$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: AYRzrQ/+nkA0lwib8Bi0khmjwBtDMhIt6qnieNSxiGE= Subject key identifier: 01:B5:46:FF:9A:43:43:7A:EE:19:C3:67:B0:B4:90:8B:AF:C5:F5:F3 Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 08D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 08C8 Signing time: Thu 24 Apr 2025 20:21:32 +0000 Manifest this update: Thu 24 Apr 2025 20:21:31 +0000 Manifest next update: Thu 01 May 2025 20:21:31 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: 2WMOCp/q6JLMcDeLI4cDXRd3LK4LfPwrFKzlB0S12iQ=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: fXl2igGJye4ZYwQR43jAvZ6b6h7qYdiNfyIYWYelBPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2262 (0x8d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Apr 24 20:21:31 2025 GMT Not After : May 1 20:21:31 2025 GMT Subject: CN=680a9d4c-3ec4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ab:e9:f1:55:27:c8:15:3d:14:e6:90:19:e1: 24:83:c7:fd:f9:a5:6c:50:95:6d:a2:f0:6a:d7:16: 4f:c0:ee:3d:34:12:c2:35:29:a2:1e:62:98:20:c0: cb:88:45:ec:68:70:57:8b:49:fe:e3:ff:c1:87:a3: ae:42:53:10:66:e1:a1:11:e4:5a:38:9c:60:ab:f4: 53:2c:b1:5f:0c:e6:85:7e:5f:9e:fe:cb:bb:d8:30: 9f:42:5a:64:ab:88:2c:c9:5f:a9:fa:37:24:cb:18: bd:61:58:91:d0:0a:37:29:1d:b8:ac:db:9e:56:ad: 2e:0d:48:ad:29:a2:04:be:a4:16:48:6f:bb:2f:84: b2:e4:56:ed:e4:92:c0:9d:49:84:a9:01:38:d7:94: 94:5c:40:18:02:8d:c1:86:0d:6d:26:3c:50:0d:08: e9:2b:20:ee:8c:65:92:5a:58:67:26:26:d5:49:43: 40:6a:2e:fc:02:04:1e:6e:d3:e3:b6:e7:c9:27:ec: 69:bd:e8:32:43:e4:cc:78:a6:db:03:19:9f:bc:f7: 43:11:96:d5:c4:ac:30:51:2d:44:b8:e8:1a:47:6f: 1b:c4:2b:3b:49:ff:98:d6:68:b6:7e:67:9a:b2:e4: 14:0f:e4:b1:eb:e3:1a:0b:e9:55:54:3f:72:60:e9: e5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:B5:46:FF:9A:43:43:7A:EE:19:C3:67:B0:B4:90:8B:AF:C5:F5:F3 X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:68:f3:74:90:bb:b4:c5:cf:ec:4d:48:74:51:7a:51:41:aa: d5:d5:1b:19:5a:ba:c0:6e:9a:06:76:63:9c:20:27:62:2c:7a: a8:b1:1a:c1:4a:e4:92:c1:d3:2a:a7:bc:cc:61:35:bc:e3:57: 07:c1:be:09:dd:41:e4:5e:44:80:a3:b9:56:ea:60:94:40:78: 96:28:6c:52:80:61:71:a9:0a:c4:8a:85:a1:0a:b6:dc:b5:70: 6b:4e:c4:de:a0:28:bb:72:78:b3:30:85:83:60:de:e1:3b:51: 7c:2d:2d:aa:f6:12:ad:e3:ae:00:be:a8:51:39:eb:b0:9e:30: ce:0b:fa:35:39:4d:c0:7b:35:78:7a:e0:3a:6f:1f:af:08:29: 3b:08:10:72:42:d4:4d:35:41:c8:d5:00:f0:4c:8c:06:ab:9a: 3e:ce:6a:4a:1c:66:47:5e:44:fd:d5:da:b8:3d:5d:b9:31:64: f1:d7:6e:f2:44:2f:df:b3:10:a0:a1:63:4d:f7:8e:84:58:f3: bc:67:99:89:06:69:03:b3:0c:33:42:05:51:4b:d5:a4:92:6c: 4c:42:f9:ed:e0:4e:a5:7b:17:a5:ec:21:65:85:7b:32:5a:f9: 4b:4c:d9:49:25:b0:a7:0a:36:1b:fe:0c:5a:5c:0e:7d:01:cb: cc:c8:96:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjUwNDI0MjAyMTMxWhcNMjUwNTAxMjAyMTMxWjAYMRYwFAYD VQQDEw02ODBhOWQ0Yy0zZWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Kvp8VUnyBU9FOaQGeEkg8f9+aVsUJVtovBq1xZPwO49NBLCNSmiHmKYIMDL iEXsaHBXi0n+4//Bh6OuQlMQZuGhEeRaOJxgq/RTLLFfDOaFfl+e/su72DCfQlpk q4gsyV+p+jckyxi9YViR0Ao3KR24rNueVq0uDUitKaIEvqQWSG+7L4Sy5Fbt5JLA nUmEqQE415SUXEAYAo3Bhg1tJjxQDQjpKyDujGWSWlhnJibVSUNAai78AgQebtPj tufJJ+xpvegyQ+TMeKbbAxmfvPdDEZbVxKwwUS1EuOgaR28bxCs7Sf+Y1mi2fmea suQUD+Sx6+MaC+lVVD9yYOnlUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAG1Rv+a Q0N67hnDZ7C0kIuvxfXzMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClaPN0kLu0xc/sTUh0UXpRQarV1RsZWrrAbpoGdmOcICdiLHqosRrB SuSSwdMqp7zMYTW841cHwb4J3UHkXkSAo7lW6mCUQHiWKGxSgGFxqQrEioWhCrbc tXBrTsTeoCi7cnizMIWDYN7hO1F8LS2q9hKt464AvqhROeuwnjDOC/o1OU3AezV4 euA6bx+vCCk7CBByQtRNNUHI1QDwTIwGq5o+zmpKHGZHXkT91dq4PV25MWTx127y RC/fsxCgoWNN946EWPO8Z5mJBmkDswwzQgVRS9WkkmxMQvnt4E6lexel7CFlhXsy WvlLTNlJJbCnCjYb/gxaXA59AcvMyJaD -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:21 2025 by rpki-client