$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: jfVgp2RFQ9+mFciBtKPRz21xqbtQTC6+7DNOOXAIQUg= Subject key identifier: 58:10:2C:95:90:FD:0C:0F:EA:69:98:5F:5C:8F:3D:32:E7:54:D1:82 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 01DF Signing time: Fri 13 Jun 2025 01:49:21 +0000 Manifest this update: Fri 13 Jun 2025 01:49:21 +0000 Manifest next update: Fri 20 Jun 2025 01:49:21 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: 1Ep13iMXTx4h+U9LBI7VoRKS3nMUD365HmL/KNnPVsk=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: mCCSZ+9WYvhaMFX9tC0Iaz2gMx4GH4ZGb0UPoAirqT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:49:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: Jun 13 01:49:21 2025 GMT Not After : Jun 20 01:49:21 2025 GMT Subject: CN=684b83a1-b7d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9c:53:4b:1d:c2:77:cb:e0:5f:13:8f:09:70: c7:39:d6:b2:c5:c0:5b:fe:91:90:7e:fe:ef:3d:d9: ab:fd:ad:69:90:a7:3e:92:63:c1:10:09:4e:28:58: 4a:bd:8e:6d:21:4a:86:21:ed:c2:18:2d:d1:e3:94: e3:ce:84:87:b3:26:60:74:5a:95:b4:a5:13:c5:6b: db:c4:12:9d:9b:26:b7:24:cd:8a:7a:27:cb:d2:c9: ca:87:ca:c8:ec:a9:54:3f:15:75:89:33:0e:b5:db: 22:fb:53:9a:06:bb:28:ab:a8:ba:bd:97:04:00:91: 48:c7:b2:3e:5f:ac:75:2d:45:71:9e:e0:09:12:a6: 75:a7:bc:97:ff:29:f2:89:6b:e9:ab:a5:2b:94:2b: f9:ac:f1:2a:4a:02:e3:da:f5:f5:9a:85:0e:1e:88: 9e:17:0a:e1:e8:2c:8c:31:56:7d:d2:5f:dd:6d:2e: 4e:b2:5d:75:e5:69:28:76:d7:67:16:b9:42:ad:a6: 7d:c5:f5:f4:1e:6c:e3:09:bd:40:b9:8c:8b:23:a9: 80:25:99:db:0f:dc:3f:e2:1d:44:c8:4a:50:60:28: 10:b6:c3:a2:06:6a:ee:72:f9:d6:fe:ab:15:9b:d7: ee:54:f3:27:a2:dd:e0:56:16:8d:43:4e:2d:ad:34: f2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:10:2C:95:90:FD:0C:0F:EA:69:98:5F:5C:8F:3D:32:E7:54:D1:82 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:2c:f5:48:c6:49:07:77:f3:f6:05:12:40:c0:1d:fc:53:e2: e7:d1:64:fb:5d:e9:dd:f4:64:74:a2:4d:9d:4b:13:1a:e5:d2: 68:a1:2a:cd:56:f8:4b:da:03:65:c6:68:44:73:f7:77:62:57: ac:53:53:31:9a:2b:06:5b:a6:cc:7b:11:81:42:13:e5:b2:82: 1c:64:ab:a7:08:a7:d4:72:f5:c9:68:40:39:de:ca:6c:6d:b0: 8a:03:35:9f:3d:ad:ab:11:37:15:38:b6:10:f2:03:8f:fa:56: 0c:c1:31:e6:d6:98:f9:44:1f:f2:a8:ab:3e:89:1a:31:c6:9e: ba:db:fd:eb:77:cb:9e:a9:bf:b6:b1:01:8f:e9:3d:a5:d3:11: 02:7d:25:a4:c3:da:16:c6:7c:c2:2a:b6:e4:9a:f0:ff:36:d3: 53:4e:5d:be:95:d0:d5:b5:36:dd:d6:c2:54:6b:c7:dc:61:b7: 0c:ff:99:af:0c:d6:34:5a:e1:d2:05:e4:24:40:69:31:98:f2: 94:e6:24:98:e0:80:bd:5c:71:28:38:f2:fe:ed:ed:8d:6e:77: 95:78:a6:d2:f8:61:48:20:91:93:2f:e6:e0:c8:7a:d6:f1:d3: af:32:5a:4b:ff:66:91:b5:c2:19:92:af:67:57:4d:ce:e8:e8: bb:13:c8:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjUwNjEzMDE0OTIxWhcNMjUwNjIwMDE0OTIxWjAYMRYwFAYD VQQDEw02ODRiODNhMS1iN2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJxTSx3Cd8vgXxOPCXDHOdayxcBb/pGQfv7vPdmr/a1pkKc+kmPBEAlOKFhK vY5tIUqGIe3CGC3R45TjzoSHsyZgdFqVtKUTxWvbxBKdmya3JM2KeifL0snKh8rI 7KlUPxV1iTMOtdsi+1OaBrsoq6i6vZcEAJFIx7I+X6x1LUVxnuAJEqZ1p7yX/yny iWvpq6UrlCv5rPEqSgLj2vX1moUOHoieFwrh6CyMMVZ90l/dbS5Osl115Wkodtdn FrlCraZ9xfX0HmzjCb1AuYyLI6mAJZnbD9w/4h1EyEpQYCgQtsOiBmrucvnW/qsV m9fuVPMnot3gVhaNQ04trTTyKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgQLJWQ /QwP6mmYX1yPPTLnVNGCMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJLPVIxkkHd/P2BRJAwB38U+Ln0WT7Xend9GR0ok2dSxMa5dJooSrN VvhL2gNlxmhEc/d3YlesU1MxmisGW6bMexGBQhPlsoIcZKunCKfUcvXJaEA53sps bbCKAzWfPa2rETcVOLYQ8gOP+lYMwTHm1pj5RB/yqKs+iRoxxp662/3rd8ueqb+2 sQGP6T2l0xECfSWkw9oWxnzCKrbkmvD/NtNTTl2+ldDVtTbd1sJUa8fcYbcM/5mv DNY0WuHSBeQkQGkxmPKU5iSY4IC9XHEoOPL+7e2NbneVeKbS+GFIIJGTL+bgyHrW 8dOvMlpL/2aRtcIZkq9nV03O6Oi7E8jc -----END CERTIFICATE-----Generated at Sat Jun 14 18:55:13 2025 by rpki-client