$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft File: h7_uyP-fsmiAINtZpiLBOhXlryA.mft (raw, json) Hash identifier: eviBVwCWEmJca+SWhkONIYp0aMtiQOZAbns17lHBxfU= Subject key identifier: AC:FA:EF:A1:9F:14:85:E8:48:97:7D:B1:DA:E8:13:11:03:0E:48:73 Authority key identifier: 87:BF:EE:C8:FF:9F:B2:68:80:20:DB:59:A6:22:C1:3A:15:E5:AF:20 Certificate issuer: /CN=A9132B7A/serialNumber=87BFEEC8FF9FB2688020DB59A622C13A15E5AF20 Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft Manifest number: 0143 Signing time: Sun 15 Jun 2025 03:34:53 +0000 Manifest this update: Sun 15 Jun 2025 03:34:52 +0000 Manifest next update: Sun 22 Jun 2025 03:34:52 +0000 Files and hashes: 1: h7_uyP-fsmiAINtZpiLBOhXlryA.crl (hash: CE23q/3GeYU1NB4htR+qj4LG8SFnTzLAY8ZRYbTFJtc=) 2: 28382F96644E11EEA1DCB653C4F9AE02.roa (hash: tkC94LIcazFbktBOOWxjViOTNkAmC8Zs4gf9iesOvuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.crl rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B7A, serialNumber=87BFEEC8FF9FB2688020DB59A622C13A15E5AF20 Validity Not Before: Jun 15 03:34:52 2025 GMT Not After : Jun 22 03:34:52 2025 GMT Subject: CN=684e3f5d-6a2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:00:08:24:51:96:7d:0a:be:ea:a1:9d:7e:74: b0:b3:96:16:52:c8:f5:1c:d9:c3:40:80:fc:65:44: 0c:8a:bb:67:e9:b5:2e:ef:bd:f9:08:99:fe:be:bd: 07:44:8f:ed:d1:4c:8b:25:11:28:75:bb:fb:92:05: 73:21:ae:51:bc:00:18:3e:e5:88:32:cd:50:4d:42: 5a:db:81:d2:31:14:d8:b4:fe:0e:15:ea:19:71:dc: 1f:12:18:ef:10:bc:b8:6c:3d:ff:01:84:fa:f6:61: 6b:a8:ea:3a:5d:32:7f:87:05:9d:6a:c4:2c:f3:e4: 5e:3a:33:51:53:6f:f0:6e:0d:29:4e:da:5b:05:84: de:1f:35:64:22:fc:11:20:ea:2c:86:cd:56:62:02: 4c:b8:86:31:c6:c6:45:08:5d:b2:88:91:48:77:e5: 93:7d:37:ce:70:81:f4:f3:74:1c:38:2d:46:8c:27: 2d:9c:26:55:c3:61:7d:9c:91:e0:9d:33:82:0f:d3: 57:bd:34:36:ad:80:95:e7:a6:bb:14:ae:e0:7d:ca: 82:42:2c:c0:47:dc:f5:f6:f3:3a:8f:aa:fb:40:bb: 98:ce:79:37:d3:89:f3:7d:b7:59:36:4a:20:ef:0d: 22:13:65:d1:62:ab:d8:1c:a9:b8:78:71:f7:0c:40: 44:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:FA:EF:A1:9F:14:85:E8:48:97:7D:B1:DA:E8:13:11:03:0E:48:73 X509v3 Authority Key Identifier: keyid:87:BF:EE:C8:FF:9F:B2:68:80:20:DB:59:A6:22:C1:3A:15:E5:AF:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:d3:9c:0b:48:7f:7c:9a:e1:10:ed:b0:cf:24:2a:48:07:6a: aa:0c:de:ff:f2:22:63:1c:e5:31:e8:6b:ed:4c:29:4a:f5:4c: f3:66:b4:e4:14:ef:66:18:34:e0:ca:55:44:77:6e:65:c6:c9: 2b:a6:e4:e8:44:e4:9a:62:06:cd:09:cc:af:df:75:a0:45:8c: 9e:43:98:70:0c:94:8c:64:2b:5b:02:3d:a4:6c:37:47:e0:31: 57:02:90:4b:50:3c:16:78:89:b8:e7:a2:1d:82:f1:51:18:9d: 4c:2d:6c:db:31:b4:49:a0:33:de:d7:e3:54:98:30:9e:e6:00: ad:25:3a:0e:db:b2:dd:17:9e:99:4e:97:c3:41:ee:83:88:d5: 26:5d:17:dc:2f:ca:7d:ed:1c:97:43:7b:4e:66:3e:8c:d9:bf: 0b:6c:73:84:50:82:7d:bb:b7:ec:81:21:f5:37:93:2d:e6:dc: 98:5e:40:75:e7:eb:6b:16:87:08:2a:b4:3d:06:4d:79:fa:2d: 24:8d:b7:69:59:75:b3:8b:5a:72:95:6c:db:27:d5:50:63:2d: 51:ad:fe:a2:2d:06:8f:50:7f:19:eb:f1:54:b5:fd:b7:8a:f0: 30:b3:3b:c3:96:14:47:78:cd:e4:9d:37:77:6f:04:fe:a3:c3: 0c:a7:02:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCN0ExMTAvBgNVBAUTKDg3QkZFRUM4RkY5RkIyNjg4MDIwREI1OUE2MjJDMTNB MTVFNUFGMjAwHhcNMjUwNjE1MDMzNDUyWhcNMjUwNjIyMDMzNDUyWjAYMRYwFAYD VQQDEw02ODRlM2Y1ZC02YTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0gAIJFGWfQq+6qGdfnSws5YWUsj1HNnDQID8ZUQMirtn6bUu7735CJn+vr0H RI/t0UyLJREodbv7kgVzIa5RvAAYPuWIMs1QTUJa24HSMRTYtP4OFeoZcdwfEhjv ELy4bD3/AYT69mFrqOo6XTJ/hwWdasQs8+ReOjNRU2/wbg0pTtpbBYTeHzVkIvwR IOoshs1WYgJMuIYxxsZFCF2yiJFId+WTfTfOcIH083QcOC1GjCctnCZVw2F9nJHg nTOCD9NXvTQ2rYCV56a7FK7gfcqCQizAR9z19vM6j6r7QLuYznk304nzfbdZNkog 7w0iE2XRYqvYHKm4eHH3DEBEFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKz676Gf FIXoSJd9sdroExEDDkhzMB8GA1UdIwQYMBaAFIe/7sj/n7JogCDbWaYiwToV5a8g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkI3QS8wNkExOTYwMjY0 NEQxMUVFODRENDAzNEZDNEY5QUUwMi9oN191eVAtZnNtaUFJTnRacGlMQk9oWGxy eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3X3V5UC1mc21pQUlOdFpwaUxCT2hYbHJ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkI3QS8wNkExOTYwMjY0NEQxMUVFODRENDAzNEZDNEY5QUUwMi9oN191eVAtZnNt aUFJTnRacGlMQk9oWGxyeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd05wLSH98muEQ7bDPJCpIB2qqDN7/8iJjHOUx6GvtTClK9UzzZrTk FO9mGDTgylVEd25lxskrpuToROSaYgbNCcyv33WgRYyeQ5hwDJSMZCtbAj2kbDdH 4DFXApBLUDwWeIm456IdgvFRGJ1MLWzbMbRJoDPe1+NUmDCe5gCtJToO27LdF56Z TpfDQe6DiNUmXRfcL8p97RyXQ3tOZj6M2b8LbHOEUIJ9u7fsgSH1N5Mt5tyYXkB1 5+trFocIKrQ9Bk15+i0kjbdpWXWzi1pylWzbJ9VQYy1Rrf6iLQaPUH8Z6/FUtf23 ivAwszvDlhRHeM3knTd3bwT+o8MMpwJd -----END CERTIFICATE-----Generated at Sun Jun 15 10:09:17 2025 by rpki-client