$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft File: Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft (raw, json) Hash identifier: ocRZffdfroNYxk5UhvUJ/4ZmyrFR16TxjkSCLQUXPdE= Subject key identifier: A2:C2:07:C6:35:EB:45:52:D9:B2:BB:4D:66:4E:F5:78:A6:94:BE:92 Authority key identifier: 1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D Certificate issuer: /CN=A91CFA8D/serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Certificate serial: 06D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft Manifest number: 06D0 Signing time: Fri 30 May 2025 22:16:23 +0000 Manifest this update: Fri 30 May 2025 22:16:23 +0000 Manifest next update: Fri 06 Jun 2025 22:16:23 +0000 Files and hashes: 1: Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl (hash: O7D9sd3kGEle5vjZxgvgDHSZ8F/cRAaxvIKuZR6Uz4g=) 2: 6AA36A7E564D11EB8B387024C4F9AE02.roa (hash: fGJYrfdMmxnMU9m3ImkorOWGB4M3nyP+3+G+aL2cIE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:16:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1749 (0x6d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8D, serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Validity Not Before: May 30 22:16:23 2025 GMT Not After : Jun 6 22:16:23 2025 GMT Subject: CN=683a2e37-64b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ea:2d:8d:ec:48:73:59:d7:13:7e:88:be:0e: 06:d1:68:00:e3:e0:51:ec:aa:1e:b6:67:46:30:db: d4:8e:b6:3e:1e:84:e5:80:a7:74:9d:71:9b:c4:07: 78:fe:f5:71:31:31:3f:e1:b8:72:4a:8c:e1:69:92: 2f:81:6e:0b:18:ab:0f:00:bb:0a:56:b8:bb:24:ea: 94:be:de:db:b9:03:29:b8:4b:7d:47:b6:23:1e:3b: f4:bc:13:dd:11:1d:b5:9c:64:57:70:67:18:b0:26: de:a6:24:31:64:a9:7c:d6:7c:17:39:af:a2:3c:5f: 0a:cc:27:23:be:ac:86:0d:cc:8c:05:2b:47:63:07: c7:bf:48:e7:21:39:04:d5:7b:5f:01:70:7b:d7:a2: 69:00:4b:07:bf:bc:e0:b7:aa:68:ff:e9:75:ca:72: fa:73:66:0d:8b:f6:84:46:23:b2:39:09:08:82:72: cc:8d:52:85:a9:13:07:0e:86:57:74:0b:da:bd:83: 5d:09:7c:01:2b:72:d6:95:29:b7:53:3d:7c:d9:18: 2d:55:7e:c8:9b:41:09:ca:26:93:aa:35:bb:fb:28: ee:8f:db:92:45:19:d5:58:e7:31:b2:d6:55:d2:28: 98:65:4a:86:b9:3d:da:98:db:84:2d:85:9b:eb:89: ce:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C2:07:C6:35:EB:45:52:D9:B2:BB:4D:66:4E:F5:78:A6:94:BE:92 X509v3 Authority Key Identifier: keyid:1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:5f:7b:ef:92:0e:4c:fc:61:70:1c:45:58:0d:5c:c2:35:22: 44:d7:09:b8:03:26:3b:3f:14:e7:f2:88:3f:45:fd:d7:8b:0f: a6:9c:48:cd:ef:4f:37:8d:66:28:c1:8d:ab:63:8c:d4:e4:6e: 70:da:13:5f:b4:ca:c2:cd:bf:7f:cb:4f:21:09:ac:f0:14:36: 16:d1:37:b6:da:9e:5c:a7:38:f8:94:91:9d:b8:32:54:94:a7: 2f:02:09:a9:31:49:89:01:38:2b:78:a4:e2:14:9b:61:d3:a2: 1e:e3:77:27:81:c7:c9:b1:84:d2:0b:4f:6a:5e:f6:21:b5:3d: 0f:ff:82:76:1d:10:98:1d:90:49:9e:17:8a:c4:d4:ac:dc:8b: 2c:c2:35:bd:1a:62:02:41:2b:e5:fd:38:b4:35:86:89:36:d4: b9:5f:0c:08:c0:86:5d:8a:71:6b:ca:fa:0e:c0:5b:f5:6e:34: 5f:38:6d:35:6d:9f:30:fe:dc:aa:cf:13:0c:96:29:f5:4a:f9: 95:1a:0f:0e:ed:8b:2e:26:33:77:5d:ea:51:5d:fb:1d:ab:95: fc:96:27:83:0b:21:c8:a0:8b:94:77:85:8f:a2:01:3c:04:99: 45:f7:8b:76:9e:43:f9:24:67:bc:e7:1a:3e:4a:ea:1a:54:c9: fe:a0:a2:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEQxMTAvBgNVBAUTKDFERUJCNzM3MUFCOTdCQjlGM0E5MDZFQjA3RDU5MUM5 Q0YzODhENUQwHhcNMjUwNTMwMjIxNjIzWhcNMjUwNjA2MjIxNjIzWjAYMRYwFAYD VQQDEw02ODNhMmUzNy02NGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuotjexIc1nXE36Ivg4G0WgA4+BR7KoetmdGMNvUjrY+HoTlgKd0nXGbxAd4 /vVxMTE/4bhySozhaZIvgW4LGKsPALsKVri7JOqUvt7buQMpuEt9R7YjHjv0vBPd ER21nGRXcGcYsCbepiQxZKl81nwXOa+iPF8KzCcjvqyGDcyMBStHYwfHv0jnITkE 1XtfAXB716JpAEsHv7zgt6po/+l1ynL6c2YNi/aERiOyOQkIgnLMjVKFqRMHDoZX dAvavYNdCXwBK3LWlSm3Uz182RgtVX7Im0EJyiaTqjW7+yjuj9uSRRnVWOcxstZV 0iiYZUqGuT3amNuELYWb64nO/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLCB8Y1 60VS2bK7TWZO9XimlL6SMB8GA1UdIwQYMBaAFB3rtzcauXu586kG6wfVkcnPOI1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RC81NkZFRkY4MDU2 NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3bnpxUWJyQjlXUnljODRq VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hldTNOeHE1ZTduenFRYnJCOVdSeWM4NGpWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RC81NkZFRkY4MDU2NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3 bnpxUWJyQjlXUnljODRqVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOX3vvkg5M/GFwHEVYDVzCNSJE1wm4AyY7PxTn8og/Rf3Xiw+mnEjN 7083jWYowY2rY4zU5G5w2hNftMrCzb9/y08hCazwFDYW0Te22p5cpzj4lJGduDJU lKcvAgmpMUmJATgreKTiFJth06Ie43cngcfJsYTSC09qXvYhtT0P/4J2HRCYHZBJ nheKxNSs3IsswjW9GmICQSvl/Ti0NYaJNtS5XwwIwIZdinFryvoOwFv1bjRfOG01 bZ8w/tyqzxMMlin1SvmVGg8O7YsuJjN3XepRXfsdq5X8lieDCyHIoIuUd4WPogE8 BJlF94t2nkP5JGe85xo+SuoaVMn+oKL8 -----END CERTIFICATE-----Generated at Sat May 31 16:46:52 2025 by rpki-client