$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft File: He4XpqM4DuSI7ztuISW4eOZAckg.mft (raw, json) Hash identifier: 0N+IKK5XAB4mjiqLKx8eKqjHPrza4cx/fLyo0Qgxpn8= Subject key identifier: 60:38:41:D0:39:2E:5F:50:90:0E:90:C7:9E:D6:FB:EA:6D:96:4C:74 Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft Manifest number: 018A Signing time: Tue 01 Jul 2025 03:58:48 +0000 Manifest this update: Tue 01 Jul 2025 03:58:48 +0000 Manifest next update: Tue 08 Jul 2025 03:58:48 +0000 Files and hashes: 1: He4XpqM4DuSI7ztuISW4eOZAckg.crl (hash: zbRJM/rtDGuavViJ0dPhm+KK6klVlh1Uy0yJ3ndlNtA=) 2: 805A2E74660311EF90397033C4F9AE02.roa (hash: kr3XK/LA3ME6CWbcxw7hFQfhU6QavtLWXc2+mP6aHgc=) 3: 8405155C69EB11EF933A993CC4F9AE02.roa (hash: Nc218pLJmDdsf2Z9Kv612BkBE9ixmiOBUD2+vg6KRQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22, serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: Jul 1 03:58:48 2025 GMT Not After : Jul 8 03:58:48 2025 GMT Subject: CN=68635cf8-7b9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:36:12:49:33:72:a1:9c:0e:0c:a1:2d:24:f4: 0f:2b:ca:e4:45:a6:41:8b:07:a3:75:d4:e6:11:ea: 85:ad:b3:5a:73:47:5c:82:ce:09:d9:26:3f:05:8d: 3d:09:22:97:ea:61:10:39:39:c7:d1:45:ab:d5:0c: 17:94:30:26:de:52:fe:e7:a3:82:d3:05:81:cf:6d: c0:c6:ab:a4:e2:69:fb:05:c3:ad:12:66:ee:e7:09: 1d:e7:ed:2a:f7:0c:e0:ec:d7:77:cf:b9:e5:da:98: 8c:00:3f:7f:cb:c3:ac:0d:2a:28:10:23:71:e4:7b: 2d:69:55:c0:c2:05:ea:af:b2:1f:e8:af:49:59:ce: 19:e3:5a:99:7c:59:e3:64:10:0d:f6:6b:4c:f9:e4: ff:9f:08:0c:c2:16:42:4e:a6:0e:7e:b8:75:d5:98: d4:f4:41:1a:57:d4:5b:55:66:77:c6:79:ca:14:fc: 3b:e2:a7:f3:45:7a:d8:37:32:fa:c1:7b:69:cf:7b: c4:f5:d9:33:37:91:ac:33:93:ca:3f:31:e7:5f:3f: 57:17:2e:e2:94:22:27:d2:3d:9e:4a:a9:91:b9:17: af:1d:20:9f:b6:12:cf:45:49:17:b1:1b:63:ca:86: 18:b2:46:95:26:5a:05:d0:ee:04:b0:dd:ab:02:2c: b6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:38:41:D0:39:2E:5F:50:90:0E:90:C7:9E:D6:FB:EA:6D:96:4C:74 X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:c7:e7:e5:a7:a9:f0:fd:cb:03:cd:73:e7:7d:22:21:24:3c: 02:0a:fb:9e:f2:a1:fd:c8:fd:25:a1:de:53:56:88:df:96:f4: 25:96:15:2e:ef:01:0f:62:bd:d5:33:d2:ed:b3:b7:06:64:4d: 95:79:63:33:12:e2:d3:1a:23:27:45:58:27:4e:f2:26:01:1a: 41:9d:5b:c8:84:d1:81:0b:6a:10:69:10:95:06:8c:23:c8:91: 76:a2:c4:fd:51:92:98:2e:5e:c2:94:86:c4:5b:9c:93:be:85: 47:70:da:0c:52:ff:63:25:61:a7:43:8e:35:5d:50:a3:1a:17: 2b:6f:f8:65:5b:d9:a9:d4:c3:92:c2:9c:c0:30:02:b6:b0:13: 76:70:70:9f:63:46:8d:2e:c6:c6:0e:ec:82:fb:41:6f:df:1c: 36:4a:53:4c:fe:91:47:eb:4c:c0:a3:dc:57:6e:ff:f5:3e:3c: ae:a2:43:30:f9:54:5a:b3:f7:53:dd:69:99:80:f1:e0:9c:30: f9:60:5e:fc:b1:37:8c:68:fe:9d:70:33:80:7a:28:f8:9d:7c: b1:5c:44:4e:74:64:c7:4d:a2:7e:af:e3:8c:f2:6c:22:f3:b3: ce:6e:86:dc:5e:5f:18:2b:59:08:0b:d1:b2:70:ee:bd:47:04: 05:c8:b3:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjUwNzAxMDM1ODQ4WhcNMjUwNzA4MDM1ODQ4WjAYMRYwFAYD VQQDEw02ODYzNWNmOC03YjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjYSSTNyoZwODKEtJPQPK8rkRaZBiwejddTmEeqFrbNac0dcgs4J2SY/BY09 CSKX6mEQOTnH0UWr1QwXlDAm3lL+56OC0wWBz23Axquk4mn7BcOtEmbu5wkd5+0q 9wzg7Nd3z7nl2piMAD9/y8OsDSooECNx5HstaVXAwgXqr7If6K9JWc4Z41qZfFnj ZBAN9mtM+eT/nwgMwhZCTqYOfrh11ZjU9EEaV9RbVWZ3xnnKFPw74qfzRXrYNzL6 wXtpz3vE9dkzN5GsM5PKPzHnXz9XFy7ilCIn0j2eSqmRuRevHSCfthLPRUkXsRtj yoYYskaVJloF0O4EsN2rAiy21QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGA4QdA5 Ll9QkA6Qx57W++ptlkx0MB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyMi8zRjdENjhBOEZERTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1 U0k3enR1SVNXNGVPWkFja2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVx+flp6nw/csDzXPnfSIhJDwCCvue8qH9yP0lod5TVojflvQllhUu 7wEPYr3VM9Lts7cGZE2VeWMzEuLTGiMnRVgnTvImARpBnVvIhNGBC2oQaRCVBowj yJF2osT9UZKYLl7ClIbEW5yTvoVHcNoMUv9jJWGnQ441XVCjGhcrb/hlW9mp1MOS wpzAMAK2sBN2cHCfY0aNLsbGDuyC+0Fv3xw2SlNM/pFH60zAo9xXbv/1PjyuokMw +VRas/dT3WmZgPHgnDD5YF78sTeMaP6dcDOAeij4nXyxXEROdGTHTaJ+r+OM8mwi 87PObobcXl8YK1kIC9GycO69RwQFyLOc -----END CERTIFICATE-----Generated at Wed Jul 2 14:42:50 2025 by rpki-client