$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: n5Mxx6KOdkt1kQ7VYjPooJbczklly/D3syfJzeMiB04= Subject key identifier: 71:BE:B6:4F:3C:B2:4A:51:B2:8C:2A:C2:99:B4:30:7D:33:D2:23:40 Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 05A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 059E Signing time: Fri 22 Aug 2025 23:22:16 +0000 Manifest this update: Fri 22 Aug 2025 23:22:15 +0000 Manifest next update: Fri 29 Aug 2025 23:22:15 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: AgkSfQIMVQzx3XG3L4JNoSD5IcaISZQshjlfM4EmhvQ=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: a7GzfQZpHB/FDQX8t11/W+Jq7q9b14r9hyier7paZ38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:22:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1442 (0x5a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Aug 22 23:22:15 2025 GMT Not After : Aug 29 23:22:15 2025 GMT Subject: CN=68a8fba7-7468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1b:86:5a:37:e4:e0:bd:53:67:d2:24:c2:b7: b9:d9:2f:a0:d1:4b:b5:7d:fc:9c:b3:bd:5b:c9:5e: 57:62:ae:e9:73:98:08:71:9a:48:3f:5d:a9:89:f8: 39:af:d6:d9:b1:49:53:61:69:44:2a:07:a2:4a:96: ee:9a:85:62:f1:c6:4a:11:f0:63:ee:ce:0b:e0:12: 68:7b:c2:30:f6:8d:83:e6:e3:5c:f2:e9:74:72:f6: 2f:66:b2:51:80:af:3d:6b:97:08:44:f3:30:88:d0: e3:12:2b:b6:26:48:63:ed:c2:8c:27:07:c3:ab:c3: 50:fe:79:47:00:3d:7c:22:cc:f2:fa:11:64:55:c8: c7:36:56:fd:59:c0:a6:3c:5d:05:43:01:c4:56:cc: e5:67:e3:cd:5d:c7:67:2c:41:c6:e9:ef:36:fc:be: 57:d7:0c:b1:7e:6e:d8:56:e4:d5:95:78:58:83:c7: 5a:6d:2c:0e:9a:b3:92:11:4d:f5:01:db:2a:10:a6: 8c:e1:5a:fe:b4:5a:f2:69:a2:12:ed:08:eb:3d:68: ac:c6:63:66:6c:e9:6b:3a:df:32:1c:1d:77:a0:66: bf:09:17:b9:80:d1:c2:c0:f1:6a:e2:db:3a:8a:03: f6:36:26:f7:e3:69:21:db:39:2f:36:df:80:9d:5e: 35:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:BE:B6:4F:3C:B2:4A:51:B2:8C:2A:C2:99:B4:30:7D:33:D2:23:40 X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:5c:0b:4f:01:29:e9:d2:be:5f:cd:75:31:d1:95:df:c4:6c: 88:6d:e6:b9:b7:ec:ab:6e:b4:3f:80:25:35:f1:c9:d3:e5:4a: 15:69:b4:df:37:4a:18:e3:8d:d9:25:8f:92:d0:80:23:33:71: e9:14:ca:21:cc:a9:89:cb:6a:9c:4d:82:83:e5:8b:6e:fe:5a: 05:77:4b:3d:e5:0b:f4:44:a7:86:72:e0:c5:06:90:2d:89:76: 72:d0:b0:d6:13:de:e0:d1:e8:a4:1e:85:41:6e:a1:a7:ae:17: 2d:c6:53:4d:ae:58:e2:56:95:d5:97:ed:ce:c3:74:15:1c:af: b6:d6:f5:0c:50:db:b8:9c:d4:bd:5f:2d:34:5f:94:77:75:0f: ee:90:ab:05:90:c2:e4:4f:8f:6e:d7:70:a1:5a:30:7b:03:40: f8:4f:2f:05:82:4f:d3:15:ec:af:06:ef:45:37:19:32:8b:59: e5:55:d3:14:65:5e:cf:82:f4:9b:05:e8:c5:a1:c8:e8:cd:bc: 41:02:ab:33:ee:36:c3:c1:60:1a:56:95:f9:c0:8d:9d:2d:86: c9:ac:68:f0:05:41:f1:ed:d4:12:e0:8f:40:1e:b1:e4:f6:e2: 2f:8a:b1:84:d3:07:dc:bd:fa:04:1b:f1:24:d9:1c:e6:ac:70: 71:b6:a9:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjUwODIyMjMyMjE1WhcNMjUwODI5MjMyMjE1WjAYMRYwFAYD VQQDEw02OGE4ZmJhNy03NDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxuGWjfk4L1TZ9Ikwre52S+g0Uu1ffycs71byV5XYq7pc5gIcZpIP12pifg5 r9bZsUlTYWlEKgeiSpbumoVi8cZKEfBj7s4L4BJoe8Iw9o2D5uNc8ul0cvYvZrJR gK89a5cIRPMwiNDjEiu2Jkhj7cKMJwfDq8NQ/nlHAD18Iszy+hFkVcjHNlb9WcCm PF0FQwHEVszlZ+PNXcdnLEHG6e82/L5X1wyxfm7YVuTVlXhYg8dabSwOmrOSEU31 AdsqEKaM4Vr+tFryaaIS7QjrPWisxmNmbOlrOt8yHB13oGa/CRe5gNHCwPFq4ts6 igP2Nib342kh2zkvNt+AnV41BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHG+tk88 skpRsowqwpm0MH0z0iNAMB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkXAtPASnp0r5fzXUx0ZXfxGyIbea5t+yrbrQ/gCU18cnT5UoVabTf N0oY443ZJY+S0IAjM3HpFMohzKmJy2qcTYKD5Ytu/loFd0s95Qv0RKeGcuDFBpAt iXZy0LDWE97g0eikHoVBbqGnrhctxlNNrljiVpXVl+3Ow3QVHK+21vUMUNu4nNS9 Xy00X5R3dQ/ukKsFkMLkT49u13ChWjB7A0D4Ty8Fgk/TFeyvBu9FNxkyi1nlVdMU ZV7PgvSbBejFocjozbxBAqsz7jbDwWAaVpX5wI2dLYbJrGjwBUHx7dQS4I9AHrHk 9uIvirGE0wfcvfoEG/Ek2RzmrHBxtqlv -----END CERTIFICATE-----Generated at Sun Aug 24 03:37:40 2025 by rpki-client