$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: b58wB1xDmODYMh7t6USVh1GdulL8Iyck6YcKgsyZAHg= Subject key identifier: 78:28:84:7E:14:3B:AF:AE:00:14:35:7D:12:16:17:65:07:9A:BB:39 Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 136D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 1343 Signing time: Fri 30 May 2025 17:13:18 +0000 Manifest this update: Fri 30 May 2025 17:13:17 +0000 Manifest next update: Fri 06 Jun 2025 17:13:17 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: 319BqvHdq475p4x2plW3CsYYI0HBKjsfbWa777CqJDQ=) 2: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: YO0KSyMg3rhBagYoGztB5o5uMcRrrSiw068DI4yqRmI=) 3: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WXuqlnvJ/kQYgmajvkp6WqRXIhVjEPtrsEAuBi7s1vA=) 4: 538F7B12B1D711EBB3C0A24AC4F9AE02.roa (hash: VriM0YGDOfhzo18xUQqToLLJGd+19KKo1Yju23Rp1tg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4973 (0x136d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: May 30 17:13:17 2025 GMT Not After : Jun 6 17:13:17 2025 GMT Subject: CN=6839e72d-7f8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c8:11:be:92:8a:aa:b5:1b:ae:96:56:f5:0b: 6c:9e:1c:08:82:32:30:f1:ea:d4:ab:a3:b5:12:57: 10:15:58:6d:4a:1d:a5:3c:56:0b:ed:21:e4:58:48: 50:a9:04:e3:7b:55:c8:6c:c8:9d:0d:4a:63:af:42: 4d:e2:95:3d:98:07:9a:f8:56:ae:cd:c9:8a:58:81: b0:6a:9e:28:a2:45:11:c6:a3:f2:16:ec:30:a2:eb: 7a:86:d2:66:c3:5f:4d:7e:46:07:e4:f9:7c:65:ef: 1e:a0:70:33:74:30:8f:85:ae:b8:a0:c8:40:34:1a: 27:d4:a6:78:48:08:22:53:41:db:04:99:94:fc:6d: 4a:aa:01:0a:e6:da:20:85:be:cd:16:cc:1a:e4:b2: 3c:de:69:0c:b7:e1:fb:fd:37:d0:30:86:ed:08:d3: b7:4e:2b:b1:3a:6d:3f:8d:f1:17:11:cf:f9:a2:f6: 3f:f4:f1:58:24:ef:37:04:df:2f:f9:54:23:14:95: 20:d9:c1:e6:98:d4:15:49:8d:c6:91:a8:77:a1:38: 33:c6:ce:79:80:54:74:11:8d:be:fb:dd:c8:ef:87: 25:58:13:ac:4b:9f:89:03:e2:91:91:cb:92:9e:5a: 4d:57:bc:ca:10:47:ba:58:00:77:40:3d:6c:4c:44: ab:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:28:84:7E:14:3B:AF:AE:00:14:35:7D:12:16:17:65:07:9A:BB:39 X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:59:c3:e0:6d:46:c5:61:37:e0:90:e7:89:76:b9:60:55:41: 24:14:ff:87:78:0c:a9:2d:0c:f2:4e:ba:fa:48:bc:82:7a:98: 81:a8:a9:e3:2e:34:ed:bd:8e:ad:df:0e:b2:4a:20:72:71:df: 08:18:95:ba:ee:8a:f7:01:3e:a9:ae:ad:d6:3a:8c:4e:81:c2: a0:26:85:46:7f:7c:b0:8e:58:01:59:6c:ab:53:ce:d9:2a:13: bf:78:35:dc:35:1f:9a:09:91:b6:47:38:19:ec:b0:1b:d3:e5: ff:78:cd:85:b5:15:17:bb:9f:58:49:a5:c4:ae:16:34:d1:a5: ea:57:4d:f5:bc:0a:4b:46:43:ce:53:f8:7c:0d:61:b1:d8:15: 39:0a:39:83:75:8f:a3:8f:d5:a3:3b:15:3a:ed:ab:0d:78:49: 3b:a5:29:42:87:6b:dd:1f:6b:71:f0:86:bf:fa:a4:dd:10:a5: f1:65:a0:da:cc:66:69:dd:7a:31:6d:6a:c8:a5:99:2e:7d:99: 69:4a:83:4c:bc:9e:e4:a0:e7:8e:25:54:37:73:ae:dd:12:62: d5:a8:e3:09:3f:19:33:2a:d6:d0:5b:d2:ee:13:74:ca:78:77: 4f:4d:42:d2:e9:7c:08:91:51:3a:cf:8a:dd:1b:36:66:e6:ad: b5:be:82:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjUwNTMwMTcxMzE3WhcNMjUwNjA2MTcxMzE3WjAYMRYwFAYD VQQDEw02ODM5ZTcyZC03ZjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcgRvpKKqrUbrpZW9QtsnhwIgjIw8erUq6O1ElcQFVhtSh2lPFYL7SHkWEhQ qQTje1XIbMidDUpjr0JN4pU9mAea+FauzcmKWIGwap4ookURxqPyFuwwout6htJm w19NfkYH5Pl8Ze8eoHAzdDCPha64oMhANBon1KZ4SAgiU0HbBJmU/G1KqgEK5tog hb7NFswa5LI83mkMt+H7/TfQMIbtCNO3TiuxOm0/jfEXEc/5ovY/9PFYJO83BN8v +VQjFJUg2cHmmNQVSY3Gkah3oTgzxs55gFR0EY2++93I74clWBOsS5+JA+KRkcuS nlpNV7zKEEe6WAB3QD1sTESrfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHgohH4U O6+uABQ1fRIWF2UHmrs5MB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0WcPgbUbFYTfgkOeJdrlgVUEkFP+HeAypLQzyTrr6SLyCepiBqKnj LjTtvY6t3w6ySiBycd8IGJW67or3AT6prq3WOoxOgcKgJoVGf3ywjlgBWWyrU87Z KhO/eDXcNR+aCZG2RzgZ7LAb0+X/eM2FtRUXu59YSaXErhY00aXqV031vApLRkPO U/h8DWGx2BU5CjmDdY+jj9WjOxU67asNeEk7pSlCh2vdH2tx8Ia/+qTdEKXxZaDa zGZp3XoxbWrIpZkufZlpSoNMvJ7koOeOJVQ3c67dEmLVqOMJPxkzKtbQW9LuE3TK eHdPTULS6XwIkVE6z4rdGzZm5q21voIa -----END CERTIFICATE-----Generated at Sat May 31 16:29:39 2025 by rpki-client