$ rpki-client -vvf rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft File: HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft (raw, json) Hash identifier: mmhuydOR5Tolsb0xoGnQP86ACTjhAY8OQK68IUhHeic= Subject key identifier: 4E:B5:AE:BF:A3:E6:5C:E2:E8:0C:6D:05:C5:83:AE:DE:83:19:D5:FE Authority key identifier: 1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C Certificate issuer: /CN=A9163609/serialNumber=1C422BB1FC96FE60D4B2FF5F6C12450ECC9EE96C Certificate serial: 01E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft Manifest number: 01E3 Signing time: Sat 09 Aug 2025 03:00:48 +0000 Manifest this update: Sat 09 Aug 2025 03:00:47 +0000 Manifest next update: Sat 16 Aug 2025 03:00:47 +0000 Files and hashes: 1: HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl (hash: pjlske1Cm0evrEl1APDzWzujxa/aAt+hz0mHeznT/bM=) 2: F2AB2F288FE011EDA9919C57C4F9AE02.roa (hash: Rf57xWILJOvL68EEABL6r6dfZw+gyCnJxd924tHN+AU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163609, serialNumber=1C422BB1FC96FE60D4B2FF5F6C12450ECC9EE96C Validity Not Before: Aug 9 03:00:47 2025 GMT Not After : Aug 16 03:00:47 2025 GMT Subject: CN=6896b9df-8751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a2:79:e0:ae:14:7e:7a:55:05:e9:d9:6a:c8: ad:9d:e3:73:f2:90:64:e7:89:d6:81:bf:de:0c:29: 1f:b6:ac:9e:aa:ff:92:ac:0f:65:15:2f:61:b6:6e: 76:fd:83:92:cc:ec:e2:9d:7f:34:ce:d6:2d:7f:ed: b7:d3:1d:20:5b:6e:63:9f:1d:e5:ef:77:48:3c:41: d8:3a:3d:5c:37:a3:7f:fb:ed:2e:7c:34:f3:4c:72: 8a:98:af:ef:1a:09:49:85:a0:e0:e7:96:4c:af:91: 13:bb:35:66:cc:05:60:37:cc:81:35:29:89:2c:e1: 75:b1:0a:7f:41:89:d3:19:0f:3b:01:cb:3a:0a:1e: 87:4c:91:14:58:f7:23:74:20:06:d3:7e:5c:ee:1b: c8:b7:0e:2a:fd:b1:1c:36:22:02:7b:54:32:17:6d: 4d:38:fd:3b:e3:c6:e0:3c:34:e2:5d:6d:0e:bd:a7: 21:8b:e7:77:19:3f:be:17:1f:69:db:05:ac:f5:b2: e9:f8:63:13:4f:0b:e3:db:e0:a8:65:cf:f3:95:60: 85:72:7a:50:5c:1e:5d:7a:ae:85:9f:08:b2:2f:14: 8b:b0:40:d4:e6:24:1e:a0:da:0b:01:55:2c:c7:3c: 67:8d:09:6d:1d:83:03:1b:91:0f:97:a8:e1:a3:c3: 5f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B5:AE:BF:A3:E6:5C:E2:E8:0C:6D:05:C5:83:AE:DE:83:19:D5:FE X509v3 Authority Key Identifier: keyid:1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:80:dd:6f:0e:f2:17:ff:f6:16:d3:7e:1c:9d:f9:47:ed:92: 1f:dc:f2:39:95:fd:89:14:42:92:f0:3a:a3:df:58:1e:88:ee: ef:12:1c:da:92:8b:0b:41:52:dc:b2:86:f8:9e:dc:1a:a7:a5: e7:88:45:86:fd:ba:3e:41:61:bb:db:02:1f:97:22:ea:2b:1b: fc:f9:46:73:16:97:62:51:c4:9a:b9:1f:0b:88:c0:3a:cd:3c: f4:48:7c:39:f3:c8:74:64:0c:e8:4b:ee:4c:40:27:eb:78:36: 85:7b:6f:fb:a0:a1:24:af:0b:b2:2b:9c:ce:ea:8a:9e:41:e0: be:69:cb:c5:5a:18:69:7a:63:e0:eb:ac:68:75:f5:47:6f:fc: 2a:a6:ca:04:8b:cb:66:f8:e8:00:fc:86:c1:56:a7:8d:10:33: e4:85:ae:2b:c7:e5:31:38:8e:62:47:25:6a:5f:e4:23:93:d5: d7:ca:95:5c:8a:b8:2f:7e:b7:39:f9:7f:8c:d7:11:b5:9f:a5: 62:31:fc:e9:4d:78:d2:04:d6:3e:52:5f:4a:a0:70:cf:20:3c: 77:75:d3:02:1e:09:b2:c4:04:a2:98:61:7f:ee:f5:28:40:0a: 22:fa:e6:10:a4:f8:7c:5f:df:ee:0b:1e:96:4a:d0:e6:24:7e: be:bf:ff:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM2MDkxMTAvBgNVBAUTKDFDNDIyQkIxRkM5NkZFNjBENEIyRkY1RjZDMTI0NTBF Q0M5RUU5NkMwHhcNMjUwODA5MDMwMDQ3WhcNMjUwODE2MDMwMDQ3WjAYMRYwFAYD VQQDEw02ODk2YjlkZi04NzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06J54K4UfnpVBenZasitneNz8pBk54nWgb/eDCkftqyeqv+SrA9lFS9htm52 /YOSzOzinX80ztYtf+230x0gW25jnx3l73dIPEHYOj1cN6N/++0ufDTzTHKKmK/v GglJhaDg55ZMr5ETuzVmzAVgN8yBNSmJLOF1sQp/QYnTGQ87Acs6Ch6HTJEUWPcj dCAG035c7hvItw4q/bEcNiICe1QyF21NOP0748bgPDTiXW0Ovachi+d3GT++Fx9p 2wWs9bLp+GMTTwvj2+CoZc/zlWCFcnpQXB5deq6FnwiyLxSLsEDU5iQeoNoLAVUs xzxnjQltHYMDG5EPl6jho8NfVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE61rr+j 5lzi6AxtBcWDrt6DGdX+MB8GA1UdIwQYMBaAFBxCK7H8lv5g1LL/X2wSRQ7Mnuls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzYwOS8yM0Y5RThCQThG REUxMUVEQUUzNjlBNTNDNEY5QUUwMi9IRUlyc2Z5V19tRFVzdjlmYkJKRkRzeWU2 V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFSXJzZnlXX21EVXN2OWZiQkpGRHN5ZTZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzYwOS8yM0Y5RThCQThGREUxMUVEQUUzNjlBNTNDNEY5QUUwMi9IRUlyc2Z5V19t RFVzdjlmYkJKRkRzeWU2V3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNgN1vDvIX//YW034cnflH7ZIf3PI5lf2JFEKS8Dqj31geiO7vEhza kosLQVLcsob4ntwap6XniEWG/bo+QWG72wIflyLqKxv8+UZzFpdiUcSauR8LiMA6 zTz0SHw588h0ZAzoS+5MQCfreDaFe2/7oKEkrwuyK5zO6oqeQeC+acvFWhhpemPg 66xodfVHb/wqpsoEi8tm+OgA/IbBVqeNEDPkha4rx+UxOI5iRyVqX+Qjk9XXypVc irgvfrc5+X+M1xG1n6ViMfzpTXjSBNY+Ul9KoHDPIDx3ddMCHgmyxASimGF/7vUo QAoi+uYQpPh8X9/uCx6WStDmJH6+v//4 -----END CERTIFICATE-----Generated at Sun Aug 10 10:45:37 2025 by rpki-client