$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft File: he6QOP_DVBq9-33Z7TPyquNy54w.mft (raw, json) Hash identifier: e0mXG6CwapIOxB/bpPkjT3muG/GsyilHHFF3SPlqTpQ= Subject key identifier: 2B:13:2B:09:9F:1F:B6:5F:5F:D8:95:C7:39:44:58:CD:7A:C1:70:BB Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 056B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft Manifest number: 055F Signing time: Thu 24 Apr 2025 23:11:00 +0000 Manifest this update: Thu 24 Apr 2025 23:11:00 +0000 Manifest next update: Thu 01 May 2025 23:11:00 +0000 Files and hashes: 1: he6QOP_DVBq9-33Z7TPyquNy54w.crl (hash: vfE8zKLCECiW4iAhnwkzPwPvRMiAGQsHK/6+JZXC8Ps=) 2: 09182D38084E11EF89D29620C4F9AE02.roa (hash: bcXSyaSt5GFuvXt37iS12rNWnp//huiE39lT66O1G3Q=) 3: 07FBA006084E11EF89D29620C4F9AE02.roa (hash: olIQCCewOfkMwGkHHOS/5ivD24pRNNt8XVcMGE/8pfs=) 4: 7AFCC818E38611EB8BC17765C4F9AE02.roa (hash: y9I4QX5XGSB6iUvcZDPrGaic3ZUxSX19Mm6eM5SYEI8=) 5: 08990BC0084E11EF89D29620C4F9AE02.roa (hash: 8EivjdWyyPlLeLaqCsiwmtFtESuhOy3I6leM27cuB5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1387 (0x56b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Apr 24 23:11:00 2025 GMT Not After : May 1 23:11:00 2025 GMT Subject: CN=680ac504-f8b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:56:3b:62:40:dd:36:a5:d4:95:26:d0:57:4e: 54:d3:00:42:c4:e5:c5:b3:1e:f5:62:d2:03:ff:cd: 68:2a:8d:e3:9b:65:87:cf:47:1b:3b:eb:cb:0a:2b: 5e:5a:e3:f8:8a:e1:f1:fe:d6:c6:9b:a5:6d:cc:9b: 78:01:6d:23:d9:8e:3c:99:a5:97:7c:7e:98:68:17: a5:7a:37:64:ce:9d:75:54:f1:e8:38:53:03:a6:ae: 62:72:09:b4:1f:fa:6f:d2:b1:34:4c:bf:77:f1:3e: 30:65:31:dc:72:d4:d1:bd:d4:e4:5c:70:28:ff:05: d3:03:d6:71:05:49:77:93:2e:53:c9:21:84:1c:13: 1c:3b:b5:80:a5:53:30:b6:8e:21:5f:d7:64:b8:6b: cb:36:b6:27:c0:3a:2f:87:52:e0:95:bf:8c:09:04: 86:4e:3c:da:75:71:ca:b6:81:72:1e:36:1f:a0:b3: 75:98:6b:81:d1:f5:d3:b8:47:32:dc:fb:f0:af:57: 97:60:c8:80:bb:c9:77:51:86:19:f6:92:1d:d7:b6: 64:89:c8:64:ed:ee:00:ec:c8:a8:42:69:5d:28:58: 94:2c:2f:99:fd:93:c6:16:99:18:ca:bf:04:70:50: 83:11:c1:c1:d8:27:cb:5a:c7:31:64:4e:44:69:b3: 1a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:13:2B:09:9F:1F:B6:5F:5F:D8:95:C7:39:44:58:CD:7A:C1:70:BB X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:f2:d6:92:a4:38:a6:df:d1:c3:14:86:51:46:b6:14:e5:68: dc:fd:4b:96:fa:49:ce:64:55:bd:68:3a:95:8d:97:2d:65:66: e3:5b:1b:91:a0:c8:82:7b:20:72:d1:34:56:bd:ed:33:51:eb: 1d:b1:cd:3f:0e:11:b4:b5:cf:d9:58:3c:53:f4:d0:1a:fa:25: 8e:03:e9:07:a1:ec:e3:3d:2b:cb:08:eb:3f:92:ec:de:68:3a: 00:78:12:d4:6b:70:13:5a:dc:4c:30:75:b5:da:61:ec:5e:82: 2e:f9:e8:92:75:a1:4d:31:1e:e2:ee:19:16:9d:94:70:f9:a7: 74:7f:18:b7:f5:fe:90:1b:74:0d:72:52:fe:b3:cd:70:aa:e9: d7:35:22:c6:b6:25:9d:2f:66:d9:b2:40:7c:e3:f5:6a:58:3f: b9:00:f6:1b:e7:91:16:da:99:dd:d1:51:c2:73:1c:56:b3:c2: 80:8a:0c:d3:87:64:ca:10:26:6b:97:a3:c9:2b:7a:a3:49:36: 98:7e:84:2c:2f:ba:e4:9d:05:46:f1:f8:a8:dc:58:f2:c7:0c: 1f:63:b7:d7:64:2b:5b:b1:c6:13:8a:05:82:f2:4c:41:66:3c: a0:ea:5e:50:df:7d:71:80:92:a8:57:f6:07:aa:92:67:b9:36: 40:ea:8d:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjUwNDI0MjMxMTAwWhcNMjUwNTAxMjMxMTAwWjAYMRYwFAYD VQQDEw02ODBhYzUwNC1mOGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVY7YkDdNqXUlSbQV05U0wBCxOXFsx71YtID/81oKo3jm2WHz0cbO+vLCite WuP4iuHx/tbGm6VtzJt4AW0j2Y48maWXfH6YaBelejdkzp11VPHoOFMDpq5icgm0 H/pv0rE0TL938T4wZTHcctTRvdTkXHAo/wXTA9ZxBUl3ky5TySGEHBMcO7WApVMw to4hX9dkuGvLNrYnwDovh1Lglb+MCQSGTjzadXHKtoFyHjYfoLN1mGuB0fXTuEcy 3Pvwr1eXYMiAu8l3UYYZ9pId17Zkichk7e4A7MioQmldKFiULC+Z/ZPGFpkYyr8E cFCDEcHB2CfLWscxZE5EabMaOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCsTKwmf H7ZfX9iVxzlEWM16wXC7MB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVFNC9FRDA3OURGRUUzODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZC cTktMzNaN1RQeXF1Tnk1NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK8taSpDim39HDFIZRRrYU5Wjc/UuW+knOZFW9aDqVjZctZWbjWxuR oMiCeyBy0TRWve0zUesdsc0/DhG0tc/ZWDxT9NAa+iWOA+kHoezjPSvLCOs/kuze aDoAeBLUa3ATWtxMMHW12mHsXoIu+eiSdaFNMR7i7hkWnZRw+ad0fxi39f6QG3QN clL+s81wqunXNSLGtiWdL2bZskB84/VqWD+5APYb55EW2pnd0VHCcxxWs8KAigzT h2TKECZrl6PJK3qjSTaYfoQsL7rknQVG8fio3FjyxwwfY7fXZCtbscYTigWC8kxB Zjyg6l5Q331xgJKoV/YHqpJnuTZA6o2+ -----END CERTIFICATE-----Generated at Sat Apr 26 04:45:34 2025 by rpki-client