$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: rPfdTunEER1p61e2rcdZnzqwPwSRS6C+xYX1lgvjH9U= Subject key identifier: 64:D3:B3:3C:2D:87:E9:07:1E:2F:80:E9:AF:07:DD:DA:44:D4:93:E5 Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 05C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 05BD Signing time: Sun 19 Oct 2025 00:45:19 +0000 Manifest this update: Sun 19 Oct 2025 00:45:18 +0000 Manifest next update: Sun 26 Oct 2025 00:45:18 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: 3JVjFwWM+aj1zNNeJdZnXE68StuDeNSZONMHIJiGwoA=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: tUUqvSA3OdWSARFzs61i7ZLEvpiTAwA30jzc1JS2Wi4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:45:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1474 (0x5c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Oct 19 00:45:18 2025 GMT Not After : Oct 26 00:45:18 2025 GMT Subject: CN=68f4349e-cf4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3c:e6:76:33:b9:4d:20:5f:11:d6:31:29:09: 5a:ed:7d:87:48:77:f2:30:71:55:ee:08:32:3e:5d: 49:84:7d:db:6e:56:ec:91:6b:75:96:1a:09:3b:f1: 87:cf:20:c6:e6:2a:8e:e3:c4:35:d3:57:8e:21:ac: 72:bc:6c:62:94:40:84:c4:d6:e4:17:22:ea:fe:42: 0f:39:2f:4e:47:3c:62:9f:00:ee:9a:3e:65:17:1c: 78:02:38:71:3d:1d:a6:4c:d2:a5:21:3d:d3:98:c5: f3:02:94:2d:6a:e8:22:d6:0c:58:ff:30:7a:b0:69: aa:0d:f7:49:c7:ab:ba:52:96:72:05:e0:a8:12:9e: 42:c3:1e:3d:e2:02:8a:38:8b:25:5f:d1:b3:d9:a9: 95:b1:4b:74:e0:97:0f:f2:78:fe:89:f5:2c:dd:59: 44:96:db:97:75:a2:bd:2a:68:cf:8a:f4:19:a3:2c: 63:b7:1b:d5:d1:dd:72:e7:2d:18:a2:48:eb:f3:15: 44:46:7f:5e:2d:4c:10:7e:bc:3b:ce:2f:4b:53:70: 29:3b:79:2d:9e:83:39:6a:e3:f9:4e:d6:7b:97:d0: 0d:86:bc:dc:86:64:10:94:e2:37:66:4a:31:9f:a0: d4:16:81:d7:c4:fc:f1:2b:a5:3d:9f:88:66:49:85: 68:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:D3:B3:3C:2D:87:E9:07:1E:2F:80:E9:AF:07:DD:DA:44:D4:93:E5 X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:6f:73:fc:e5:0e:79:c9:5c:1b:ea:20:0d:ef:d9:81:f5:63: a9:24:01:29:ce:7e:18:17:d8:ad:1f:eb:fb:0a:58:a7:50:c9: 2f:08:94:72:5e:0d:b1:0d:cb:c9:51:10:41:68:8e:75:34:56: 6e:e9:a4:50:e5:21:49:16:f2:88:09:f6:3d:e1:66:ac:5b:71: 30:76:0d:58:3a:71:a6:62:bf:14:8a:80:e5:4f:2a:84:82:9c: 1e:c8:bd:26:e5:21:09:d5:90:f6:9e:07:ec:44:e9:9e:6f:7d: b0:67:8c:f9:d1:d2:aa:0a:de:bc:2b:05:33:bb:d9:63:df:9b: a3:35:c6:94:1c:e6:2a:5a:68:a0:7e:fa:95:0e:0b:df:38:90: bd:4f:04:1e:a9:d1:8d:87:45:19:15:2e:97:e9:64:da:43:fe: 9b:9f:f0:2e:0c:11:6a:31:ba:43:c5:c2:12:81:e3:ca:da:1e: ea:c4:12:a6:19:e6:1a:4b:e3:15:0e:a1:9e:c5:ac:1e:bf:ba: 31:c2:55:32:f9:e3:3d:f4:1a:c0:91:df:27:e3:d9:ce:ef:4a: 4b:2e:76:fa:0f:d7:01:63:18:3c:02:5e:a4:13:44:0d:94:57: fc:00:57:06:ef:91:df:20:27:14:11:ed:28:11:51:6d:44:83: 1c:49:ca:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjUxMDE5MDA0NTE4WhcNMjUxMDI2MDA0NTE4WjAYMRYwFAYD VQQDEw02OGY0MzQ5ZS1jZjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTzmdjO5TSBfEdYxKQla7X2HSHfyMHFV7ggyPl1JhH3bblbskWt1lhoJO/GH zyDG5iqO48Q101eOIaxyvGxilECExNbkFyLq/kIPOS9ORzxinwDumj5lFxx4Ajhx PR2mTNKlIT3TmMXzApQtaugi1gxY/zB6sGmqDfdJx6u6UpZyBeCoEp5Cwx494gKK OIslX9Gz2amVsUt04JcP8nj+ifUs3VlEltuXdaK9KmjPivQZoyxjtxvV0d1y5y0Y okjr8xVERn9eLUwQfrw7zi9LU3ApO3ktnoM5auP5TtZ7l9ANhrzchmQQlOI3Zkox n6DUFoHXxPzxK6U9n4hmSYVomQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTTszwt h+kHHi+A6a8H3dpE1JPlMB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMb3P85Q55yVwb6iAN79mB9WOpJAEpzn4YF9itH+v7ClinUMkvCJRy Xg2xDcvJURBBaI51NFZu6aRQ5SFJFvKICfY94WasW3Ewdg1YOnGmYr8UioDlTyqE gpweyL0m5SEJ1ZD2ngfsROmeb32wZ4z50dKqCt68KwUzu9lj35ujNcaUHOYqWmig fvqVDgvfOJC9TwQeqdGNh0UZFS6X6WTaQ/6bn/AuDBFqMbpDxcISgePK2h7qxBKm GeYaS+MVDqGexawev7oxwlUy+eM99BrAkd8n49nO70pLLnb6D9cBYxg8Al6kE0QN lFf8AFcG75HfICcUEe0oEVFtRIMcScph -----END CERTIFICATE-----Generated at Mon Oct 20 13:51:21 2025 by rpki-client