$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: aVq7wUUd4up99qNf+P5n8jajFtOKaKn6QJVw241OTDo= Subject key identifier: EA:C0:2F:88:5B:23:8F:F6:CF:4A:B3:F1:2A:8C:A2:C1:4F:28:C2:34 Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 061C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 0615 Signing time: Sat 04 Apr 2026 22:37:27 +0000 Manifest this update: Sat 04 Apr 2026 22:37:27 +0000 Manifest next update: Sat 11 Apr 2026 22:37:27 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: U6wllZ9gVvIU3Q9wVKUdl6b+NXd8tf7u8Kg0lKtB7jQ=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: r63sbdb81aS0Y3D1jhysh8/CnvmDL9CRF/6oUTPKQNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1564 (0x61c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Apr 4 22:37:27 2026 GMT Not After : Apr 11 22:37:27 2026 GMT Subject: CN=69d192a7-0801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d0:b2:b7:0a:a9:98:ba:59:b4:3d:5a:a2:b2: fd:e9:1e:06:c4:7f:6e:03:76:ef:8d:53:5f:d3:1a: 14:25:0f:7f:3c:9b:96:9c:da:c7:8d:00:8a:72:b8: 8a:a4:e9:ce:1e:e5:13:12:0a:64:7c:2a:bd:ca:60: 7c:d4:ee:18:5c:fb:09:f4:39:9a:05:f4:16:fe:b5: 26:54:ba:c0:2a:63:0e:fe:58:67:89:8e:d3:f0:70: 7d:e5:66:19:40:ea:83:13:89:e3:93:05:df:3a:f9: 63:60:71:77:b9:05:1e:f5:90:32:bd:f2:af:25:4a: de:5b:26:77:73:f2:94:b0:3a:89:e6:0c:94:09:a7: e4:22:dc:b7:7f:04:cd:17:dd:f3:19:55:b6:d7:d3: ab:19:f3:a4:18:83:ae:10:ee:31:48:58:bf:e5:26: b2:81:a2:47:41:ee:bd:69:eb:12:da:bf:50:11:cb: 97:c4:be:59:15:0b:07:1a:1d:39:95:61:7a:d0:4e: 5a:7c:14:21:ca:1e:11:6a:e1:ab:04:9d:c4:6c:59: 09:23:f6:90:9b:45:e7:38:32:96:58:ca:e4:11:b6: a2:5c:0f:f3:8d:de:fd:8b:71:66:cc:57:b5:1c:22: 82:55:14:47:8e:93:92:85:2a:f2:1d:a0:a3:27:6d: 8e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C0:2F:88:5B:23:8F:F6:CF:4A:B3:F1:2A:8C:A2:C1:4F:28:C2:34 X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:0d:2e:e2:c7:10:b4:dc:10:ba:d2:d5:fa:af:e6:43:70:b8: 26:34:71:5d:49:42:f3:7e:06:97:f2:49:cb:5f:b4:ff:c8:d7: 26:fd:c0:06:39:4a:0d:ac:6c:f1:47:9d:57:f2:4c:d9:75:92: 99:80:3d:5a:22:78:ef:f3:fe:dd:33:9f:f1:e6:40:a9:9d:8a: 56:7b:43:f9:ff:35:f8:f9:43:a9:f6:6f:8f:ca:08:6d:69:00: 67:be:9c:1c:e3:8f:23:4d:89:ef:db:67:ff:cd:5f:d3:3c:33: 27:07:2a:f6:0b:5c:46:92:38:79:dc:19:da:5b:0b:47:f3:69: 95:76:2a:4b:2f:1f:19:31:e6:c8:22:23:cc:88:7e:fc:50:0c: 80:6d:f8:d4:48:0b:ab:57:a8:b6:0a:74:34:c4:aa:f9:55:2b: 3c:6e:c4:d6:78:2a:aa:43:83:24:f8:27:40:31:f2:95:1c:8a: 78:fe:bd:99:76:63:bc:5a:04:8c:e8:27:80:ba:9d:00:53:86: 0d:6c:07:ef:af:6f:0b:7c:5b:45:59:80:a3:ad:4e:bc:b0:eb: 09:dd:97:c4:7b:52:d0:27:55:d2:eb:9c:8f:a3:02:ea:1a:ed: 74:bb:e4:c3:e7:0d:a8:fe:39:36:d0:9f:48:df:ab:5d:84:8d: 7a:9b:e1:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjYwNDA0MjIzNzI3WhcNMjYwNDExMjIzNzI3WjAYMRYwFAYD VQQDEw02OWQxOTJhNy0wODAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9CytwqpmLpZtD1aorL96R4GxH9uA3bvjVNf0xoUJQ9/PJuWnNrHjQCKcriK pOnOHuUTEgpkfCq9ymB81O4YXPsJ9DmaBfQW/rUmVLrAKmMO/lhniY7T8HB95WYZ QOqDE4njkwXfOvljYHF3uQUe9ZAyvfKvJUreWyZ3c/KUsDqJ5gyUCafkIty3fwTN F93zGVW219OrGfOkGIOuEO4xSFi/5SaygaJHQe69aesS2r9QEcuXxL5ZFQsHGh05 lWF60E5afBQhyh4RauGrBJ3EbFkJI/aQm0XnODKWWMrkEbaiXA/zjd79i3FmzFe1 HCKCVRRHjpOShSryHaCjJ22OawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOrAL4hb I4/2z0qz8SqMosFPKMI0MB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGA0u4scQtNwQutLV+q/mQ3C4JjRxXUlC834Gl/JJy1+0/8jXJv3ABjlKDaxs 8UedV/JM2XWSmYA9WiJ47/P+3TOf8eZAqZ2KVntD+f81+PlDqfZvj8oIbWkAZ76c HOOPI02J79tn/81f0zwzJwcq9gtcRpI4edwZ2lsLR/NplXYqSy8fGTHmyCIjzIh+ /FAMgG341EgLq1eotgp0NMSq+VUrPG7E1ngqqkODJPgnQDHylRyKeP69mXZjvFoE jOgngLqdAFOGDWwH769vC3xbRVmAo61OvLDrCd2XxHtS0CdV0uucj6MC6hrtdLvk w+cNqP45NtCfSN+rXYSNepvheQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:57:23 2026 by rpki-client