$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft File: he6QOP_DVBq9-33Z7TPyquNy54w.mft (raw, json) Hash identifier: ZE0xFPRFaszepKTKJcxWb6z74n+NHlK8pYNIatOR41w= Subject key identifier: 64:F9:52:54:6A:03:59:06:CB:42:F9:C9:F8:81:1F:DD:E0:3B:0B:AD Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 0555 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft Manifest number: 0549 Signing time: Wed 12 Mar 2025 23:04:52 +0000 Manifest this update: Wed 12 Mar 2025 23:04:52 +0000 Manifest next update: Wed 19 Mar 2025 23:04:52 +0000 Files and hashes: 1: he6QOP_DVBq9-33Z7TPyquNy54w.crl (hash: AhVn31Psi+cOTdEgH/YOoN/Eb3VbMklfGmmEl2xv+Bw=) 2: 09182D38084E11EF89D29620C4F9AE02.roa (hash: bcXSyaSt5GFuvXt37iS12rNWnp//huiE39lT66O1G3Q=) 3: 07FBA006084E11EF89D29620C4F9AE02.roa (hash: olIQCCewOfkMwGkHHOS/5ivD24pRNNt8XVcMGE/8pfs=) 4: 08990BC0084E11EF89D29620C4F9AE02.roa (hash: 8EivjdWyyPlLeLaqCsiwmtFtESuhOy3I6leM27cuB5Y=) 5: 7AFCC818E38611EB8BC17765C4F9AE02.roa (hash: y9I4QX5XGSB6iUvcZDPrGaic3ZUxSX19Mm6eM5SYEI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:04:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1365 (0x555) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4 Validity Not Before: Mar 12 23:04:52 2025 GMT Not After : Mar 19 23:04:52 2025 GMT Subject: CN=67d21314-8528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ae:7d:6a:ae:69:c1:e0:97:c2:62:9f:f1:4a: 39:7b:3f:57:8d:74:00:00:8b:f6:dc:7e:7a:c5:5e: a4:e7:51:98:e6:3b:6c:1b:59:af:8e:69:42:1b:fc: ae:02:e0:9c:c9:6f:9f:12:ad:cf:a1:c8:8e:e5:99: 8d:02:c5:19:a2:1f:f9:20:f6:ca:1f:ff:04:53:a4: 19:a2:9e:e7:9c:7b:3d:d5:85:db:ad:d5:16:b6:0b: ef:2e:d8:a5:23:9c:6a:bb:f2:e2:05:99:b8:8b:dd: a9:7c:df:2f:0c:13:09:ae:9d:ff:af:94:cd:72:09: bd:40:45:2e:76:4e:74:80:4e:0e:19:42:eb:82:96: c9:08:41:78:5b:b3:a0:f6:66:cf:64:fc:6d:08:27: 9a:34:d7:47:6a:82:72:cb:f1:65:35:19:f2:77:77: 6c:0f:9e:61:91:2a:98:35:41:a0:9f:70:85:1a:e7: a0:c4:3a:36:ed:fc:2a:7d:da:9e:44:b9:36:7e:bd: e1:4b:88:49:b9:14:56:59:3f:0d:a4:3d:65:3f:f6: 26:11:37:d7:d1:bf:ab:d5:59:0c:59:c4:43:84:9a: 96:7a:b5:a2:16:3a:4a:1b:85:e6:1c:5d:58:3c:a7: 86:64:ce:ce:40:59:0b:b8:62:f7:70:cc:44:98:94: 24:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F9:52:54:6A:03:59:06:CB:42:F9:C9:F8:81:1F:DD:E0:3B:0B:AD X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:8d:fa:1a:9f:4f:a5:ec:6c:37:57:56:21:5c:d9:47:8b:c8: 5e:36:80:2b:98:6f:50:1b:92:62:29:1f:9d:d8:c8:a2:93:12: 9b:10:4a:f7:03:9e:30:37:be:55:dc:97:d2:ab:81:58:05:97: b1:f4:81:cc:bf:e2:62:ac:bf:34:96:5d:72:d0:bf:8f:f0:1e: 2e:75:e3:23:35:ea:5d:05:fe:5f:eb:42:17:85:29:01:7a:c1: 6a:4f:73:9e:06:df:70:d5:18:bf:77:d6:18:dc:7a:a5:fd:ad: e4:d1:cc:c7:78:ac:5f:07:67:83:71:1f:72:d4:40:08:41:95: 73:6f:0d:5d:80:df:44:a2:aa:38:bf:29:b5:86:46:f8:69:55: bf:e7:95:e4:ed:3e:b3:c0:18:95:46:fc:da:ca:ba:c5:7f:1f: 47:64:29:27:fc:40:f4:29:08:b7:a3:45:5c:b3:f7:ca:45:c1: 20:a2:d2:38:14:26:10:09:77:87:fc:b3:56:cb:ab:24:fb:98: 0c:ec:40:c3:8f:db:84:fb:df:0e:67:2f:29:3a:40:51:1e:b1: c3:a3:ee:9f:a6:2d:6e:1e:0d:cc:43:85:0a:d6:f9:4f:7b:c9: 18:4e:18:7a:7e:2b:25:01:ec:2b:5f:31:41:30:08:9a:07:9c: 28:5f:35:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjUwMzEyMjMwNDUyWhcNMjUwMzE5MjMwNDUyWjAYMRYwFAYD VQQDEw02N2QyMTMxNC04NTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2a59aq5pweCXwmKf8Uo5ez9XjXQAAIv23H56xV6k51GY5jtsG1mvjmlCG/yu AuCcyW+fEq3PociO5ZmNAsUZoh/5IPbKH/8EU6QZop7nnHs91YXbrdUWtgvvLtil I5xqu/LiBZm4i92pfN8vDBMJrp3/r5TNcgm9QEUudk50gE4OGULrgpbJCEF4W7Og 9mbPZPxtCCeaNNdHaoJyy/FlNRnyd3dsD55hkSqYNUGgn3CFGuegxDo27fwqfdqe RLk2fr3hS4hJuRRWWT8NpD1lP/YmETfX0b+r1VkMWcRDhJqWerWiFjpKG4XmHF1Y PKeGZM7OQFkLuGL3cMxEmJQk7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGT5UlRq A1kGy0L5yfiBH93gOwutMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVFNC9FRDA3OURGRUUzODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZC cTktMzNaN1RQeXF1Tnk1NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtjfoan0+l7Gw3V1YhXNlHi8heNoArmG9QG5JiKR+d2MiikxKbEEr3 A54wN75V3JfSq4FYBZex9IHMv+JirL80ll1y0L+P8B4udeMjNepdBf5f60IXhSkB esFqT3OeBt9w1Ri/d9YY3Hql/a3k0czHeKxfB2eDcR9y1EAIQZVzbw1dgN9Eoqo4 vym1hkb4aVW/55Xk7T6zwBiVRvzayrrFfx9HZCkn/ED0KQi3o0Vcs/fKRcEgotI4 FCYQCXeH/LNWy6sk+5gM7EDDj9uE+98OZy8pOkBRHrHDo+6fpi1uHg3MQ4UK1vlP e8kYThh6fislAewrXzFBMAiaB5woXzV+ -----END CERTIFICATE-----Generated at Thu Mar 13 21:29:14 2025 by rpki-client