$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: +Pk2z654IM2YBVA+EXlW3NGAt63gV2dbGats9n3vI8A= Subject key identifier: 0E:0A:46:E9:86:8C:9E:DC:7C:14:DE:5C:D8:19:A5:C8:DD:4A:FD:7C Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 05C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 05C4 Signing time: Sun 02 Nov 2025 23:03:54 +0000 Manifest this update: Sun 02 Nov 2025 23:03:53 +0000 Manifest next update: Sun 09 Nov 2025 23:03:53 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: oGOi/4PoluCWcE2q2COAPNhTmirg+EgpZ5IP7qBpYks=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: tUUqvSA3OdWSARFzs61i7ZLEvpiTAwA30jzc1JS2Wi4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:03:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1481 (0x5c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Nov 2 23:03:53 2025 GMT Not After : Nov 9 23:03:53 2025 GMT Subject: CN=6907e359-8f84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:52:2f:fe:d7:69:e1:52:d6:8b:50:0c:10:bf: 9f:47:11:f8:f0:3d:b4:cf:e0:86:a8:70:85:1f:fa: 4b:b0:5d:aa:a5:49:cd:ac:1c:30:c5:a9:d7:df:9c: 4f:30:d7:84:d1:07:72:f1:07:e4:fc:c4:3e:55:77: 50:c6:08:1b:60:18:30:be:41:c2:31:f5:08:d9:fa: c1:dd:60:02:15:fa:73:76:2b:03:6f:cf:71:b8:9d: 84:37:87:8b:1b:6c:d9:e6:14:e1:f1:38:e6:0b:cc: 0d:21:86:89:9e:dc:0c:c0:1a:c6:b2:21:de:82:55: 05:5e:3d:39:33:38:c6:29:a7:b5:fd:f4:95:32:18: 21:8d:58:1d:22:4d:3b:e2:63:a6:f6:19:d1:f8:fc: bb:9b:a2:06:cb:43:98:a4:16:f9:1d:9a:85:16:04: 3f:1c:36:fc:ff:5a:e5:00:7a:39:e2:36:34:e9:20: 97:cb:05:85:0a:8d:56:fa:71:8f:90:a8:56:08:b5: 40:5a:58:8d:4f:6a:9a:0b:79:07:4c:c2:b5:d7:c5: b1:ea:2d:79:c1:d2:a0:54:ca:e6:60:b3:31:56:c2: 4d:12:fd:6d:e7:ad:f8:fb:d3:e2:b5:44:14:a0:cd: a7:21:36:1c:84:0e:d4:9d:88:d6:60:65:a5:df:6a: 2b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:0A:46:E9:86:8C:9E:DC:7C:14:DE:5C:D8:19:A5:C8:DD:4A:FD:7C X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:68:a0:68:b0:28:a5:ae:99:68:3a:ce:cb:2c:3b:c7:00:a5: 56:90:c6:f1:fd:9c:25:76:35:48:e1:cf:7b:3e:e2:89:8e:c3: 30:d8:04:81:ba:9d:3f:e2:06:1b:58:51:12:f4:bd:5c:e4:9b: 3d:fd:81:ea:02:17:25:37:11:4b:2f:57:65:38:29:a2:a1:b0: a9:b2:10:f3:d4:c8:0d:46:1c:70:c9:b9:42:48:81:fa:72:ba: 58:ec:20:20:51:95:16:76:2e:63:c2:30:1b:10:03:9c:39:78: 47:c3:70:f0:c8:c5:96:43:5b:fc:bc:a1:f9:e9:12:38:d8:bd: ff:ae:87:fd:86:7b:a8:39:44:6a:ca:5c:e2:c0:53:e9:f0:9c: 6b:4f:9c:70:d1:a2:30:cd:39:5c:7d:4d:72:67:07:47:0a:f2: 24:ba:ed:c5:2e:68:a4:f2:4f:72:fa:dc:10:a3:70:56:20:f3: d0:8d:3c:0b:a8:79:ee:36:ae:87:d3:b9:f1:e4:9f:af:82:07: 0a:34:29:7c:5f:9d:ec:60:f8:12:b5:ce:43:79:a6:bb:da:c3: 76:b5:a9:cc:8c:5b:d9:c5:cb:f7:5f:45:77:f3:f9:c2:e1:c7: d2:78:4b:d9:58:63:3b:c0:0c:aa:a7:78:33:85:31:02:bc:3c: c5:50:8a:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjUxMTAyMjMwMzUzWhcNMjUxMTA5MjMwMzUzWjAYMRYwFAYD VQQDEw02OTA3ZTM1OS04Zjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA91Iv/tdp4VLWi1AMEL+fRxH48D20z+CGqHCFH/pLsF2qpUnNrBwwxanX35xP MNeE0Qdy8Qfk/MQ+VXdQxggbYBgwvkHCMfUI2frB3WACFfpzdisDb89xuJ2EN4eL G2zZ5hTh8TjmC8wNIYaJntwMwBrGsiHeglUFXj05MzjGKae1/fSVMhghjVgdIk07 4mOm9hnR+Py7m6IGy0OYpBb5HZqFFgQ/HDb8/1rlAHo54jY06SCXywWFCo1W+nGP kKhWCLVAWliNT2qaC3kHTMK118Wx6i15wdKgVMrmYLMxVsJNEv1t5634+9PitUQU oM2nITYchA7UnYjWYGWl32orxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4KRumG jJ7cfBTeXNgZpcjdSv18MB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFaKBosCilrploOs7LLDvHAKVWkMbx/ZwldjVI4c97PuKJjsMw2ASB up0/4gYbWFES9L1c5Js9/YHqAhclNxFLL1dlOCmiobCpshDz1MgNRhxwyblCSIH6 crpY7CAgUZUWdi5jwjAbEAOcOXhHw3DwyMWWQ1v8vKH56RI42L3/rof9hnuoOURq ylziwFPp8JxrT5xw0aIwzTlcfU1yZwdHCvIkuu3FLmik8k9y+twQo3BWIPPQjTwL qHnuNq6H07nx5J+vggcKNCl8X53sYPgStc5Deaa72sN2tanMjFvZxcv3X0V38/nC 4cfSeEvZWGM7wAyqp3gzhTECvDzFUIpm -----END CERTIFICATE-----Generated at Tue Nov 4 12:36:07 2025 by rpki-client