$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: 49BxDk7AuJTd2l+hSg2hBE397i69touX6F7Pn91knGY= Subject key identifier: 7F:5E:C1:BC:51:E5:89:4B:58:00:39:E9:C2:D8:A8:A9:55:91:9B:A9 Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 138F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 1365 Signing time: Mon 04 Aug 2025 17:12:24 +0000 Manifest this update: Mon 04 Aug 2025 17:12:23 +0000 Manifest next update: Mon 11 Aug 2025 17:12:23 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: Q3tdcmKpSxJyRaWRhwnq/BR318iqPnLOfla3imPfeho=) 2: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: YO0KSyMg3rhBagYoGztB5o5uMcRrrSiw068DI4yqRmI=) 3: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WXuqlnvJ/kQYgmajvkp6WqRXIhVjEPtrsEAuBi7s1vA=) 4: 538F7B12B1D711EBB3C0A24AC4F9AE02.roa (hash: VriM0YGDOfhzo18xUQqToLLJGd+19KKo1Yju23Rp1tg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 17:12:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5007 (0x138f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Aug 4 17:12:23 2025 GMT Not After : Aug 11 17:12:23 2025 GMT Subject: CN=6890e9f7-d6c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d2:55:ab:df:c2:6b:e3:14:6e:57:e6:f3:44: 06:71:ad:7d:23:74:df:fd:bb:7c:0d:d7:ea:a6:8f: a7:85:fb:0c:7c:3a:ac:54:22:a1:2b:b4:86:33:1f: 18:3d:5c:66:0e:d5:ba:e5:a4:e6:ef:03:2e:59:c6: 21:11:1f:a9:1f:a2:02:76:49:55:bb:2d:b1:05:a1: 7a:71:46:ba:af:68:27:69:90:c1:1d:e1:5a:b8:2f: c9:82:9a:a6:5d:3e:b0:bf:9b:64:5f:55:b3:6f:03: 64:d4:e2:ca:95:d7:a7:ca:52:70:a0:74:18:4c:b5: 1e:08:00:63:9f:2e:b5:d5:b4:05:7c:6d:00:cb:53: 18:4e:d9:15:d2:d0:08:aa:46:0e:a9:01:fe:d0:31: a7:60:84:b7:36:42:be:31:98:7a:b0:9c:9a:74:29: 76:55:50:dc:e6:44:20:4e:e5:ef:b3:2c:c1:d5:0b: 70:82:31:28:b1:a5:f6:f4:ce:8c:d7:1f:01:5d:8a: 93:2f:92:79:c7:c0:d8:6c:9a:c5:3c:29:5c:48:aa: 2c:d8:bc:61:0b:13:78:4c:fc:0a:99:1b:e3:7a:2a: d4:03:af:7f:48:ce:48:2b:49:b5:7d:a7:6f:cd:1b: ab:df:86:c9:0e:33:df:11:15:f9:12:e6:ec:4d:a3: 66:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:5E:C1:BC:51:E5:89:4B:58:00:39:E9:C2:D8:A8:A9:55:91:9B:A9 X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:a0:89:23:9a:a1:ee:47:fe:51:ea:71:70:29:88:ce:81:b6: b0:e5:a0:ca:0c:9c:bd:0f:a3:c1:33:56:6d:22:27:c8:6c:6c: 31:a4:08:51:10:87:09:07:3e:16:a2:f2:c8:1d:89:6c:09:a7: 67:24:c2:34:5a:9e:d9:06:87:00:83:10:d3:a5:05:f4:4a:2f: df:26:c0:fd:6d:a5:94:38:61:07:1d:91:cd:b1:ee:d0:78:ec: 82:31:f6:b5:ba:f1:88:46:c9:ae:12:4c:fc:d3:e5:ff:47:9d: 17:e9:73:eb:12:68:d1:b7:8c:1c:50:a2:d0:de:cd:a3:70:00: 84:cd:af:d4:c7:54:0b:74:12:c4:56:d2:8e:ff:1e:61:fc:5a: d8:86:42:b7:18:0b:57:67:b6:16:1b:e1:ef:fd:f1:ca:46:c2: 15:fb:90:53:14:e8:6d:60:c3:07:76:ef:2e:ba:72:d2:22:e4: 1b:da:25:a8:0e:8d:71:94:35:fc:cc:a2:86:32:af:7c:6a:3f: 14:65:40:31:5d:fd:c5:20:b9:d9:5d:44:24:94:8d:49:7f:b0: 70:cb:45:9f:6d:16:bf:1f:e1:92:2b:8b:b8:56:dd:31:3a:be: 6e:de:ae:9d:57:2f:e8:8b:08:44:fa:51:67:48:3a:d1:24:7a: aa:e7:9e:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjUwODA0MTcxMjIzWhcNMjUwODExMTcxMjIzWjAYMRYwFAYD VQQDEw02ODkwZTlmNy1kNmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dJVq9/Ca+MUblfm80QGca19I3Tf/bt8Ddfqpo+nhfsMfDqsVCKhK7SGMx8Y PVxmDtW65aTm7wMuWcYhER+pH6ICdklVuy2xBaF6cUa6r2gnaZDBHeFauC/Jgpqm XT6wv5tkX1WzbwNk1OLKldenylJwoHQYTLUeCABjny611bQFfG0Ay1MYTtkV0tAI qkYOqQH+0DGnYIS3NkK+MZh6sJyadCl2VVDc5kQgTuXvsyzB1QtwgjEosaX29M6M 1x8BXYqTL5J5x8DYbJrFPClcSKos2LxhCxN4TPwKmRvjeirUA69/SM5IK0m1fadv zRur34bJDjPfERX5EubsTaNmbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH9ewbxR 5YlLWAA56cLYqKlVkZupMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCboIkjmqHuR/5R6nFwKYjOgbaw5aDKDJy9D6PBM1ZtIifIbGwxpAhR EIcJBz4WovLIHYlsCadnJMI0Wp7ZBocAgxDTpQX0Si/fJsD9baWUOGEHHZHNse7Q eOyCMfa1uvGIRsmuEkz80+X/R50X6XPrEmjRt4wcUKLQ3s2jcACEza/Ux1QLdBLE VtKO/x5h/FrYhkK3GAtXZ7YWG+Hv/fHKRsIV+5BTFOhtYMMHdu8uunLSIuQb2iWo Do1xlDX8zKKGMq98aj8UZUAxXf3FILnZXUQklI1Jf7Bwy0WfbRa/H+GSK4u4Vt0x Or5u3q6dVy/oiwhE+lFnSDrRJHqq5546 -----END CERTIFICATE-----Generated at Wed Aug 6 04:02:16 2025 by rpki-client