$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft File: he6QOP_DVBq9-33Z7TPyquNy54w.mft (raw, json) Hash identifier: rMfWckrgaG4nBjopPINUTnxWNrhQ25K57SFBIi7w5xo= Subject key identifier: 32:99:7B:20:62:12:C3:9F:BE:DF:B9:00:46:92:3A:AC:8D:D8:9A:C6 Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 0584 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft Manifest number: 0578 Signing time: Sat 14 Jun 2025 23:03:25 +0000 Manifest this update: Sat 14 Jun 2025 23:03:24 +0000 Manifest next update: Sat 21 Jun 2025 23:03:24 +0000 Files and hashes: 1: he6QOP_DVBq9-33Z7TPyquNy54w.crl (hash: 1kUyuZA7r8WuhdHIVHkmOd/1+E3kJwQdA/+2+/R4yQE=) 2: 09182D38084E11EF89D29620C4F9AE02.roa (hash: bcXSyaSt5GFuvXt37iS12rNWnp//huiE39lT66O1G3Q=) 3: 07FBA006084E11EF89D29620C4F9AE02.roa (hash: olIQCCewOfkMwGkHHOS/5ivD24pRNNt8XVcMGE/8pfs=) 4: 7AFCC818E38611EB8BC17765C4F9AE02.roa (hash: y9I4QX5XGSB6iUvcZDPrGaic3ZUxSX19Mm6eM5SYEI8=) 5: 08990BC0084E11EF89D29620C4F9AE02.roa (hash: 8EivjdWyyPlLeLaqCsiwmtFtESuhOy3I6leM27cuB5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:03:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1412 (0x584) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Jun 14 23:03:24 2025 GMT Not After : Jun 21 23:03:24 2025 GMT Subject: CN=684dffbc-a039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6a:12:6d:c7:88:73:0f:a0:d0:57:72:98:76: 47:5a:6f:0d:61:40:9c:ad:a3:60:9f:58:6f:d2:31: 6f:cb:da:34:e3:77:38:8e:87:7d:c0:70:53:c7:c9: b6:63:a4:b4:a5:a0:58:4c:39:fc:fe:72:e8:7f:f8: 2e:55:f3:d1:fb:f7:84:51:aa:17:10:2f:1a:33:28: 93:9e:47:cc:bc:0c:09:94:b3:5a:e7:e4:92:8e:5f: 6c:15:63:18:f2:53:3e:98:85:bf:a8:84:13:cd:1d: 06:ab:a9:9d:c5:7a:28:99:6c:6b:2e:51:bb:fb:ff: d5:e0:00:26:c3:73:81:4e:ac:cf:b7:2f:f6:77:81: fe:f6:23:dc:48:23:6f:df:cc:90:1d:bb:7d:43:89: a7:c2:fb:de:8f:34:44:55:99:0c:10:32:0a:eb:a0: ee:3f:d2:43:db:5a:cb:85:d9:33:63:f8:1a:7d:74: 06:70:fe:ed:ac:e9:65:c8:25:93:e5:c3:5e:04:db: c9:48:7d:4f:3b:19:ae:eb:05:b4:c6:50:ce:1b:a3: a5:7f:aa:c9:89:20:49:fc:a9:4a:8a:ff:1b:04:a7: 4d:25:87:42:5b:57:3e:4f:d7:89:69:21:3f:3f:f1: 81:e9:b9:0f:b7:7c:8b:ba:b2:73:43:12:21:04:de: f7:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:99:7B:20:62:12:C3:9F:BE:DF:B9:00:46:92:3A:AC:8D:D8:9A:C6 X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:15:73:ea:76:a1:30:90:f0:93:76:5e:05:6b:e1:5b:54:94: a8:82:b0:fc:f7:a0:a8:1e:fd:74:3b:19:d9:82:72:8d:7a:14: 43:b5:44:3e:b6:4c:09:ad:a2:90:d2:ef:53:07:59:8a:17:6e: d7:6f:4b:59:a7:83:38:19:b6:71:7f:7e:54:ab:b4:96:42:aa: 60:7b:e8:8a:78:4d:9e:3c:76:dd:d6:3b:da:27:ca:ff:4e:44: eb:3c:19:eb:ba:b4:fa:aa:21:7d:1b:3e:93:05:01:ac:40:eb: bf:e8:1b:9e:02:40:55:2e:19:15:18:a3:aa:5b:a0:85:b1:7c: 36:97:2d:2b:3a:2f:39:71:f3:b7:25:aa:ed:9b:f0:e1:9e:4d: 12:31:9e:07:6a:ee:34:9e:25:f9:3d:66:ec:42:7f:9c:9e:a0: 1c:c5:a0:28:7a:61:a8:70:b6:0b:9a:70:9a:d7:64:53:af:13: ed:ef:2c:85:85:e9:f8:64:ed:7d:38:d9:da:1c:1b:5e:38:4f: 15:40:d0:20:29:ae:04:27:51:d4:c4:66:16:d8:e9:68:45:47: d7:b4:c7:4e:4c:30:f9:5c:b8:43:eb:be:4c:10:81:74:2c:5b: 42:17:d2:f4:eb:82:b3:12:ea:be:87:d7:06:66:c6:87:b0:fb: dc:af:e7:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjUwNjE0MjMwMzI0WhcNMjUwNjIxMjMwMzI0WjAYMRYwFAYD VQQDEw02ODRkZmZiYy1hMDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWoSbceIcw+g0FdymHZHWm8NYUCcraNgn1hv0jFvy9o043c4jod9wHBTx8m2 Y6S0paBYTDn8/nLof/guVfPR+/eEUaoXEC8aMyiTnkfMvAwJlLNa5+SSjl9sFWMY 8lM+mIW/qIQTzR0Gq6mdxXoomWxrLlG7+//V4AAmw3OBTqzPty/2d4H+9iPcSCNv 38yQHbt9Q4mnwvvejzREVZkMEDIK66DuP9JD21rLhdkzY/gafXQGcP7trOllyCWT 5cNeBNvJSH1POxmu6wW0xlDOG6Olf6rJiSBJ/KlKiv8bBKdNJYdCW1c+T9eJaSE/ P/GB6bkPt3yLurJzQxIhBN73gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDKZeyBi EsOfvt+5AEaSOqyN2JrGMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVFNC9FRDA3OURGRUUzODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZC cTktMzNaN1RQeXF1Tnk1NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqFXPqdqEwkPCTdl4Fa+FbVJSogrD896CoHv10OxnZgnKNehRDtUQ+ tkwJraKQ0u9TB1mKF27Xb0tZp4M4GbZxf35Uq7SWQqpge+iKeE2ePHbd1jvaJ8r/ TkTrPBnrurT6qiF9Gz6TBQGsQOu/6BueAkBVLhkVGKOqW6CFsXw2ly0rOi85cfO3 Jartm/Dhnk0SMZ4Hau40niX5PWbsQn+cnqAcxaAoemGocLYLmnCa12RTrxPt7yyF hen4ZO19ONnaHBteOE8VQNAgKa4EJ1HUxGYW2OloRUfXtMdOTDD5XLhD675MEIF0 LFtCF9L064KzEuq+h9cGZsaHsPvcr+cy -----END CERTIFICATE-----Generated at Sun Jun 15 23:11:00 2025 by rpki-client