$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft File: Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft (raw, json) Hash identifier: yXRh8HXDqdhk9BjtIm/QJG1wZKuPMXHk+tO+VEmZ/lA= Subject key identifier: 15:53:7C:E9:68:E4:0D:EC:65:D9:59:D5:79:2F:F3:6F:EF:86:07:3A Authority key identifier: 1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D Certificate issuer: /CN=A91CFA8D/serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Certificate serial: 0700 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft Manifest number: 06FB Signing time: Fri 22 Aug 2025 22:05:14 +0000 Manifest this update: Fri 22 Aug 2025 22:05:14 +0000 Manifest next update: Fri 29 Aug 2025 22:05:14 +0000 Files and hashes: 1: Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl (hash: D/f0a9DK09sFAYkVfDeme6tvWs+SNVwY1toM8XoSH7c=) 2: 6AA36A7E564D11EB8B387024C4F9AE02.roa (hash: fGJYrfdMmxnMU9m3ImkorOWGB4M3nyP+3+G+aL2cIE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1792 (0x700) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8D, serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Validity Not Before: Aug 22 22:05:14 2025 GMT Not After : Aug 29 22:05:14 2025 GMT Subject: CN=68a8e99a-0168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:08:b0:be:f7:17:83:ec:80:0f:87:e9:e0:9f: bd:48:91:89:5d:d9:89:89:63:d1:04:b1:4d:74:3e: d5:f2:75:99:5f:5e:d4:59:34:7b:33:90:ed:30:34: 1e:ca:b6:ce:73:11:57:32:25:aa:a4:d8:39:5b:64: ac:eb:86:33:74:89:68:a5:ef:69:5c:ae:32:16:d5: dd:5a:7f:95:60:20:1e:9e:23:de:33:fb:9e:f8:05: 43:85:cf:1b:b7:94:02:a0:fd:36:83:e4:75:ad:d2: 90:18:a9:01:8a:d6:a8:1d:41:6a:9c:86:d9:8d:be: e1:e8:51:9c:fa:f6:6a:dd:da:6f:c2:9d:6c:3f:79: 39:bc:b9:35:fc:f3:11:97:82:32:19:7c:ba:b2:ae: d4:8e:d3:47:7e:0c:4c:1b:d4:d4:70:f9:12:64:26: 7e:ff:32:64:ed:0e:aa:52:ca:3f:69:05:ed:a3:53: 78:52:de:4e:c8:49:d0:5d:06:ac:40:01:ce:27:5c: 02:12:b2:ff:2d:ef:43:3b:13:61:9d:86:fb:04:3d: 8c:ee:c6:99:1a:b9:91:ba:95:0a:e2:62:ba:8b:f7: 8b:2a:29:2d:12:b7:fd:b1:b0:77:2b:9c:7d:ff:78: ee:dc:c8:7d:b3:c6:f7:76:b7:c1:6b:18:3f:1b:a0: 81:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:53:7C:E9:68:E4:0D:EC:65:D9:59:D5:79:2F:F3:6F:EF:86:07:3A X509v3 Authority Key Identifier: keyid:1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:85:2c:13:f5:25:2e:8f:bd:e1:71:c3:2c:ce:39:ce:41:dc: f8:88:9b:45:eb:f1:06:a1:ae:29:69:b4:94:06:7b:ae:8c:73: f7:27:48:78:68:ca:61:35:f7:58:7c:ba:10:94:82:df:b3:88: 42:5e:9d:71:41:c5:7b:67:1d:93:b6:15:ee:01:39:79:b2:c1: 00:2b:d1:20:5a:08:3c:e7:ae:bc:0c:f4:ae:1f:52:b6:d8:45: 24:b1:d7:0f:30:e5:31:f5:11:e3:8d:40:81:1e:57:8f:66:0b: 87:d5:87:8f:9f:a6:3b:5a:46:c9:4c:77:eb:36:25:2d:db:f2: c9:f5:7e:c8:fc:cd:c6:6c:f9:11:65:e5:13:b2:d1:6f:85:4e: f7:2e:fb:72:74:b7:ee:00:1a:8c:a3:a8:ae:64:83:73:23:aa: fa:c7:30:1f:0e:ce:38:07:7e:b5:47:3e:c1:f0:01:d3:05:08: bf:77:14:dc:c6:f5:1e:a2:d5:7f:a7:51:3f:4c:41:b3:a4:f8: df:b8:f6:eb:d0:a5:94:b6:5d:f1:59:ee:22:66:51:f7:38:93: eb:c1:38:f7:57:12:3a:04:c2:80:ad:f2:ab:ca:ee:f8:83:dd: b9:00:5a:8c:19:6b:eb:75:6b:3b:76:5a:80:ea:6b:a5:71:b0: d5:95:99:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEQxMTAvBgNVBAUTKDFERUJCNzM3MUFCOTdCQjlGM0E5MDZFQjA3RDU5MUM5 Q0YzODhENUQwHhcNMjUwODIyMjIwNTE0WhcNMjUwODI5MjIwNTE0WjAYMRYwFAYD VQQDEw02OGE4ZTk5YS0wMTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5QiwvvcXg+yAD4fp4J+9SJGJXdmJiWPRBLFNdD7V8nWZX17UWTR7M5DtMDQe yrbOcxFXMiWqpNg5W2Ss64YzdIlope9pXK4yFtXdWn+VYCAeniPeM/ue+AVDhc8b t5QCoP02g+R1rdKQGKkBitaoHUFqnIbZjb7h6FGc+vZq3dpvwp1sP3k5vLk1/PMR l4IyGXy6sq7UjtNHfgxMG9TUcPkSZCZ+/zJk7Q6qUso/aQXto1N4Ut5OyEnQXQas QAHOJ1wCErL/Le9DOxNhnYb7BD2M7saZGrmRupUK4mK6i/eLKiktErf9sbB3K5x9 /3ju3Mh9s8b3drfBaxg/G6CBjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVTfOlo 5A3sZdlZ1Xkv82/vhgc6MB8GA1UdIwQYMBaAFB3rtzcauXu586kG6wfVkcnPOI1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RC81NkZFRkY4MDU2 NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3bnpxUWJyQjlXUnljODRq VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hldTNOeHE1ZTduenFRYnJCOVdSeWM4NGpWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RC81NkZFRkY4MDU2NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3 bnpxUWJyQjlXUnljODRqVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9hSwT9SUuj73hccMszjnOQdz4iJtF6/EGoa4pabSUBnuujHP3J0h4 aMphNfdYfLoQlILfs4hCXp1xQcV7Zx2TthXuATl5ssEAK9EgWgg85668DPSuH1K2 2EUksdcPMOUx9RHjjUCBHlePZguH1YePn6Y7WkbJTHfrNiUt2/LJ9X7I/M3GbPkR ZeUTstFvhU73LvtydLfuABqMo6iuZINzI6r6xzAfDs44B361Rz7B8AHTBQi/dxTc xvUeotV/p1E/TEGzpPjfuPbr0KWUtl3xWe4iZlH3OJPrwTj3VxI6BMKArfKryu74 g925AFqMGWvrdWs7dlqA6mulcbDVlZmf -----END CERTIFICATE-----Generated at Sat Aug 23 16:45:28 2025 by rpki-client