$ rpki-client -vvf rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.mft File: hejumo0wUoWZBi0Iy5y51RPfa9c.mft (raw, json) Hash identifier: jnsXpZxdjzK/HpuYoxCLDKzXsEUfio3v0woMBsCS2as= Subject key identifier: 97:EE:C2:3D:45:B7:7C:E1:58:C1:41:BB:F7:A6:C9:03:02:1C:60:22 Authority key identifier: 85:E8:EE:9A:8D:30:52:85:99:06:2D:08:CB:9C:B9:D5:13:DF:6B:D7 Certificate issuer: /CN=A91F08A5/serialNumber=85E8EE9A8D30528599062D08CB9CB9D513DF6BD7 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.mft Manifest number: 31 Signing time: Sat 29 Mar 2025 06:59:18 +0000 Manifest this update: Sat 29 Mar 2025 06:59:17 +0000 Manifest next update: Sat 05 Apr 2025 06:59:17 +0000 Files and hashes: 1: hejumo0wUoWZBi0Iy5y51RPfa9c.crl (hash: NeaUr110qK5ofSqxiodfmb2LZA7KDUOMnD4K6+1QMj8=) 2: 49D54560C91C11EFB0DEB92DC4F9AE02.roa (hash: LPMf8e8oe7ripTj9cOjgsGbklShL3L+ImY+41IEZRaQ=) 3: 4AE33318C91C11EFB0DEB92DC4F9AE02.roa (hash: smhXonMxctlF/fMtWQXaFUBBXx8Ym0WOVFbM4hK9hVk=) 4: 4A4E595AC91C11EFB0DEB92DC4F9AE02.roa (hash: HYfNBrw+oBYJTv3EK6ZW0QGVMQFBO/Tp09If6c2XiUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.crl rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F08A5 Validity Not Before: Mar 29 06:59:17 2025 GMT Not After : Apr 5 06:59:17 2025 GMT Subject: CN=67e79a46-676b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:07:d0:09:4a:83:3e:f1:7a:91:83:17:c8:fc: 1f:7f:67:82:6a:eb:0e:49:54:dc:b8:f0:60:10:40: 89:e5:26:dc:92:38:e3:2f:68:87:dd:c9:94:08:8b: 02:55:51:b5:71:f1:e6:c7:90:12:b8:04:83:9f:6b: 14:7a:52:36:58:62:ac:78:07:03:16:59:e9:df:48: a8:ad:8e:7e:17:77:ba:7e:81:5d:48:ec:fe:98:ae: 46:bc:97:7a:7b:6e:c5:6c:99:29:52:43:74:0f:14: f8:75:04:22:05:3f:df:6a:59:13:97:58:33:48:69: b7:d1:50:87:c6:cf:ca:92:3f:76:34:29:e5:e8:2c: 25:0c:a9:4e:ba:77:0a:b8:b3:18:46:b8:26:45:10: 3d:79:08:a7:da:7d:a1:2f:12:7f:b4:fd:5a:3c:75: 96:5d:7c:67:3b:7c:6f:3f:94:d0:d3:00:88:43:4a: 19:44:6f:a9:1a:17:1e:ca:68:25:48:26:26:3d:e3: 4e:13:4f:14:7d:8a:63:cb:46:df:89:bb:c3:f2:54: 90:a5:c8:74:c6:80:8d:20:fc:fd:17:c8:a8:df:49: 92:1b:45:dd:87:40:81:d3:34:87:2f:91:40:31:70: c2:fc:e5:e8:eb:19:70:cd:b5:f0:a9:d3:dc:d3:2d: 38:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:EE:C2:3D:45:B7:7C:E1:58:C1:41:BB:F7:A6:C9:03:02:1C:60:22 X509v3 Authority Key Identifier: keyid:85:E8:EE:9A:8D:30:52:85:99:06:2D:08:CB:9C:B9:D5:13:DF:6B:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:cb:23:39:7c:f6:44:46:49:6e:a8:90:28:60:ee:e4:85:6b: 10:79:9d:a1:f4:6b:da:13:77:73:d8:eb:ac:6a:3d:4a:f3:2f: 11:81:bc:4b:5c:26:79:e6:cd:8c:d3:e7:55:ae:88:66:f0:6f: d0:a9:35:21:07:25:c8:d3:ff:3c:c3:a6:35:6a:f0:a3:84:77: 1e:3a:7e:72:f9:d3:5b:e4:6c:c3:15:02:0b:ab:90:7a:e8:ea: 5c:e2:87:e6:28:8a:18:ac:6d:3e:d5:c3:97:6f:13:d7:df:17: 06:03:49:91:52:44:b4:ef:63:25:51:62:42:63:bd:e9:d5:a5: b0:3d:01:da:86:eb:08:de:9c:0a:d5:91:7b:24:85:eb:c4:df: be:08:10:7a:af:23:5d:a9:9f:03:50:c1:72:90:fd:8d:c3:e0: ac:36:35:48:0e:13:52:c1:f5:6b:e7:03:65:a9:31:0e:20:24: 37:df:3c:71:94:37:a0:69:23:cc:df:d9:8f:78:4d:25:f7:5b: 58:9c:20:08:54:21:e8:5c:d9:20:a8:37:86:fe:9a:cd:bd:b2: 87:da:dd:98:80:13:1f:d0:6d:d1:27:b7:05:ed:5d:61:40:6c: 46:35:32:bf:c3:20:15:13:54:0c:c2:1d:81:ec:fd:34:0f:c7: 8b:c9:df:2b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDhBNTExMC8GA1UEBRMoODVFOEVFOUE4RDMwNTI4NTk5MDYyRDA4Q0I5Q0I5RDUx M0RGNkJENzAeFw0yNTAzMjkwNjU5MTdaFw0yNTA0MDUwNjU5MTdaMBgxFjAUBgNV BAMTDTY3ZTc5YTQ2LTY3NmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTB9AJSoM+8XqRgxfI/B9/Z4Jq6w5JVNy48GAQQInlJtySOOMvaIfdyZQIiwJV UbVx8ebHkBK4BIOfaxR6UjZYYqx4BwMWWenfSKitjn4Xd7p+gV1I7P6Yrka8l3p7 bsVsmSlSQ3QPFPh1BCIFP99qWROXWDNIabfRUIfGz8qSP3Y0KeXoLCUMqU66dwq4 sxhGuCZFED15CKfafaEvEn+0/Vo8dZZdfGc7fG8/lNDTAIhDShlEb6kaFx7KaCVI JiY9404TTxR9imPLRt+Ju8PyVJClyHTGgI0g/P0XyKjfSZIbRd2HQIHTNIcvkUAx cML85ejrGXDNtfCp09zTLTjvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUl+7CPUW3 fOFYwUG796bJAwIcYCIwHwYDVR0jBBgwFoAUhejumo0wUoWZBi0Iy5y51RPfa9cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwOEE1L0QxNTAzMTM2Qzkx QjExRUY4ODdENkYyQ0M0RjlBRTAyL2hlanVtbzB3VW9XWkJpMEl5NXk1MVJQZmE5 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGVqdW1vMHdVb1daQmkwSXk1eTUxUlBmYTljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw OEE1L0QxNTAzMTM2QzkxQjExRUY4ODdENkYyQ0M0RjlBRTAyL2hlanVtbzB3VW9X WkJpMEl5NXk1MVJQZmE5Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMTLIzl89kRGSW6okChg7uSFaxB5naH0a9oTd3PY66xqPUrzLxGBvEtc JnnmzYzT51WuiGbwb9CpNSEHJcjT/zzDpjVq8KOEdx46fnL501vkbMMVAgurkHro 6lzih+YoihisbT7Vw5dvE9ffFwYDSZFSRLTvYyVRYkJjvenVpbA9AdqG6wjenArV kXskhevE374IEHqvI12pnwNQwXKQ/Y3D4Kw2NUgOE1LB9WvnA2WpMQ4gJDffPHGU N6BpI8zf2Y94TSX3W1icIAhUIehc2SCoN4b+ms29sofa3ZiAEx/QbdEntwXtXWFA bEY1Mr/DIBUTVAzCHYHs/TQPx4vJ3ys= -----END CERTIFICATE-----Generated at Fri Apr 4 22:00:43 2025 by rpki-client