$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft File: He4XpqM4DuSI7ztuISW4eOZAckg.mft (raw, json) Hash identifier: nI9ru9opmVpVNeeVtvymSdmCQQ8e51BoznYjG81xjdw= Subject key identifier: 54:78:B6:CE:9F:10:40:7E:79:9B:1D:14:FB:74:AE:39:28:FD:EC:A7 Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: 01B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft Manifest number: 01B2 Signing time: Wed 17 Sep 2025 03:39:08 +0000 Manifest this update: Wed 17 Sep 2025 03:39:08 +0000 Manifest next update: Wed 24 Sep 2025 03:39:08 +0000 Files and hashes: 1: He4XpqM4DuSI7ztuISW4eOZAckg.crl (hash: hNHv3sD8YLhX7/CCvD8OPzbd0hsd8252WNcGZiboF0Y=) 2: 805A2E74660311EF90397033C4F9AE02.roa (hash: kr3XK/LA3ME6CWbcxw7hFQfhU6QavtLWXc2+mP6aHgc=) 3: 8405155C69EB11EF933A993CC4F9AE02.roa (hash: Nc218pLJmDdsf2Z9Kv612BkBE9ixmiOBUD2+vg6KRQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22, serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: Sep 17 03:39:08 2025 GMT Not After : Sep 24 03:39:08 2025 GMT Subject: CN=68ca2d5c-66b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e4:f9:e2:91:08:2d:2b:fc:ad:81:1f:95:48: 74:cc:49:6e:d0:da:78:6e:81:5d:57:01:5f:18:ab: 3d:50:6b:f9:09:de:2c:d0:e6:6c:1d:8d:9d:34:f0: 7d:3a:fc:d4:f8:db:27:2d:54:23:cb:20:28:dd:06: 14:11:c4:ab:21:e9:16:3a:86:fd:4e:7d:cc:dc:53: 76:6b:47:1e:f0:e3:f3:e1:9d:a8:12:f4:c8:23:3f: 17:d4:6f:38:80:ae:4f:e0:c7:90:a7:6a:b3:f5:c5: 98:8a:f6:ee:06:02:71:39:2b:74:0a:c0:bb:b4:da: cd:69:3f:2c:fb:48:b0:09:c1:8c:26:84:d4:da:f9: bd:a9:8a:4b:50:a0:04:06:e4:5a:0d:b3:2e:52:34: 53:df:44:ff:be:cb:fd:c5:97:b7:82:48:53:e8:57: f6:28:ef:f1:cb:83:79:ad:a2:f3:69:95:d7:d1:51: a5:ab:49:a8:e7:7a:9b:3c:20:2c:04:7e:45:25:e2: a4:44:62:7a:6e:09:27:08:a9:12:c6:2b:15:0f:3f: 42:e4:c2:ad:33:ca:f7:9c:b0:0c:5a:ab:9e:94:31: a9:fc:18:d1:52:87:79:dd:b4:07:0f:5d:c7:9a:c4: fd:76:c5:19:76:d1:7e:46:98:2a:0a:05:24:16:3a: 47:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:78:B6:CE:9F:10:40:7E:79:9B:1D:14:FB:74:AE:39:28:FD:EC:A7 X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:53:d1:9e:b5:ef:77:b6:0e:f4:fc:f2:3f:d3:24:69:a5:a8: 7e:90:c2:6e:e8:66:51:a9:6a:34:4e:62:04:fe:98:f3:55:6e: 99:c2:67:ff:05:21:5c:fd:a9:84:49:9c:33:41:dc:e5:5b:ee: 5f:53:ee:e3:38:c2:92:c7:41:a2:8c:5f:66:59:19:5d:05:b6: ae:87:4a:4f:d4:ce:3f:9e:cb:cd:96:9e:73:d0:c9:a2:1d:47: 88:fe:fa:89:7a:c8:11:a2:28:c5:c8:12:66:bc:04:a3:35:aa: 54:d8:4c:2c:e0:1e:96:f3:b1:21:ee:22:19:a3:df:d7:b5:55: 33:53:0c:34:95:00:48:41:cc:6a:f2:d4:6e:ee:b6:9e:13:e1: ec:0a:37:9c:ca:3f:69:0a:c3:25:8d:9b:43:28:df:5d:d1:1e: a6:5f:80:f9:7b:94:56:d0:7e:ba:4c:6a:28:06:06:32:d8:ab: e0:1a:44:b5:71:4c:89:60:1e:e7:90:25:32:61:64:9d:a1:f4: 25:62:1a:92:d2:3c:00:b3:6c:73:44:37:b6:cb:2a:06:c2:53: 4d:66:fc:0c:c2:0c:4f:df:01:50:5f:98:4c:c6:da:01:88:94: 41:4e:26:b0:35:d4:ca:a6:7e:e7:d2:c8:c0:d4:7c:0f:7f:66: 62:7e:b6:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjUwOTE3MDMzOTA4WhcNMjUwOTI0MDMzOTA4WjAYMRYwFAYD VQQDEw02OGNhMmQ1Yy02NmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnuT54pEILSv8rYEflUh0zElu0Np4boFdVwFfGKs9UGv5Cd4s0OZsHY2dNPB9 OvzU+NsnLVQjyyAo3QYUEcSrIekWOob9Tn3M3FN2a0ce8OPz4Z2oEvTIIz8X1G84 gK5P4MeQp2qz9cWYivbuBgJxOSt0CsC7tNrNaT8s+0iwCcGMJoTU2vm9qYpLUKAE BuRaDbMuUjRT30T/vsv9xZe3gkhT6Ff2KO/xy4N5raLzaZXX0VGlq0mo53qbPCAs BH5FJeKkRGJ6bgknCKkSxisVDz9C5MKtM8r3nLAMWquelDGp/BjRUod53bQHD13H msT9dsUZdtF+RpgqCgUkFjpH/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFR4ts6f EEB+eZsdFPt0rjko/eynMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyMi8zRjdENjhBOEZERTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1 U0k3enR1SVNXNGVPWkFja2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvU9Gete93tg70/PI/0yRppah+kMJu6GZRqWo0TmIE/pjzVW6Zwmf/ BSFc/amESZwzQdzlW+5fU+7jOMKSx0GijF9mWRldBbauh0pP1M4/nsvNlp5z0Mmi HUeI/vqJesgRoijFyBJmvASjNapU2Ews4B6W87Eh7iIZo9/XtVUzUww0lQBIQcxq 8tRu7raeE+HsCjecyj9pCsMljZtDKN9d0R6mX4D5e5RW0H66TGooBgYy2KvgGkS1 cUyJYB7nkCUyYWSdofQlYhqS0jwAs2xzRDe2yyoGwlNNZvwMwgxP3wFQX5hMxtoB iJRBTiawNdTKpn7n0sjA1HwPf2Zifrao -----END CERTIFICATE-----Generated at Thu Sep 18 23:38:12 2025 by rpki-client