$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: /ldKelcw0i1ZJBVPLAMSHNhzx8Bx8ylKm9p1PtEPX98= Subject key identifier: F1:10:26:4A:DB:29:80:75:E6:BB:3B:61:2F:99:81:11:83:6D:62:F5 Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 08F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 08E2 Signing time: Sat 14 Jun 2025 20:14:30 +0000 Manifest this update: Sat 14 Jun 2025 20:14:30 +0000 Manifest next update: Sat 21 Jun 2025 20:14:30 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: crzBmuWuZ5YsMPrN/AtgXSt0PgiEHFfuaYdLqM7tlxQ=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: fXl2igGJye4ZYwQR43jAvZ6b6h7qYdiNfyIYWYelBPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2288 (0x8f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Jun 14 20:14:30 2025 GMT Not After : Jun 21 20:14:30 2025 GMT Subject: CN=684dd826-681a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7c:f4:a7:6c:aa:71:a3:a2:9e:09:3d:80:cd: 0b:d7:0b:7f:85:17:0e:93:90:07:4e:c6:46:83:c2: 95:ae:42:68:f1:99:83:53:b6:4a:d6:2c:58:a9:ff: b6:a0:80:1e:f6:88:2a:1f:9e:4e:6f:20:0f:30:f6: 91:ec:e8:7f:27:43:6e:39:42:50:a2:01:89:e0:ea: d1:b1:e3:40:d2:f7:5f:5f:60:b3:55:54:65:b3:c5: e3:44:92:89:53:cc:71:e8:28:a2:4e:1c:53:b8:b3: d3:d9:a2:e2:fc:5d:a9:c2:4c:5d:22:bb:60:b2:69: f8:c5:2e:d0:20:47:db:a7:20:d1:bd:ec:53:e7:55: ae:2d:27:05:81:44:76:d0:ee:d7:f6:78:ae:38:02: e1:b8:b8:d7:72:32:cf:9b:21:b6:9b:7f:3a:4c:1f: f4:b0:92:44:60:58:4d:1f:f8:63:de:b0:c2:75:94: 50:37:b6:df:f8:2d:23:54:64:75:9b:3f:ef:fe:c3: e4:0c:a0:53:c4:04:e5:d6:a0:c4:db:b7:b7:06:ff: 37:91:91:54:4c:20:aa:ec:da:af:08:83:b9:c1:50: 0c:f5:56:d7:75:4d:6f:fd:fe:6f:59:5f:d2:8b:ba: 36:db:28:99:8c:03:6f:05:9c:fd:56:65:f3:49:9e: cf:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:10:26:4A:DB:29:80:75:E6:BB:3B:61:2F:99:81:11:83:6D:62:F5 X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:f7:af:e9:c9:62:1e:57:d8:c9:f8:83:23:e6:da:59:8e:cf: d6:28:fc:09:aa:ec:36:e9:41:cf:d9:04:2e:59:d5:ba:9c:d1: 5b:cb:99:a1:a6:ad:4c:61:bc:04:97:7e:e9:65:e4:33:b3:08: e8:50:e8:71:60:54:35:3e:0b:d3:1a:1b:4d:6b:46:42:21:d1: ea:17:96:19:49:96:eb:76:ee:00:f6:ae:fb:1f:fe:78:94:80: a8:14:93:bd:c4:7f:1f:fa:1a:2b:8a:e5:ec:58:9e:cf:f5:11: cd:80:97:17:e5:9f:5c:69:6d:84:73:e3:a2:5d:0c:e7:96:1d: 28:a5:77:26:94:fb:70:ec:0f:a1:b2:b3:6b:7c:be:3c:b7:80: fa:61:d2:d1:d0:68:22:ee:4b:7c:9f:98:ca:e1:78:08:ad:51: 8e:82:24:71:28:02:9a:eb:eb:33:07:be:44:a5:43:54:5c:29: c4:f3:6f:e0:a8:af:68:68:4c:e6:ef:4d:91:9c:a7:5c:cb:26: ed:b2:13:0f:a8:64:f2:df:fb:c8:ab:81:e9:bd:87:d9:66:bc: c8:0a:88:b1:f3:e4:bf:8f:21:f4:3f:a1:62:06:c1:8b:15:1c: 3c:db:c9:b9:6b:44:73:54:4a:a9:d0:3a:8b:f6:fb:93:75:e9: 44:ab:f8:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjUwNjE0MjAxNDMwWhcNMjUwNjIxMjAxNDMwWjAYMRYwFAYD VQQDEw02ODRkZDgyNi02ODFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXz0p2yqcaOingk9gM0L1wt/hRcOk5AHTsZGg8KVrkJo8ZmDU7ZK1ixYqf+2 oIAe9ogqH55ObyAPMPaR7Oh/J0NuOUJQogGJ4OrRseNA0vdfX2CzVVRls8XjRJKJ U8xx6CiiThxTuLPT2aLi/F2pwkxdIrtgsmn4xS7QIEfbpyDRvexT51WuLScFgUR2 0O7X9niuOALhuLjXcjLPmyG2m386TB/0sJJEYFhNH/hj3rDCdZRQN7bf+C0jVGR1 mz/v/sPkDKBTxATl1qDE27e3Bv83kZFUTCCq7NqvCIO5wVAM9VbXdU1v/f5vWV/S i7o22yiZjANvBZz9VmXzSZ7PAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEQJkrb KYB15rs7YS+ZgRGDbWL1MB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa96/pyWIeV9jJ+IMj5tpZjs/WKPwJquw26UHP2QQuWdW6nNFby5mh pq1MYbwEl37pZeQzswjoUOhxYFQ1PgvTGhtNa0ZCIdHqF5YZSZbrdu4A9q77H/54 lICoFJO9xH8f+horiuXsWJ7P9RHNgJcX5Z9caW2Ec+OiXQznlh0opXcmlPtw7A+h srNrfL48t4D6YdLR0Ggi7kt8n5jK4XgIrVGOgiRxKAKa6+szB75EpUNUXCnE82/g qK9oaEzm702RnKdcyybtshMPqGTy3/vIq4HpvYfZZrzICoix8+S/jyH0P6FiBsGL FRw828m5a0RzVEqp0DqL9vuTdelEq/j8 -----END CERTIFICATE-----Generated at Sun Jun 15 09:33:15 2025 by rpki-client