$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: tS4Ntg9wLFjYtYO1vZomhbC2aDXoMdCWLOpfTsNNCBs= Subject key identifier: B1:70:BC:B5:F4:2E:8B:ED:3B:CE:9A:74:21:73:0C:E1:CF:99:9D:DD Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 090C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 08FE Signing time: Fri 08 Aug 2025 20:42:59 +0000 Manifest this update: Fri 08 Aug 2025 20:42:59 +0000 Manifest next update: Fri 15 Aug 2025 20:42:59 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: gJe2Yhm61L5IQttapuUCY/U4GcWnx2KC8Eh7s2cUeuw=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: fXl2igGJye4ZYwQR43jAvZ6b6h7qYdiNfyIYWYelBPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2316 (0x90c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Aug 8 20:42:59 2025 GMT Not After : Aug 15 20:42:59 2025 GMT Subject: CN=68966153-6874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:51:6a:79:d2:3d:28:50:d0:d4:9d:e2:fb:09: 8b:05:a6:04:83:78:fe:f7:17:a9:17:bb:33:64:e9: 37:08:1a:ab:3c:2a:6f:da:37:0e:67:11:32:44:d5: 2d:ed:98:33:8b:20:76:80:09:fa:db:d0:26:4c:75: 82:08:b3:67:87:af:4c:ca:f1:39:65:c3:b9:ca:af: 07:17:36:b2:64:97:06:f0:1a:f6:24:cb:61:14:4a: cf:f8:70:6b:96:f5:33:ca:8e:9c:68:88:bf:b3:75: 1b:17:7f:40:d6:39:0d:67:d4:73:99:f9:9e:1c:18: 53:4f:cd:e4:fb:1e:b1:13:0d:c3:70:97:15:06:87: 83:36:cc:7f:f6:5a:c8:de:90:38:2b:cb:56:b1:2f: fc:4e:9c:90:00:4a:3d:3d:ba:23:d4:b7:78:b4:07: 02:91:ad:f5:df:be:66:b2:ba:ea:1f:79:fc:a2:f7: 63:f1:ee:a3:2d:58:24:c0:e7:f9:4a:1f:74:17:e4: a5:7b:05:12:90:77:64:df:53:51:e8:36:30:c5:75: 5d:35:08:af:fe:cf:62:c0:58:78:d6:f3:13:c3:4b: 62:7d:65:ae:c6:06:b5:6b:d6:2d:17:e4:df:ec:32: b3:ad:8b:5c:ea:c2:ad:a0:6f:5f:fe:b8:15:bb:86: e1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:70:BC:B5:F4:2E:8B:ED:3B:CE:9A:74:21:73:0C:E1:CF:99:9D:DD X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:9c:2a:74:eb:7e:b5:33:73:e5:29:51:d8:21:f1:ec:05:ba: 2c:b3:71:c3:f0:d7:2f:06:11:a2:fe:79:6a:47:74:fb:4f:18: 67:4d:b4:e4:06:85:a8:b0:89:c7:43:e0:d8:4d:35:a2:f7:ed: a8:59:5b:33:c1:1b:51:63:1f:d3:7a:a7:8d:e1:67:79:1c:fb: 86:54:3b:ac:97:2d:60:66:e3:ec:62:ac:20:8d:5e:76:94:d7: bf:00:24:58:d2:04:5b:81:b8:93:c1:42:d5:7a:29:8c:ff:07: 5e:00:d0:5e:e7:cb:ca:bf:b9:f5:a8:be:6a:66:72:b7:92:8c: c1:a6:4a:e0:f6:d1:c5:5a:de:b8:27:d1:46:82:d0:c5:92:ab: ee:fe:76:e7:60:39:46:d9:02:d0:19:26:70:07:58:9b:f3:75: a3:41:c1:3c:21:c3:20:cd:43:75:50:cb:9b:62:92:6d:1e:65: b6:b8:3c:70:44:9a:50:52:37:2a:6b:6f:d0:a7:15:a6:d0:d2: d7:6f:03:14:a2:91:e6:7c:0a:37:41:80:f2:bd:3e:fe:3b:d8: d2:cc:66:da:01:38:46:9a:a2:df:e4:c8:9d:8a:e6:39:c5:6a: e1:fb:be:8f:75:65:8d:32:60:7a:25:bc:10:93:ef:7b:18:bc: 6a:97:43:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjUwODA4MjA0MjU5WhcNMjUwODE1MjA0MjU5WjAYMRYwFAYD VQQDEw02ODk2NjE1My02ODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11FqedI9KFDQ1J3i+wmLBaYEg3j+9xepF7szZOk3CBqrPCpv2jcOZxEyRNUt 7ZgziyB2gAn629AmTHWCCLNnh69MyvE5ZcO5yq8HFzayZJcG8Br2JMthFErP+HBr lvUzyo6caIi/s3UbF39A1jkNZ9RzmfmeHBhTT83k+x6xEw3DcJcVBoeDNsx/9lrI 3pA4K8tWsS/8TpyQAEo9Pboj1Ld4tAcCka31375msrrqH3n8ovdj8e6jLVgkwOf5 Sh90F+SlewUSkHdk31NR6DYwxXVdNQiv/s9iwFh41vMTw0tifWWuxga1a9YtF+Tf 7DKzrYtc6sKtoG9f/rgVu4bh/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFwvLX0 LovtO86adCFzDOHPmZ3dMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAnCp06361M3PlKVHYIfHsBboss3HD8NcvBhGi/nlqR3T7TxhnTbTk BoWosInHQ+DYTTWi9+2oWVszwRtRYx/TeqeN4Wd5HPuGVDusly1gZuPsYqwgjV52 lNe/ACRY0gRbgbiTwULVeimM/wdeANBe58vKv7n1qL5qZnK3kozBpkrg9tHFWt64 J9FGgtDFkqvu/nbnYDlG2QLQGSZwB1ib83WjQcE8IcMgzUN1UMubYpJtHmW2uDxw RJpQUjcqa2/QpxWm0NLXbwMUopHmfAo3QYDyvT7+O9jSzGbaAThGmqLf5MidiuY5 xWrh+76PdWWNMmB6JbwQk+97GLxql0O9 -----END CERTIFICATE-----Generated at Sun Aug 10 04:26:37 2025 by rpki-client