$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft File: he6QOP_DVBq9-33Z7TPyquNy54w.mft (raw, json) Hash identifier: +rMr0aGDwEzD3ybAmOP0yv1ZfKPQHXZh1V2SL8gAqG0= Subject key identifier: 52:5A:64:7B:EC:F6:18:90:B0:8B:39:22:35:6D:56:40:C1:70:E4:B8 Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 05A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft Manifest number: 0596 Signing time: Mon 04 Aug 2025 05:36:11 +0000 Manifest this update: Mon 04 Aug 2025 05:36:10 +0000 Manifest next update: Mon 11 Aug 2025 05:36:10 +0000 Files and hashes: 1: he6QOP_DVBq9-33Z7TPyquNy54w.crl (hash: /VxDzPcHE5cQ9DZKYWU4cWH3JGgxQLWtFoEQ68yv7xw=) 2: 09182D38084E11EF89D29620C4F9AE02.roa (hash: AT+phtZuztYQ/kTIycAX0X+A8CtwzmUr4SNp/POZyC4=) 3: A6EF097068F911F092D77151C4F9AE02.roa (hash: CVgVNZzRg+yoeNSO5TmorciwKychjnQza4bd4ni3W/0=) 4: 07FBA006084E11EF89D29620C4F9AE02.roa (hash: olIQCCewOfkMwGkHHOS/5ivD24pRNNt8XVcMGE/8pfs=) 5: 7AFCC818E38611EB8BC17765C4F9AE02.roa (hash: yhFTvnQ9OnQm5YRLzb7trt3j3jJDg72T+yloJnYuUVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 05:36:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1446 (0x5a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Aug 4 05:36:10 2025 GMT Not After : Aug 11 05:36:10 2025 GMT Subject: CN=689046cb-e203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:70:d0:34:19:a1:ae:31:83:b3:f4:2e:40:b1: 39:29:17:c2:f7:16:30:ab:1e:65:a7:f5:fe:3f:49: fa:6d:74:db:00:e4:5f:f6:bf:33:2b:ec:35:0a:73: f4:34:02:d7:d9:77:6d:76:bb:f6:ab:ec:21:14:c2: 5d:23:bb:12:d5:97:de:41:a9:70:19:e0:21:d8:00: 34:9f:45:c9:11:e4:0e:70:27:02:c1:3c:d3:3d:26: 67:ed:13:d6:19:d6:71:37:d0:a0:05:6c:f0:0f:8e: b5:71:c8:30:54:3b:94:b3:16:84:20:09:f8:64:2b: 63:63:ae:28:bb:ed:e0:55:6c:22:fa:bf:74:7a:99: e2:ef:1b:d9:f9:5b:5a:35:ef:ec:0e:4b:06:c5:37: bb:25:10:44:2f:29:3b:ed:c6:02:a2:69:e7:31:0d: d1:6b:a2:7d:de:ca:a1:0d:b3:5d:ad:74:30:d0:67: b4:76:71:3b:8f:70:4e:19:e5:51:a3:80:2d:6e:70: b6:51:31:71:6a:9e:b2:cc:68:b8:a4:1a:36:d3:6c: c9:4b:93:fc:93:8e:75:ad:85:a9:3b:5d:8c:e2:14: e7:12:c7:95:93:5a:64:ed:e0:48:07:fa:ea:e9:9d: 54:9d:58:4b:27:03:95:b4:a6:b6:e8:4e:2e:9c:fc: 0e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:5A:64:7B:EC:F6:18:90:B0:8B:39:22:35:6D:56:40:C1:70:E4:B8 X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:d7:76:7f:a5:2d:b8:15:ae:44:63:21:99:27:39:15:86:20: 46:9e:8a:43:5e:fd:50:32:b4:67:94:ec:74:dc:26:2d:f3:d9: c8:64:8a:21:8f:3a:b5:4b:e5:d1:f5:1c:ec:a0:9a:dd:ee:72: 76:57:73:c8:5f:b6:76:88:c0:f8:4d:57:76:4f:1c:29:a8:67: d5:c9:a4:2f:a2:77:3c:78:a9:a3:51:5c:79:c3:48:3d:5f:58: a2:7f:2f:d0:74:1e:72:3c:cc:d6:59:62:76:a1:ab:86:81:af: 42:8c:ce:0e:cb:b6:97:5a:2a:75:ff:31:be:07:7b:05:e1:1e: 35:c6:53:78:90:0d:f4:fc:27:67:c8:d3:f0:5f:4a:bf:09:fe: e0:f9:46:1c:95:1a:b9:3c:50:fc:1f:3a:7e:6f:d5:28:84:dc: e4:01:92:43:c0:19:45:fe:2c:76:75:f2:43:6f:e3:7b:5f:c3: fe:4a:f9:d6:c3:dc:5d:cb:9b:39:09:56:2e:fc:11:8a:de:f3: 89:02:b5:53:ac:53:c4:a9:73:e4:c1:27:e2:31:2a:ac:e3:14: 3e:eb:92:64:36:66:3e:e9:e0:98:95:2b:17:ea:39:1c:7e:18: 56:31:4a:65:82:49:c4:d6:9d:1f:b1:9d:bb:fd:f4:77:f5:7f: 06:de:b7:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjUwODA0MDUzNjEwWhcNMjUwODExMDUzNjEwWjAYMRYwFAYD VQQDEw02ODkwNDZjYi1lMjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHDQNBmhrjGDs/QuQLE5KRfC9xYwqx5lp/X+P0n6bXTbAORf9r8zK+w1CnP0 NALX2Xdtdrv2q+whFMJdI7sS1ZfeQalwGeAh2AA0n0XJEeQOcCcCwTzTPSZn7RPW GdZxN9CgBWzwD461ccgwVDuUsxaEIAn4ZCtjY64ou+3gVWwi+r90epni7xvZ+Vta Ne/sDksGxTe7JRBELyk77cYComnnMQ3Ra6J93sqhDbNdrXQw0Ge0dnE7j3BOGeVR o4AtbnC2UTFxap6yzGi4pBo202zJS5P8k451rYWpO12M4hTnEseVk1pk7eBIB/rq 6Z1UnVhLJwOVtKa26E4unPwOvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJaZHvs 9hiQsIs5IjVtVkDBcOS4MB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVFNC9FRDA3OURGRUUzODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZC cTktMzNaN1RQeXF1Tnk1NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq13Z/pS24Fa5EYyGZJzkVhiBGnopDXv1QMrRnlOx03CYt89nIZIoh jzq1S+XR9RzsoJrd7nJ2V3PIX7Z2iMD4TVd2TxwpqGfVyaQvonc8eKmjUVx5w0g9 X1iify/QdB5yPMzWWWJ2oauGga9CjM4Oy7aXWip1/zG+B3sF4R41xlN4kA30/Cdn yNPwX0q/Cf7g+UYclRq5PFD8Hzp+b9UohNzkAZJDwBlF/ix2dfJDb+N7X8P+SvnW w9xdy5s5CVYu/BGK3vOJArVTrFPEqXPkwSfiMSqs4xQ+65JkNmY+6eCYlSsX6jkc fhhWMUplgknE1p0fsZ27/fR39X8G3rcZ -----END CERTIFICATE-----Generated at Mon Aug 4 11:10:51 2025 by rpki-client