$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: 4E/WsbMkJ52CBSyYnXwkGSLuWjp8Z9f7FzWmiKXU/4k= Subject key identifier: DE:E1:8F:DE:38:C4:02:91:BF:F1:3C:04:FD:55:3A:BC:6F:9E:1B:0C Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 0616 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 060F Signing time: Tue 24 Mar 2026 22:33:21 +0000 Manifest this update: Tue 24 Mar 2026 22:33:21 +0000 Manifest next update: Tue 31 Mar 2026 22:33:21 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: 1R4tzpyWmNb6dZCVGs+S17L1Bu46cHoYrhjR7ZsPduM=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: r63sbdb81aS0Y3D1jhysh8/CnvmDL9CRF/6oUTPKQNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1558 (0x616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Mar 24 22:33:21 2026 GMT Not After : Mar 31 22:33:21 2026 GMT Subject: CN=69c31131-fd35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:66:60:31:6c:87:87:14:89:c5:1b:d4:bd:9d: c6:4f:51:b1:c7:d1:37:2b:4d:37:9d:8c:a6:8a:32: e4:02:f8:d3:b7:7c:54:a7:a9:c2:41:20:47:4f:0c: da:d4:25:d0:8d:92:17:76:23:f2:8b:80:97:d2:9f: fc:8a:e8:80:27:48:4e:d4:b5:d4:a3:a1:4a:83:17: 08:02:81:db:3c:01:7b:ec:c5:3a:ce:24:ac:c1:97: 1f:3c:07:14:86:57:de:3e:86:bd:2b:d0:a4:6e:cf: ad:11:07:d4:b5:31:39:5a:d1:59:ee:fc:be:67:e3: 81:bd:8a:ff:93:cc:63:37:a7:71:5d:80:36:af:e8: e0:5b:ac:9d:62:de:d1:e1:46:aa:af:d0:e3:9d:af: 3b:1e:67:20:fb:5c:51:0f:95:10:26:a3:4c:be:8a: a0:6e:f7:3a:15:8f:3d:93:06:fe:7f:86:f8:ec:8a: 8c:b9:e2:74:c2:68:6e:10:54:7f:b6:94:40:18:fa: 9f:e5:99:ab:b6:85:84:85:11:94:34:28:83:bc:20: a4:d7:5d:a1:2f:36:16:c0:7c:83:e6:6e:5f:66:82: e7:f7:05:3e:53:5f:30:b6:2a:34:77:21:e7:64:29: c0:fb:05:6e:56:5f:26:c6:ed:f6:ee:1f:6a:e1:8c: 6a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E1:8F:DE:38:C4:02:91:BF:F1:3C:04:FD:55:3A:BC:6F:9E:1B:0C X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:34:db:1a:a3:88:c9:e7:af:6e:bc:d5:d5:a9:f9:d0:4a:2a: 40:78:7a:20:e8:a8:9d:b6:7b:78:20:e7:03:3f:48:bf:0d:ab: b4:97:df:d2:0e:80:70:4c:5b:80:87:e7:02:38:9a:29:42:fb: 12:b2:11:35:e5:ab:df:aa:40:e2:f6:aa:fb:89:96:15:4b:5f: 92:25:b7:a9:24:e2:b4:b9:3e:86:22:dc:e5:5b:96:6f:4f:4f: 96:cd:95:5a:ae:f9:9f:99:c8:2d:2a:ec:da:56:db:3c:5b:19: db:bd:ba:02:bd:c8:fe:62:81:6b:25:37:56:1e:21:4e:77:39: b7:1d:eb:ff:a0:23:aa:2c:54:24:ad:fa:ab:4e:c3:c8:eb:19: f1:0f:90:7f:35:6d:3f:57:56:9e:81:dc:f2:05:96:3d:c7:39: 96:00:f2:63:1d:11:3f:68:b1:ea:47:59:16:45:39:74:e3:16: 8b:ab:f2:14:79:45:69:a9:dc:39:95:ae:fd:05:43:f2:c2:98: 0b:df:d7:6b:9e:1a:0c:a4:0a:0f:02:17:36:6f:0b:1a:9e:69: ec:d3:ca:92:a1:da:55:aa:69:be:fe:05:c8:59:d3:61:58:32: 84:49:99:ca:05:81:6a:ac:6a:af:17:a5:b4:55:26:e7:7a:df: 89:c6:ba:ad -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjYwMzI0MjIzMzIxWhcNMjYwMzMxMjIzMzIxWjAYMRYwFAYD VQQDEw02OWMzMTEzMS1mZDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGZgMWyHhxSJxRvUvZ3GT1Gxx9E3K003nYymijLkAvjTt3xUp6nCQSBHTwza 1CXQjZIXdiPyi4CX0p/8iuiAJ0hO1LXUo6FKgxcIAoHbPAF77MU6ziSswZcfPAcU hlfePoa9K9Ckbs+tEQfUtTE5WtFZ7vy+Z+OBvYr/k8xjN6dxXYA2r+jgW6ydYt7R 4Uaqr9Djna87Hmcg+1xRD5UQJqNMvoqgbvc6FY89kwb+f4b47IqMueJ0wmhuEFR/ tpRAGPqf5ZmrtoWEhRGUNCiDvCCk112hLzYWwHyD5m5fZoLn9wU+U18wtio0dyHn ZCnA+wVuVl8mxu327h9q4YxqkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN7hj944 xAKRv/E8BP1VOrxvnhsMMB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvTTbGqOIyeevbrzV1an50EoqQHh6IOionbZ7eCDnAz9Ivw2rtJff0g6AcExb gIfnAjiaKUL7ErIRNeWr36pA4vaq+4mWFUtfkiW3qSTitLk+hiLc5VuWb09Pls2V Wq75n5nILSrs2lbbPFsZ2726Ar3I/mKBayU3Vh4hTnc5tx3r/6AjqixUJK36q07D yOsZ8Q+QfzVtP1dWnoHc8gWWPcc5lgDyYx0RP2ix6kdZFkU5dOMWi6vyFHlFaanc OZWu/QVD8sKYC9/Xa54aDKQKDwIXNm8LGp5p7NPKkqHaVappvv4FyFnTYVgyhEmZ ygWBaqxqrxeltFUm53rfica6rQ== -----END CERTIFICATE-----Generated at Thu Mar 26 23:10:36 2026 by rpki-client