$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: LcbYj6DXBttO3Ry5JKWJSjExgfA7qU4Bcu/09abqWyw= Subject key identifier: 64:15:5C:6E:57:36:8C:91:E8:85:5D:F9:08:E7:18:84:E8:55:C5:46 Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 0577 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 0573 Signing time: Fri 30 May 2025 23:31:18 +0000 Manifest this update: Fri 30 May 2025 23:31:17 +0000 Manifest next update: Fri 06 Jun 2025 23:31:17 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: hjszOZLj9OC/wq4EHHzBdoa8HEiReZqY8qWbmDnT14o=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: a7GzfQZpHB/FDQX8t11/W+Jq7q9b14r9hyier7paZ38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1399 (0x577) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: May 30 23:31:17 2025 GMT Not After : Jun 6 23:31:17 2025 GMT Subject: CN=683a3fc6-eca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c4:5b:20:91:06:d3:5c:05:55:f0:7f:85:00: f1:02:2e:31:8e:ad:40:9d:9a:a0:0b:a3:81:95:63: 95:73:4e:7a:c9:d9:3a:52:39:26:f4:23:13:14:b1: d0:a4:ca:a4:bc:0a:cf:a2:77:88:14:7c:b4:32:76: 4e:67:b1:1f:f9:ac:c7:49:da:4f:cf:3c:86:60:b2: fc:20:fa:e2:c8:81:f7:db:39:c1:40:1e:cb:fe:bf: 6c:77:a5:36:f3:c3:4d:79:b6:cc:0d:6a:c5:da:c5: 86:e0:4a:da:0e:7c:f2:1a:34:02:9d:f5:d0:ac:6a: ff:51:8c:0d:88:a6:7f:92:de:d5:43:ed:69:13:61: 62:b2:2c:d4:5c:d8:dc:e5:d6:c1:61:a7:22:54:b1: f5:6a:9c:e2:36:54:df:0d:52:1d:87:fb:31:c2:e0: 06:f5:f6:e9:4e:ef:97:b3:61:59:47:78:b1:27:26: d6:61:45:58:e3:59:fe:1a:46:7d:3e:e3:86:a1:9d: 64:f4:44:0d:13:b8:6d:ef:7e:3e:72:15:d1:a0:2d: 94:bd:43:eb:a8:45:b4:ab:95:6d:14:b6:38:69:fa: ff:03:cd:9d:ba:bd:30:8c:77:09:ea:ae:48:0c:c2: 36:83:87:56:32:21:fb:d1:88:ff:65:d3:51:37:ba: ec:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:15:5C:6E:57:36:8C:91:E8:85:5D:F9:08:E7:18:84:E8:55:C5:46 X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:85:79:de:5f:85:67:4f:b2:09:25:54:46:3c:79:55:a1:51: ca:f7:23:db:d5:0a:23:5d:b7:2a:31:e6:bd:67:b8:03:27:51: d7:3a:14:41:fd:e8:9f:5d:a3:3f:55:bf:35:03:8f:d1:a3:60: c2:ad:a1:1f:5a:d4:a7:9e:a4:ce:92:11:7b:c4:3c:1f:b3:7e: 28:06:7e:50:3a:84:c3:c0:e6:8a:24:93:ae:88:43:cf:75:4e: 11:96:3a:3b:64:66:98:93:a1:5f:d3:52:00:29:38:fe:9b:07: 1a:a1:c9:8e:57:7e:40:af:01:34:d9:92:3f:11:2f:4e:ef:d6: 3b:c5:4e:f4:82:43:26:71:8c:0c:90:54:bf:ba:2a:59:30:34: 05:75:3a:88:02:3b:37:fd:86:e4:bd:3f:d8:ee:0a:22:31:9a: 81:b3:0d:1b:ff:8e:0e:7a:18:d6:98:5f:4a:ee:25:fb:8e:60: e9:24:f6:58:73:38:a2:df:e1:3f:35:07:c2:97:fa:f9:48:2a: 2a:a5:7c:7a:29:a1:f4:e2:73:e2:13:b9:de:55:18:f8:0e:06: f9:1d:5a:f0:b0:13:5f:05:52:47:33:56:3d:f8:61:da:2d:49: 22:47:e4:07:08:e3:7c:a3:5f:27:2b:f0:98:e1:67:4f:b0:64: d5:89:3d:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjUwNTMwMjMzMTE3WhcNMjUwNjA2MjMzMTE3WjAYMRYwFAYD VQQDEw02ODNhM2ZjNi1lY2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8RbIJEG01wFVfB/hQDxAi4xjq1AnZqgC6OBlWOVc056ydk6Ujkm9CMTFLHQ pMqkvArPoneIFHy0MnZOZ7Ef+azHSdpPzzyGYLL8IPriyIH32znBQB7L/r9sd6U2 88NNebbMDWrF2sWG4EraDnzyGjQCnfXQrGr/UYwNiKZ/kt7VQ+1pE2FisizUXNjc 5dbBYaciVLH1apziNlTfDVIdh/sxwuAG9fbpTu+Xs2FZR3ixJybWYUVY41n+GkZ9 PuOGoZ1k9EQNE7ht734+chXRoC2UvUPrqEW0q5VtFLY4afr/A82dur0wjHcJ6q5I DMI2g4dWMiH70Yj/ZdNRN7rs8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQVXG5X NoyR6IVd+QjnGIToVcVGMB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4hXneX4VnT7IJJVRGPHlVoVHK9yPb1QojXbcqMea9Z7gDJ1HXOhRB /eifXaM/Vb81A4/Ro2DCraEfWtSnnqTOkhF7xDwfs34oBn5QOoTDwOaKJJOuiEPP dU4Rljo7ZGaYk6Ff01IAKTj+mwcaocmOV35ArwE02ZI/ES9O79Y7xU70gkMmcYwM kFS/uipZMDQFdTqIAjs3/YbkvT/Y7goiMZqBsw0b/44OehjWmF9K7iX7jmDpJPZY czii3+E/NQfCl/r5SCoqpXx6KaH04nPiE7neVRj4Dgb5HVrwsBNfBVJHM1Y9+GHa LUkiR+QHCON8o18nK/CY4WdPsGTViT31 -----END CERTIFICATE-----Generated at Sat May 31 17:39:13 2025 by rpki-client