$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft File: He4XpqM4DuSI7ztuISW4eOZAckg.mft (raw, json) Hash identifier: 4UHyE313CIvrryeIjlQFli/0ElSuj1XX2suZAb+5TwI= Subject key identifier: C6:F6:DD:16:5B:A7:A4:32:B7:A4:F3:38:58:A3:B2:72:2E:A3:97:A4 Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: 0186 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft Manifest number: 0181 Signing time: Fri 13 Jun 2025 02:40:00 +0000 Manifest this update: Fri 13 Jun 2025 02:40:00 +0000 Manifest next update: Fri 20 Jun 2025 02:40:00 +0000 Files and hashes: 1: He4XpqM4DuSI7ztuISW4eOZAckg.crl (hash: RAIT9NZSy7L+XjZys3ea8m/sMuSS8P/EW3nfsoYIy+I=) 2: 805A2E74660311EF90397033C4F9AE02.roa (hash: kr3XK/LA3ME6CWbcxw7hFQfhU6QavtLWXc2+mP6aHgc=) 3: 8405155C69EB11EF933A993CC4F9AE02.roa (hash: Nc218pLJmDdsf2Z9Kv612BkBE9ixmiOBUD2+vg6KRQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22, serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: Jun 13 02:40:00 2025 GMT Not After : Jun 20 02:40:00 2025 GMT Subject: CN=684b8f80-1f28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:38:b8:a0:6d:08:7e:2b:01:62:2f:55:ca:2e: ba:4c:c2:0e:bc:26:6b:d5:4d:80:2e:e7:66:11:0b: ab:26:ab:d4:02:51:23:42:73:16:f6:81:32:7c:26: 06:2d:34:2b:40:cd:43:86:28:80:49:ea:f0:e3:5b: c8:28:ed:94:0b:6e:c6:dc:2c:e8:bc:b4:b9:dc:3e: 65:d5:78:96:d9:9c:13:f0:ee:2d:06:70:99:0f:30: 8a:b5:09:d2:29:e7:e9:27:15:4f:8f:05:76:52:58: ca:c4:e0:8d:ac:fc:78:0a:fd:e8:4f:2a:d6:43:d4: 38:f6:ae:3d:7c:23:1c:b8:37:05:7b:f0:c6:86:d9: 47:18:e7:f6:42:60:29:d2:a0:19:6f:ed:cf:88:1f: 1e:4e:03:7b:ba:ee:fa:6a:c6:03:0e:8c:ec:ef:7e: 6d:0c:c6:b0:1f:6b:58:64:ed:b1:31:2f:fd:ef:ce: 2a:85:56:d8:70:b9:19:94:2a:ea:fc:68:4c:cf:65: 2b:09:d7:47:67:8a:53:12:91:59:52:d5:bd:f1:16: 9f:71:d4:86:f1:b1:2d:9b:7d:ac:14:0a:cc:2e:a2: d2:10:77:aa:e2:a8:60:e4:dc:ec:4d:ef:02:72:61: fc:f0:1a:ab:cc:bc:69:72:b3:b9:19:72:17:bf:1e: f6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:F6:DD:16:5B:A7:A4:32:B7:A4:F3:38:58:A3:B2:72:2E:A3:97:A4 X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:75:15:e1:d0:4d:71:9b:a3:d4:7e:e0:7a:e9:ee:3c:ce:33: 25:1d:fd:47:af:49:16:fd:06:ca:59:8f:2b:c5:1e:66:f5:62: ac:73:66:3f:ff:80:e5:8b:7d:e7:58:40:2a:97:ad:28:09:5f: 35:e1:8f:24:dc:0f:22:ac:00:63:e8:b5:86:9e:9e:5f:a9:e5: 66:c6:51:5e:9a:9a:3a:e6:f7:09:3c:30:c2:ea:f3:87:90:3d: ab:ee:5f:0e:6b:e1:c3:59:8c:01:b4:1d:0e:87:8b:32:74:43: 2b:5c:db:69:e7:f6:79:a5:1c:e4:3f:27:71:0d:4b:06:08:bc: de:98:97:f2:da:c9:79:b5:f1:6c:c3:a6:b2:a0:78:5d:57:23: b6:63:84:4a:23:a4:90:81:8b:46:50:ed:0e:89:c4:a9:c7:11: 43:13:96:54:ce:35:b7:aa:a7:3c:7b:14:23:8c:89:36:41:af: c0:1b:2c:67:cb:52:0f:d7:d3:d1:1f:53:9e:a1:15:9a:b5:b5: b1:24:31:ba:6e:73:8e:e2:b7:55:c3:7c:7f:ca:10:f5:68:67: 47:0e:0d:2d:b6:38:bd:95:b1:22:c3:a7:e2:20:19:f4:d5:ef: e6:bc:05:7c:16:ab:43:21:47:5a:dc:66:38:05:25:88:c9:fd: 00:33:c9:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjUwNjEzMDI0MDAwWhcNMjUwNjIwMDI0MDAwWjAYMRYwFAYD VQQDEw02ODRiOGY4MC0xZjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTi4oG0IfisBYi9Vyi66TMIOvCZr1U2ALudmEQurJqvUAlEjQnMW9oEyfCYG LTQrQM1DhiiASerw41vIKO2UC27G3CzovLS53D5l1XiW2ZwT8O4tBnCZDzCKtQnS KefpJxVPjwV2UljKxOCNrPx4Cv3oTyrWQ9Q49q49fCMcuDcFe/DGhtlHGOf2QmAp 0qAZb+3PiB8eTgN7uu76asYDDozs735tDMawH2tYZO2xMS/9784qhVbYcLkZlCrq /GhMz2UrCddHZ4pTEpFZUtW98RafcdSG8bEtm32sFArMLqLSEHeq4qhg5NzsTe8C cmH88BqrzLxpcrO5GXIXvx72ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMb23RZb p6Qyt6TzOFijsnIuo5ekMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyMi8zRjdENjhBOEZERTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1 U0k3enR1SVNXNGVPWkFja2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWdRXh0E1xm6PUfuB66e48zjMlHf1Hr0kW/QbKWY8rxR5m9WKsc2Y/ /4Dli33nWEAql60oCV814Y8k3A8irABj6LWGnp5fqeVmxlFempo65vcJPDDC6vOH kD2r7l8Oa+HDWYwBtB0Oh4sydEMrXNtp5/Z5pRzkPydxDUsGCLzemJfy2sl5tfFs w6ayoHhdVyO2Y4RKI6SQgYtGUO0OicSpxxFDE5ZUzjW3qqc8exQjjIk2Qa/AGyxn y1IP19PRH1OeoRWatbWxJDG6bnOO4rdVw3x/yhD1aGdHDg0ttji9lbEiw6fiIBn0 1e/mvAV8FqtDIUda3GY4BSWIyf0AM8nJ -----END CERTIFICATE-----Generated at Sat Jun 14 18:48:43 2025 by rpki-client