$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: Bt6o+0eXTXo5q7kUM14zzXBqxFCVdriOGWFecpgpGJM= Subject key identifier: 05:9E:D9:04:19:85:82:24:A7:C5:C5:C9:53:36:04:E1:CA:28:F7:28 Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 05AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 05A9 Signing time: Mon 08 Sep 2025 23:12:54 +0000 Manifest this update: Mon 08 Sep 2025 23:12:54 +0000 Manifest next update: Mon 15 Sep 2025 23:12:54 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: p0IfCLGjfpJ2cyhIdQx77mbmliVPQCtsF77tmYw7nIY=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: tUUqvSA3OdWSARFzs61i7ZLEvpiTAwA30jzc1JS2Wi4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 23:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1454 (0x5ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Sep 8 23:12:54 2025 GMT Not After : Sep 15 23:12:54 2025 GMT Subject: CN=68bf62f6-b92d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:68:a2:ac:f8:8b:16:34:a8:1d:fb:66:9f:72: 53:38:23:e9:4c:6a:3d:30:3a:1c:0b:74:52:66:bb: 69:dc:09:4e:2a:30:85:89:5a:45:80:50:92:f4:86: 65:ec:aa:39:17:f5:37:90:32:00:0f:f8:b9:58:51: f5:9a:13:04:95:3f:b3:68:51:8f:cf:e6:06:1b:73: 98:1a:bc:26:f6:3b:3b:a9:b9:ef:db:66:7b:ba:d6: 90:e9:75:d5:c7:1b:6e:86:8a:89:22:cd:ad:92:b6: 80:bf:20:99:58:46:eb:29:b2:60:79:1e:52:ac:f1: f6:80:6d:01:46:9e:70:b1:94:91:ea:50:f5:0a:1f: 3f:10:a2:d5:31:0f:d8:0d:7c:05:47:87:05:4e:2d: e0:35:3d:e4:71:bc:34:03:43:b1:fe:04:e9:9c:32: 65:be:03:ff:63:03:7f:1a:2e:e4:87:18:f0:a4:ab: c8:2f:67:55:5f:40:1b:c7:7c:68:39:7b:84:fa:08: de:df:57:54:c6:be:2d:b2:d6:34:1a:30:27:57:54: af:1d:65:82:85:7e:f7:8a:11:ca:a9:40:fd:c4:7f: 4b:ac:4a:c8:37:2a:c3:21:8d:1d:90:ab:77:e3:f8: a8:01:3f:62:51:4b:c3:0f:76:88:7f:c8:ef:80:2c: 4d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:9E:D9:04:19:85:82:24:A7:C5:C5:C9:53:36:04:E1:CA:28:F7:28 X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:45:d3:96:54:37:db:0a:6f:e2:26:87:57:21:2d:13:bf:55: 5b:a4:a1:a4:8e:74:24:66:7f:97:8c:35:e8:ef:6a:e3:28:4f: 57:6d:0a:3a:12:2b:1b:63:7d:52:1c:a5:0a:fb:64:ac:f9:2d: 0f:dc:0f:1a:d5:df:2e:ca:66:7b:c0:3a:7e:e7:63:34:45:c3: 95:c9:b4:15:16:ad:c7:30:46:98:74:8e:7a:18:37:3c:48:7e: fd:a8:fd:aa:c7:bc:76:85:a8:26:7e:38:ab:35:14:78:30:31: 97:20:e4:69:e1:db:94:36:af:f4:5f:c5:26:d3:6d:34:ce:a5: 93:54:7c:3c:da:e6:ea:c0:3d:31:f0:f8:e2:e9:92:86:1e:66: 44:fd:73:cc:7f:b1:8c:71:a1:1b:5a:d3:c5:b2:82:91:16:eb: b7:1e:5c:7e:f9:7d:95:c2:bc:8b:a2:4d:90:43:41:03:ab:90: 96:cd:7f:a5:05:01:ed:4b:62:c6:29:02:b4:13:f2:bc:62:d4: 17:c7:03:f4:4d:e0:09:3f:e8:53:5e:8c:44:52:c0:30:4f:cf: c2:5e:a9:19:ba:a6:38:84:cb:ab:8b:b8:0b:e9:a9:81:74:93: 3c:1e:b4:b2:66:23:c1:3c:5c:e3:5c:6a:ff:d0:25:45:76:cb: 25:cd:56:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjUwOTA4MjMxMjU0WhcNMjUwOTE1MjMxMjU0WjAYMRYwFAYD VQQDEw02OGJmNjJmNi1iOTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2iirPiLFjSoHftmn3JTOCPpTGo9MDocC3RSZrtp3AlOKjCFiVpFgFCS9IZl 7Ko5F/U3kDIAD/i5WFH1mhMElT+zaFGPz+YGG3OYGrwm9js7qbnv22Z7utaQ6XXV xxtuhoqJIs2tkraAvyCZWEbrKbJgeR5SrPH2gG0BRp5wsZSR6lD1Ch8/EKLVMQ/Y DXwFR4cFTi3gNT3kcbw0A0Ox/gTpnDJlvgP/YwN/Gi7khxjwpKvIL2dVX0Abx3xo OXuE+gje31dUxr4tstY0GjAnV1SvHWWChX73ihHKqUD9xH9LrErINyrDIY0dkKt3 4/ioAT9iUUvDD3aIf8jvgCxNAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWe2QQZ hYIkp8XFyVM2BOHKKPcoMB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJRdOWVDfbCm/iJodXIS0Tv1VbpKGkjnQkZn+XjDXo72rjKE9XbQo6 EisbY31SHKUK+2Ss+S0P3A8a1d8uymZ7wDp+52M0RcOVybQVFq3HMEaYdI56GDc8 SH79qP2qx7x2hagmfjirNRR4MDGXIORp4duUNq/0X8Um0200zqWTVHw82ubqwD0x 8Pji6ZKGHmZE/XPMf7GMcaEbWtPFsoKRFuu3Hlx++X2VwryLok2QQ0EDq5CWzX+l BQHtS2LGKQK0E/K8YtQXxwP0TeAJP+hTXoxEUsAwT8/CXqkZuqY4hMuri7gL6amB dJM8HrSyZiPBPFzjXGr/0CVFdsslzVYd -----END CERTIFICATE-----Generated at Tue Sep 9 13:22:33 2025 by rpki-client