$ rpki-client -vvf rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.mft File: hejumo0wUoWZBi0Iy5y51RPfa9c.mft (raw, json) Hash identifier: a2ganqXZThPnzr8CPQ+1KGX3z4SZZiPhZ09mKzwbp/g= Subject key identifier: DA:88:B1:C6:49:A3:E7:97:A8:04:F4:42:37:91:57:A8:66:59:84:7D Authority key identifier: 85:E8:EE:9A:8D:30:52:85:99:06:2D:08:CB:9C:B9:D5:13:DF:6B:D7 Certificate issuer: /CN=A91F08A5/serialNumber=85E8EE9A8D30528599062D08CB9CB9D513DF6BD7 Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.mft Manifest number: 6A Signing time: Sat 19 Jul 2025 07:12:51 +0000 Manifest this update: Sat 19 Jul 2025 07:12:50 +0000 Manifest next update: Sat 26 Jul 2025 07:12:50 +0000 Files and hashes: 1: hejumo0wUoWZBi0Iy5y51RPfa9c.crl (hash: cOEUwWY62XNZsWGmR+01iMP72q4/3kwJhTbUx2kTR0w=) 2: E24B9ECE152B11F0A742CE86C4F9AE02.roa (hash: 3Rxi2WwZpfu8F7jhnMuFGFa5sVmkxpF3HfYHLo71KOI=) 3: 49D54560C91C11EFB0DEB92DC4F9AE02.roa (hash: LPMf8e8oe7ripTj9cOjgsGbklShL3L+ImY+41IEZRaQ=) 4: 4AE33318C91C11EFB0DEB92DC4F9AE02.roa (hash: smhXonMxctlF/fMtWQXaFUBBXx8Ym0WOVFbM4hK9hVk=) 5: 4A4E595AC91C11EFB0DEB92DC4F9AE02.roa (hash: HYfNBrw+oBYJTv3EK6ZW0QGVMQFBO/Tp09If6c2XiUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.crl rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:12:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F08A5, serialNumber=85E8EE9A8D30528599062D08CB9CB9D513DF6BD7 Validity Not Before: Jul 19 07:12:50 2025 GMT Not After : Jul 26 07:12:50 2025 GMT Subject: CN=687b4572-4879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f0:49:fd:53:01:6f:1a:a8:55:96:c8:0b:10: 0f:75:68:52:0f:f6:b8:d2:40:e2:75:78:7a:fb:75: da:da:cf:07:15:a2:d5:59:3b:b3:6f:b5:6b:f0:dc: 40:aa:18:4c:e1:fa:86:f8:3f:56:c2:d3:52:39:b5: a4:d3:f7:4a:be:c4:ee:40:0b:be:e2:46:ab:5d:fd: a4:9a:c0:23:ec:94:09:e7:81:6b:e0:ce:dc:11:50: 0e:6d:14:35:b8:df:08:7a:f5:ca:54:5e:cc:1d:d5: 41:e1:09:31:2d:9c:29:a7:a0:8f:47:0a:a2:5a:73: 2d:bc:eb:14:e0:79:00:6a:7a:a5:57:26:ce:05:26: 5a:56:bf:fa:4a:f1:5c:28:20:b6:9c:61:c9:aa:d3: b8:41:fc:fc:74:e0:6a:36:e4:3c:e3:97:0a:73:a5: 65:b0:2e:c9:7e:c7:6c:33:72:40:45:25:80:33:93: 63:37:88:c9:02:14:6c:5f:7c:37:77:49:cc:fe:85: e2:1e:b2:ed:a0:cd:3f:6f:c1:75:0e:31:ba:61:5e: 73:12:98:fc:d3:3a:5c:d2:bb:a3:c4:40:fb:c9:4b: 70:46:2d:b0:a6:2c:07:f4:68:93:50:69:21:8d:cc: 93:57:52:c5:c5:bd:de:69:02:2f:61:36:cb:03:cd: 21:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:88:B1:C6:49:A3:E7:97:A8:04:F4:42:37:91:57:A8:66:59:84:7D X509v3 Authority Key Identifier: keyid:85:E8:EE:9A:8D:30:52:85:99:06:2D:08:CB:9C:B9:D5:13:DF:6B:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:26:74:95:16:70:ab:d7:72:10:47:bd:aa:b1:4c:ae:d8:a9: a8:1e:4b:5c:2c:c4:ad:6a:69:84:eb:82:50:70:37:60:2a:15: 99:d2:cf:76:36:19:3f:95:46:67:7e:30:4c:3f:2f:93:3f:1d: 24:d6:43:1f:13:cc:72:dc:7e:ae:13:4b:b2:d7:c7:bd:7b:13: 61:03:52:db:5b:cc:63:f0:6c:18:06:10:9b:b8:ff:d3:9b:a6: ef:bb:c1:07:5c:13:c0:54:e1:08:d8:93:fd:e0:5a:7f:b8:aa: 75:d1:36:9f:2b:61:df:d4:b2:7b:aa:21:44:97:38:22:f5:29: 27:30:2a:00:f6:f5:26:23:83:04:06:82:53:bd:81:7d:d3:79: 1e:8d:0c:af:26:38:d0:c4:22:80:29:56:23:67:fa:4a:e6:df: 21:e6:fd:d5:68:54:aa:43:90:c4:18:38:fa:ee:63:73:f3:ec: 17:b1:02:8b:7c:94:7f:5d:f4:14:a9:32:f9:af:3e:23:a1:54: 78:70:41:02:34:0f:6b:1d:70:a5:b4:34:cc:b6:13:7f:e2:e4: 3d:6d:86:aa:21:1f:b2:3f:40:4f:fe:52:31:77:aa:4d:b2:0a: 42:14:ea:14:eb:ec:a2:00:e0:8a:ee:97:ae:04:a3:d0:5b:b8: 7d:08:95:78 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDhBNTExMC8GA1UEBRMoODVFOEVFOUE4RDMwNTI4NTk5MDYyRDA4Q0I5Q0I5RDUx M0RGNkJENzAeFw0yNTA3MTkwNzEyNTBaFw0yNTA3MjYwNzEyNTBaMBgxFjAUBgNV BAMTDTY4N2I0NTcyLTQ4NzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC08En9UwFvGqhVlsgLEA91aFIP9rjSQOJ1eHr7ddrazwcVotVZO7NvtWvw3ECq GEzh+ob4P1bC01I5taTT90q+xO5AC77iRqtd/aSawCPslAnngWvgztwRUA5tFDW4 3wh69cpUXswd1UHhCTEtnCmnoI9HCqJacy286xTgeQBqeqVXJs4FJlpWv/pK8Vwo ILacYcmq07hB/Px04Go25DzjlwpzpWWwLsl+x2wzckBFJYAzk2M3iMkCFGxffDd3 Scz+heIesu2gzT9vwXUOMbphXnMSmPzTOlzSu6PEQPvJS3BGLbCmLAf0aJNQaSGN zJNXUsXFvd5pAi9hNssDzSF9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2oixxkmj 55eoBPRCN5FXqGZZhH0wHwYDVR0jBBgwFoAUhejumo0wUoWZBi0Iy5y51RPfa9cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwOEE1L0QxNTAzMTM2Qzkx QjExRUY4ODdENkYyQ0M0RjlBRTAyL2hlanVtbzB3VW9XWkJpMEl5NXk1MVJQZmE5 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGVqdW1vMHdVb1daQmkwSXk1eTUxUlBmYTljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw OEE1L0QxNTAzMTM2QzkxQjExRUY4ODdENkYyQ0M0RjlBRTAyL2hlanVtbzB3VW9X WkJpMEl5NXk1MVJQZmE5Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFwmdJUWcKvXchBHvaqxTK7YqageS1wsxK1qaYTrglBwN2AqFZnSz3Y2 GT+VRmd+MEw/L5M/HSTWQx8TzHLcfq4TS7LXx717E2EDUttbzGPwbBgGEJu4/9Ob pu+7wQdcE8BU4QjYk/3gWn+4qnXRNp8rYd/UsnuqIUSXOCL1KScwKgD29SYjgwQG glO9gX3TeR6NDK8mONDEIoApViNn+krm3yHm/dVoVKpDkMQYOPruY3Pz7BexAot8 lH9d9BSpMvmvPiOhVHhwQQI0D2sdcKW0NMy2E3/i5D1thqohH7I/QE/+UjF3qk2y CkIU6hTr7KIA4Irul64Eo9BbuH0IlXg= -----END CERTIFICATE-----Generated at Sun Jul 20 13:40:07 2025 by rpki-client