$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: 20cqftJz0nVfrORr5K7oOZHL3HmFw//F67ZRWaAHLfc= Subject key identifier: 59:0B:F4:C5:96:84:4D:E6:E1:B4:C6:AB:41:08:2F:9F:1C:AE:1D:A2 Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 057E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 057A Signing time: Thu 12 Jun 2025 22:54:26 +0000 Manifest this update: Thu 12 Jun 2025 22:54:26 +0000 Manifest next update: Thu 19 Jun 2025 22:54:26 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: YnDjKRNLS2YF5qjgGO5pqSVm0hBYkmtE0rFN3J4UwGs=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: a7GzfQZpHB/FDQX8t11/W+Jq7q9b14r9hyier7paZ38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:54:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1406 (0x57e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Jun 12 22:54:26 2025 GMT Not After : Jun 19 22:54:26 2025 GMT Subject: CN=684b5aa2-9062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0a:fd:d6:2c:d0:07:4a:12:87:35:52:98:36: 9e:79:48:bb:71:66:49:13:27:7f:1a:9b:e6:23:69: d2:73:4e:18:71:9c:fe:f5:20:98:77:82:af:9d:8d: d2:33:90:88:9d:65:65:aa:26:cc:47:3e:69:72:99: ec:ea:1b:ac:b3:86:66:49:3f:9f:8f:49:0b:f6:c6: 2e:dd:90:b4:56:8e:ed:c4:41:72:be:36:24:fa:4d: a9:cf:72:7f:ea:d1:e8:09:f8:94:25:75:b1:4b:63: 7b:f4:12:d6:d9:8e:20:34:7a:e0:7d:8b:9d:9d:c0: 23:a5:46:33:9b:14:31:33:57:4c:6f:03:d9:32:fe: c2:d6:04:2c:a6:92:66:a2:97:55:1a:cf:ee:85:28: 05:60:e3:a5:46:8b:33:13:b5:2f:fe:eb:78:35:e3: 61:aa:f4:da:b0:35:e6:75:b7:17:1d:36:b0:ba:33: 8f:39:73:5a:43:c8:74:f0:bf:e2:f8:6f:88:2e:a0: 8f:99:f4:41:d9:81:10:90:62:bb:40:4a:2d:e5:5d: 88:ca:5c:45:08:e5:21:49:f8:65:ea:18:e6:98:d2: 70:8e:c2:d1:59:4b:27:33:05:1e:11:a0:12:89:e0: d9:57:7e:69:ac:83:74:7c:7d:34:24:1b:98:50:90: 1a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:0B:F4:C5:96:84:4D:E6:E1:B4:C6:AB:41:08:2F:9F:1C:AE:1D:A2 X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:62:f3:fe:9d:07:28:52:f6:67:b0:b8:fd:e8:62:6d:a7:4f: af:da:6b:05:38:70:78:37:9a:bd:73:d7:80:05:f8:b2:46:f2: cf:9d:21:9c:45:63:0d:59:84:01:57:93:46:fe:a1:b6:a8:5f: 6f:90:ad:a3:73:51:a6:8d:2d:85:7c:35:91:5a:35:f2:4e:b3: 5c:66:66:15:6d:18:dd:86:59:f1:6a:e9:10:c9:f9:98:ee:14: 00:3a:4d:08:17:74:9e:d0:6d:2e:ff:04:ea:72:f2:34:b6:f9: eb:36:b4:2e:f3:cc:57:a4:94:d8:b7:b2:10:81:09:e6:f5:a6: 64:13:2e:3c:fc:71:9c:18:e5:fc:3b:79:e8:1f:95:79:61:b4: 1c:06:bf:35:c2:1c:10:40:0f:3c:54:cd:18:3b:9e:8c:db:99: 5f:ed:77:c6:d8:70:0b:c8:b3:76:7e:9b:66:84:07:3d:72:4c: 1e:85:28:35:69:d0:9a:d6:4c:87:01:51:16:e5:dd:c1:fc:4f: 3f:7f:07:0d:50:c3:e9:97:78:c8:a1:4b:50:b1:b7:8e:73:d4: 4a:0f:49:a9:96:c0:43:f7:e6:04:f1:b3:ed:e7:ee:62:76:e4: 45:22:af:f6:42:b2:2f:35:fd:b7:54:5a:13:43:00:66:77:79: 83:21:09:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjUwNjEyMjI1NDI2WhcNMjUwNjE5MjI1NDI2WjAYMRYwFAYD VQQDEw02ODRiNWFhMi05MDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgr91izQB0oShzVSmDaeeUi7cWZJEyd/GpvmI2nSc04YcZz+9SCYd4KvnY3S M5CInWVlqibMRz5pcpns6huss4ZmST+fj0kL9sYu3ZC0Vo7txEFyvjYk+k2pz3J/ 6tHoCfiUJXWxS2N79BLW2Y4gNHrgfYudncAjpUYzmxQxM1dMbwPZMv7C1gQsppJm opdVGs/uhSgFYOOlRoszE7Uv/ut4NeNhqvTasDXmdbcXHTawujOPOXNaQ8h08L/i +G+ILqCPmfRB2YEQkGK7QEot5V2IylxFCOUhSfhl6hjmmNJwjsLRWUsnMwUeEaAS ieDZV35prIN0fH00JBuYUJAaNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkL9MWW hE3m4bTGq0EIL58crh2iMB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZYvP+nQcoUvZnsLj96GJtp0+v2msFOHB4N5q9c9eABfiyRvLPnSGc RWMNWYQBV5NG/qG2qF9vkK2jc1GmjS2FfDWRWjXyTrNcZmYVbRjdhlnxaukQyfmY 7hQAOk0IF3Se0G0u/wTqcvI0tvnrNrQu88xXpJTYt7IQgQnm9aZkEy48/HGcGOX8 O3noH5V5YbQcBr81whwQQA88VM0YO56M25lf7XfG2HALyLN2fptmhAc9ckwehSg1 adCa1kyHAVEW5d3B/E8/fwcNUMPpl3jIoUtQsbeOc9RKD0mplsBD9+YE8bPt5+5i duRFIq/2QrIvNf23VFoTQwBmd3mDIQmw -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:10 2025 by rpki-client