:42:89:6b:49:6f:47:82:f0:4c:4d:46:cb:38: 75:aa:f0:15:65:45:7f:d1:ed:ad:da:f7:5d:15:a9: a7:98:ab:df:0f:ad:ab:cd:93:1e:fa:de:de:9b:8d: 27:95:60:d7:b6:e8:00:d7:34:1b:70:de:2a:d6:37: 0a:ed:56:74:69:1f:92:89:e3:be:52:29:b2:bc:8a: 4d:be:7c:b3:4b:e8:39:49:c7:33:f0:5c:db:cd:46: 96:a7:ac:b1:da:7a:34:a4:39:ed:93:7b:b7:4b:ea: 3c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B7:6D:32:4D:D9:13:36:64:69:CF:35:7F:BA:8C:9D:76:C6:3C:8D X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:a5:97:2d:93:80:1f:6b:02:40:ce:f9:12:80:27:87:aa:6d: 77:39:e8:f6:4b:a9:c0:fd:20:20:2a:a4:b1:b9:00:45:f5:0f: 64:c5:58:2e:da:13:28:41:4c:a3:6e:f5:79:73:70:aa:5d:ee: 4a:f2:54:68:96:e1:77:e4:59:1d:9a:e5:94:26:e8:47:59:29: e5:01:c5:6a:3d:57:20:a2:10:13:b8:6a:81:c3:37:53:c9:d6: d2:b8:7e:f8:ee:46:2e:db:24:09:fb:ee:1c:9f:97:4a:4f:63: 3d:f1:a7:db:04:5b:24:c4:f5:37:de:96:eb:3d:0a:f9:8d:98: 60:2b:e8:a7:0c:02:36:8d:1e:6e:db:dd:89:42:21:e7:e8:7b: 0a:dc:9c:86:1a:f4:8a:6b:1c:d6:6f:33:ce:c8:01:7c:64:26: fe:4e:e6:9d:cf:78:e6:74:fa:af:9d:cd:fb:26:97:18:3d:80: 85:14:bd:1d:97:a3:4d:3f:1b:76:e6:de:d8:fe:ae:51:70:7a: b5:0d:bb:c6:fb:73:a3:a3:1d:b9:c3:7b:fc:51:92:f1:3d:46: 92:9d:1f:0e:43:22:dc:9f:c0:1e:f1:e0:83:15:4d:1a:16:e5: 38:1b:22:40:36:c8:49:e3:65:92:e2:8d:8c:33:84:d6:93:fd: 97:21:39:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjUwODIyMTcwODU1WhcNMjUwODI5MTcwODU1WjAYMRYwFAYD VQQDEw02OGE4YTQyOC1kYmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3tgiiECyUdga3RtkN2H/dClWtZIxzD8i22ZzuOcn7JZGWhW2hTVdaQaNXEc EyvGDSy6PtaPh5QNkB1paAJuKf4lkjUWQ8qb/NPertMiFZ3rXOefTi9v95atGuPb Jw+5BQXj6iKAEiMF631N17/WzbEKmZfFKW3Zj6UnRJwpDQc9mnHKiga8TaMMndkY is/BKtrxD7r86UKJa0lvR4LwTE1Gyzh1qvAVZUV/0e2t2vddFamnmKvfD62rzZMe +t7em40nlWDXtugA1zQbcN4q1jcK7VZ0aR+SieO+UimyvIpNvnyzS+g5Sccz8Fzb zUaWp6yx2no0pDntk3u3S+o8gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB63bTJN 2RM2ZGnPNX+6jJ12xjyNMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtpZctk4AfawJAzvkSgCeHqm13Oej2S6nA/SAgKqSxuQBF9Q9kxVgu 2hMoQUyjbvV5c3CqXe5K8lRoluF35FkdmuWUJuhHWSnlAcVqPVcgohATuGqBwzdT ydbSuH747kYu2yQJ++4cn5dKT2M98afbBFskxPU33pbrPQr5jZhgK+inDAI2jR5u 292JQiHn6HsK3JyGGvSKaxzWbzPOyAF8ZCb+Tuadz3jmdPqvnc37JpcYPYCFFL0d l6NNPxt25t7Y/q5RcHq1DbvG+3Ojox25w3v8UZLxPUaSnR8OQyLcn8Ae8eCDFU0a FuU4GyJANshJ42WS4o2MM4TWk/2XITne -----END CERTIFICATE-----Generated at Sat Aug 23 13:39:37 2025 by rpki-client