$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: uZy89KpkUeCbaXL07Ex8RwiWEGygPVBrUJWgMj4mlZ0= Subject key identifier: A8:F0:58:7E:8E:24:FF:0C:89:23:00:AA:3C:C6:50:61:A1:5D:D4:65 Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 0607 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 0602 Signing time: Mon 02 Mar 2026 02:10:15 +0000 Manifest this update: Mon 02 Mar 2026 02:10:14 +0000 Manifest next update: Mon 09 Mar 2026 02:10:14 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: rlwuW8DADnO6Ey5tiFmdshLAh43ugKzqeXCfrXE8IM8=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: tUUqvSA3OdWSARFzs61i7ZLEvpiTAwA30jzc1JS2Wi4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1543 (0x607) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Mar 2 02:10:14 2026 GMT Not After : Mar 9 02:10:14 2026 GMT Subject: CN=69a4f186-b5f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c0:4f:53:ee:92:a8:72:6c:a5:3c:84:f9:7d: 4e:6b:8e:7d:22:61:51:01:9f:38:89:2c:4d:72:27: ac:6c:08:cb:27:91:60:c0:3a:46:44:d6:f5:1e:e7: 4c:ba:f6:8a:73:45:91:b1:c1:39:db:b4:28:a7:33: 6f:c3:8f:0d:66:d7:3f:1b:c8:aa:64:8a:e5:a0:96: cd:a8:e1:78:54:3e:b4:1f:cc:3d:6d:4d:97:79:d8: 17:03:2c:30:35:e9:ab:7b:c0:cd:07:7d:95:39:3a: 83:ad:7d:a3:56:9c:11:f3:6c:8a:1c:80:37:17:50: 01:86:7a:c1:26:40:4d:2a:a1:b0:ac:d0:35:1d:94: 72:2d:85:ec:ad:cd:7a:09:de:dc:f4:9c:4c:49:97: 41:81:d6:ba:ff:87:e5:4f:4b:ec:84:b7:9e:53:53: b4:42:06:c0:c9:8a:5b:00:0e:4b:0a:0f:95:cc:f7: fb:24:8b:74:59:d1:25:04:eb:81:13:a7:87:a5:13: 2e:a2:d5:ae:17:74:67:52:42:d4:60:56:99:1a:e5: 29:aa:31:46:95:11:66:42:b3:d8:61:3c:7e:7d:df: f7:60:9f:04:b5:b0:cc:2c:e9:ff:2e:65:5f:72:41: fb:70:eb:28:d0:fb:2a:71:d5:d2:b3:3c:c4:14:30: a3:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:F0:58:7E:8E:24:FF:0C:89:23:00:AA:3C:C6:50:61:A1:5D:D4:65 X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:a0:96:4f:d3:91:d5:7b:5e:6b:81:72:7a:d9:63:64:dd:4e: b1:44:f7:35:10:8a:58:db:a7:f2:de:77:9c:78:ca:8b:8b:03: 6c:fc:4b:04:7c:df:e2:d0:82:35:8a:63:74:59:1e:da:91:9a: 48:2a:e6:74:99:47:8d:b2:01:f6:ed:ed:48:f5:15:8c:ff:51: a0:9d:b0:88:5b:a9:7e:75:ac:73:4f:7d:ce:14:9b:c5:df:f7: 17:fb:d7:3e:6e:29:33:69:b4:2b:75:46:54:aa:ee:04:b0:6a: d7:a1:7f:0b:7e:b8:84:b3:1e:1c:54:a1:39:85:a5:50:fc:f5: 80:f8:38:42:db:1c:f8:bc:2d:80:d8:ee:b0:2d:0e:8d:d9:a5: 7d:da:40:eb:f0:e1:79:fc:af:30:f9:91:b5:e6:85:0e:70:76: 12:44:85:c3:0c:a1:d7:ec:a1:d9:5f:aa:8d:c6:7f:3b:7d:00: 75:f0:6c:49:a6:dc:82:94:21:72:a1:c1:c6:55:36:8c:db:18: d9:fd:99:50:97:5a:a2:0e:9f:f7:3b:c3:dc:fc:fc:90:16:b5: 05:09:44:c4:9f:53:ba:30:e2:70:ef:92:d8:cd:0c:18:b9:28: 25:8f:15:f3:67:a0:da:f6:f5:b3:f4:6c:f2:77:ef:26:26:3c: 5d:31:ce:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjYwMzAyMDIxMDE0WhcNMjYwMzA5MDIxMDE0WjAYMRYwFAYD VQQDEw02OWE0ZjE4Ni1iNWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2MBPU+6SqHJspTyE+X1Oa459ImFRAZ84iSxNciesbAjLJ5FgwDpGRNb1HudM uvaKc0WRscE527QopzNvw48NZtc/G8iqZIrloJbNqOF4VD60H8w9bU2XedgXAyww Nemre8DNB32VOTqDrX2jVpwR82yKHIA3F1ABhnrBJkBNKqGwrNA1HZRyLYXsrc16 Cd7c9JxMSZdBgda6/4flT0vshLeeU1O0QgbAyYpbAA5LCg+VzPf7JIt0WdElBOuB E6eHpRMuotWuF3RnUkLUYFaZGuUpqjFGlRFmQrPYYTx+fd/3YJ8EtbDMLOn/LmVf ckH7cOso0PsqcdXSszzEFDCjFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKjwWH6O JP8MiSMAqjzGUGGhXdRlMB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKKCWT9OR1Xtea4FyetljZN1OsUT3NRCKWNun8t53nHjKi4sDbPxLBHzf4tCC NYpjdFke2pGaSCrmdJlHjbIB9u3tSPUVjP9RoJ2wiFupfnWsc099zhSbxd/3F/vX Pm4pM2m0K3VGVKruBLBq16F/C364hLMeHFShOYWlUPz1gPg4Qtsc+LwtgNjusC0O jdmlfdpA6/DhefyvMPmRteaFDnB2EkSFwwyh1+yh2V+qjcZ/O30AdfBsSabcgpQh cqHBxlU2jNsY2f2ZUJdaog6f9zvD3Pz8kBa1BQlExJ9TujDicO+S2M0MGLkoJY8V 82eg2vb1s/Rs8nfvJiY8XTHOXA== -----END CERTIFICATE-----Generated at Mon Mar 2 13:00:30 2026 by rpki-client