$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: j1geVARe/e6cZ2q7ejLhkp5VtoLW4XgulGy40nznbx8= Subject key identifier: AF:47:62:99:B7:45:38:9A:98:D9:BB:2B:91:58:F3:74:50:6F:30:09 Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 0606 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 0601 Signing time: Sat 28 Feb 2026 23:26:33 +0000 Manifest this update: Sat 28 Feb 2026 23:26:33 +0000 Manifest next update: Sat 07 Mar 2026 23:26:33 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: tkTB6tFeYCS7p6aM8kHUACdAaSydzTZxoNhPsdWhQ9A=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: tUUqvSA3OdWSARFzs61i7ZLEvpiTAwA30jzc1JS2Wi4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 23:26:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1542 (0x606) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Feb 28 23:26:33 2026 GMT Not After : Mar 7 23:26:33 2026 GMT Subject: CN=69a379a9-cc9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fe:c1:e6:a3:35:af:75:5a:4d:cd:d1:99:43: ad:0c:95:1c:b7:6a:5a:9d:cb:e8:55:9b:0a:9e:01: fe:6a:bc:c3:f1:fa:5b:3b:26:8d:1a:b2:2e:58:3c: ad:7e:df:e8:b7:a9:e2:b4:26:c4:f9:15:53:91:d0: ee:11:ab:e6:c8:1f:a0:a3:55:45:25:07:ab:cb:96: 33:2e:b2:78:ff:ce:e8:5f:a8:82:13:c3:23:95:b5: 40:cd:d7:11:d9:b2:74:0d:dd:54:91:7f:f7:50:97: 25:82:1e:0d:a6:bf:4a:f2:8a:40:f5:60:cc:86:dc: c0:94:39:bb:b3:2d:d5:1b:af:64:5b:44:b0:a4:72: 1e:0a:59:60:ad:92:3e:6f:66:4b:3a:e4:89:43:a4: 9c:41:07:69:d5:67:e3:9d:39:fa:ef:83:d7:5f:aa: 02:9a:6e:e6:fa:13:dc:97:1d:a6:52:ce:ec:96:be: 91:31:25:8d:16:d5:c9:b0:c9:2c:8a:71:b8:ab:e8: ab:1a:df:bf:72:e5:96:e7:a2:52:f5:7b:0a:78:16: 2d:10:23:5f:eb:65:3a:d9:19:1a:45:b1:4d:66:4d: c4:5a:76:7f:44:aa:fa:d7:c0:c2:5c:5d:c7:ff:ae: e1:76:c5:54:57:f4:20:f0:25:bb:2f:31:13:fa:01: 66:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:47:62:99:B7:45:38:9A:98:D9:BB:2B:91:58:F3:74:50:6F:30:09 X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:bf:f8:0c:14:9a:f1:52:0e:f6:64:2f:e9:b9:2b:85:ee:30: 64:7b:d3:8d:7f:e7:c6:56:88:34:14:ae:09:fb:ef:f3:28:e0: 50:87:77:67:00:ea:69:d3:39:ba:d5:c0:a8:f3:9e:04:0a:c1: 58:c5:80:18:11:b9:e9:f2:46:1d:04:6c:f2:c2:90:c7:12:7b: 81:f3:0d:72:2c:50:de:18:bb:49:11:e9:78:44:66:82:6a:79: fa:66:90:0c:b9:96:ba:2f:81:7c:7d:59:30:cf:c6:b2:7e:4c: ed:d1:b2:ff:d6:16:cf:37:2f:ee:14:f3:96:1b:73:10:c9:d0: 0d:f2:9c:48:0d:8f:24:71:88:90:61:13:f2:e9:2c:c2:3a:56: 8e:2c:3a:47:d1:84:2d:7c:cb:ed:5f:9f:d1:cd:1a:7a:19:ff: 33:aa:8c:b4:9b:d6:4a:b4:4d:e8:59:6a:4d:d7:6b:b1:9b:08: 5c:79:e4:06:95:fd:1a:31:3a:c9:61:f4:88:0d:c8:03:22:71: 9f:88:98:00:d3:71:a4:82:71:f3:5c:f1:97:16:0c:e2:3f:e2: 26:a2:9a:3b:f4:ae:a1:74:e4:55:f1:d4:cb:2a:66:93:4b:7d: 81:84:45:67:da:8c:b9:7e:a7:a6:f9:da:e3:93:cf:40:8c:8e: de:04:8a:e0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjYwMjI4MjMyNjMzWhcNMjYwMzA3MjMyNjMzWjAYMRYwFAYD VQQDDA02OWEzNzlhOS1jYzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/7B5qM1r3VaTc3RmUOtDJUct2pancvoVZsKngH+arzD8fpbOyaNGrIuWDyt ft/ot6nitCbE+RVTkdDuEavmyB+go1VFJQery5YzLrJ4/87oX6iCE8MjlbVAzdcR 2bJ0Dd1UkX/3UJclgh4Npr9K8opA9WDMhtzAlDm7sy3VG69kW0SwpHIeCllgrZI+ b2ZLOuSJQ6ScQQdp1WfjnTn674PXX6oCmm7m+hPclx2mUs7slr6RMSWNFtXJsMks inG4q+irGt+/cuWW56JS9XsKeBYtECNf62U62RkaRbFNZk3EWnZ/RKr618DCXF3H /67hdsVUV/Qg8CW7LzET+gFmewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK9HYpm3 RTiamNm7K5FY83RQbzAJMB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAj7/4DBSa8VIO9mQv6bkrhe4wZHvTjX/nxlaINBSuCfvv8yjgUId3ZwDqadM5 utXAqPOeBArBWMWAGBG56fJGHQRs8sKQxxJ7gfMNcixQ3hi7SRHpeERmgmp5+maQ DLmWui+BfH1ZMM/Gsn5M7dGy/9YWzzcv7hTzlhtzEMnQDfKcSA2PJHGIkGET8uks wjpWjiw6R9GELXzL7V+f0c0aehn/M6qMtJvWSrRN6FlqTddrsZsIXHnkBpX9GjE6 yWH0iA3IAyJxn4iYANNxpIJx81zxlxYM4j/iJqKaO/SuoXTkVfHUyypmk0t9gYRF Z9qMuX6npvna45PPQIyO3gSK4A== -----END CERTIFICATE-----Generated at Sun Mar 1 22:47:04 2026 by rpki-client