$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: GkZ9CkZgk17WEJnpeWVAba3W4Q3YQvFDykTI/+pX7FU= Subject key identifier: EE:4B:6C:4C:FD:F4:7F:61:CB:F5:21:FD:16:43:5C:9A:9A:E2:33:59 Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 059C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 0598 Signing time: Sun 10 Aug 2025 23:18:07 +0000 Manifest this update: Sun 10 Aug 2025 23:18:07 +0000 Manifest next update: Sun 17 Aug 2025 23:18:07 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: EjFRLakO41NZdF0tif8jVTxsYdtLpOh6mHZkQQGFSlM=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: a7GzfQZpHB/FDQX8t11/W+Jq7q9b14r9hyier7paZ38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 23:18:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1436 (0x59c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Aug 10 23:18:07 2025 GMT Not After : Aug 17 23:18:07 2025 GMT Subject: CN=689928af-b0db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:cb:54:67:d7:70:4e:88:0a:ad:d5:d2:a5:3e: 59:a2:50:aa:47:2b:90:95:fe:cf:43:d6:34:c4:1b: de:72:ce:81:9f:e5:8f:dd:86:64:57:fa:e8:31:d1: 44:fc:8d:f7:22:4b:89:ad:12:9f:30:dd:aa:d9:8c: 92:53:5e:74:58:f0:93:57:7c:d0:3e:7a:11:ae:27: d7:a4:37:2a:47:97:f8:bc:03:46:00:91:c8:3a:ab: c8:a3:99:d6:8a:3a:19:5f:07:b2:22:bb:1f:87:b8: b6:c9:c4:c0:cf:68:53:9e:f8:5d:d7:7d:80:c1:88: 7e:9e:84:73:eb:a1:f5:08:42:0e:c9:b3:91:9f:0f: cc:fd:2d:c1:ff:7b:27:66:23:0b:f2:30:99:88:b7: ba:a2:99:f8:10:c1:ae:37:a8:82:c7:aa:2a:92:e3: fa:08:0c:fe:fe:7d:2c:50:55:6a:27:80:4c:df:1a: 4f:11:04:6b:b0:c9:d8:56:a6:c9:7f:0c:5f:4e:62: 0e:bc:3c:98:5a:b6:9a:6d:30:d4:7d:c8:ee:12:27: 19:7f:45:0f:e0:dc:ea:cc:eb:90:3d:7e:33:3f:8b: d6:a5:f7:aa:90:4a:80:eb:f4:b2:47:5b:43:ca:aa: 11:bd:a9:b0:ea:78:2c:87:7a:b1:4f:38:fd:84:d0: 6d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:4B:6C:4C:FD:F4:7F:61:CB:F5:21:FD:16:43:5C:9A:9A:E2:33:59 X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:c7:04:7e:10:1c:ea:6f:6e:d5:d0:66:b0:ee:8b:81:ae:ab: 70:4a:ba:7d:12:88:19:d0:f9:db:95:ff:b8:d0:8b:7a:cd:c8: 49:32:95:8e:a3:b3:5e:23:23:51:f5:38:ab:88:fe:8d:b1:ad: 25:81:f6:ff:c8:99:c1:7f:43:2d:09:60:6d:65:92:1e:15:d5: 58:4d:52:e6:30:2f:80:6b:d3:ea:47:f6:b4:f2:9d:c5:4f:30: 26:13:1d:c2:17:76:ea:10:c9:ee:95:5e:ea:58:64:a3:33:33: 77:4c:78:b6:cd:6c:65:e6:28:12:e1:ca:b4:69:72:28:a8:af: 14:00:26:f9:3d:76:f2:09:3e:c1:9c:0b:f9:fb:79:db:24:18: 9d:e0:64:79:32:f5:fb:0a:1d:f8:22:4f:e6:e1:52:05:eb:28: 89:c6:af:da:c3:0c:b2:9c:c7:5e:c3:94:98:f2:7c:06:6e:e3: f2:b3:74:8c:34:9f:f1:49:06:f0:b4:4c:4f:2e:f0:28:80:3c: 57:f9:b6:49:b5:62:ad:32:c4:1f:4c:f1:ad:4a:b1:09:75:7a: 26:44:15:db:eb:e6:ff:43:71:26:7c:91:6f:df:86:56:83:1a: 7f:1d:30:11:e9:b0:14:99:c4:be:35:4a:bc:9e:b0:55:06:bf: ee:af:6f:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjUwODEwMjMxODA3WhcNMjUwODE3MjMxODA3WjAYMRYwFAYD VQQDEw02ODk5MjhhZi1iMGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ctUZ9dwTogKrdXSpT5ZolCqRyuQlf7PQ9Y0xBvecs6Bn+WP3YZkV/roMdFE /I33IkuJrRKfMN2q2YySU150WPCTV3zQPnoRrifXpDcqR5f4vANGAJHIOqvIo5nW ijoZXweyIrsfh7i2ycTAz2hTnvhd132AwYh+noRz66H1CEIOybORnw/M/S3B/3sn ZiML8jCZiLe6opn4EMGuN6iCx6oqkuP6CAz+/n0sUFVqJ4BM3xpPEQRrsMnYVqbJ fwxfTmIOvDyYWraabTDUfcjuEicZf0UP4NzqzOuQPX4zP4vWpfeqkEqA6/SyR1tD yqoRvamw6ngsh3qxTzj9hNBtkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5LbEz9 9H9hy/Uh/RZDXJqa4jNZMB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXxwR+EBzqb27V0Gaw7ouBrqtwSrp9EogZ0Pnblf+40It6zchJMpWO o7NeIyNR9TiriP6Nsa0lgfb/yJnBf0MtCWBtZZIeFdVYTVLmMC+Aa9PqR/a08p3F TzAmEx3CF3bqEMnulV7qWGSjMzN3THi2zWxl5igS4cq0aXIoqK8UACb5PXbyCT7B nAv5+3nbJBid4GR5MvX7Ch34Ik/m4VIF6yiJxq/awwyynMdew5SY8nwGbuPys3SM NJ/xSQbwtExPLvAogDxX+bZJtWKtMsQfTPGtSrEJdXomRBXb6+b/Q3EmfJFv34ZW gxp/HTAR6bAUmcS+NUq8nrBVBr/ur28x -----END CERTIFICATE-----Generated at Tue Aug 12 13:52:29 2025 by rpki-client