$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: P3eH3dKvYu1KaQoQUppom0D3Wji+JTjmU5U4DPfCQtU= Subject key identifier: EF:1A:88:54:F6:F8:73:10:F7:DF:0E:36:D3:0A:EE:E4:4B:1F:7E:80 Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 0913 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 0905 Signing time: Fri 22 Aug 2025 20:28:45 +0000 Manifest this update: Fri 22 Aug 2025 20:28:44 +0000 Manifest next update: Fri 29 Aug 2025 20:28:44 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: IOpmCnk5vnMje9iRxs1ZxX1z96zWsDat1VUB7lY0Qb4=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: fXl2igGJye4ZYwQR43jAvZ6b6h7qYdiNfyIYWYelBPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2323 (0x913) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Aug 22 20:28:44 2025 GMT Not After : Aug 29 20:28:44 2025 GMT Subject: CN=68a8d2fd-e1d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2d:33:e8:6c:6c:25:1a:fd:ca:35:26:38:c4: 8d:d8:55:d4:7e:12:16:39:77:72:a8:c0:3b:44:89: b7:5e:94:74:91:8c:84:2a:65:9c:ac:0f:6f:9a:47: 2c:a7:0a:ae:d9:f6:16:95:0a:19:ce:6a:e9:76:0c: 2b:87:61:8a:1d:6b:a3:4e:7c:68:3d:63:e1:94:4f: 32:31:54:39:3e:88:7b:77:fc:3e:50:49:20:0b:09: e5:01:10:4b:72:ba:20:c2:6d:9a:87:47:de:3b:7d: 0d:78:74:24:ae:98:48:0b:17:27:95:c4:43:72:31: 3b:a7:4a:7c:6b:34:1b:e2:07:6a:e8:a2:52:09:1e: 06:2a:67:cb:44:d2:9d:78:08:63:dd:f7:dd:8c:6e: 44:f1:bf:29:35:50:49:01:e6:0d:7f:82:08:22:c5: 96:96:40:d1:33:6b:36:b1:b4:cf:f0:94:ef:a9:4c: 8c:2b:5c:f7:cf:89:13:ec:59:fa:34:98:2c:23:0b: 47:71:47:62:00:c4:68:6a:74:ed:3f:81:90:4f:33: 0a:58:52:92:fb:82:62:bc:79:5c:56:d2:ca:96:0b: b4:1f:73:a9:26:32:0a:4e:a4:35:02:1c:b9:8b:c0: 6d:dc:24:6e:76:a4:21:aa:84:92:e8:8a:b8:c5:b6: 49:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:1A:88:54:F6:F8:73:10:F7:DF:0E:36:D3:0A:EE:E4:4B:1F:7E:80 X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:80:d4:4e:6b:3a:3e:e0:be:c0:30:a9:a9:b1:ea:56:17:1a: 3f:1a:f8:b2:ca:7a:29:b4:c3:46:35:35:98:1f:69:f7:d9:2b: 79:fa:aa:b2:70:9d:da:17:73:d6:44:8f:9f:9c:16:ae:b1:58: 17:23:a9:59:50:75:21:7e:e4:ab:a1:3e:e0:1f:d4:76:21:68: a5:48:16:6d:29:ec:67:f8:ec:03:a1:c7:78:62:5e:71:32:88: 95:9f:2f:63:2c:94:f5:f4:3a:3d:a1:f5:b2:99:a8:83:b6:72: 05:6b:04:c1:e6:a2:21:4b:dd:ce:e8:64:4a:6b:ba:02:86:52: d8:e5:5b:f5:f9:d9:1b:47:65:ef:5c:cb:bf:27:f2:c1:7b:e1: fa:42:85:f3:e5:4d:ba:81:ac:b8:0c:14:21:dd:9e:f8:1c:57: 3f:5d:45:92:61:b8:a4:dc:52:17:8b:df:fa:4a:73:be:ba:98: 8b:82:fd:3e:23:ba:9b:c9:d0:44:1b:fb:11:97:de:3c:36:a0: 82:ff:13:e5:55:fe:c4:f5:5c:95:23:db:c8:4f:40:b5:79:77: 65:2d:a6:73:3c:ab:9e:46:aa:ef:bd:1c:26:85:fc:76:b8:b2: 26:00:ab:bb:c3:b2:8a:97:c2:4b:28:2d:80:ed:d9:d2:36:80: 24:f2:ce:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjUwODIyMjAyODQ0WhcNMjUwODI5MjAyODQ0WjAYMRYwFAYD VQQDEw02OGE4ZDJmZC1lMWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxi0z6GxsJRr9yjUmOMSN2FXUfhIWOXdyqMA7RIm3XpR0kYyEKmWcrA9vmkcs pwqu2fYWlQoZzmrpdgwrh2GKHWujTnxoPWPhlE8yMVQ5Poh7d/w+UEkgCwnlARBL crogwm2ah0feO30NeHQkrphICxcnlcRDcjE7p0p8azQb4gdq6KJSCR4GKmfLRNKd eAhj3ffdjG5E8b8pNVBJAeYNf4IIIsWWlkDRM2s2sbTP8JTvqUyMK1z3z4kT7Fn6 NJgsIwtHcUdiAMRoanTtP4GQTzMKWFKS+4JivHlcVtLKlgu0H3OpJjIKTqQ1Ahy5 i8Bt3CRudqQhqoSS6Iq4xbZJlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8aiFT2 +HMQ998ONtMK7uRLH36AMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8gNROazo+4L7AMKmpsepWFxo/GviyynoptMNGNTWYH2n32St5+qqy cJ3aF3PWRI+fnBausVgXI6lZUHUhfuSroT7gH9R2IWilSBZtKexn+OwDocd4Yl5x MoiVny9jLJT19Do9ofWymaiDtnIFawTB5qIhS93O6GRKa7oChlLY5Vv1+dkbR2Xv XMu/J/LBe+H6QoXz5U26gay4DBQh3Z74HFc/XUWSYbik3FIXi9/6SnO+upiLgv0+ I7qbydBEG/sRl948NqCC/xPlVf7E9VyVI9vIT0C1eXdlLaZzPKueRqrvvRwmhfx2 uLImAKu7w7KKl8JLKC2A7dnSNoAk8s4w -----END CERTIFICATE-----Generated at Sat Aug 23 19:12:25 2025 by rpki-client