$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: VsmGscxm3bbJpWhdtHmpZqbLpIozVACz18MLlcYNu5M= Subject key identifier: 07:CF:14:1F:B4:A7:D8:BF:82:77:1D:07:B0:9B:FC:58:7C:F9:DA:8D Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 0633 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 062C Signing time: Wed 20 May 2026 22:49:46 +0000 Manifest this update: Wed 20 May 2026 22:49:45 +0000 Manifest next update: Wed 27 May 2026 22:49:45 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: eDU/qckAJhffKRw/et/RccoeV12qofK5g205cHrv51M=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: r63sbdb81aS0Y3D1jhysh8/CnvmDL9CRF/6oUTPKQNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 22:49:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1587 (0x633) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: May 20 22:49:45 2026 GMT Not After : May 27 22:49:45 2026 GMT Subject: CN=6a0e3a8a-70a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2e:d3:92:38:32:60:c1:7a:3b:48:6d:16:93: f5:63:43:47:ce:54:66:2c:8d:e5:b6:e3:c0:d2:06: f1:2b:80:a3:dc:9a:46:87:c2:fb:11:8d:8a:cf:d7: 89:a0:83:0b:a6:a1:c1:1e:d8:21:41:3d:40:59:84: f7:ec:c4:02:a2:8e:7a:c6:87:46:07:43:3f:cf:41: 71:a9:e0:f6:01:a3:41:07:59:b2:29:9e:d7:f6:a5: e3:9f:cb:dc:a0:cb:a2:9c:cf:7a:4f:a5:31:54:4d: b2:8f:b2:95:d6:9e:d0:d1:76:6f:b2:66:0f:b1:eb: e2:7c:f5:06:9a:f7:f9:cf:8f:f9:33:a7:a1:f4:b9: e7:5f:af:41:03:95:81:4e:87:f7:38:5b:18:78:cb: ea:fc:ce:f5:9d:1a:c0:eb:d6:44:df:5b:e5:46:1d: cd:5a:f0:3d:28:e9:2c:6d:79:01:56:aa:db:7b:f6: 65:f0:13:ca:d4:91:91:2e:3a:e0:b6:e7:d1:f7:94: 44:9a:c5:ed:cb:49:16:6e:9c:c6:00:9a:83:20:4b: ad:40:19:f5:d1:7a:92:44:87:71:59:7b:0a:94:5a: 57:3e:53:97:31:dd:0a:6a:a4:7a:47:1f:6f:2d:f5: a6:1e:a1:e2:6a:ee:61:62:17:81:1e:93:26:b7:c3: 80:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:CF:14:1F:B4:A7:D8:BF:82:77:1D:07:B0:9B:FC:58:7C:F9:DA:8D X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:e4:ab:0a:88:7a:6b:9b:dc:25:d5:c8:2f:a4:af:36:8b:1d: f3:44:56:7c:c2:ad:c5:a5:f6:54:17:2a:ba:16:64:9a:0f:b4: 61:58:d3:45:2b:ad:3c:33:c3:10:d4:56:69:d5:39:4d:96:3b: c1:81:6d:f6:9f:57:38:d1:0e:db:5e:e7:ad:83:ff:e4:87:9b: 37:42:40:4d:82:d7:32:d6:2b:6d:56:c7:ec:49:d8:66:e2:d9: 68:2a:38:b6:4d:59:18:36:f2:78:51:2e:d7:bf:dd:1a:4b:3e: d4:73:97:e9:ef:78:8e:95:42:fc:5b:46:ba:ff:6e:fd:80:90: 60:c1:2e:b5:06:20:35:d4:e3:5b:64:4c:61:48:b0:57:f1:2a: ce:88:ff:12:21:34:06:99:f1:ac:1c:08:2c:6a:b5:84:63:d7: c2:fa:fc:6b:15:5e:5f:b3:36:42:f7:b3:94:f0:b0:e5:fc:40: 7d:15:89:3c:b1:53:7a:3b:a2:2b:e9:6d:66:41:33:59:50:6a: 7d:65:0d:3a:00:f0:83:80:1c:04:2e:9d:80:ea:5f:bd:57:76: 0d:b2:1f:b4:45:73:50:3a:74:83:c5:1b:dc:37:ab:18:e0:2a: 1d:2b:16:7c:41:71:7f:c5:24:1b:3b:64:a7:a6:fc:50:42:a9: cc:c1:0a:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjYwNTIwMjI0OTQ1WhcNMjYwNTI3MjI0OTQ1WjAYMRYwFAYD VQQDEw02YTBlM2E4YS03MGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvS7TkjgyYMF6O0htFpP1Y0NHzlRmLI3ltuPA0gbxK4Cj3JpGh8L7EY2Kz9eJ oIMLpqHBHtghQT1AWYT37MQCoo56xodGB0M/z0FxqeD2AaNBB1myKZ7X9qXjn8vc oMuinM96T6UxVE2yj7KV1p7Q0XZvsmYPsevifPUGmvf5z4/5M6eh9LnnX69BA5WB Tof3OFsYeMvq/M71nRrA69ZE31vlRh3NWvA9KOksbXkBVqrbe/Zl8BPK1JGRLjrg tufR95REmsXty0kWbpzGAJqDIEutQBn10XqSRIdxWXsKlFpXPlOXMd0KaqR6Rx9v LfWmHqHiau5hYheBHpMmt8OARQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAfPFB+0 p9i/gncdB7Cb/Fh8+dqNMB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAruSrCoh6a5vcJdXIL6SvNosd80RWfMKtxaX2VBcquhZkmg+0YVjTRSutPDPD ENRWadU5TZY7wYFt9p9XONEO217nrYP/5IebN0JATYLXMtYrbVbH7EnYZuLZaCo4 tk1ZGDbyeFEu17/dGks+1HOX6e94jpVC/FtGuv9u/YCQYMEutQYgNdTjW2RMYUiw V/Eqzoj/EiE0BpnxrBwILGq1hGPXwvr8axVeX7M2QvezlPCw5fxAfRWJPLFTejui K+ltZkEzWVBqfWUNOgDwg4AcBC6dgOpfvVd2DbIftEVzUDp0g8Ub3DerGOAqHSsW fEFxf8UkGztkp6b8UEKpzMEKbg== -----END CERTIFICATE-----Generated at Thu May 21 10:18:50 2026 by rpki-client