$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft File: He4XpqM4DuSI7ztuISW4eOZAckg.mft (raw, json) Hash identifier: ybnpHEPL1A3gH7Qr6K4MpoUWQBcFeVKTYLdJ7eSx8GU= Subject key identifier: B7:D4:96:90:AA:78:7A:8E:E4:86:1F:4D:7A:56:8B:31:8A:C5:37:40 Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: 016E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft Manifest number: 0169 Signing time: Fri 25 Apr 2025 03:03:44 +0000 Manifest this update: Fri 25 Apr 2025 03:03:44 +0000 Manifest next update: Fri 02 May 2025 03:03:44 +0000 Files and hashes: 1: He4XpqM4DuSI7ztuISW4eOZAckg.crl (hash: gjpgARjYivU1ssdCMRNCSWchckeEqIUSAoDtJmnvSfQ=) 2: 8405155C69EB11EF933A993CC4F9AE02.roa (hash: Nc218pLJmDdsf2Z9Kv612BkBE9ixmiOBUD2+vg6KRQA=) 3: 805A2E74660311EF90397033C4F9AE02.roa (hash: kr3XK/LA3ME6CWbcxw7hFQfhU6QavtLWXc2+mP6aHgc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22, serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: Apr 25 03:03:44 2025 GMT Not After : May 2 03:03:44 2025 GMT Subject: CN=680afb90-3ff7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:25:74:76:9a:d7:fb:1e:d7:0d:cb:f6:b7:d4: 04:6c:be:a5:3e:fa:c8:5d:96:e1:68:0e:69:d8:24: 63:6a:ad:c8:49:b5:81:02:bc:f0:fa:ba:6a:cc:ea: 36:a4:12:0c:9f:16:d4:5e:b6:f2:7d:f4:83:95:c5: 4a:58:42:a8:93:f0:a6:c1:cf:c2:66:06:06:6c:55: 26:10:cc:08:26:74:b9:c2:c5:8b:83:96:a9:37:b7: dd:7e:89:98:4f:a8:99:0c:5b:26:3e:81:86:e9:93: 44:7f:07:a8:4b:c5:5c:4d:a7:ce:f7:92:67:60:51: ec:1e:72:dd:40:fd:6c:8d:23:9f:cf:bb:53:d1:83: b8:f2:be:0a:25:3c:81:ff:3b:f2:f3:fd:d8:18:56: b5:28:4d:1e:e1:1a:98:f5:46:fc:dc:5c:48:19:d3: f5:55:4b:b9:17:f7:a3:f5:e0:00:6a:ce:e7:f9:cc: b7:37:fc:1a:86:3a:92:54:89:ae:57:ee:1c:fd:38: 02:5a:02:98:98:81:9b:92:00:1e:64:e6:e9:7b:72: 6d:16:73:cc:1a:95:7f:f1:28:9a:e8:4d:21:0f:78: c8:23:43:35:22:ae:02:c7:f4:1a:7d:09:a9:e1:3b: 4c:bb:e7:92:cd:34:d9:75:97:55:69:60:47:30:ef: be:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:D4:96:90:AA:78:7A:8E:E4:86:1F:4D:7A:56:8B:31:8A:C5:37:40 X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:f9:42:0d:cd:c5:b5:2e:d4:3a:fe:66:e1:1d:42:a9:2e:64: 8f:f1:f3:43:85:19:d7:4d:8e:3c:a9:48:a3:8f:00:6e:44:83: ae:cd:fb:87:5e:a3:2f:85:aa:22:c4:3c:4c:c9:cd:fd:70:d4: 89:d5:0d:34:e4:09:db:02:b9:54:ca:75:8c:8d:66:65:8d:04: 51:e0:89:1a:aa:c8:43:b9:5b:79:47:16:75:a5:49:75:f2:ea: 43:5c:ce:d2:cd:11:c1:da:97:77:0b:99:71:01:23:69:86:70: 57:83:19:b7:d1:fa:7d:4b:07:61:46:a1:cf:a9:dc:ac:a0:22: 92:93:6b:92:64:1d:32:94:75:26:de:2c:ea:8f:87:b4:08:0a: fb:aa:9d:7d:ea:a3:43:d8:0c:ab:d5:3c:a7:b0:d1:24:b8:44: 62:78:55:ae:e0:96:fc:e9:e9:84:05:8e:c3:58:76:49:7b:be: 43:eb:54:2d:46:54:bc:4c:55:ed:f7:95:6e:9f:b9:44:44:32: 47:fe:9a:49:a9:9e:89:24:25:ac:fb:f1:3f:91:d6:5a:92:29: ff:e7:50:e0:f6:ed:a1:27:c6:38:1c:ec:bf:97:8f:95:a6:c0: 4d:40:e6:f8:bf:e4:a5:3a:b1:ba:7f:7a:54:2e:cd:51:59:ab: 47:5d:f3:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjUwNDI1MDMwMzQ0WhcNMjUwNTAyMDMwMzQ0WjAYMRYwFAYD VQQDEw02ODBhZmI5MC0zZmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCV0dprX+x7XDcv2t9QEbL6lPvrIXZbhaA5p2CRjaq3ISbWBArzw+rpqzOo2 pBIMnxbUXrbyffSDlcVKWEKok/Cmwc/CZgYGbFUmEMwIJnS5wsWLg5apN7fdfomY T6iZDFsmPoGG6ZNEfweoS8VcTafO95JnYFHsHnLdQP1sjSOfz7tT0YO48r4KJTyB /zvy8/3YGFa1KE0e4RqY9Ub83FxIGdP1VUu5F/ej9eAAas7n+cy3N/wahjqSVImu V+4c/TgCWgKYmIGbkgAeZObpe3JtFnPMGpV/8Sia6E0hD3jII0M1Iq4Cx/QafQmp 4TtMu+eSzTTZdZdVaWBHMO++MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfUlpCq eHqO5IYfTXpWizGKxTdAMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyMi8zRjdENjhBOEZERTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1 U0k3enR1SVNXNGVPWkFja2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX+UINzcW1LtQ6/mbhHUKpLmSP8fNDhRnXTY48qUijjwBuRIOuzfuH XqMvhaoixDxMyc39cNSJ1Q005AnbArlUynWMjWZljQRR4IkaqshDuVt5RxZ1pUl1 8upDXM7SzRHB2pd3C5lxASNphnBXgxm30fp9SwdhRqHPqdysoCKSk2uSZB0ylHUm 3izqj4e0CAr7qp196qND2Ayr1TynsNEkuERieFWu4Jb86emEBY7DWHZJe75D61Qt RlS8TFXt95Vun7lERDJH/ppJqZ6JJCWs+/E/kdZakin/51Dg9u2hJ8Y4HOy/l4+V psBNQOb4v+SlOrG6f3pULs1RWatHXfOj -----END CERTIFICATE-----Generated at Sat Apr 26 04:58:06 2025 by rpki-client