$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: 15ki2eC2fZSCDPDdECrisQUrcm5aB8f9wxnvV6N+WFw= Subject key identifier: B0:CE:01:6C:EF:E2:54:AC:B2:C3:B3:A8:DA:84:11:64:BB:8A:AC:8E Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 08EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 08E1 Signing time: Thu 12 Jun 2025 20:11:39 +0000 Manifest this update: Thu 12 Jun 2025 20:11:38 +0000 Manifest next update: Thu 19 Jun 2025 20:11:38 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: ccqwt81UNCPVZpzBwz76FiL1IjUwH4ztXLj4jsSSJ78=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: fXl2igGJye4ZYwQR43jAvZ6b6h7qYdiNfyIYWYelBPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:11:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2287 (0x8ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Jun 12 20:11:38 2025 GMT Not After : Jun 19 20:11:38 2025 GMT Subject: CN=684b347b-bec1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:24:52:88:d9:2d:e7:c4:3b:19:d0:83:be:c6: 43:ae:d4:18:1d:99:86:2a:21:93:da:67:95:56:a4: e8:6f:d3:fc:3d:8a:47:61:8e:80:10:9b:31:9e:20: df:c5:07:29:3f:c8:df:bf:c8:e3:d5:a8:0d:28:11: 49:14:ea:fc:74:2b:b6:26:51:b9:a4:56:b9:3d:9e: 62:fa:3a:56:44:d1:e3:11:3f:80:02:af:10:87:d9: 56:60:1a:f5:52:cd:dd:58:8e:d1:23:90:eb:66:0b: b1:95:66:29:d2:bf:de:ee:85:e4:f4:fd:9e:39:32: a0:af:89:84:d4:86:f8:3c:0b:56:58:56:20:58:52: 1a:ee:44:2b:ae:de:15:51:b8:2b:65:af:ee:98:0d: 34:51:86:7d:92:e7:14:5c:d2:0b:fc:80:2f:8a:7a: 90:3a:af:91:6f:9f:0f:fc:5b:85:6f:80:ce:34:10: 4c:fc:9e:c2:f8:89:fa:54:48:6c:b5:c6:48:42:24: 3a:e9:ce:7d:07:7c:16:6a:4c:f3:6f:0b:c1:e7:44: 5b:d6:8b:37:56:70:54:41:1b:38:ed:65:95:2a:7d: 91:2e:e7:f8:b6:d1:29:c1:9b:6e:36:bc:46:16:bc: 42:7a:84:29:58:99:32:10:7f:cc:eb:de:4e:70:3c: 97:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:CE:01:6C:EF:E2:54:AC:B2:C3:B3:A8:DA:84:11:64:BB:8A:AC:8E X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:03:ac:11:41:ce:f1:33:fb:d7:5f:d3:4b:df:43:62:96:35: 2c:5c:5a:5f:a3:ff:cf:c8:27:46:bf:4a:5e:e8:fa:28:f6:d4: 16:7d:2d:27:8d:fe:22:37:b0:95:c7:5c:58:ea:11:dd:07:db: 4d:ff:17:8b:45:ff:b4:4e:a7:75:e2:31:c5:49:7a:f3:51:a0: 34:c1:00:57:e5:5f:1a:52:a8:1b:10:ef:18:d5:c7:08:dd:86: 0e:ef:37:24:10:b3:c8:3e:ce:9d:3d:a6:8b:9f:08:c9:77:0d: e5:de:ac:72:2a:d7:a4:5b:71:99:6a:0b:20:4e:9e:21:55:f6: 2a:0e:40:33:1e:7f:f4:af:3f:54:2e:8e:96:88:3a:f8:49:6a: 73:4a:6a:01:18:2b:23:50:7d:94:e2:7e:00:d1:52:ec:89:ab: 7b:ac:08:dd:7b:d3:84:33:75:44:7a:af:89:6f:86:64:94:35: b0:1f:5e:e5:db:d9:a5:64:8b:24:69:cf:bd:35:95:e7:d1:5f: 3c:49:32:59:e1:47:bf:07:b3:51:78:d9:a7:d8:52:68:71:9f: 14:16:15:f4:df:e3:91:ae:26:2e:b0:31:28:c7:14:65:0a:c8: d4:12:0f:44:a0:d8:e2:95:4b:2a:38:cb:a4:98:e9:a9:91:0c: d9:2b:21:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjUwNjEyMjAxMTM4WhcNMjUwNjE5MjAxMTM4WjAYMRYwFAYD VQQDEw02ODRiMzQ3Yi1iZWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziRSiNkt58Q7GdCDvsZDrtQYHZmGKiGT2meVVqTob9P8PYpHYY6AEJsxniDf xQcpP8jfv8jj1agNKBFJFOr8dCu2JlG5pFa5PZ5i+jpWRNHjET+AAq8Qh9lWYBr1 Us3dWI7RI5DrZguxlWYp0r/e7oXk9P2eOTKgr4mE1Ib4PAtWWFYgWFIa7kQrrt4V UbgrZa/umA00UYZ9kucUXNIL/IAvinqQOq+Rb58P/FuFb4DONBBM/J7C+In6VEhs tcZIQiQ66c59B3wWakzzbwvB50Rb1os3VnBUQRs47WWVKn2RLuf4ttEpwZtuNrxG FrxCeoQpWJkyEH/M695OcDyXQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDOAWzv 4lSsssOzqNqEEWS7iqyOMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASA6wRQc7xM/vXX9NL30NiljUsXFpfo//PyCdGv0pe6Poo9tQWfS0n jf4iN7CVx1xY6hHdB9tN/xeLRf+0Tqd14jHFSXrzUaA0wQBX5V8aUqgbEO8Y1ccI 3YYO7zckELPIPs6dPaaLnwjJdw3l3qxyKtekW3GZagsgTp4hVfYqDkAzHn/0rz9U Lo6WiDr4SWpzSmoBGCsjUH2U4n4A0VLsiat7rAjde9OEM3VEeq+Jb4ZklDWwH17l 29mlZIskac+9NZXn0V88STJZ4Ue/B7NReNmn2FJocZ8UFhX03+ORriYusDEoxxRl CsjUEg9EoNjilUsqOMukmOmpkQzZKyHl -----END CERTIFICATE-----Generated at Fri Jun 13 02:03:24 2025 by rpki-client