$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: rR3+2z9nz5eA1WtkMUjP8puD+OkYkJSTEtYNEoGnDcM= Subject key identifier: E1:92:41:AD:BB:E8:42:AC:80:9E:A8:1B:DA:75:0B:76:F1:DD:2A:0B Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0C73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C67 Signing time: Thu 18 Sep 2025 18:41:51 +0000 Manifest this update: Thu 18 Sep 2025 18:41:51 +0000 Manifest next update: Thu 25 Sep 2025 18:41:51 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: rBIc/WR0+wkTcEIQ+Nw/jRH/EyHP06HxNyE0WzHnU2E=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: tpUvdm+xOrzX9mGh1yV4nPsE8GUAnESIDm4fhXo+ELs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:41:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3187 (0xc73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Sep 18 18:41:51 2025 GMT Not After : Sep 25 18:41:51 2025 GMT Subject: CN=68cc526f-3df3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7c:32:39:d8:69:aa:6e:79:cd:53:bc:4d:55: df:db:00:ce:82:0d:02:00:d6:ac:6c:a1:7f:4b:e9: 47:72:b4:3a:f5:58:40:cf:b4:25:7a:c1:dc:3d:18: ba:34:38:2c:58:84:5c:41:6e:0a:bf:d3:58:4c:06: d6:fd:6a:f7:a7:88:97:e8:d9:30:ba:54:75:44:98: 66:d3:41:bc:5c:36:1f:6f:df:0d:01:a3:93:9c:8d: 4f:f4:9c:95:6d:b2:b2:86:ac:39:bd:54:cf:71:77: b4:26:89:c5:ca:e2:d0:28:8b:87:43:bb:a1:90:c1: cd:88:ef:c0:01:7b:34:45:89:29:27:de:8b:57:5d: 6b:6b:74:21:06:35:53:f5:f2:96:37:88:51:57:42: 7a:4c:90:4c:bb:05:2d:23:4d:98:b8:df:a5:c5:6e: da:d7:2c:19:bd:f8:93:39:c1:cc:f6:55:e5:64:6c: 22:b1:26:ee:a0:ee:e8:ce:4a:d0:3a:8b:79:38:20: 31:bd:21:c0:7d:12:a2:52:a3:72:0e:89:a6:75:43: 5d:0b:28:64:62:bc:65:47:25:bb:2a:0e:88:c8:79: 5e:ad:a9:db:aa:eb:e9:23:d5:9a:99:5a:d3:cf:f8: 07:b1:f2:65:80:54:a5:36:1a:f0:9e:52:49:3e:a0: 80:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:92:41:AD:BB:E8:42:AC:80:9E:A8:1B:DA:75:0B:76:F1:DD:2A:0B X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:f8:32:b5:0d:fc:fb:73:da:28:9d:45:b5:06:46:b7:98:05: 71:5e:e5:01:e6:f1:4a:c9:23:39:1a:b5:10:ab:f9:32:77:75: b5:98:cb:54:43:0a:6d:c1:79:32:6d:60:61:1a:a4:b0:74:c7: 70:79:b3:2c:ed:c2:e0:51:9c:34:56:e7:1b:b7:11:81:d1:c0: 13:82:c9:f4:08:2a:84:2c:a1:2e:d2:c8:6f:10:0e:ed:dd:1b: 03:b8:c0:68:25:a8:a8:ec:d3:1e:42:e2:07:1c:92:5d:8d:33: a9:77:e5:14:62:2b:3d:a6:70:84:6c:93:13:4e:e1:c5:80:65: 0d:14:29:70:d3:5a:e6:b9:ff:77:b0:3d:d5:f7:35:c0:ea:81: 1e:f4:f0:ab:bc:80:9c:f5:f1:e2:96:50:79:6d:53:18:8f:97: 08:b3:48:14:d1:04:64:17:d2:f6:56:26:53:08:ee:da:af:f6: 94:1a:98:be:82:2e:25:41:7c:30:fd:a5:f0:44:0a:6e:3b:de: 28:00:3a:9c:48:e9:e6:5d:42:90:2f:a3:1a:98:30:18:89:af: 73:b0:24:98:f5:7f:c2:f6:e5:75:85:87:07:85:05:dc:d6:a3: 10:13:f6:4d:cc:e9:3c:42:22:77:97:16:37:59:07:12:47:fa: f2:93:49:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUwOTE4MTg0MTUxWhcNMjUwOTI1MTg0MTUxWjAYMRYwFAYD VQQDEw02OGNjNTI2Zi0zZGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3wyOdhpqm55zVO8TVXf2wDOgg0CANasbKF/S+lHcrQ69VhAz7QlesHcPRi6 NDgsWIRcQW4Kv9NYTAbW/Wr3p4iX6NkwulR1RJhm00G8XDYfb98NAaOTnI1P9JyV bbKyhqw5vVTPcXe0JonFyuLQKIuHQ7uhkMHNiO/AAXs0RYkpJ96LV11ra3QhBjVT 9fKWN4hRV0J6TJBMuwUtI02YuN+lxW7a1ywZvfiTOcHM9lXlZGwisSbuoO7ozkrQ Oot5OCAxvSHAfRKiUqNyDommdUNdCyhkYrxlRyW7Kg6IyHleranbquvpI9WamVrT z/gHsfJlgFSlNhrwnlJJPqCAiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOGSQa27 6EKsgJ6oG9p1C3bx3SoLMB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0+DK1Dfz7c9oonUW1Bka3mAVxXuUB5vFKySM5GrUQq/kyd3W1mMtU QwptwXkybWBhGqSwdMdwebMs7cLgUZw0VucbtxGB0cATgsn0CCqELKEu0shvEA7t 3RsDuMBoJaio7NMeQuIHHJJdjTOpd+UUYis9pnCEbJMTTuHFgGUNFClw01rmuf93 sD3V9zXA6oEe9PCrvICc9fHillB5bVMYj5cIs0gU0QRkF9L2ViZTCO7ar/aUGpi+ gi4lQXww/aXwRApuO94oADqcSOnmXUKQL6MamDAYia9zsCSY9X/C9uV1hYcHhQXc 1qMQE/ZNzOk8QiJ3lxY3WQcSR/ryk0no -----END CERTIFICATE-----Generated at Fri Sep 19 02:26:41 2025 by rpki-client