$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft File: he6QOP_DVBq9-33Z7TPyquNy54w.mft (raw, json) Hash identifier: 2eIM/ZwxZ23Ny27EnEA17I521W0FePyJ+TJs+R8inac= Subject key identifier: 69:34:D1:4A:09:AA:1F:44:DB:D5:29:E4:F0:16:33:65:EC:F0:87:9E Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 0549 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft Manifest number: 053D Signing time: Mon 17 Feb 2025 00:24:46 +0000 Manifest this update: Mon 17 Feb 2025 00:24:45 +0000 Manifest next update: Mon 24 Feb 2025 00:24:45 +0000 Files and hashes: 1: he6QOP_DVBq9-33Z7TPyquNy54w.crl (hash: 3tNsGljeMZli0RRXlBwmoUBlSqQsdIJhfTvJ5lu8n6I=) 2: 09182D38084E11EF89D29620C4F9AE02.roa (hash: bcXSyaSt5GFuvXt37iS12rNWnp//huiE39lT66O1G3Q=) 3: 07FBA006084E11EF89D29620C4F9AE02.roa (hash: olIQCCewOfkMwGkHHOS/5ivD24pRNNt8XVcMGE/8pfs=) 4: 08990BC0084E11EF89D29620C4F9AE02.roa (hash: 8EivjdWyyPlLeLaqCsiwmtFtESuhOy3I6leM27cuB5Y=) 5: 7AFCC818E38611EB8BC17765C4F9AE02.roa (hash: y9I4QX5XGSB6iUvcZDPrGaic3ZUxSX19Mm6eM5SYEI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1353 (0x549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4 Validity Not Before: Feb 17 00:24:45 2025 GMT Not After : Feb 24 00:24:45 2025 GMT Subject: CN=67b281cd-8997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e8:ab:43:60:3d:be:ee:18:f1:bf:e6:95:2a: cd:48:e9:b3:0f:80:10:49:c5:90:c8:e1:17:f4:4b: 79:97:35:a0:fc:4e:d7:77:fe:25:68:52:74:f7:40: 6b:cc:61:f7:5f:f2:f9:79:c2:88:1b:71:3d:24:c1: 89:0e:78:7f:d2:8e:7f:1e:85:9a:b5:df:28:e7:6a: e6:dd:5e:64:91:9a:d2:5a:9c:69:7c:45:3e:4c:f6: 07:af:ef:3c:80:e9:3e:26:86:6c:58:95:5c:9b:c1: 66:63:c0:bb:c5:34:bf:be:29:3c:b9:91:af:6c:30: 25:52:1e:c1:cc:a4:5e:64:12:fc:e3:03:dc:31:b0: 74:f3:02:de:10:9e:63:16:0a:28:84:f3:45:74:10: 90:7a:8c:b2:3c:ec:8c:b2:34:c0:33:c5:59:41:39: 36:0c:c2:a0:eb:75:4a:b9:1a:5b:00:52:9b:65:f6: aa:21:8d:28:81:72:57:cd:c2:21:68:d0:25:12:cf: 55:75:ae:ec:11:92:4d:d6:f9:08:5d:04:f8:27:3b: 62:90:5b:a0:ed:30:ab:ba:d6:3e:34:9a:7b:2e:82: e1:b5:f6:52:cf:b4:45:f1:7e:50:97:23:2d:b3:11: b5:6e:c9:f3:74:77:43:e2:71:41:9b:52:5a:b4:77: fd:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:34:D1:4A:09:AA:1F:44:DB:D5:29:E4:F0:16:33:65:EC:F0:87:9E X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:48:bc:ae:30:8e:d1:c0:d3:e3:4e:9f:cb:49:0e:7c:68:f8: 6b:1f:86:79:a8:6a:e8:8b:fd:fe:96:b4:1e:ef:41:0f:02:60: ee:f3:1e:4f:f8:3e:80:73:1b:03:b4:9c:1b:3b:6d:a2:ec:4f: c3:b8:08:5d:80:2c:e6:ea:62:c7:05:ac:01:ea:87:e1:22:f7: f5:ca:60:04:81:39:06:b3:45:ed:f9:da:b2:30:19:4d:43:b0: 43:d9:4f:82:d5:cc:bb:27:3d:e8:71:27:65:40:8a:bd:72:ea: a6:0e:c9:c9:ff:f0:97:37:e8:8f:dd:74:7e:02:f8:e4:64:0b: ee:61:e8:fd:03:3b:15:76:28:16:08:ec:1e:81:1c:88:9c:00: d4:f2:ce:04:59:97:f0:3d:67:24:5b:e5:f7:c7:1d:46:be:a5: 53:9b:42:98:b2:5b:09:4e:fe:ab:d1:68:00:66:81:64:93:82: 25:ca:6f:55:5b:7b:c5:43:9c:87:d3:6a:07:da:32:34:14:eb: 3e:06:c9:6b:3f:53:51:c2:db:e8:fb:8b:c2:68:e0:07:98:59: ce:ca:bf:ff:b6:41:9c:a8:71:36:13:2a:bf:f9:7a:3d:f4:d4: e8:ca:7d:95:ce:0b:0f:64:cf:a5:d9:04:8d:45:e7:46:7f:89: cc:48:ca:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjUwMjE3MDAyNDQ1WhcNMjUwMjI0MDAyNDQ1WjAYMRYwFAYD VQQDEw02N2IyODFjZC04OTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6eirQ2A9vu4Y8b/mlSrNSOmzD4AQScWQyOEX9Et5lzWg/E7Xd/4laFJ090Br zGH3X/L5ecKIG3E9JMGJDnh/0o5/HoWatd8o52rm3V5kkZrSWpxpfEU+TPYHr+88 gOk+JoZsWJVcm8FmY8C7xTS/vik8uZGvbDAlUh7BzKReZBL84wPcMbB08wLeEJ5j FgoohPNFdBCQeoyyPOyMsjTAM8VZQTk2DMKg63VKuRpbAFKbZfaqIY0ogXJXzcIh aNAlEs9Vda7sEZJN1vkIXQT4JztikFug7TCrutY+NJp7LoLhtfZSz7RF8X5QlyMt sxG1bsnzdHdD4nFBm1JatHf9twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGk00UoJ qh9E29Up5PAWM2Xs8IeeMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVFNC9FRDA3OURGRUUzODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZC cTktMzNaN1RQeXF1Tnk1NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwSLyuMI7RwNPjTp/LSQ58aPhrH4Z5qGroi/3+lrQe70EPAmDu8x5P +D6AcxsDtJwbO22i7E/DuAhdgCzm6mLHBawB6ofhIvf1ymAEgTkGs0Xt+dqyMBlN Q7BD2U+C1cy7Jz3ocSdlQIq9cuqmDsnJ//CXN+iP3XR+AvjkZAvuYej9AzsVdigW COwegRyInADU8s4EWZfwPWckW+X3xx1GvqVTm0KYslsJTv6r0WgAZoFkk4Ilym9V W3vFQ5yH02oH2jI0FOs+BslrP1NRwtvo+4vCaOAHmFnOyr//tkGcqHE2Eyq/+Xo9 9NToyn2VzgsPZM+l2QSNRedGf4nMSMqd -----END CERTIFICATE-----Generated at Mon Feb 17 07:17:06 2025 by rpki-client