$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft File: Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft (raw, json) Hash identifier: J5VepERO2pf7jhQz5v89Yu6xOwVal0qCtx3JGj43yJk= Subject key identifier: B1:A9:23:24:A6:19:56:77:D9:33:A8:F5:E1:95:FC:05:94:DF:B0:79 Authority key identifier: 1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D Certificate issuer: /CN=A91CFA8D/serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Certificate serial: 071D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft Manifest number: 0718 Signing time: Sat 18 Oct 2025 23:15:31 +0000 Manifest this update: Sat 18 Oct 2025 23:15:30 +0000 Manifest next update: Sat 25 Oct 2025 23:15:30 +0000 Files and hashes: 1: Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl (hash: 8WnWdY4MPDU+UBwapI1eI0HcbLPkTm5q9Q1rZjvOAKw=) 2: 6AA36A7E564D11EB8B387024C4F9AE02.roa (hash: fGJYrfdMmxnMU9m3ImkorOWGB4M3nyP+3+G+aL2cIE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:15:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1821 (0x71d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8D, serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Validity Not Before: Oct 18 23:15:30 2025 GMT Not After : Oct 25 23:15:30 2025 GMT Subject: CN=68f41f92-a238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:96:0d:75:13:5b:db:90:fc:56:a0:88:3b:73: 93:c8:08:08:fb:9d:04:97:47:aa:4e:aa:a0:c6:46: 9b:77:e8:5a:c6:40:dc:ad:22:9b:6d:97:86:1a:7d: 37:95:b7:ed:ea:4b:9e:34:b7:5b:0a:aa:c8:e8:4b: 92:cb:13:76:56:a4:00:8c:1a:7c:c0:a0:09:39:4a: 89:ea:06:e2:b6:d2:2a:cb:67:0f:aa:aa:0c:80:66: af:7b:95:4c:c6:ef:9b:b0:16:60:9f:cd:e5:5c:9f: 7f:97:68:ad:0b:ba:41:a4:7e:9b:0a:d6:35:d9:24: 4a:f3:b0:b5:72:0f:ee:48:79:ec:9a:b6:8e:85:45: 16:2b:35:e8:08:32:94:bc:aa:00:b2:7e:40:f1:5e: 0f:8b:a4:a8:71:f2:35:5e:09:68:b8:6d:bb:98:fe: 5f:44:eb:c0:a8:0f:55:d9:42:65:4c:19:73:a6:54: dc:a6:93:76:f0:fd:8c:3b:49:2a:9a:82:c2:2b:ee: 59:4f:bc:69:36:0c:d9:48:2d:f1:0f:91:d3:a4:04: 78:1b:23:c1:49:7a:be:f5:96:f6:7d:93:f7:30:b8: e7:3d:a3:9e:4c:5b:a0:ea:87:ac:cd:f1:e1:a2:fe: 6e:98:8b:81:20:d5:6c:36:d9:24:ed:07:d7:01:1d: 3d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:A9:23:24:A6:19:56:77:D9:33:A8:F5:E1:95:FC:05:94:DF:B0:79 X509v3 Authority Key Identifier: keyid:1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:3f:8d:68:c1:6c:83:06:18:8a:6c:42:73:0d:73:21:38:f4: 78:27:06:e5:1c:a8:76:1a:78:89:64:38:dc:2a:87:89:6d:c1: b3:eb:4c:41:bc:86:c3:1c:02:80:08:e7:15:82:af:d4:f7:8e: b4:05:91:ec:58:f0:fc:64:71:5f:70:63:35:ac:a4:37:2b:fd: 1c:81:72:f1:ea:27:4a:f6:4a:56:45:74:72:27:19:81:aa:65: 53:77:3f:82:01:45:37:95:7f:90:17:ed:5c:38:52:fa:5c:09: 58:08:ce:00:60:a7:ef:e8:c8:2d:5b:36:e4:71:cc:f3:4f:4b: 29:ee:8b:b9:66:6f:e9:ae:e6:da:4a:ab:01:07:70:44:aa:54: 0a:f8:cc:bf:ba:59:7c:b4:0d:3c:68:a6:cc:17:22:9b:6a:ad: 4b:26:44:99:84:a6:c0:fc:b2:61:18:a2:c0:89:2b:ad:5f:88: 9d:cb:c0:1e:61:7a:cb:f0:68:08:06:2e:19:28:f7:d7:48:b9: c7:cd:16:53:77:eb:1c:da:77:aa:5c:a6:1e:eb:fc:08:b9:df: d9:fd:6a:a9:71:65:49:c1:e3:3c:af:79:06:ad:a3:bb:cb:2c: ad:6b:89:ac:8f:24:9a:82:0d:d3:f3:7f:06:bd:22:3c:d3:f4: 42:96:85:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEQxMTAvBgNVBAUTKDFERUJCNzM3MUFCOTdCQjlGM0E5MDZFQjA3RDU5MUM5 Q0YzODhENUQwHhcNMjUxMDE4MjMxNTMwWhcNMjUxMDI1MjMxNTMwWjAYMRYwFAYD VQQDEw02OGY0MWY5Mi1hMjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlZYNdRNb25D8VqCIO3OTyAgI+50El0eqTqqgxkabd+haxkDcrSKbbZeGGn03 lbft6kueNLdbCqrI6EuSyxN2VqQAjBp8wKAJOUqJ6gbittIqy2cPqqoMgGave5VM xu+bsBZgn83lXJ9/l2itC7pBpH6bCtY12SRK87C1cg/uSHnsmraOhUUWKzXoCDKU vKoAsn5A8V4Pi6SocfI1XglouG27mP5fROvAqA9V2UJlTBlzplTcppN28P2MO0kq moLCK+5ZT7xpNgzZSC3xD5HTpAR4GyPBSXq+9Zb2fZP3MLjnPaOeTFug6oeszfHh ov5umIuBINVsNtkk7QfXAR09YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGpIySm GVZ32TOo9eGV/AWU37B5MB8GA1UdIwQYMBaAFB3rtzcauXu586kG6wfVkcnPOI1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RC81NkZFRkY4MDU2 NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3bnpxUWJyQjlXUnljODRq VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hldTNOeHE1ZTduenFRYnJCOVdSeWM4NGpWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RC81NkZFRkY4MDU2NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3 bnpxUWJyQjlXUnljODRqVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOP41owWyDBhiKbEJzDXMhOPR4JwblHKh2GniJZDjcKoeJbcGz60xB vIbDHAKACOcVgq/U9460BZHsWPD8ZHFfcGM1rKQ3K/0cgXLx6idK9kpWRXRyJxmB qmVTdz+CAUU3lX+QF+1cOFL6XAlYCM4AYKfv6MgtWzbkcczzT0sp7ou5Zm/pruba SqsBB3BEqlQK+My/ull8tA08aKbMFyKbaq1LJkSZhKbA/LJhGKLAiSutX4idy8Ae YXrL8GgIBi4ZKPfXSLnHzRZTd+sc2neqXKYe6/wIud/Z/WqpcWVJweM8r3kGraO7 yyyta4msjySagg3T838GvSI80/RCloVZ -----END CERTIFICATE-----Generated at Tue Oct 21 02:09:01 2025 by rpki-client