$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: g5UoZ3bbno+HCXQeF3J+wwma9R2d2oIQLha7BnbJUmE= Subject key identifier: 15:93:A0:6C:42:38:B5:56:E5:67:3B:93:F6:11:17:50:32:B5:C5:FD Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 0216 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 0210 Signing time: Wed 17 Sep 2025 02:43:30 +0000 Manifest this update: Wed 17 Sep 2025 02:43:29 +0000 Manifest next update: Wed 24 Sep 2025 02:43:29 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: ++EpP0IkbJ4qacZ7PaZVA4+0Up9QIVWBEKRmk0SyX4I=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: mCCSZ+9WYvhaMFX9tC0Iaz2gMx4GH4ZGb0UPoAirqT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 02:43:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 534 (0x216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: Sep 17 02:43:29 2025 GMT Not After : Sep 24 02:43:29 2025 GMT Subject: CN=68ca2052-8e12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6e:b3:b2:11:5b:c1:48:c0:0b:df:55:76:03: da:d4:d7:4f:30:ca:4b:cf:cb:dd:bf:fc:b5:0a:d5: a6:12:85:49:11:f6:44:e8:71:3b:26:5f:dd:bc:ee: e6:5b:d3:e4:91:9e:6a:aa:3c:ef:e0:01:fb:5a:f3: e2:85:bf:1b:d2:a0:c1:06:f9:f0:d0:4c:e2:b0:f4: 7b:d6:9c:30:7b:60:2a:73:06:8e:c9:4c:30:cb:cb: 3b:80:ba:ee:b3:87:a5:04:79:9c:8d:78:25:0b:a9: 25:44:fc:6c:df:fc:4c:60:1f:cd:bb:be:c6:a5:a1: 3c:00:2d:07:db:3f:22:ca:70:62:17:d3:be:42:17: 1d:51:15:92:9b:80:93:42:d0:e1:95:66:99:b2:8d: 57:84:e6:31:66:fa:3a:5d:a8:f6:c9:62:4a:b1:6d: 4d:73:5a:22:58:b1:45:f9:de:11:78:8b:33:1d:43: bb:1c:22:76:89:6d:25:b6:24:0c:b1:48:4d:3e:8c: 24:38:43:7e:32:19:2f:ad:81:aa:58:d4:38:84:0c: dc:ce:54:8a:d9:2e:48:82:e8:74:4c:74:6d:d5:1a: 98:7a:97:0d:a0:3b:d5:e1:3b:ef:95:70:52:89:d8: b6:14:b0:e0:8a:3c:bd:68:b5:ff:46:04:b4:1f:d6: c7:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:93:A0:6C:42:38:B5:56:E5:67:3B:93:F6:11:17:50:32:B5:C5:FD X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:b7:cf:84:3b:e4:22:d6:e1:fa:e7:a1:03:50:d9:d3:be:eb: 4b:54:5c:47:0d:96:4a:c6:81:aa:7a:6d:d1:87:58:da:a6:95: d9:4a:6c:1e:50:39:1e:84:bf:19:22:4d:fe:40:20:3a:e5:95: 71:e8:c7:29:41:5b:1f:bc:78:e5:74:70:74:02:5e:d5:e4:bc: 8b:7f:59:f2:64:d7:a0:74:39:65:67:58:3a:de:fe:fa:14:eb: 7e:0e:f4:f6:68:f0:d7:bc:fd:78:42:22:ae:67:7b:07:c8:0b: c3:a3:1a:c5:ae:ba:98:be:b6:03:15:da:14:d3:68:04:5f:29: 78:0a:90:85:7f:ae:0c:f6:b3:a6:5c:34:74:00:a6:e4:97:9c: 7e:27:5a:91:34:73:d8:4c:6f:b6:84:4d:ee:b9:ba:e4:ec:96: 06:9d:27:87:1c:fe:28:6f:0f:ec:00:12:c3:61:65:5c:11:c5: e2:81:39:98:50:a4:39:f0:c8:74:0a:d5:c0:df:ed:0f:59:08: 90:0c:85:49:a2:67:b3:3b:9e:78:14:45:a5:d0:a0:2a:5b:59: 45:b0:07:41:01:1c:06:cb:51:88:ff:e2:44:d8:8d:2c:02:ab: 5c:bb:bb:8d:77:21:ab:95:eb:e4:46:75:e3:7b:97:ed:aa:fe: 64:5c:1b:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjUwOTE3MDI0MzI5WhcNMjUwOTI0MDI0MzI5WjAYMRYwFAYD VQQDEw02OGNhMjA1Mi04ZTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqm6zshFbwUjAC99VdgPa1NdPMMpLz8vdv/y1CtWmEoVJEfZE6HE7Jl/dvO7m W9PkkZ5qqjzv4AH7WvPihb8b0qDBBvnw0EzisPR71pwwe2AqcwaOyUwwy8s7gLru s4elBHmcjXglC6klRPxs3/xMYB/Nu77GpaE8AC0H2z8iynBiF9O+QhcdURWSm4CT QtDhlWaZso1XhOYxZvo6Xaj2yWJKsW1Nc1oiWLFF+d4ReIszHUO7HCJ2iW0ltiQM sUhNPowkOEN+MhkvrYGqWNQ4hAzczlSK2S5Iguh0THRt1RqYepcNoDvV4TvvlXBS idi2FLDgijy9aLX/RgS0H9bHUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWToGxC OLVW5Wc7k/YRF1AytcX9MB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtt8+EO+Qi1uH656EDUNnTvutLVFxHDZZKxoGqem3Rh1jappXZSmwe UDkehL8ZIk3+QCA65ZVx6McpQVsfvHjldHB0Al7V5LyLf1nyZNegdDllZ1g63v76 FOt+DvT2aPDXvP14QiKuZ3sHyAvDoxrFrrqYvrYDFdoU02gEXyl4CpCFf64M9rOm XDR0AKbkl5x+J1qRNHPYTG+2hE3uubrk7JYGnSeHHP4obw/sABLDYWVcEcXigTmY UKQ58Mh0CtXA3+0PWQiQDIVJomezO554FEWl0KAqW1lFsAdBARwGy1GI/+JE2I0s Aqtcu7uNdyGrlevkRnXje5ftqv5kXBuz -----END CERTIFICATE-----Generated at Fri Sep 19 03:38:19 2025 by rpki-client