$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: qjZEVOFsDTSB+vNGufjcJP1hOItw6Mht4D/t9kfBptA= Subject key identifier: A8:05:10:29:FE:06:67:51:B6:77:E8:52:6D:66:47:B5:74:BE:E0:0B Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 0226 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 0220 Signing time: Sun 19 Oct 2025 04:23:42 +0000 Manifest this update: Sun 19 Oct 2025 04:23:42 +0000 Manifest next update: Sun 26 Oct 2025 04:23:42 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: hw6beXBpeIGkdiKV6ogkkweC4f6O0cYPhuozs9BD74k=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: mCCSZ+9WYvhaMFX9tC0Iaz2gMx4GH4ZGb0UPoAirqT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:23:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: Oct 19 04:23:42 2025 GMT Not After : Oct 26 04:23:42 2025 GMT Subject: CN=68f467ce-2387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:97:52:26:de:11:2f:a9:33:e4:20:ec:88:53: c3:39:44:dd:a4:9c:2e:12:76:96:2c:90:7b:fb:a9: db:2f:3b:5d:f8:4a:2c:d4:4c:ff:f7:01:dc:c0:38: e7:a0:6d:2b:2c:b0:d5:ad:f1:52:a3:e0:bb:01:a3: 2e:65:a5:6c:73:c6:3f:ae:62:76:4d:68:15:7e:48: 07:5a:a9:de:9b:a7:52:05:af:5b:a4:62:3a:4b:37: cf:b4:f7:71:74:01:84:f3:2f:91:fe:68:b8:32:bc: c8:b8:dd:8c:c1:c1:d6:8a:1a:72:75:4d:91:81:78: 18:41:15:4d:9e:38:a5:b5:ab:50:84:3a:52:8e:08: 76:26:51:74:1e:e2:dc:c8:76:50:0d:27:96:4d:3b: 76:4f:9e:c8:07:e6:70:8f:4b:dc:71:f8:ae:4a:24: 99:9d:c9:f0:28:ed:d3:21:5e:5a:57:18:e1:a3:ac: 6c:40:29:de:3b:67:ba:33:22:ae:e0:7d:39:6d:93: 60:71:73:3c:78:45:fd:f8:c3:5a:c3:2e:fa:84:a7: 3e:e1:ef:bc:8e:67:70:49:45:ee:3e:38:38:ea:d1: b8:c9:dc:e0:cd:9f:0f:d4:ea:94:f1:4f:e2:23:0b: 0b:b6:25:d0:86:f5:c0:d2:7c:ec:a9:35:c0:17:46: ad:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:05:10:29:FE:06:67:51:B6:77:E8:52:6D:66:47:B5:74:BE:E0:0B X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:f7:90:2a:47:eb:72:3a:10:da:37:ee:e9:28:cd:7e:d0:9a: 65:c2:17:85:b2:ef:ab:ff:d7:9b:91:a9:c1:4f:14:9b:f5:dc: 87:7e:f4:6d:23:be:21:c8:92:86:d4:af:49:82:2d:76:9d:cc: 10:db:1a:77:c8:52:e0:84:1f:4e:33:24:f4:f3:b2:6a:7c:d5: 7d:aa:74:13:88:26:81:73:c8:6f:b3:a0:84:cc:7f:df:25:40: 22:09:f7:79:e5:ae:f2:f5:3e:8a:3c:73:42:7f:03:8f:58:0e: cd:f8:84:46:d9:13:61:ba:e6:94:21:6d:fe:5f:cf:3b:65:70: 70:b1:2e:9a:0f:36:1d:c7:34:7c:86:54:ec:a3:6e:6c:d9:16: 8c:8e:a4:d4:0d:28:7f:9a:23:bd:d4:8e:c6:e6:66:2a:c9:f3: 28:d6:c4:0a:d5:b4:8f:61:2c:59:0d:14:66:f8:55:f5:a7:3a: ac:09:e9:1e:c4:07:7a:73:b0:c6:7b:9e:73:5e:19:b3:cc:b7: 81:6b:52:b1:d5:aa:08:6e:b8:19:17:91:ef:43:46:de:3e:10: d5:e9:05:4c:26:aa:12:8e:37:48:89:ea:d7:c3:f4:a2:94:04: 8a:b3:d1:5d:00:09:e4:9f:01:f5:29:31:a7:64:9e:87:4e:83: e6:5f:ad:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjUxMDE5MDQyMzQyWhcNMjUxMDI2MDQyMzQyWjAYMRYwFAYD VQQDEw02OGY0NjdjZS0yMzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9JdSJt4RL6kz5CDsiFPDOUTdpJwuEnaWLJB7+6nbLztd+Eos1Ez/9wHcwDjn oG0rLLDVrfFSo+C7AaMuZaVsc8Y/rmJ2TWgVfkgHWqnem6dSBa9bpGI6SzfPtPdx dAGE8y+R/mi4MrzIuN2MwcHWihpydU2RgXgYQRVNnjiltatQhDpSjgh2JlF0HuLc yHZQDSeWTTt2T57IB+Zwj0vccfiuSiSZncnwKO3TIV5aVxjho6xsQCneO2e6MyKu 4H05bZNgcXM8eEX9+MNawy76hKc+4e+8jmdwSUXuPjg46tG4ydzgzZ8P1OqU8U/i IwsLtiXQhvXA0nzsqTXAF0atVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgFECn+ BmdRtnfoUm1mR7V0vuALMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY95AqR+tyOhDaN+7pKM1+0JplwheFsu+r/9ebkanBTxSb9dyHfvRt I74hyJKG1K9Jgi12ncwQ2xp3yFLghB9OMyT087JqfNV9qnQTiCaBc8hvs6CEzH/f JUAiCfd55a7y9T6KPHNCfwOPWA7N+IRG2RNhuuaUIW3+X887ZXBwsS6aDzYdxzR8 hlTso25s2RaMjqTUDSh/miO91I7G5mYqyfMo1sQK1bSPYSxZDRRm+FX1pzqsCeke xAd6c7DGe55zXhmzzLeBa1Kx1aoIbrgZF5HvQ0bePhDV6QVMJqoSjjdIierXw/Si lASKs9FdAAnknwH1KTGnZJ6HToPmX60z -----END CERTIFICATE-----Generated at Mon Oct 20 10:35:35 2025 by rpki-client