$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft File: He4XpqM4DuSI7ztuISW4eOZAckg.mft (raw, json) Hash identifier: udc897lHHenSh9T6pP5PMOaxkBX2yfbXTkPTxVc+O0g= Subject key identifier: C2:62:A1:AF:4B:2B:C3:AF:9A:0E:D1:00:51:AD:D2:5C:81:67:09:E4 Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft Manifest number: 016D Signing time: Sat 03 May 2025 03:19:24 +0000 Manifest this update: Sat 03 May 2025 03:19:24 +0000 Manifest next update: Sat 10 May 2025 03:19:24 +0000 Files and hashes: 1: He4XpqM4DuSI7ztuISW4eOZAckg.crl (hash: RioMXT3sJWYA9DiDAJBjE9q4c5yoYM+NCVk+HnwhIKM=) 2: 8405155C69EB11EF933A993CC4F9AE02.roa (hash: Nc218pLJmDdsf2Z9Kv612BkBE9ixmiOBUD2+vg6KRQA=) 3: 805A2E74660311EF90397033C4F9AE02.roa (hash: kr3XK/LA3ME6CWbcxw7hFQfhU6QavtLWXc2+mP6aHgc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 03:19:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22, serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: May 3 03:19:24 2025 GMT Not After : May 10 03:19:24 2025 GMT Subject: CN=68158b3c-0dbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:82:35:4e:94:33:a0:24:78:56:94:31:26:5f: b4:8b:c7:8a:40:7e:f1:a9:90:e5:e8:ff:6d:0e:ec: 1a:73:99:1a:26:ad:b6:d3:10:3d:2e:d3:70:71:c4: 47:a2:b7:a1:99:71:b4:b8:4a:d8:41:1a:a9:61:40: 0b:e9:60:02:11:aa:f0:17:b8:f3:0d:d9:92:07:f7: 94:12:4d:db:89:69:85:49:b5:34:7d:b2:24:2b:dd: c6:6c:4c:9f:33:21:78:b6:6a:ed:a9:09:05:4f:85: 0e:b7:15:4c:50:3c:10:2b:89:a5:97:98:64:ee:05: b1:2a:57:6c:15:2a:37:83:5d:4f:96:6b:92:c2:91: 58:25:bf:01:be:fd:7d:e7:24:68:00:cb:f6:3f:25: 97:32:07:10:6e:74:14:12:b7:b2:72:d4:c0:7e:db: fe:d5:6c:f7:f2:00:a3:d5:51:9a:aa:22:dc:aa:52: 1f:b6:88:17:48:cd:ea:3f:86:eb:32:2f:1c:ee:56: 77:fe:d7:81:46:41:01:64:27:8f:aa:80:d0:b8:40: 98:10:6b:08:59:fe:04:5c:79:00:80:f1:04:78:9b: 31:13:26:ed:1e:d7:19:72:81:ba:f2:07:9b:41:6b: 2c:58:85:12:cc:a3:b2:f5:a7:dd:b8:28:50:d6:83: 36:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:62:A1:AF:4B:2B:C3:AF:9A:0E:D1:00:51:AD:D2:5C:81:67:09:E4 X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:f7:34:0f:29:14:d0:07:af:d4:22:96:53:2c:b5:c3:19:4a: e2:81:64:7a:fd:aa:4a:e3:ad:eb:35:bc:c6:67:79:50:ff:0c: b0:8b:a6:7a:59:d3:ad:4c:ce:58:bc:19:9e:d8:34:5e:2c:79: 1e:9f:e4:34:bd:40:32:ce:dd:b0:df:5c:d0:71:89:53:ae:67: db:97:9d:63:74:d0:41:41:da:a0:65:20:66:24:fa:37:e8:07: c3:a0:48:8f:bf:36:dc:b6:9a:3b:47:7c:ab:ab:38:fc:10:e6: 47:65:91:fa:bc:cb:49:21:0c:05:62:a3:6c:84:59:cf:03:37: c4:45:07:5f:4b:5d:2d:54:8e:c2:e7:b9:2f:57:ba:8d:76:48: 08:38:9e:3c:2c:da:0f:5d:ed:3c:dc:a1:62:40:ac:79:ce:82: 53:3c:0a:fc:58:ba:8d:dd:70:a0:fb:00:08:f4:aa:61:ff:06: ea:ac:85:af:d8:8e:34:fa:3b:3a:f1:6c:a8:ca:a0:7e:fb:a7: ed:38:98:2f:74:6e:95:77:d1:87:dc:6d:97:f1:fb:ff:50:f4: e4:46:0f:b9:9d:71:15:83:6a:17:89:1a:04:9e:e4:64:aa:54: 06:78:37:c8:af:f1:88:56:5a:1a:e1:dd:ed:7f:52:31:35:ed: 2e:dc:03:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjUwNTAzMDMxOTI0WhcNMjUwNTEwMDMxOTI0WjAYMRYwFAYD VQQDEw02ODE1OGIzYy0wZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4I1TpQzoCR4VpQxJl+0i8eKQH7xqZDl6P9tDuwac5kaJq220xA9LtNwccRH orehmXG0uErYQRqpYUAL6WACEarwF7jzDdmSB/eUEk3biWmFSbU0fbIkK93GbEyf MyF4tmrtqQkFT4UOtxVMUDwQK4mll5hk7gWxKldsFSo3g11PlmuSwpFYJb8Bvv19 5yRoAMv2PyWXMgcQbnQUEreyctTAftv+1Wz38gCj1VGaqiLcqlIftogXSM3qP4br Mi8c7lZ3/teBRkEBZCePqoDQuECYEGsIWf4EXHkAgPEEeJsxEybtHtcZcoG68geb QWssWIUSzKOy9afduChQ1oM2MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJioa9L K8Ovmg7RAFGt0lyBZwnkMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyMi8zRjdENjhBOEZERTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1 U0k3enR1SVNXNGVPWkFja2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA9zQPKRTQB6/UIpZTLLXDGUrigWR6/apK463rNbzGZ3lQ/wywi6Z6 WdOtTM5YvBme2DReLHken+Q0vUAyzt2w31zQcYlTrmfbl51jdNBBQdqgZSBmJPo3 6AfDoEiPvzbctpo7R3yrqzj8EOZHZZH6vMtJIQwFYqNshFnPAzfERQdfS10tVI7C 57kvV7qNdkgIOJ48LNoPXe083KFiQKx5zoJTPAr8WLqN3XCg+wAI9Kph/wbqrIWv 2I40+js68WyoyqB++6ftOJgvdG6Vd9GH3G2X8fv/UPTkRg+5nXEVg2oXiRoEnuRk qlQGeDfIr/GIVloa4d3tf1IxNe0u3AN2 -----END CERTIFICATE-----Generated at Mon May 5 02:57:24 2025 by rpki-client