$ rpki-client -vvf rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft File: HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft (raw, json) Hash identifier: 6oo043n5pdWFE0Ur19oUnBuT/WGWw2zsU8Imkkt6Lrs= Subject key identifier: 8A:30:9A:1C:79:32:0C:8E:12:5F:EA:43:C2:25:68:3D:3E:D2:8F:0D Authority key identifier: 1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C Certificate issuer: /CN=A9163609/serialNumber=1C422BB1FC96FE60D4B2FF5F6C12450ECC9EE96C Certificate serial: 0214 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft Manifest number: 0210 Signing time: Wed 05 Nov 2025 02:22:12 +0000 Manifest this update: Wed 05 Nov 2025 02:22:11 +0000 Manifest next update: Wed 12 Nov 2025 02:22:11 +0000 Files and hashes: 1: HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl (hash: dCmX3KkJPqWxgrVc6ZZPnvixdWP6/u+1paOPaai3RZc=) 2: F2AB2F288FE011EDA9919C57C4F9AE02.roa (hash: Rf57xWILJOvL68EEABL6r6dfZw+gyCnJxd924tHN+AU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:22:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163609, serialNumber=1C422BB1FC96FE60D4B2FF5F6C12450ECC9EE96C Validity Not Before: Nov 5 02:22:11 2025 GMT Not After : Nov 12 02:22:11 2025 GMT Subject: CN=690ab4d3-c335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5e:a4:af:78:e9:31:30:4d:a1:3d:5d:19:fe: 93:10:19:59:fa:3e:2b:37:29:60:95:5d:ff:47:80: 51:96:d3:9a:fc:ce:b1:3b:f8:7f:16:1e:45:cf:c2: 51:90:31:2f:2f:01:f0:7d:ce:af:50:9b:70:b2:bb: 53:2f:12:25:a3:0a:cc:1c:1e:f0:4b:96:98:fc:9d: f8:8d:a6:4d:5c:23:32:c9:20:72:21:76:f7:24:5f: dd:95:8c:3a:5f:57:d0:57:f5:8f:da:07:b5:49:11: 2b:00:89:f4:67:c1:5f:53:3d:b4:90:07:04:92:ea: 1e:9d:49:aa:bf:44:45:01:04:df:2d:71:77:14:90: 80:d1:e6:3b:a5:f9:0d:03:bd:a0:4c:e6:f0:ac:61: a8:9e:f7:c3:50:ad:77:62:8c:46:71:82:ae:3d:7a: 70:d4:b8:46:4e:c9:33:77:13:66:01:29:fe:66:e0: 71:02:d4:b4:a2:fa:c9:e9:8b:60:bf:53:fd:83:be: 82:05:20:02:90:28:ce:31:96:40:33:12:9a:ae:1b: e9:89:0e:99:9a:c9:e7:34:91:51:f7:81:28:82:67: 83:bf:41:55:32:14:b6:9c:92:4a:8b:1c:73:2b:08: d7:4b:f0:87:1b:c9:9c:95:9a:24:f9:7f:4f:dd:1a: 29:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:30:9A:1C:79:32:0C:8E:12:5F:EA:43:C2:25:68:3D:3E:D2:8F:0D X509v3 Authority Key Identifier: keyid:1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:8c:78:37:5b:0d:a9:2a:3b:1c:1b:bb:da:84:52:00:2c:88: 81:cb:a1:7f:f0:34:a1:1c:fc:94:f8:4a:79:85:64:d0:f2:4c: bd:20:fc:8c:07:60:42:4e:57:72:5c:ff:c7:bb:de:8a:62:cf: 1e:82:f5:6f:ca:fc:6a:83:2c:ca:f4:72:d7:d9:bd:90:b8:6a: 5b:2f:70:3a:82:c6:5d:ab:e1:6c:14:f9:3f:6c:94:6a:c8:4c: 67:fa:e0:00:fa:3b:49:af:c3:1d:44:47:be:6e:e8:51:36:2e: 73:ab:ae:52:6e:68:95:53:bd:bd:4a:4d:5b:9f:76:2a:8a:06: 95:be:ef:a4:e0:6c:bf:f7:fa:77:44:7d:df:10:fc:ab:bf:d0: e0:c8:2d:77:db:cc:21:c6:83:b4:ac:78:df:ef:b0:58:a7:64: a2:18:17:03:0a:93:ff:c2:3d:5a:53:21:80:0f:e0:21:38:4e: 44:d1:56:5e:20:f2:15:7a:46:af:00:67:0f:80:b9:14:84:f4: cc:16:e2:bf:cc:76:37:77:df:f9:3a:d3:1d:87:b5:30:ff:7d: fc:6f:14:77:60:a9:e0:0a:b1:68:84:87:2e:e3:53:aa:f9:16: 64:b9:23:13:0c:28:dd:72:79:ad:9a:c2:97:6e:9f:ad:bf:a8: 9d:57:91:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM2MDkxMTAvBgNVBAUTKDFDNDIyQkIxRkM5NkZFNjBENEIyRkY1RjZDMTI0NTBF Q0M5RUU5NkMwHhcNMjUxMTA1MDIyMjExWhcNMjUxMTEyMDIyMjExWjAYMRYwFAYD VQQDEw02OTBhYjRkMy1jMzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr16kr3jpMTBNoT1dGf6TEBlZ+j4rNylglV3/R4BRltOa/M6xO/h/Fh5Fz8JR kDEvLwHwfc6vUJtwsrtTLxIlowrMHB7wS5aY/J34jaZNXCMyySByIXb3JF/dlYw6 X1fQV/WP2ge1SRErAIn0Z8FfUz20kAcEkuoenUmqv0RFAQTfLXF3FJCA0eY7pfkN A72gTObwrGGonvfDUK13YoxGcYKuPXpw1LhGTskzdxNmASn+ZuBxAtS0ovrJ6Ytg v1P9g76CBSACkCjOMZZAMxKarhvpiQ6ZmsnnNJFR94EogmeDv0FVMhS2nJJKixxz KwjXS/CHG8mclZok+X9P3RopDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIowmhx5 MgyOEl/qQ8IlaD0+0o8NMB8GA1UdIwQYMBaAFBxCK7H8lv5g1LL/X2wSRQ7Mnuls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzYwOS8yM0Y5RThCQThG REUxMUVEQUUzNjlBNTNDNEY5QUUwMi9IRUlyc2Z5V19tRFVzdjlmYkJKRkRzeWU2 V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFSXJzZnlXX21EVXN2OWZiQkpGRHN5ZTZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzYwOS8yM0Y5RThCQThGREUxMUVEQUUzNjlBNTNDNEY5QUUwMi9IRUlyc2Z5V19t RFVzdjlmYkJKRkRzeWU2V3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpjHg3Ww2pKjscG7vahFIALIiBy6F/8DShHPyU+Ep5hWTQ8ky9IPyM B2BCTldyXP/Hu96KYs8egvVvyvxqgyzK9HLX2b2QuGpbL3A6gsZdq+FsFPk/bJRq yExn+uAA+jtJr8MdREe+buhRNi5zq65SbmiVU729Sk1bn3YqigaVvu+k4Gy/9/p3 RH3fEPyrv9DgyC1328whxoO0rHjf77BYp2SiGBcDCpP/wj1aUyGAD+AhOE5E0VZe IPIVekavAGcPgLkUhPTMFuK/zHY3d9/5OtMdh7Uw/338bxR3YKngCrFohIcu41Oq +RZkuSMTDCjdcnmtmsKXbp+tv6idV5GS -----END CERTIFICATE-----Generated at Wed Nov 5 17:18:20 2025 by rpki-client