$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: 2QftHQ77gCwO8cXhRgrFrYtIHc5yVPHXEjkTAAOrs9Q= Subject key identifier: 9E:A9:8A:F8:95:40:E3:64:BA:13:B8:62:7B:28:96:DF:43:09:60:0E Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 08E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 08D3 Signing time: Fri 16 May 2025 20:45:41 +0000 Manifest this update: Fri 16 May 2025 20:45:40 +0000 Manifest next update: Fri 23 May 2025 20:45:40 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: /+dcOiYRYejXHWH8M8JEhWvmtdDMMCxrGXC+Z+A1XUE=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: fXl2igGJye4ZYwQR43jAvZ6b6h7qYdiNfyIYWYelBPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 20:45:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2273 (0x8e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: May 16 20:45:40 2025 GMT Not After : May 23 20:45:40 2025 GMT Subject: CN=6827a3f4-7f15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:91:5a:23:65:91:2f:63:d5:e2:26:54:4f:81: 47:37:f1:6a:60:7a:3a:a6:c6:a9:b3:97:fc:37:b8: 05:75:0d:28:0a:be:3e:e8:c2:e6:01:44:cb:db:f4: cb:06:3b:0c:1b:c4:af:71:fa:00:81:46:ba:97:2a: e5:2a:0b:3c:bb:eb:1b:49:b1:2c:2d:5c:9a:b4:49: f9:99:02:a1:9d:ea:70:99:4b:7f:d6:33:c8:5c:0b: 58:3a:d7:75:bc:33:f0:0b:6d:98:a6:cb:e1:31:eb: a5:43:60:6a:15:51:7e:b6:cb:b3:96:b3:64:d9:9b: b2:8a:b8:94:b3:86:96:ad:96:58:91:86:fc:61:02: 61:63:63:f3:42:b8:31:c4:a5:0a:3d:71:8b:1e:dd: a9:aa:c4:c3:eb:2c:cb:ca:85:73:81:70:6f:24:fd: 79:99:8a:69:df:8b:4a:51:6a:61:88:51:66:3a:ab: 51:f9:0c:0d:77:de:a6:01:65:bf:02:dc:92:96:2d: 4a:33:f2:7f:47:b4:7b:fb:f0:9b:dc:e6:18:5e:b7: 03:fb:40:9b:db:71:c7:5f:1e:75:2f:3b:76:cd:a8: d6:9d:b3:00:bb:28:68:c1:89:82:67:a1:ca:7e:c4: 6b:a9:62:82:1f:37:4d:35:24:db:22:5d:bc:d3:fb: 28:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A9:8A:F8:95:40:E3:64:BA:13:B8:62:7B:28:96:DF:43:09:60:0E X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:02:71:4f:17:f4:71:a3:15:6a:ce:fa:8d:65:db:f9:f4:50: b8:66:5d:f1:89:f5:c7:71:b8:c8:bf:f6:21:1a:db:90:7c:8d: 84:3e:07:2c:4c:5d:0f:96:27:41:17:43:17:39:df:c3:e9:5e: 82:02:29:84:00:cd:e4:c0:53:af:2d:e9:af:60:49:06:2b:ee: f6:26:e8:33:07:7e:d5:f6:e8:69:43:ba:89:1d:b0:0a:7c:81: 55:f4:19:c3:78:c8:88:2b:f4:f1:79:5a:e5:bc:fe:e1:88:65: 74:08:aa:e1:30:06:51:57:98:aa:d5:05:2b:ee:05:7e:9d:11: 4e:c0:a5:33:3b:45:63:a3:17:17:4f:ff:32:09:ff:3a:43:0c: 0b:f8:c5:c1:84:3e:32:b4:1f:5c:be:6c:e3:45:7a:66:41:83: 49:cc:d2:37:91:e3:62:dc:5e:50:c3:1e:d9:c0:1b:3b:c3:84: 86:b5:85:b2:9e:0c:5b:42:60:b7:41:d1:9f:9e:b1:06:b0:94: 0f:d6:55:1c:2b:d3:0a:f8:da:9a:47:1f:48:71:78:ac:8d:f6: c7:47:c1:99:d2:23:ec:2b:ef:32:75:fa:73:6e:49:53:1b:28: 4a:4e:71:12:b6:00:23:d3:b2:e2:ef:e7:a0:9f:51:5a:41:e1: 07:11:61:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjUwNTE2MjA0NTQwWhcNMjUwNTIzMjA0NTQwWjAYMRYwFAYD VQQDEw02ODI3YTNmNC03ZjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5FaI2WRL2PV4iZUT4FHN/FqYHo6psaps5f8N7gFdQ0oCr4+6MLmAUTL2/TL BjsMG8SvcfoAgUa6lyrlKgs8u+sbSbEsLVyatEn5mQKhnepwmUt/1jPIXAtYOtd1 vDPwC22YpsvhMeulQ2BqFVF+tsuzlrNk2ZuyiriUs4aWrZZYkYb8YQJhY2PzQrgx xKUKPXGLHt2pqsTD6yzLyoVzgXBvJP15mYpp34tKUWphiFFmOqtR+QwNd96mAWW/ AtySli1KM/J/R7R7+/Cb3OYYXrcD+0Cb23HHXx51Lzt2zajWnbMAuyhowYmCZ6HK fsRrqWKCHzdNNSTbIl280/soaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6piviV QONkuhO4Ynsolt9DCWAOMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcAnFPF/RxoxVqzvqNZdv59FC4Zl3xifXHcbjIv/YhGtuQfI2EPgcs TF0PlidBF0MXOd/D6V6CAimEAM3kwFOvLemvYEkGK+72JugzB37V9uhpQ7qJHbAK fIFV9BnDeMiIK/TxeVrlvP7hiGV0CKrhMAZRV5iq1QUr7gV+nRFOwKUzO0VjoxcX T/8yCf86QwwL+MXBhD4ytB9cvmzjRXpmQYNJzNI3keNi3F5Qwx7ZwBs7w4SGtYWy ngxbQmC3QdGfnrEGsJQP1lUcK9MK+NqaRx9IcXisjfbHR8GZ0iPsK+8ydfpzbklT GyhKTnEStgAj07Li7+egn1FaQeEHEWEU -----END CERTIFICATE-----Generated at Sat May 17 02:32:28 2025 by rpki-client