$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: 5z0j9IXptEZFJrI1kUFGEd8LVkbme5I+wns4gnIONOM= Subject key identifier: 98:9E:5C:FF:D3:67:A3:E5:FC:26:34:1B:F9:ED:8F:85:4A:5E:19:FC Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 1375 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 134B Signing time: Sat 14 Jun 2025 16:58:58 +0000 Manifest this update: Sat 14 Jun 2025 16:58:58 +0000 Manifest next update: Sat 21 Jun 2025 16:58:58 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: xe58/6zhDRfgjL7dDh+Kh/a2oYGWSowoQjWzHZZE9kM=) 2: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: YO0KSyMg3rhBagYoGztB5o5uMcRrrSiw068DI4yqRmI=) 3: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WXuqlnvJ/kQYgmajvkp6WqRXIhVjEPtrsEAuBi7s1vA=) 4: 538F7B12B1D711EBB3C0A24AC4F9AE02.roa (hash: VriM0YGDOfhzo18xUQqToLLJGd+19KKo1Yju23Rp1tg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:58:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4981 (0x1375) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Jun 14 16:58:58 2025 GMT Not After : Jun 21 16:58:58 2025 GMT Subject: CN=684daa52-5e1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:da:85:7e:9d:45:3e:76:6f:c4:9f:b7:c2:63: c5:7e:34:47:32:c4:95:00:e7:95:cc:9d:24:b7:6b: 7f:95:f9:ce:1f:15:82:27:2a:27:bd:fd:e3:cd:62: 6f:2c:e2:01:8b:20:f8:a7:1a:a8:55:1f:4f:6f:ee: f6:1f:4b:75:41:ce:8f:9d:0c:da:8c:a8:a6:39:f4: ce:8d:22:c7:a0:88:98:9a:38:90:d4:d0:bd:22:0f: 7e:9b:65:0e:eb:f0:b3:45:24:47:96:d2:26:6d:9c: d8:a2:f5:76:80:88:62:95:6f:c4:fa:85:b1:5a:99: d5:bf:71:ea:09:e9:d4:61:9c:76:8b:10:92:d8:9f: 68:50:15:d3:e9:f4:8c:12:00:da:76:ad:da:89:1e: b7:98:fc:b4:18:a3:38:b5:ea:bf:60:34:e5:41:68: 1f:9c:89:6e:55:4c:f0:05:09:6c:98:7d:ff:7a:0f: b2:4f:58:23:01:23:7b:3d:0d:b8:73:23:b6:8f:27: 59:c8:39:8a:b0:cd:76:80:d3:35:f1:dd:a2:f6:81: 06:b2:5d:08:f1:02:55:ba:6e:9e:c2:aa:85:27:d4: 40:70:57:88:b9:0d:1b:34:ab:97:3f:77:e7:d9:33: 40:63:96:e3:ac:ba:11:8b:c4:03:20:26:e3:c1:b7: cb:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:9E:5C:FF:D3:67:A3:E5:FC:26:34:1B:F9:ED:8F:85:4A:5E:19:FC X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:a1:03:12:41:44:01:3f:86:86:d6:40:2c:8e:63:da:81:2d: fd:48:6d:4a:61:7d:4c:b0:df:a8:00:5a:d7:92:ab:1f:c6:8f: 27:87:f4:48:55:29:a2:1d:6f:ff:4b:6f:25:13:7b:1b:c1:62: ff:51:bb:ab:0f:7d:cc:17:fa:3d:00:33:36:84:41:7c:4e:2d: 8d:3c:ee:60:04:d1:5a:cb:20:e0:9e:a3:55:78:af:49:6e:9b: c0:a9:60:58:d8:49:ca:15:3a:db:56:1e:d3:0d:7e:49:e8:2b: 7d:91:61:39:18:bd:52:fc:17:99:7b:7b:f0:4b:2f:ac:76:f8: f9:22:a5:25:f6:d4:02:66:0b:49:b0:bb:36:24:41:cf:d8:f5: 48:5f:5e:c9:38:4e:2c:23:a2:9f:93:58:c8:1f:4f:0f:5e:11: fe:dd:86:08:80:1d:02:84:d3:73:6c:a1:4d:ef:81:0c:19:42: 8b:b4:20:04:f8:87:9c:14:64:87:a0:2c:a2:08:47:1b:74:1d: ec:57:8b:70:ed:6b:44:b3:5a:8a:bc:af:38:d9:bc:16:56:47: e9:e3:2f:3f:9a:20:8b:94:2a:3d:2c:cd:57:48:dc:c2:f6:cf: f5:76:ee:39:14:aa:58:30:b0:e4:f4:4e:e9:05:67:dc:e8:b9: a6:59:6d:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjUwNjE0MTY1ODU4WhcNMjUwNjIxMTY1ODU4WjAYMRYwFAYD VQQDEw02ODRkYWE1Mi01ZTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdqFfp1FPnZvxJ+3wmPFfjRHMsSVAOeVzJ0kt2t/lfnOHxWCJyonvf3jzWJv LOIBiyD4pxqoVR9Pb+72H0t1Qc6PnQzajKimOfTOjSLHoIiYmjiQ1NC9Ig9+m2UO 6/CzRSRHltImbZzYovV2gIhilW/E+oWxWpnVv3HqCenUYZx2ixCS2J9oUBXT6fSM EgDadq3aiR63mPy0GKM4teq/YDTlQWgfnIluVUzwBQlsmH3/eg+yT1gjASN7PQ24 cyO2jydZyDmKsM12gNM18d2i9oEGsl0I8QJVum6ewqqFJ9RAcFeIuQ0bNKuXP3fn 2TNAY5bjrLoRi8QDICbjwbfLawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJieXP/T Z6Pl/CY0G/ntj4VKXhn8MB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0oQMSQUQBP4aG1kAsjmPagS39SG1KYX1MsN+oAFrXkqsfxo8nh/RI VSmiHW//S28lE3sbwWL/UburD33MF/o9ADM2hEF8Ti2NPO5gBNFayyDgnqNVeK9J bpvAqWBY2EnKFTrbVh7TDX5J6Ct9kWE5GL1S/BeZe3vwSy+sdvj5IqUl9tQCZgtJ sLs2JEHP2PVIX17JOE4sI6Kfk1jIH08PXhH+3YYIgB0ChNNzbKFN74EMGUKLtCAE +IecFGSHoCyiCEcbdB3sV4tw7WtEs1qKvK842bwWVkfp4y8/miCLlCo9LM1XSNzC 9s/1du45FKpYMLDk9E7pBWfc6LmmWW0l -----END CERTIFICATE-----Generated at Sun Jun 15 05:15:56 2025 by rpki-client