$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: yAV2XNQbO2A6OS2V8hlfM+t9fRE0XvI244cQUnkJ1DU= Subject key identifier: 69:2D:69:83:FA:C4:15:92:06:7E:56:A2:E7:C8:7E:AA:20:62:82:1D Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 08ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 08DF Signing time: Sun 08 Jun 2025 20:09:24 +0000 Manifest this update: Sun 08 Jun 2025 20:09:24 +0000 Manifest next update: Sun 15 Jun 2025 20:09:24 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: dZJMa1rlXSyZBQCCtx4OUwVVqMfkA1llweQanMVVzUU=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: fXl2igGJye4ZYwQR43jAvZ6b6h7qYdiNfyIYWYelBPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 20:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2285 (0x8ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Jun 8 20:09:24 2025 GMT Not After : Jun 15 20:09:24 2025 GMT Subject: CN=6845edf4-716b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ff:e8:08:a7:17:69:03:c8:1d:20:9f:c6:fb: 0f:04:10:6b:db:46:56:2c:12:82:73:98:5c:c2:80: f8:a0:b6:35:04:ac:62:f0:38:7c:a3:2b:ae:e2:97: 03:8a:2f:c9:73:fe:ad:5d:a4:b1:ec:54:5c:91:71: 2b:5b:6a:96:0c:14:e0:cb:a0:56:bb:0e:6b:5a:54: f0:5c:37:f2:9b:a3:fa:3f:03:c8:fa:f6:0e:41:b1: c3:53:ef:cb:1d:18:80:27:bc:d9:60:71:cf:ca:1a: 4b:8d:3a:0f:9b:56:bf:e5:dd:57:d4:43:f6:69:c1: 57:d5:f4:9d:0a:bc:ac:4d:6f:ff:81:e7:f7:14:45: da:f2:55:49:e0:c5:24:5a:36:cf:e7:1d:b0:94:4d: 62:20:2b:89:3a:6d:55:6b:2d:94:e3:75:94:7d:e2: 39:c6:64:0e:49:04:46:8b:4d:47:f9:4a:70:ed:ea: 55:11:27:65:18:61:a9:56:7f:82:2d:6b:8e:8a:0d: db:9f:ac:da:51:bc:da:1d:d1:bd:53:eb:20:0f:56: 35:fd:98:4b:88:4b:d5:cd:1e:0c:f9:b8:dc:25:01: 60:50:67:d0:d9:52:3d:05:45:ab:a3:92:13:fd:10: e2:96:c3:40:54:9c:03:6b:85:53:6b:ec:58:24:fd: 10:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:2D:69:83:FA:C4:15:92:06:7E:56:A2:E7:C8:7E:AA:20:62:82:1D X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:82:20:90:fc:ad:2a:35:36:bf:ad:1e:34:5f:10:ca:ee:c4: e7:2b:51:7d:3c:fa:63:d7:0f:66:85:ea:5b:03:03:ad:10:17: 2e:e0:5a:2f:21:6a:cd:95:04:ee:f5:0d:d7:fd:35:da:ec:3e: 98:3f:1a:2a:4c:72:ed:5c:f6:0e:1c:ca:ae:6a:c1:f5:98:c3: 68:84:b5:bd:f0:c7:15:53:81:3d:91:4c:0d:5c:7b:a4:90:45: c8:bc:56:6a:21:c9:fa:08:52:07:f6:0f:5a:1a:62:37:03:a5: 3d:7d:b4:7d:90:41:b2:2a:a6:12:6e:9f:e5:96:f2:74:21:ca: 3e:76:a1:4f:25:45:96:64:33:f3:9f:f9:a0:5f:1e:e7:b3:70: 00:4c:47:0e:f0:bd:62:61:7e:e2:aa:e4:e0:e4:16:41:96:7d: 00:49:4f:6b:e2:cc:40:ce:55:b0:0d:4b:e4:96:6d:ad:2c:00: 0f:39:27:79:dc:2f:25:2f:5b:73:63:82:94:f4:1b:70:2a:26: 40:59:99:af:fb:d7:a1:3c:98:f6:20:10:03:28:74:24:be:7c: f8:a1:f0:3a:73:30:c9:50:49:13:32:eb:59:91:e6:f9:13:79: 42:3d:03:fa:4d:36:a6:5e:d1:ed:0c:45:ae:9f:23:1f:1e:5b: c1:66:a5:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjUwNjA4MjAwOTI0WhcNMjUwNjE1MjAwOTI0WjAYMRYwFAYD VQQDEw02ODQ1ZWRmNC03MTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3//oCKcXaQPIHSCfxvsPBBBr20ZWLBKCc5hcwoD4oLY1BKxi8Dh8oyuu4pcD ii/Jc/6tXaSx7FRckXErW2qWDBTgy6BWuw5rWlTwXDfym6P6PwPI+vYOQbHDU+/L HRiAJ7zZYHHPyhpLjToPm1a/5d1X1EP2acFX1fSdCrysTW//gef3FEXa8lVJ4MUk WjbP5x2wlE1iICuJOm1Vay2U43WUfeI5xmQOSQRGi01H+Upw7epVESdlGGGpVn+C LWuOig3bn6zaUbzaHdG9U+sgD1Y1/ZhLiEvVzR4M+bjcJQFgUGfQ2VI9BUWro5IT /RDilsNAVJwDa4VTa+xYJP0QkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGktaYP6 xBWSBn5WoufIfqogYoIdMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOgiCQ/K0qNTa/rR40XxDK7sTnK1F9PPpj1w9mhepbAwOtEBcu4Fov IWrNlQTu9Q3X/TXa7D6YPxoqTHLtXPYOHMquasH1mMNohLW98McVU4E9kUwNXHuk kEXIvFZqIcn6CFIH9g9aGmI3A6U9fbR9kEGyKqYSbp/llvJ0Ico+dqFPJUWWZDPz n/mgXx7ns3AATEcO8L1iYX7iquTg5BZBln0ASU9r4sxAzlWwDUvklm2tLAAPOSd5 3C8lL1tzY4KU9BtwKiZAWZmv+9ehPJj2IBADKHQkvnz4ofA6czDJUEkTMutZkeb5 E3lCPQP6TTamXtHtDEWunyMfHlvBZqXB -----END CERTIFICATE-----Generated at Tue Jun 10 16:07:34 2025 by rpki-client