$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: BUZy7X1awcKydD2i80Homvzs3SiRUMQKVuJX5LPnhto= Subject key identifier: B2:39:9A:3A:58:4A:7F:C4:70:DC:9E:66:36:FF:3E:6B:03:19:98:51 Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 1360 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 1336 Signing time: Sun 04 May 2025 16:57:26 +0000 Manifest this update: Sun 04 May 2025 16:57:26 +0000 Manifest next update: Sun 11 May 2025 16:57:26 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: ckiprVF6W7TWgkl5wiMDaM6cmKVWReJyQOzxJgTRCZ4=) 2: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: YO0KSyMg3rhBagYoGztB5o5uMcRrrSiw068DI4yqRmI=) 3: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WXuqlnvJ/kQYgmajvkp6WqRXIhVjEPtrsEAuBi7s1vA=) 4: 538F7B12B1D711EBB3C0A24AC4F9AE02.roa (hash: VriM0YGDOfhzo18xUQqToLLJGd+19KKo1Yju23Rp1tg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 16:57:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4960 (0x1360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: May 4 16:57:26 2025 GMT Not After : May 11 16:57:26 2025 GMT Subject: CN=68179c76-f6f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:38:4a:a1:df:ab:52:88:21:a8:69:b0:ad:e3: a6:2c:5b:dd:98:95:02:53:37:96:2c:63:bf:5f:1c: 33:66:cc:d9:45:ec:ef:ac:48:29:a5:c3:89:e2:39: 33:fa:b6:6c:35:9c:06:c3:e7:ea:fc:46:c9:05:d3: 6a:fe:21:d7:fa:4d:87:c5:f0:65:7c:d8:9a:7a:b0: ac:7c:a6:87:d5:77:a8:ba:44:07:d9:4b:11:be:b0: 81:f4:21:01:53:95:0d:6c:55:72:1c:8c:84:96:8c: 3a:6b:2c:57:47:4d:fd:f8:00:d6:0c:f7:de:78:38: 8b:30:e2:e2:2a:af:85:68:9b:ad:d1:fe:09:2d:aa: a2:b5:28:d9:95:39:8c:5d:f3:82:23:ea:75:21:46: 09:af:a0:47:b3:9c:ab:a6:c4:c8:43:77:d7:c1:8a: 6f:4e:c3:2c:d0:22:db:08:92:e0:3a:51:24:50:9c: 02:8e:1f:ec:03:d9:f1:08:d2:dd:ea:c5:2c:7a:02: b1:a8:01:56:77:af:9e:bc:31:d6:d7:24:bb:97:02: e5:e0:05:98:c6:31:0b:90:a9:aa:b1:17:b3:a9:9c: 74:18:a5:49:2b:cd:92:8f:c2:92:cd:46:25:bb:f3: 62:0c:31:f5:79:42:5f:2c:83:79:3d:59:01:dc:8b: a4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:39:9A:3A:58:4A:7F:C4:70:DC:9E:66:36:FF:3E:6B:03:19:98:51 X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:2f:04:4d:94:c7:f2:95:e5:8c:a3:bd:9a:bc:03:98:76:7e: b1:0e:0c:00:ad:0f:ae:22:03:89:4b:1a:ef:21:7e:53:58:b6: dc:9e:4d:64:51:15:3e:07:56:6e:ca:ee:48:f4:51:54:4e:2b: 5e:1c:7d:b6:b1:f8:19:4d:5f:71:9e:cf:db:45:e6:db:39:7a: ef:16:9a:7a:4f:42:07:02:1c:a9:40:61:76:30:b7:90:57:da: 63:59:01:bd:03:a9:77:62:dd:a5:82:bd:95:76:84:f9:58:e5: 60:61:24:20:d5:e7:a5:f5:9d:a3:04:96:f3:9b:e4:7d:31:60: d0:7d:cf:b9:c0:80:d5:ee:34:2c:2d:43:28:61:2b:e8:b5:4b: 42:17:fa:32:84:d3:94:45:98:00:e1:08:ac:2b:56:b9:18:39: e4:ef:3b:f4:7c:90:eb:62:bc:5e:05:a8:09:99:c3:05:f6:3c: 07:98:39:fd:0e:7b:a9:3e:80:28:f2:91:e7:02:bf:24:c8:09: ad:82:a3:59:98:55:41:a0:39:6e:85:76:03:d2:b6:08:a2:fe: cd:a0:00:ac:b4:2c:54:85:e8:4f:20:88:25:53:aa:bd:4f:ac: 42:b4:25:48:b1:60:2f:eb:59:2a:57:2c:67:e6:49:ef:a7:a1: a5:dc:2f:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjUwNTA0MTY1NzI2WhcNMjUwNTExMTY1NzI2WjAYMRYwFAYD VQQDEw02ODE3OWM3Ni1mNmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ThKod+rUoghqGmwreOmLFvdmJUCUzeWLGO/XxwzZszZRezvrEgppcOJ4jkz +rZsNZwGw+fq/EbJBdNq/iHX+k2HxfBlfNiaerCsfKaH1XeoukQH2UsRvrCB9CEB U5UNbFVyHIyElow6ayxXR039+ADWDPfeeDiLMOLiKq+FaJut0f4JLaqitSjZlTmM XfOCI+p1IUYJr6BHs5yrpsTIQ3fXwYpvTsMs0CLbCJLgOlEkUJwCjh/sA9nxCNLd 6sUsegKxqAFWd6+evDHW1yS7lwLl4AWYxjELkKmqsRezqZx0GKVJK82Sj8KSzUYl u/NiDDH1eUJfLIN5PVkB3Iuk6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLI5mjpY Sn/EcNyeZjb/PmsDGZhRMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYLwRNlMfyleWMo72avAOYdn6xDgwArQ+uIgOJSxrvIX5TWLbcnk1k URU+B1Zuyu5I9FFUTiteHH22sfgZTV9xns/bRebbOXrvFpp6T0IHAhypQGF2MLeQ V9pjWQG9A6l3Yt2lgr2VdoT5WOVgYSQg1eel9Z2jBJbzm+R9MWDQfc+5wIDV7jQs LUMoYSvotUtCF/oyhNOURZgA4QisK1a5GDnk7zv0fJDrYrxeBagJmcMF9jwHmDn9 DnupPoAo8pHnAr8kyAmtgqNZmFVBoDluhXYD0rYIov7NoACstCxUhehPIIglU6q9 T6xCtCVIsWAv61kqVyxn5knvp6Gl3C/b -----END CERTIFICATE-----Generated at Mon May 5 18:27:29 2025 by rpki-client