$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: AMcP7TRnDjqbuEyyezzMKdiC3iPng9k3B5vB1HWmLc8= Subject key identifier: 4C:6D:A8:EB:66:13:4F:7F:9A:20:11:3D:FB:DE:D5:C0:95:AF:6A:E8 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 0202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 01FC Signing time: Sat 09 Aug 2025 02:48:43 +0000 Manifest this update: Sat 09 Aug 2025 02:48:42 +0000 Manifest next update: Sat 16 Aug 2025 02:48:42 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: WYRyFE6Z+rcc7UgrD5tW+aA44Wg6F2se3ESvZyH8YvA=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: mCCSZ+9WYvhaMFX9tC0Iaz2gMx4GH4ZGb0UPoAirqT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: Aug 9 02:48:42 2025 GMT Not After : Aug 16 02:48:42 2025 GMT Subject: CN=6896b70b-40c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d6:b0:ff:db:ee:1e:db:1f:8b:b0:85:cb:ca: f2:4d:e2:ab:b7:59:cc:bd:ec:2f:2d:94:31:d8:cb: 33:38:70:0e:f2:2f:45:33:c1:93:2e:59:cf:aa:a1: 6c:1e:43:0c:08:d8:1b:e3:c9:9e:db:e2:e1:14:f1: c4:78:2b:63:4f:4c:84:49:1c:df:f8:3d:16:bd:af: 1f:ad:7f:ab:f7:2f:f3:32:65:e3:57:42:22:f8:4c: 5c:80:52:a3:d0:f5:cd:02:f4:ed:8d:c9:a5:4c:5d: 9e:64:25:80:28:8b:9b:37:49:6d:c9:a5:af:da:f4: f5:53:2a:35:57:d7:2a:0a:a7:24:a7:4f:c1:45:c7: ae:1a:bf:0c:4d:7f:15:a4:c0:d0:41:9d:4c:e7:17: 31:b7:30:1b:12:b1:a3:20:67:30:01:36:47:54:6b: 46:95:58:34:e2:07:f1:d6:5f:ea:4f:af:b4:55:f8: 35:a5:55:3d:57:b6:b8:bf:1c:62:ba:5a:da:56:3a: cf:4a:b5:c3:af:00:31:94:b1:a2:9a:64:e8:eb:87: 12:4a:12:44:de:27:71:26:12:be:75:93:19:fa:4c: d1:38:3d:8e:d5:e6:78:9a:98:6d:02:1f:53:db:4e: 8f:4a:02:f2:e3:a5:18:f1:ea:64:b8:47:18:4b:31: b9:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:6D:A8:EB:66:13:4F:7F:9A:20:11:3D:FB:DE:D5:C0:95:AF:6A:E8 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:d3:ca:1b:d7:81:9a:1c:1a:91:0e:13:bd:54:07:44:e8:d4: 36:44:9e:21:94:13:8d:93:78:22:73:91:b4:6f:c4:b1:11:47: f5:84:94:f6:a0:34:83:5e:f1:ec:dc:36:b3:32:14:10:e9:6e: 8d:9d:65:50:a3:85:8b:81:3d:c5:e4:a7:de:36:58:a0:e9:6b: 4f:26:4e:21:3a:60:88:fd:f0:44:a5:da:30:27:10:03:46:5a: a0:7e:0d:b0:d4:d3:f6:dd:14:a1:a9:23:36:da:12:40:52:72: 67:52:71:02:7d:cf:bc:a4:24:c3:c1:1a:f6:3f:38:83:4a:05: de:73:69:78:49:34:44:16:3a:78:aa:81:fb:33:bb:07:13:c5: 9a:69:36:fd:8a:b6:fc:2e:4c:3a:db:6f:92:ef:e8:2c:ea:a8: de:32:0a:2e:4f:ad:98:c7:8f:00:0d:58:3c:f4:40:72:1a:88: 8a:4a:f4:d3:54:2c:63:d7:89:4c:af:77:14:18:96:f8:15:b9: 97:59:1f:0a:b1:5a:bf:35:9e:9c:c1:ec:11:03:fc:1b:28:ad: 95:0d:04:a4:97:e6:9d:be:d9:e7:a3:14:e7:13:4c:89:87:67: c9:9f:2a:7c:cb:4d:2a:ac:ac:06:ba:15:25:66:07:26:4c:11: b3:77:67:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjUwODA5MDI0ODQyWhcNMjUwODE2MDI0ODQyWjAYMRYwFAYD VQQDEw02ODk2YjcwYi00MGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1daw/9vuHtsfi7CFy8ryTeKrt1nMvewvLZQx2MszOHAO8i9FM8GTLlnPqqFs HkMMCNgb48me2+LhFPHEeCtjT0yESRzf+D0Wva8frX+r9y/zMmXjV0Ii+ExcgFKj 0PXNAvTtjcmlTF2eZCWAKIubN0ltyaWv2vT1Uyo1V9cqCqckp0/BRceuGr8MTX8V pMDQQZ1M5xcxtzAbErGjIGcwATZHVGtGlVg04gfx1l/qT6+0Vfg1pVU9V7a4vxxi ulraVjrPSrXDrwAxlLGimmTo64cSShJE3idxJhK+dZMZ+kzROD2O1eZ4mphtAh9T 206PSgLy46UY8epkuEcYSzG5yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExtqOtm E09/miARPfve1cCVr2roMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo08ob14GaHBqRDhO9VAdE6NQ2RJ4hlBONk3gic5G0b8SxEUf1hJT2 oDSDXvHs3DazMhQQ6W6NnWVQo4WLgT3F5KfeNlig6WtPJk4hOmCI/fBEpdowJxAD Rlqgfg2w1NP23RShqSM22hJAUnJnUnECfc+8pCTDwRr2PziDSgXec2l4STREFjp4 qoH7M7sHE8WaaTb9irb8Lkw622+S7+gs6qjeMgouT62Yx48ADVg89EByGoiKSvTT VCxj14lMr3cUGJb4FbmXWR8KsVq/NZ6cwewRA/wbKK2VDQSkl+advtnnoxTnE0yJ h2fJnyp8y00qrKwGuhUlZgcmTBGzd2dX -----END CERTIFICATE-----Generated at Sat Aug 9 20:52:16 2025 by rpki-client