$ rpki-client -vvf rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft File: HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft (raw, json) Hash identifier: iB1YyvcLNAb3mlzhVG3c87wEZKMtoE6POGOO8o8lLAI= Subject key identifier: 7F:D3:2A:87:13:39:A2:B2:5E:68:3A:0C:29:FA:4F:41:42:7B:08:99 Authority key identifier: 1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C Certificate issuer: /CN=A9163609/serialNumber=1C422BB1FC96FE60D4B2FF5F6C12450ECC9EE96C Certificate serial: 01CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft Manifest number: 01C7 Signing time: Sun 15 Jun 2025 02:13:06 +0000 Manifest this update: Sun 15 Jun 2025 02:13:06 +0000 Manifest next update: Sun 22 Jun 2025 02:13:06 +0000 Files and hashes: 1: HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl (hash: JtLk60I1Twr0LUxvwUvhy89fftV2+8X1aMWmJX2oZa0=) 2: F2AB2F288FE011EDA9919C57C4F9AE02.roa (hash: Rf57xWILJOvL68EEABL6r6dfZw+gyCnJxd924tHN+AU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 459 (0x1cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163609, serialNumber=1C422BB1FC96FE60D4B2FF5F6C12450ECC9EE96C Validity Not Before: Jun 15 02:13:06 2025 GMT Not After : Jun 22 02:13:06 2025 GMT Subject: CN=684e2c32-05ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:24:b2:6b:d2:90:66:91:b6:7a:3a:a0:d5:fc: 63:b7:6f:3a:74:5b:c0:d9:6e:9f:2b:ed:57:0a:78: 9f:76:d3:0a:2e:03:1d:ff:fb:a3:6f:70:f6:86:52: f3:53:bc:01:e7:43:a2:50:a6:25:73:b1:15:bb:d3: 01:34:8c:27:0e:fc:1a:59:f2:28:c1:0f:28:69:91: fe:62:ea:d2:12:8f:78:03:e8:5b:e7:7d:87:01:0f: a9:62:2e:b8:52:bf:aa:35:9d:e7:dd:e5:bd:04:80: 80:e6:25:c4:7c:71:97:80:1d:6f:df:8f:1e:a9:eb: 83:26:c4:05:34:7f:bc:df:29:1e:e3:c2:d5:4c:cc: 63:56:7e:31:60:39:90:6e:1f:a6:63:7b:6f:76:ee: 10:8a:10:30:0a:0b:d9:ec:be:e7:fc:5b:d0:2d:e7: 36:9a:2a:37:7d:4a:a4:ae:ee:3c:c6:96:11:da:c5: 71:2c:0c:50:a1:db:20:af:86:51:71:3e:36:ec:5e: c0:f4:11:df:f7:a0:a3:7c:15:91:90:ad:4b:28:6d: 23:09:81:98:a6:e9:20:f7:e5:85:9f:ee:ba:d1:7e: 8f:e7:1b:58:f9:14:15:ef:8f:15:97:a4:6f:78:6c: 29:ba:fa:34:77:2e:94:01:a4:5e:2b:9c:4d:27:68: 29:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D3:2A:87:13:39:A2:B2:5E:68:3A:0C:29:FA:4F:41:42:7B:08:99 X509v3 Authority Key Identifier: keyid:1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:cd:ba:0a:fa:80:cb:ee:a2:42:6e:ef:6c:25:72:f8:d1:a1: 10:ee:2c:aa:81:63:b2:ec:ee:be:bd:82:ec:75:79:8e:72:ea: 1c:15:1e:9c:39:cf:c1:47:df:38:67:25:f8:f2:6a:03:f0:c3: cd:de:d1:d5:2b:04:1e:6b:bb:de:23:09:d9:bc:8b:fc:bd:fa: d8:67:3b:01:44:5c:7d:fc:b4:3f:9b:4d:4a:78:7b:f3:f7:15: 43:23:81:01:55:17:f0:b6:0c:b0:64:6d:d8:a2:b8:52:0b:91: 6b:c7:b7:4d:58:87:66:71:d3:c7:32:7f:2e:f7:eb:2f:b7:0d: 93:aa:dd:9d:c3:e7:16:4c:4d:ba:41:92:19:59:91:ae:6a:03: e2:39:9b:70:b0:16:c4:93:47:07:ae:23:61:ab:40:0a:c0:de: fd:42:7b:22:64:7a:f8:9b:7c:0f:c7:cd:5e:0f:fd:24:12:aa: 95:35:e1:04:ba:67:2d:f8:71:2b:20:2d:de:1b:33:92:75:c9: 6c:d9:8b:92:4a:24:0a:1d:ee:12:c9:91:51:53:cd:57:ce:42: 27:4b:c0:fb:08:80:88:69:55:8b:84:e0:f4:8d:62:ba:a8:70: 5a:c8:3c:48:9b:4f:8a:4d:08:58:6d:a4:6f:c4:53:64:1b:bd: ad:5a:6d:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM2MDkxMTAvBgNVBAUTKDFDNDIyQkIxRkM5NkZFNjBENEIyRkY1RjZDMTI0NTBF Q0M5RUU5NkMwHhcNMjUwNjE1MDIxMzA2WhcNMjUwNjIyMDIxMzA2WjAYMRYwFAYD VQQDEw02ODRlMmMzMi0wNWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCSya9KQZpG2ejqg1fxjt286dFvA2W6fK+1XCnifdtMKLgMd//ujb3D2hlLz U7wB50OiUKYlc7EVu9MBNIwnDvwaWfIowQ8oaZH+YurSEo94A+hb532HAQ+pYi64 Ur+qNZ3n3eW9BICA5iXEfHGXgB1v348eqeuDJsQFNH+83yke48LVTMxjVn4xYDmQ bh+mY3tvdu4QihAwCgvZ7L7n/FvQLec2mio3fUqkru48xpYR2sVxLAxQodsgr4ZR cT427F7A9BHf96CjfBWRkK1LKG0jCYGYpukg9+WFn+660X6P5xtY+RQV748Vl6Rv eGwpuvo0dy6UAaReK5xNJ2gpfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/TKocT OaKyXmg6DCn6T0FCewiZMB8GA1UdIwQYMBaAFBxCK7H8lv5g1LL/X2wSRQ7Mnuls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzYwOS8yM0Y5RThCQThG REUxMUVEQUUzNjlBNTNDNEY5QUUwMi9IRUlyc2Z5V19tRFVzdjlmYkJKRkRzeWU2 V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFSXJzZnlXX21EVXN2OWZiQkpGRHN5ZTZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzYwOS8yM0Y5RThCQThGREUxMUVEQUUzNjlBNTNDNEY5QUUwMi9IRUlyc2Z5V19t RFVzdjlmYkJKRkRzeWU2V3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjzboK+oDL7qJCbu9sJXL40aEQ7iyqgWOy7O6+vYLsdXmOcuocFR6c Oc/BR984ZyX48moD8MPN3tHVKwQea7veIwnZvIv8vfrYZzsBRFx9/LQ/m01KeHvz 9xVDI4EBVRfwtgywZG3YorhSC5Frx7dNWIdmcdPHMn8u9+svtw2Tqt2dw+cWTE26 QZIZWZGuagPiOZtwsBbEk0cHriNhq0AKwN79QnsiZHr4m3wPx81eD/0kEqqVNeEE umct+HErIC3eGzOSdcls2YuSSiQKHe4SyZFRU81XzkInS8D7CICIaVWLhOD0jWK6 qHBayDxIm0+KTQhYbaRvxFNkG72tWm0S -----END CERTIFICATE-----Generated at Sun Jun 15 08:45:29 2025 by rpki-client