$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft File: hemZwivuAcMmTT0iZ1ghCS__0Cw.mft (raw, json) Hash identifier: UIwOUF7H3SOV6hUeR9Qlm9RR9eg/kZQ4+pUlmrQFhjM= Subject key identifier: B0:F1:65:79:3C:0E:C0:52:7B:8F:04:BC:04:9E:F7:48:0E:C3:32:2E Authority key identifier: 85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C Certificate issuer: /CN=A91AC132/serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft Manifest number: 5A Signing time: Sun 01 Jun 2025 06:55:07 +0000 Manifest this update: Sun 01 Jun 2025 06:55:06 +0000 Manifest next update: Sun 08 Jun 2025 06:55:06 +0000 Files and hashes: 1: hemZwivuAcMmTT0iZ1ghCS__0Cw.crl (hash: 64tfswdlwL50hGUdfCNSv8PRM4G6f56vP6eOtFkkq7A=) 2: 8B91AD8CD6B811EF86FC5149C4F9AE02.roa (hash: nKrpei7NHXS/yvzIer9NaLALl/Q2sUCsHstVjHOpR2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC132, serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Validity Not Before: Jun 1 06:55:06 2025 GMT Not After : Jun 8 06:55:06 2025 GMT Subject: CN=683bf94a-7ab9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9d:e6:8f:90:fb:2f:4e:5e:c5:98:d7:3c:30: 2e:ea:a3:10:5d:d7:0e:ab:2b:9f:27:d6:13:81:af: 29:7e:ce:06:f6:e6:f2:3e:54:8e:08:1f:86:9a:12: 55:9a:da:a7:99:2d:bd:be:a7:e4:85:53:2c:2b:94: d5:2e:f6:c3:39:b5:e3:25:46:76:b8:0f:59:27:5d: ae:97:18:76:65:ec:e5:e3:d8:eb:e2:67:80:bb:ae: 42:c4:2b:4e:41:79:b9:da:c1:d6:c9:a6:77:3e:7f: 42:60:23:c0:d8:47:dc:2a:61:85:86:b1:f3:1b:a2: 46:45:2e:19:2b:6e:57:67:3a:6b:73:c8:48:c3:d4: 31:9c:91:b6:a5:4e:92:23:d1:e4:93:2b:03:8c:52: c4:a6:15:91:ba:79:66:f4:a1:8a:97:f6:09:df:ef: f2:6f:f1:46:17:21:5c:a3:74:e5:f9:f7:49:15:6c: 08:ba:14:c1:8b:a0:01:96:3c:0d:f3:14:00:65:eb: a2:8f:02:6f:48:25:50:64:0d:8a:30:7d:2e:b6:74: f5:35:a2:3c:01:8b:6c:5e:62:ac:a8:98:8c:b0:d9: 2b:24:d0:90:c8:c0:76:08:7b:e3:bc:b1:66:e7:fd: 77:da:ce:a6:c8:a3:30:4f:c8:c6:3e:34:ba:b9:44: d2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:F1:65:79:3C:0E:C0:52:7B:8F:04:BC:04:9E:F7:48:0E:C3:32:2E X509v3 Authority Key Identifier: keyid:85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:df:a9:8f:89:24:98:30:67:2e:6d:1f:91:f5:6e:3a:d3:42: 71:11:aa:21:53:6e:71:de:2c:e1:7e:94:f4:4e:70:ec:94:b6: 1f:44:80:60:82:39:cb:d2:05:02:b7:1b:41:f2:5a:93:94:10: 4f:36:2f:80:d0:d7:bc:00:5f:cc:9b:5b:a0:14:5a:a1:b6:e8: 93:b8:38:e0:83:4f:d9:56:2e:cb:bc:20:cd:b8:a8:f0:4b:73: 3a:d1:fb:c1:3e:bf:f1:66:ce:bd:89:71:4d:10:fa:0e:88:6d: 6a:82:52:9e:4d:72:49:c9:2b:fa:d9:d7:a7:0a:f4:21:9f:89: 96:25:19:dc:f5:ee:95:a0:f2:82:8a:cd:a1:55:86:20:45:51: a8:a1:b1:66:66:67:4e:e0:89:34:6c:da:61:46:01:16:8a:71: e6:d1:56:c0:18:8f:a9:c6:d6:f6:47:b3:37:2d:a7:1c:44:19: 3a:9d:ab:f1:5d:25:d1:82:51:2e:2a:cf:57:4b:00:53:24:4b: f8:62:8a:03:da:55:4d:fb:b3:af:9c:e3:ee:7b:3d:43:04:20: b4:7c:e3:59:ad:db:33:af:9e:47:64:f1:4d:e7:a8:b2:2d:1e: bb:4e:27:4d:a2:ae:99:4f:80:f0:de:bd:1b:22:56:16:86:97: 70:02:b5:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QzEzMjExMC8GA1UEBRMoODVFOTk5QzIyQkVFMDFDMzI2NEQzRDIyNjc1ODIxMDky RkZGRDAyQzAeFw0yNTA2MDEwNjU1MDZaFw0yNTA2MDgwNjU1MDZaMBgxFjAUBgNV BAMTDTY4M2JmOTRhLTdhYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6neaPkPsvTl7FmNc8MC7qoxBd1w6rK58n1hOBryl+zgb25vI+VI4IH4aaElWa 2qeZLb2+p+SFUywrlNUu9sM5teMlRna4D1knXa6XGHZl7OXj2OviZ4C7rkLEK05B ebnawdbJpnc+f0JgI8DYR9wqYYWGsfMbokZFLhkrbldnOmtzyEjD1DGckbalTpIj 0eSTKwOMUsSmFZG6eWb0oYqX9gnf7/Jv8UYXIVyjdOX590kVbAi6FMGLoAGWPA3z FABl66KPAm9IJVBkDYowfS62dPU1ojwBi2xeYqyomIyw2Ssk0JDIwHYIe+O8sWbn /XfazqbIozBPyMY+NLq5RNLhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsPFleTwO wFJ7jwS8BJ73SA7DMi4wHwYDVR0jBBgwFoAUhemZwivuAcMmTT0iZ1ghCS//0Cww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFDMTMyL0M0RkExNEY4Qjgw QzExRUY4NEZBM0UzNUM0RjlBRTAyL2hlbVp3aXZ1QWNNbVRUMGlaMWdoQ1NfXzBD dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGVtWndpdnVBY01tVFQwaVoxZ2hDU19fMEN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFD MTMyL0M0RkExNEY4QjgwQzExRUY4NEZBM0UzNUM0RjlBRTAyL2hlbVp3aXZ1QWNN bVRUMGlaMWdoQ1NfXzBDdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB/fqY+JJJgwZy5tH5H1bjrTQnERqiFTbnHeLOF+lPROcOyUth9EgGCC OcvSBQK3G0HyWpOUEE82L4DQ17wAX8ybW6AUWqG26JO4OOCDT9lWLsu8IM24qPBL czrR+8E+v/Fmzr2JcU0Q+g6IbWqCUp5NcknJK/rZ16cK9CGfiZYlGdz17pWg8oKK zaFVhiBFUaihsWZmZ07giTRs2mFGARaKcebRVsAYj6nG1vZHszctpxxEGTqdq/Fd JdGCUS4qz1dLAFMkS/hiigPaVU37s6+c4+57PUMEILR841mt2zOvnkdk8U3nqLIt HrtOJ02irplPgPDevRsiVhaGl3ACtTY= -----END CERTIFICATE-----Generated at Mon Jun 2 06:29:53 2025 by rpki-client