$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft File: He4XpqM4DuSI7ztuISW4eOZAckg.mft (raw, json) Hash identifier: Rco1hQ0ti71sj6EUT2GGgjcis2+AE2VC8LQiZz7HBl4= Subject key identifier: 22:5B:59:B4:F4:8C:B8:2E:B6:16:4F:83:96:6B:A8:39:13:2A:B8:41 Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft Manifest number: 0193 Signing time: Sat 19 Jul 2025 03:39:21 +0000 Manifest this update: Sat 19 Jul 2025 03:39:21 +0000 Manifest next update: Sat 26 Jul 2025 03:39:21 +0000 Files and hashes: 1: He4XpqM4DuSI7ztuISW4eOZAckg.crl (hash: OhdMq6sy5R7zwBhdiwPuKm6H+D48zp0eIP7rviuTa8w=) 2: 805A2E74660311EF90397033C4F9AE02.roa (hash: kr3XK/LA3ME6CWbcxw7hFQfhU6QavtLWXc2+mP6aHgc=) 3: 8405155C69EB11EF933A993CC4F9AE02.roa (hash: Nc218pLJmDdsf2Z9Kv612BkBE9ixmiOBUD2+vg6KRQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22, serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: Jul 19 03:39:21 2025 GMT Not After : Jul 26 03:39:21 2025 GMT Subject: CN=687b1369-096c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:78:34:d5:6a:49:7a:46:03:49:f8:02:42:39: f7:18:bd:86:e6:4f:2b:13:d9:bc:11:83:61:4e:fc: 98:9a:1e:04:c5:1d:c8:19:0f:2f:15:ad:78:a2:e4: 06:a9:22:3a:2d:71:12:6d:52:1c:c0:e2:84:ee:b8: 8d:1b:dd:da:b1:01:28:63:a2:1e:ad:19:dc:de:1b: 3e:d9:b3:eb:b3:76:c8:01:e6:f0:a2:09:76:8d:ae: 71:49:c3:41:40:09:4e:bf:7e:da:b2:b2:64:fd:be: e5:e6:99:6d:f3:fe:d8:13:e6:80:1a:c1:97:d2:fb: bf:5a:32:73:db:06:18:2d:2c:ad:a3:4a:38:89:c7: b7:b1:f3:92:08:8b:fb:63:6b:de:6c:f2:e9:40:30: 7f:59:2f:f0:9f:87:8e:d5:0f:bf:fe:69:6a:3f:9e: 8d:4c:88:db:87:73:60:2d:d7:de:59:9d:4d:aa:fa: 2c:e4:9f:f4:a8:77:32:24:5d:e0:75:49:10:87:19: 12:89:e9:2a:e4:49:43:31:66:a6:39:66:4c:fc:75: c0:ed:97:05:74:ce:64:0d:aa:de:a3:44:93:bd:6e: 8f:66:bd:00:80:aa:f4:42:e4:cb:a3:80:28:14:3e: 19:bd:6c:e6:23:e6:58:2f:44:3d:98:ed:ec:22:d2: 18:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:5B:59:B4:F4:8C:B8:2E:B6:16:4F:83:96:6B:A8:39:13:2A:B8:41 X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:c5:bc:5a:6a:d2:b2:67:c3:a5:2b:e5:20:9a:f5:c7:83:46: 43:1d:d2:6f:b0:81:c3:b6:b6:91:ad:11:17:7c:f5:df:18:c6: 76:0c:ee:13:70:01:e0:40:85:70:3b:da:cf:9d:3e:a1:01:12: 2e:c7:ad:2c:04:68:7d:b0:a5:7d:b2:7f:3d:01:27:f5:0f:9f: 52:51:d4:14:87:13:f8:c4:29:5b:2b:65:81:cd:a9:03:15:59: 13:1d:70:5f:1c:d4:bf:53:da:fe:f3:92:11:00:81:2d:c2:d9: 66:f2:49:d0:25:2e:f6:d8:31:80:01:67:ad:2e:5d:4b:b7:c1: 36:d0:28:fe:42:32:dc:2e:39:16:47:09:b6:f0:fc:81:fd:cf: b8:a6:d6:b1:b8:ec:be:51:db:47:54:c4:38:36:e8:2f:18:38: 5f:29:9d:96:86:c8:32:d2:5e:64:23:5d:06:c8:05:e7:07:6e: b2:56:94:39:00:29:09:39:eb:30:58:35:9a:a7:c5:29:3c:32: e8:98:f6:10:39:e8:e6:47:5f:11:ce:f0:7c:d3:b8:92:2b:9f: c5:8c:93:f6:6d:17:23:e4:a4:ab:f7:2c:c2:6f:b3:92:ca:85: 74:20:f1:5e:a5:81:d5:4d:0c:29:50:6a:f1:3c:b2:18:2e:7f: 12:b5:b5:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjUwNzE5MDMzOTIxWhcNMjUwNzI2MDMzOTIxWjAYMRYwFAYD VQQDEw02ODdiMTM2OS0wOTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXg01WpJekYDSfgCQjn3GL2G5k8rE9m8EYNhTvyYmh4ExR3IGQ8vFa14ouQG qSI6LXESbVIcwOKE7riNG93asQEoY6IerRnc3hs+2bPrs3bIAebwogl2ja5xScNB QAlOv37asrJk/b7l5plt8/7YE+aAGsGX0vu/WjJz2wYYLSyto0o4ice3sfOSCIv7 Y2vebPLpQDB/WS/wn4eO1Q+//mlqP56NTIjbh3NgLdfeWZ1Nqvos5J/0qHcyJF3g dUkQhxkSiekq5ElDMWamOWZM/HXA7ZcFdM5kDareo0STvW6PZr0AgKr0QuTLo4Ao FD4ZvWzmI+ZYL0Q9mO3sItIYQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJbWbT0 jLguthZPg5ZrqDkTKrhBMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyMi8zRjdENjhBOEZERTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1 U0k3enR1SVNXNGVPWkFja2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdxbxaatKyZ8OlK+UgmvXHg0ZDHdJvsIHDtraRrREXfPXfGMZ2DO4T cAHgQIVwO9rPnT6hARIux60sBGh9sKV9sn89ASf1D59SUdQUhxP4xClbK2WBzakD FVkTHXBfHNS/U9r+85IRAIEtwtlm8knQJS722DGAAWetLl1Lt8E20Cj+QjLcLjkW Rwm28PyB/c+4ptaxuOy+UdtHVMQ4NugvGDhfKZ2Whsgy0l5kI10GyAXnB26yVpQ5 ACkJOeswWDWap8UpPDLomPYQOejmR18RzvB807iSK5/FjJP2bRcj5KSr9yzCb7OS yoV0IPFepYHVTQwpUGrxPLIYLn8StbUj -----END CERTIFICATE-----Generated at Sun Jul 20 06:14:56 2025 by rpki-client