$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: DHcOQNOj5uHH4lSKEyVZ8r8S5gVeBwtGIXc69HfuRck= Subject key identifier: 9E:64:ED:59:24:72:49:C9:1F:83:FD:5A:5A:E8:32:BB:2B:A3:A7:4A Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 08F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 08EB Signing time: Wed 02 Jul 2025 20:39:48 +0000 Manifest this update: Wed 02 Jul 2025 20:39:47 +0000 Manifest next update: Wed 09 Jul 2025 20:39:47 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: fsuqX/4XnTcme5Q6adTcl6dCWeuo/oltsZpQNXV4vGY=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: fXl2igGJye4ZYwQR43jAvZ6b6h7qYdiNfyIYWYelBPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2297 (0x8f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Jul 2 20:39:47 2025 GMT Not After : Jul 9 20:39:47 2025 GMT Subject: CN=68659913-2fe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b7:72:b1:9f:93:db:c4:74:0d:a0:ca:bd:36: b2:b3:af:77:84:d3:78:41:57:6c:3b:1b:b9:51:b4: b9:1b:7b:f4:bf:5e:96:aa:4e:de:32:c9:af:18:36: 34:1a:d8:58:d3:4e:44:62:6f:90:07:56:e2:73:2c: 65:45:25:0b:79:83:40:b4:92:38:21:e7:57:8d:b8: fa:fe:cd:7a:36:fe:5d:e7:c2:65:2b:1e:e4:7e:98: d9:a2:14:ab:c6:73:40:78:21:cf:82:62:61:e9:85: 5e:2b:31:ca:fe:4e:34:7e:69:e0:20:b5:90:60:bb: 1f:dc:2f:58:e6:bf:e1:76:f3:a1:86:0f:b2:c7:df: 0a:24:dc:e8:ff:db:da:9a:ee:7f:5f:be:2f:1f:5d: 75:3f:b3:2f:77:ea:bf:fa:fe:db:82:2e:99:10:b4: b5:67:11:75:36:22:81:46:ad:c2:07:2a:77:96:ee: e3:4d:b7:fb:88:13:f9:9e:d3:5b:9f:2f:92:03:15: 7d:02:d3:9e:c9:27:e3:7b:0c:ab:e2:3c:33:dd:15: e5:6b:9f:14:1b:31:5e:7e:3e:b6:06:71:ab:09:10: ff:40:24:34:c8:78:79:b5:98:13:73:41:f5:05:4c: 22:df:bb:fd:48:34:50:6e:6e:ca:23:ca:d9:e3:ae: bd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:64:ED:59:24:72:49:C9:1F:83:FD:5A:5A:E8:32:BB:2B:A3:A7:4A X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:63:93:6b:50:29:9b:df:63:b7:da:7a:14:8a:ba:9f:ec:ad: 1a:a7:2f:ea:af:4d:ce:0f:0d:ac:64:48:a5:43:88:4c:4a:c4: cc:bd:8b:c4:f6:80:b2:89:aa:b5:f3:03:c5:6c:17:24:29:54: df:a3:e0:39:16:a3:62:6f:a4:d0:df:1c:2b:4d:5c:a5:07:3a: 2a:a0:78:88:3d:8a:b0:f6:d8:a9:fb:89:1e:29:5c:47:d8:b6: e0:14:87:f4:bd:27:c0:a1:a6:d3:fd:16:ab:fa:e4:2a:78:40: cb:7d:33:ea:9d:3e:ba:29:cf:90:ee:fd:05:76:8e:6e:f2:4f: 6f:38:28:07:da:54:b9:45:b5:08:6e:dc:1f:5e:11:b7:57:56: 35:cf:db:d7:57:97:ea:df:ad:9f:f6:ab:91:c3:fd:73:58:35: eb:03:52:6b:7c:a9:f4:d4:e6:a9:71:63:69:45:e3:49:5b:b8: 6b:26:94:72:f3:16:64:3a:1c:99:7d:02:85:6a:02:d4:60:9c: 58:e3:c4:e6:72:41:38:d4:fb:97:b1:03:d4:54:64:a8:d5:9d: f5:ba:1b:6d:c5:d7:33:b8:a1:a2:8a:85:b7:46:91:ab:5c:22: ca:97:ab:6f:5a:a4:d6:33:93:3f:12:ae:d7:60:55:5d:74:a0: 82:9c:9d:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjUwNzAyMjAzOTQ3WhcNMjUwNzA5MjAzOTQ3WjAYMRYwFAYD VQQDEw02ODY1OTkxMy0yZmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbdysZ+T28R0DaDKvTays693hNN4QVdsOxu5UbS5G3v0v16Wqk7eMsmvGDY0 GthY005EYm+QB1bicyxlRSULeYNAtJI4IedXjbj6/s16Nv5d58JlKx7kfpjZohSr xnNAeCHPgmJh6YVeKzHK/k40fmngILWQYLsf3C9Y5r/hdvOhhg+yx98KJNzo/9va mu5/X74vH111P7Mvd+q/+v7bgi6ZELS1ZxF1NiKBRq3CByp3lu7jTbf7iBP5ntNb ny+SAxV9AtOeySfjewyr4jwz3RXla58UGzFefj62BnGrCRD/QCQ0yHh5tZgTc0H1 BUwi37v9SDRQbm7KI8rZ4669HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ5k7Vkk cknJH4P9WlroMrsro6dKMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBY5NrUCmb32O32noUirqf7K0apy/qr03ODw2sZEilQ4hMSsTMvYvE 9oCyiaq18wPFbBckKVTfo+A5FqNib6TQ3xwrTVylBzoqoHiIPYqw9tip+4keKVxH 2LbgFIf0vSfAoabT/Rar+uQqeEDLfTPqnT66Kc+Q7v0Fdo5u8k9vOCgH2lS5RbUI btwfXhG3V1Y1z9vXV5fq362f9quRw/1zWDXrA1JrfKn01OapcWNpReNJW7hrJpRy 8xZkOhyZfQKFagLUYJxY48TmckE41PuXsQPUVGSo1Z31uhttxdczuKGiioW3RpGr XCLKl6tvWqTWM5M/Eq7XYFVddKCCnJ2I -----END CERTIFICATE-----Generated at Fri Jul 4 10:45:46 2025 by rpki-client