$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft File: Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft (raw, json) Hash identifier: Tk+YXumoDRB4YBMXbVaKNib7XLagn1uUWS8xZrzTVUw= Subject key identifier: F7:B0:92:3C:AB:1D:AB:72:3F:4F:B7:42:13:93:2E:99:1D:FB:30:DF Authority key identifier: 1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D Certificate issuer: /CN=A91CFA8D/serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Certificate serial: 06E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft Manifest number: 06E0 Signing time: Mon 30 Jun 2025 22:19:20 +0000 Manifest this update: Mon 30 Jun 2025 22:19:20 +0000 Manifest next update: Mon 07 Jul 2025 22:19:20 +0000 Files and hashes: 1: Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl (hash: M6zsuti419Um3KikDiU/6okWJtIp/DTG83YRo3jZqxw=) 2: 6AA36A7E564D11EB8B387024C4F9AE02.roa (hash: fGJYrfdMmxnMU9m3ImkorOWGB4M3nyP+3+G+aL2cIE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:19:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1765 (0x6e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8D, serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Validity Not Before: Jun 30 22:19:20 2025 GMT Not After : Jul 7 22:19:20 2025 GMT Subject: CN=68630d68-b54b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5a:9e:3b:4c:e1:bd:82:92:c2:27:bb:28:c8: 95:8d:be:92:8a:21:57:47:09:5a:1c:9c:70:5b:58: 48:27:78:16:1b:87:69:3f:fc:e7:cc:22:09:3d:0d: 42:26:78:82:16:6b:f5:86:49:04:b3:51:77:36:f8: 6c:d1:e3:40:cd:61:9f:17:37:b1:0c:23:51:71:ce: e9:96:d1:0f:a4:1a:b8:38:89:8f:01:88:50:2e:fe: 37:5a:39:a2:4c:a9:07:af:b1:02:e4:bd:bb:31:03: df:83:b8:dc:70:fc:ac:b4:ea:ba:22:86:0d:5c:72: 61:5f:13:51:4d:95:1c:7e:af:67:cf:2a:66:82:a2: f1:2e:7f:e4:9a:32:00:d3:14:40:5a:31:5a:3c:75: 1a:5a:50:3b:f0:a2:ec:ac:a9:c5:48:1a:6c:1d:ad: d0:9a:3b:a3:90:77:c5:cc:79:42:be:d8:8b:12:50: b1:0d:4d:30:d9:c7:18:ec:b3:de:e0:2e:fe:0b:5e: cc:fe:63:96:fd:12:cd:16:c0:09:47:15:ad:df:d8: 28:f9:ba:eb:d7:2d:9c:14:a9:11:46:18:d7:69:d9: 45:4a:5e:5a:52:52:4a:fd:08:54:d4:bc:08:34:31: 46:b8:ea:ef:3a:6b:0c:60:f5:f3:90:7e:4b:a6:93: 6f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:B0:92:3C:AB:1D:AB:72:3F:4F:B7:42:13:93:2E:99:1D:FB:30:DF X509v3 Authority Key Identifier: keyid:1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:33:48:ba:5d:85:5a:b9:03:68:68:86:db:60:be:b2:4b:55: 26:d1:83:bf:1b:84:54:df:7f:5a:cd:55:f5:8d:0d:af:cc:16: 32:f5:d1:72:d6:e9:32:9b:fb:ba:18:31:6c:d2:f5:e8:5b:43: bb:13:cc:fa:c3:03:39:a7:7b:e0:39:60:ef:b0:8f:49:8d:17: b7:3c:2a:34:f0:72:e7:14:78:38:94:a3:19:10:55:3c:ab:c9: 38:52:af:94:88:e9:33:c7:42:c0:61:8c:fd:b6:54:9b:ef:de: ec:25:8d:d0:4a:e6:73:1b:74:15:72:93:10:78:37:cd:ad:f3: 05:6b:bc:e8:92:3a:6a:91:6f:13:cb:cd:15:3b:92:c3:d3:a8: fd:92:72:55:ef:d6:71:1e:63:a6:df:7f:21:b3:b2:ba:37:a7: 48:ac:b3:01:de:a5:1d:93:76:b5:8c:e0:25:a6:d6:30:73:04: e0:70:84:20:02:4d:d6:e1:44:68:0e:dd:d7:b7:6a:b6:58:c9: 5b:40:37:02:32:c7:b2:70:31:2a:13:12:68:5d:0c:46:38:e4: ba:6d:69:b4:80:7a:5c:70:c5:52:a9:54:59:fc:ed:34:b1:cd: e4:2f:8d:a3:ba:05:9a:c1:62:5e:dc:14:f2:9c:6e:af:75:f7: f9:60:14:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEQxMTAvBgNVBAUTKDFERUJCNzM3MUFCOTdCQjlGM0E5MDZFQjA3RDU5MUM5 Q0YzODhENUQwHhcNMjUwNjMwMjIxOTIwWhcNMjUwNzA3MjIxOTIwWjAYMRYwFAYD VQQDEw02ODYzMGQ2OC1iNTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFqeO0zhvYKSwie7KMiVjb6SiiFXRwlaHJxwW1hIJ3gWG4dpP/znzCIJPQ1C JniCFmv1hkkEs1F3Nvhs0eNAzWGfFzexDCNRcc7pltEPpBq4OImPAYhQLv43Wjmi TKkHr7EC5L27MQPfg7jccPystOq6IoYNXHJhXxNRTZUcfq9nzypmgqLxLn/kmjIA 0xRAWjFaPHUaWlA78KLsrKnFSBpsHa3QmjujkHfFzHlCvtiLElCxDU0w2ccY7LPe 4C7+C17M/mOW/RLNFsAJRxWt39go+brr1y2cFKkRRhjXadlFSl5aUlJK/QhU1LwI NDFGuOrvOmsMYPXzkH5LppNv9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPewkjyr HatyP0+3QhOTLpkd+zDfMB8GA1UdIwQYMBaAFB3rtzcauXu586kG6wfVkcnPOI1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RC81NkZFRkY4MDU2 NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3bnpxUWJyQjlXUnljODRq VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hldTNOeHE1ZTduenFRYnJCOVdSeWM4NGpWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RC81NkZFRkY4MDU2NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3 bnpxUWJyQjlXUnljODRqVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQM0i6XYVauQNoaIbbYL6yS1Um0YO/G4RU339azVX1jQ2vzBYy9dFy 1ukym/u6GDFs0vXoW0O7E8z6wwM5p3vgOWDvsI9JjRe3PCo08HLnFHg4lKMZEFU8 q8k4Uq+UiOkzx0LAYYz9tlSb797sJY3QSuZzG3QVcpMQeDfNrfMFa7zokjpqkW8T y80VO5LD06j9knJV79ZxHmOm338hs7K6N6dIrLMB3qUdk3a1jOAlptYwcwTgcIQg Ak3W4URoDt3Xt2q2WMlbQDcCMseycDEqExJoXQxGOOS6bWm0gHpccMVSqVRZ/O00 sc3kL42jugWawWJe3BTynG6vdff5YBSz -----END CERTIFICATE-----Generated at Wed Jul 2 03:26:48 2025 by rpki-client