$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: E/6/32ZIahprKMf4KpxMnoBncGsYh+zyE+wJA+N9s08= Subject key identifier: 4B:ED:0C:71:BD:A7:87:6A:5C:CC:15:B1:D7:44:BA:64:F3:15:54:C8 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 01BC Signing time: Thu 03 Apr 2025 02:26:45 +0000 Manifest this update: Thu 03 Apr 2025 02:26:45 +0000 Manifest next update: Thu 10 Apr 2025 02:26:45 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: R204XjMzxwEV15F29H2BJbg+m8zhlMQshPtoX6qb2Rw=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: mCCSZ+9WYvhaMFX9tC0Iaz2gMx4GH4ZGb0UPoAirqT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:26:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3 Validity Not Before: Apr 3 02:26:45 2025 GMT Not After : Apr 10 02:26:45 2025 GMT Subject: CN=67edf1e5-390f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:d2:26:ec:97:47:87:36:d9:0c:99:ab:94:17: b1:ec:9b:d1:17:ee:1b:61:9d:10:47:5e:d3:b5:14: cd:6a:9c:07:a0:fc:b1:04:73:0d:22:ba:7d:c1:b3: 8f:63:f1:fb:a1:04:64:d4:75:5a:62:b7:bd:d4:15: c6:34:9f:da:41:9e:ed:9a:28:af:01:dd:df:81:1e: b9:73:56:cd:14:88:16:1d:cb:61:c7:7c:b9:21:ad: 3e:1f:91:fa:d9:cb:ea:b9:33:08:21:5f:c4:c2:43: 0a:ad:d8:b0:8d:24:6c:46:e4:26:58:07:61:71:e8: e5:6b:90:f0:4b:8d:fb:80:36:1e:df:31:dd:6f:4d: ed:43:dc:48:ab:8d:6d:fc:5f:d7:03:d3:28:38:d9: 59:a9:7d:b5:38:03:e6:d3:0b:34:85:7d:13:d3:26: 13:ea:13:84:a8:4f:e1:1a:c6:5d:24:28:cb:20:f9: 5a:09:87:1c:4e:9e:98:54:6f:35:87:2c:65:be:21: 74:c0:07:7a:de:96:a1:a7:ec:03:1e:38:23:27:bb: c5:de:79:31:a4:46:d3:ff:b0:2c:c7:57:65:5e:6b: 43:84:7c:52:26:ad:67:3f:d6:7f:32:66:44:40:fb: 97:f5:76:d3:32:f7:b7:70:e9:77:c0:50:e7:8d:3b: fb:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:ED:0C:71:BD:A7:87:6A:5C:CC:15:B1:D7:44:BA:64:F3:15:54:C8 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:00:ae:58:6b:7e:60:24:24:4e:40:51:2c:97:b4:b3:54:bb: 83:35:91:77:1c:b6:4f:02:89:ec:2e:60:dc:14:6b:42:4d:4e: 70:81:30:d8:9f:bc:e8:94:90:2d:ea:d6:cf:37:1e:46:8c:fd: 1f:4c:c5:bd:24:c3:cd:e2:77:ea:9f:5d:a5:4a:47:85:f1:c1: d4:22:2c:39:c8:d5:67:eb:58:cb:47:4f:3c:0e:aa:2a:ba:d9: 70:0c:d2:1e:d8:ee:c0:31:7b:9f:33:1e:78:68:bf:bd:bd:f2: c5:d6:4d:15:bd:39:88:af:16:75:f4:1d:6f:d9:ae:fa:7e:b7: 2c:a1:7a:d2:f6:c6:a2:2e:66:bc:dc:7e:dc:11:64:65:ae:cc: 0c:92:03:02:f7:d7:7c:f7:f3:aa:04:aa:4b:4d:4f:fa:54:84: 26:f8:13:46:d3:6b:a5:a6:c2:2d:83:a1:63:47:b1:71:41:84: d9:b8:b8:ad:81:c1:30:94:bb:da:60:2b:61:69:e6:8a:5c:1b: b5:ac:b7:20:fb:46:aa:64:a0:37:7b:15:15:da:be:b4:36:2a: 58:4b:42:07:f2:af:f0:db:a4:b9:5f:20:55:72:32:06:6d:2b: 3f:9b:b9:cb:90:32:39:6c:b1:0e:00:45:a8:13:ec:f1:fc:a4: ce:e6:8b:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjUwNDAzMDIyNjQ1WhcNMjUwNDEwMDIyNjQ1WjAYMRYwFAYD VQQDEw02N2VkZjFlNS0zOTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6tIm7JdHhzbZDJmrlBex7JvRF+4bYZ0QR17TtRTNapwHoPyxBHMNIrp9wbOP Y/H7oQRk1HVaYre91BXGNJ/aQZ7tmiivAd3fgR65c1bNFIgWHcthx3y5Ia0+H5H6 2cvquTMIIV/EwkMKrdiwjSRsRuQmWAdhcejla5DwS437gDYe3zHdb03tQ9xIq41t /F/XA9MoONlZqX21OAPm0ws0hX0T0yYT6hOEqE/hGsZdJCjLIPlaCYccTp6YVG81 hyxlviF0wAd63pahp+wDHjgjJ7vF3nkxpEbT/7Asx1dlXmtDhHxSJq1nP9Z/MmZE QPuX9XbTMve3cOl3wFDnjTv7FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEvtDHG9 p4dqXMwVsddEumTzFVTIMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrAK5Ya35gJCROQFEsl7SzVLuDNZF3HLZPAonsLmDcFGtCTU5wgTDY n7zolJAt6tbPNx5GjP0fTMW9JMPN4nfqn12lSkeF8cHUIiw5yNVn61jLR088Dqoq utlwDNIe2O7AMXufMx54aL+9vfLF1k0VvTmIrxZ19B1v2a76frcsoXrS9saiLma8 3H7cEWRlrswMkgMC99d89/OqBKpLTU/6VIQm+BNG02ulpsItg6FjR7FxQYTZuLit gcEwlLvaYCthaeaKXBu1rLcg+0aqZKA3exUV2r60NipYS0IH8q/w26S5XyBVcjIG bSs/m7nLkDI5bLEOAEWoE+zx/KTO5ovt -----END CERTIFICATE-----Generated at Fri Apr 4 21:49:15 2025 by rpki-client