$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft File: Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft (raw, json) Hash identifier: 0r18A6ApprBLzSnGmA2TfoFpNOJbktQPmlaspwvR9GE= Subject key identifier: 98:64:5C:E5:34:FD:94:76:1F:BA:17:34:99:49:1E:8F:B0:8D:1F:FF Authority key identifier: 1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D Certificate issuer: /CN=A91CFA8D/serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Certificate serial: 06CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft Manifest number: 06C6 Signing time: Sat 10 May 2025 21:43:09 +0000 Manifest this update: Sat 10 May 2025 21:43:08 +0000 Manifest next update: Sat 17 May 2025 21:43:08 +0000 Files and hashes: 1: Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl (hash: cVEr6+CSaXYWRu2NC27REWLuWVAhmVYEh8X86y9t3dU=) 2: 6AA36A7E564D11EB8B387024C4F9AE02.roa (hash: fGJYrfdMmxnMU9m3ImkorOWGB4M3nyP+3+G+aL2cIE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 21:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1739 (0x6cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8D, serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Validity Not Before: May 10 21:43:08 2025 GMT Not After : May 17 21:43:08 2025 GMT Subject: CN=681fc86d-8f4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:23:51:99:b4:bf:d6:57:80:cb:0f:a5:f8:3d: c9:98:43:61:34:0a:34:4a:8f:9c:7d:50:81:e9:c8: 91:59:b3:2d:c3:b1:64:df:25:2f:01:9e:58:32:22: 8a:07:3e:8a:02:03:19:d3:47:40:38:f0:f9:b4:52: 1f:52:df:11:25:a3:90:8c:44:f7:02:be:42:ae:c6: ae:2a:9d:e5:36:a3:59:b0:98:af:11:2b:dc:df:24: 98:7d:c5:0e:bd:f4:ed:12:14:d2:62:de:d7:71:79: d9:1b:c6:f3:65:e4:0e:b0:47:d1:73:4d:4d:8e:a3: 15:21:6d:d3:ce:da:76:e1:b1:2c:46:cb:3b:f0:c6: fd:c5:8c:1b:75:21:11:bf:91:06:5f:97:49:c7:92: 0b:d1:27:b0:17:7d:3e:eb:11:27:a0:72:f4:da:01: b6:18:06:6c:e4:f4:d3:55:23:e3:f9:2c:35:fc:6d: 97:72:b7:14:36:78:c3:25:86:a7:55:d3:ab:3a:28: 64:84:3f:76:52:ce:ce:4d:30:64:cd:d0:af:b1:11: 91:88:d8:a2:8a:c1:fe:d5:3e:22:06:0c:72:8a:50: 42:1d:65:a1:26:41:3f:09:93:86:9a:ee:cf:34:54: 01:d1:07:81:51:9a:e1:e3:8b:fe:ca:10:5d:91:cf: f4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:64:5C:E5:34:FD:94:76:1F:BA:17:34:99:49:1E:8F:B0:8D:1F:FF X509v3 Authority Key Identifier: keyid:1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:99:f6:03:2b:1c:e8:b1:16:b1:64:3b:22:43:a6:a6:8a:25: c3:b4:78:f1:ff:0c:1f:63:19:86:04:04:54:74:9e:72:dd:b8: 16:1d:b4:92:67:90:a6:e6:1f:f8:5a:4a:9e:ee:e3:07:a6:6c: 4a:23:a1:93:59:db:e0:eb:70:0a:71:68:2f:47:62:18:b5:55: 88:8d:2a:ab:c8:97:a9:2a:96:95:df:5a:a7:c0:5e:46:03:1d: fa:bc:9d:5d:ea:ea:66:c2:a2:a5:ba:f8:c2:38:7c:3e:59:f4: 4d:85:a6:84:d5:a8:02:d0:2a:ce:e7:65:b5:30:8e:4d:09:9b: 07:f3:01:34:8c:ae:4b:fe:fb:16:81:b2:b0:f5:0f:4e:e1:12: 33:f3:22:e4:b7:04:51:9c:d1:d7:1f:99:7f:5d:e4:48:e4:1c: 6c:d2:94:1d:64:87:68:c4:f4:3b:0b:db:36:68:25:73:6b:a6: d9:d1:c1:8a:24:42:08:04:91:0f:7a:d8:a1:6b:22:f1:4c:c2: 97:89:20:3c:48:79:78:7f:4b:00:47:ed:ee:a7:41:60:59:66: 35:b0:53:ec:1a:09:0d:73:f9:41:55:66:33:75:70:b8:19:bd: b3:7c:63:34:87:88:ec:cd:c0:85:f3:d3:fb:4d:2f:5d:8e:94: d1:50:78:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEQxMTAvBgNVBAUTKDFERUJCNzM3MUFCOTdCQjlGM0E5MDZFQjA3RDU5MUM5 Q0YzODhENUQwHhcNMjUwNTEwMjE0MzA4WhcNMjUwNTE3MjE0MzA4WjAYMRYwFAYD VQQDEw02ODFmYzg2ZC04ZjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyNRmbS/1leAyw+l+D3JmENhNAo0So+cfVCB6ciRWbMtw7Fk3yUvAZ5YMiKK Bz6KAgMZ00dAOPD5tFIfUt8RJaOQjET3Ar5CrsauKp3lNqNZsJivESvc3ySYfcUO vfTtEhTSYt7XcXnZG8bzZeQOsEfRc01NjqMVIW3Tztp24bEsRss78Mb9xYwbdSER v5EGX5dJx5IL0SewF30+6xEnoHL02gG2GAZs5PTTVSPj+Sw1/G2XcrcUNnjDJYan VdOrOihkhD92Us7OTTBkzdCvsRGRiNiiisH+1T4iBgxyilBCHWWhJkE/CZOGmu7P NFQB0QeBUZrh44v+yhBdkc/0+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJhkXOU0 /ZR2H7oXNJlJHo+wjR//MB8GA1UdIwQYMBaAFB3rtzcauXu586kG6wfVkcnPOI1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RC81NkZFRkY4MDU2 NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3bnpxUWJyQjlXUnljODRq VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hldTNOeHE1ZTduenFRYnJCOVdSeWM4NGpWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RC81NkZFRkY4MDU2NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3 bnpxUWJyQjlXUnljODRqVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7mfYDKxzosRaxZDsiQ6amiiXDtHjx/wwfYxmGBARUdJ5y3bgWHbSS Z5Cm5h/4Wkqe7uMHpmxKI6GTWdvg63AKcWgvR2IYtVWIjSqryJepKpaV31qnwF5G Ax36vJ1d6upmwqKluvjCOHw+WfRNhaaE1agC0CrO52W1MI5NCZsH8wE0jK5L/vsW gbKw9Q9O4RIz8yLktwRRnNHXH5l/XeRI5Bxs0pQdZIdoxPQ7C9s2aCVza6bZ0cGK JEIIBJEPetihayLxTMKXiSA8SHl4f0sAR+3up0FgWWY1sFPsGgkNc/lBVWYzdXC4 Gb2zfGM0h4jszcCF89P7TS9djpTRUHi/ -----END CERTIFICATE-----Generated at Sun May 11 22:43:57 2025 by rpki-client