$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft File: he6QOP_DVBq9-33Z7TPyquNy54w.mft (raw, json) Hash identifier: vO6BxFz8pQcWogF/plFTT9tBsqk9Q2rCFvTeH39uZOg= Subject key identifier: 4E:73:BB:18:C7:B7:AC:46:53:BA:C6:BA:D5:05:84:9C:E0:85:D6:27 Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 0568 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft Manifest number: 055C Signing time: Fri 18 Apr 2025 23:24:35 +0000 Manifest this update: Fri 18 Apr 2025 23:24:35 +0000 Manifest next update: Fri 25 Apr 2025 23:24:35 +0000 Files and hashes: 1: he6QOP_DVBq9-33Z7TPyquNy54w.crl (hash: yP1q1Fykn6fa5BDh3bAwaJabAIOm6MPAlvAC0KFO3xA=) 2: 09182D38084E11EF89D29620C4F9AE02.roa (hash: bcXSyaSt5GFuvXt37iS12rNWnp//huiE39lT66O1G3Q=) 3: 07FBA006084E11EF89D29620C4F9AE02.roa (hash: olIQCCewOfkMwGkHHOS/5ivD24pRNNt8XVcMGE/8pfs=) 4: 7AFCC818E38611EB8BC17765C4F9AE02.roa (hash: y9I4QX5XGSB6iUvcZDPrGaic3ZUxSX19Mm6eM5SYEI8=) 5: 08990BC0084E11EF89D29620C4F9AE02.roa (hash: 8EivjdWyyPlLeLaqCsiwmtFtESuhOy3I6leM27cuB5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 23:24:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1384 (0x568) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Apr 18 23:24:35 2025 GMT Not After : Apr 25 23:24:35 2025 GMT Subject: CN=6802df33-207a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:02:4f:58:64:14:63:bd:f3:59:9d:36:0a:c7: 93:08:04:fc:69:72:ea:76:81:29:25:77:43:69:08: 6e:e4:4c:38:58:88:19:9c:61:29:f2:c3:ea:90:90: ca:4d:1a:18:e3:ad:e2:25:51:6a:32:98:93:57:a9: 2e:c1:0b:50:8a:d6:bc:82:0a:ea:94:80:58:81:d0: c8:d1:1b:c9:ef:cd:50:fb:e9:4e:b8:8e:2a:a3:93: a4:bf:2a:dd:a4:45:4d:78:a1:a2:88:91:a6:29:7d: 72:9a:d5:47:ae:07:f8:fb:fb:62:d8:e4:29:25:42: 9d:c7:70:99:db:28:bb:7c:de:66:31:f8:48:3d:12: 07:a8:99:5a:06:25:76:1e:34:66:27:95:95:8b:8d: 02:d8:3f:dd:34:9b:44:f0:2d:f7:d8:7d:56:2e:ff: 00:a1:4a:93:48:a3:10:77:c2:12:d2:54:6b:46:1b: 46:6f:33:18:25:41:e2:13:9d:e9:67:c7:25:a8:60: d9:ad:36:8b:62:d5:d7:7b:2a:a5:3c:c0:9d:4f:8a: fe:0e:90:0c:83:05:23:b1:01:b4:ac:90:a5:37:c8: c9:67:b7:bb:ba:ee:81:7d:c6:07:9a:99:95:e4:a2: 80:c5:41:fb:e5:32:07:2d:58:97:79:a9:32:5d:9e: 27:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:73:BB:18:C7:B7:AC:46:53:BA:C6:BA:D5:05:84:9C:E0:85:D6:27 X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:ff:e5:eb:34:78:19:a3:80:34:42:39:25:c5:3d:7f:c3:dc: 3c:f4:ea:19:19:1b:89:f6:df:54:6d:60:aa:f3:60:15:30:f8: 76:18:03:8d:cf:99:e1:68:3c:0c:91:7a:6b:65:ea:e2:d2:b9: ba:9f:2d:bb:b2:ff:31:d9:3e:a3:59:74:ed:93:ff:ef:62:8d: d5:3d:cf:cc:94:6c:22:0f:2e:49:c8:35:26:ff:2a:c7:5d:84: a0:9c:4b:dd:07:f0:ca:e4:f5:90:0e:94:a0:7a:87:32:9a:1c: 59:ae:35:e5:18:15:c2:72:37:3a:a0:36:84:df:3f:8c:8c:b4: f5:f5:61:3e:c9:cb:59:b9:7b:79:78:3e:b3:62:83:ce:b0:18: 5f:dd:2b:b4:4a:45:ac:de:da:be:eb:f6:62:91:5c:e1:63:0f: f7:3f:0a:98:88:2f:e9:f1:10:e7:a3:02:10:59:dc:7a:a8:23: c9:95:06:4a:69:8a:93:d9:09:39:1d:30:b7:f9:7b:5c:b2:a9: 94:7a:a2:65:a0:13:77:f5:fc:13:4f:79:18:28:3c:50:ac:b9: 35:ff:16:03:68:ac:bd:42:60:6e:ba:1b:97:ec:c6:a4:5c:ae: a5:95:52:fe:b7:fa:81:b2:3b:f7:ff:0c:5b:6f:95:b5:11:6a: dc:d2:2b:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjUwNDE4MjMyNDM1WhcNMjUwNDI1MjMyNDM1WjAYMRYwFAYD VQQDEw02ODAyZGYzMy0yMDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/AJPWGQUY73zWZ02CseTCAT8aXLqdoEpJXdDaQhu5Ew4WIgZnGEp8sPqkJDK TRoY463iJVFqMpiTV6kuwQtQita8ggrqlIBYgdDI0RvJ781Q++lOuI4qo5Okvyrd pEVNeKGiiJGmKX1ymtVHrgf4+/ti2OQpJUKdx3CZ2yi7fN5mMfhIPRIHqJlaBiV2 HjRmJ5WVi40C2D/dNJtE8C332H1WLv8AoUqTSKMQd8IS0lRrRhtGbzMYJUHiE53p Z8clqGDZrTaLYtXXeyqlPMCdT4r+DpAMgwUjsQG0rJClN8jJZ7e7uu6BfcYHmpmV 5KKAxUH75TIHLViXeakyXZ4n7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5zuxjH t6xGU7rGutUFhJzghdYnMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVFNC9FRDA3OURGRUUzODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZC cTktMzNaN1RQeXF1Tnk1NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx/+XrNHgZo4A0QjklxT1/w9w89OoZGRuJ9t9UbWCq82AVMPh2GAON z5nhaDwMkXprZeri0rm6ny27sv8x2T6jWXTtk//vYo3VPc/MlGwiDy5JyDUm/yrH XYSgnEvdB/DK5PWQDpSgeocymhxZrjXlGBXCcjc6oDaE3z+MjLT19WE+yctZuXt5 eD6zYoPOsBhf3Su0SkWs3tq+6/ZikVzhYw/3PwqYiC/p8RDnowIQWdx6qCPJlQZK aYqT2Qk5HTC3+XtcsqmUeqJloBN39fwTT3kYKDxQrLk1/xYDaKy9QmBuuhuX7Mak XK6llVL+t/qBsjv3/wxbb5W1EWrc0iv3 -----END CERTIFICATE-----Generated at Sat Apr 19 11:06:22 2025 by rpki-client