$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: pCeXL+26felrOMbJ5lMcb+4Xk/Hir/6Hgfdc8zH9K3M= Subject key identifier: BE:4C:A2:AD:46:46:88:F6:12:0E:4A:29:65:50:D8:CE:52:14:94:44 Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 0933 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 0924 Signing time: Sat 18 Oct 2025 21:22:27 +0000 Manifest this update: Sat 18 Oct 2025 21:22:27 +0000 Manifest next update: Sat 25 Oct 2025 21:22:27 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: l+KNf1UOXB6AdNx/8PMrdc7J0TCFDxHaa3RVbvWxEJw=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: hGeojJHl+slEu//W2T6Ztco0llWjDMzL1tIeaK2rSYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2355 (0x933) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Oct 18 21:22:27 2025 GMT Not After : Oct 25 21:22:27 2025 GMT Subject: CN=68f40513-3982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:8a:b2:ff:ef:92:8f:08:d9:6c:88:ac:d4:f6: dc:85:db:d8:9f:40:4a:91:26:8e:4c:76:87:fd:91: e8:b1:10:34:b2:77:e7:bf:ed:ce:e0:12:c7:ce:5e: 35:09:47:e2:c5:f6:1c:8e:80:67:13:18:64:23:c9: 97:13:73:b6:f3:76:a6:19:93:f0:77:a4:c2:64:35: 64:9e:e4:6c:9e:a3:84:db:7e:ac:b3:c2:0c:88:ad: 6f:bd:f7:bb:7f:6d:cc:1d:0a:1c:47:35:97:08:e1: d2:d7:14:c8:96:e0:3d:3e:12:72:06:bd:24:91:d8: 55:62:82:75:bb:99:7a:14:4f:8f:b4:c3:b8:4b:e6: 16:f3:78:f9:9a:00:fe:a8:60:a5:4b:f4:b1:c0:b1: bd:2f:42:75:df:24:5c:9c:3d:4b:3a:e7:2a:f8:34: bc:b8:5f:e3:c5:f2:66:8f:f6:b3:42:af:6c:f9:b9: 92:8e:69:af:f6:8b:50:33:bd:f8:7d:34:58:bf:55: 8d:29:d1:a5:b6:97:a8:dd:8b:e3:22:ee:06:b5:22: 08:90:b4:ff:7b:e4:4f:82:7c:80:33:d8:a0:fc:88: 96:7f:ac:9c:d1:39:3a:a3:1c:4f:81:5d:a2:18:aa: 68:7b:2c:d9:a1:57:24:d0:1c:f8:9b:da:73:a6:e0: 0e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:4C:A2:AD:46:46:88:F6:12:0E:4A:29:65:50:D8:CE:52:14:94:44 X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:ca:f8:39:99:f7:27:b9:24:a5:05:30:5b:f1:5c:6a:a9:1e: bb:b8:1b:cc:ce:e6:87:3a:42:f2:d8:02:f9:d1:29:3c:c2:dc: cc:29:6a:2a:92:f7:03:a4:4f:54:0e:44:95:ac:ba:40:66:4c: 7d:5f:32:91:9a:a7:40:fd:40:fa:97:95:5b:f9:0e:23:11:63: 0e:1f:fd:d8:37:d4:bc:3f:cb:92:fb:fc:e3:1b:8d:33:b7:db: f9:02:22:85:41:d8:d4:1b:fc:28:34:52:40:82:69:10:c2:24: 35:23:70:e3:58:77:de:da:8d:94:45:2b:7f:ef:93:64:9b:62: 1d:ff:0d:ae:de:33:22:8f:bc:e5:6a:ea:49:56:09:c2:e3:e8: 2d:9f:d8:65:d8:29:00:72:03:97:90:c2:fd:f3:b5:45:e4:16: dc:e0:3f:fb:c6:cb:90:4a:98:b7:fa:7f:56:7e:14:0e:3e:df: 6c:2e:b3:f9:30:82:77:85:79:83:d7:7d:4b:b5:51:85:56:7d: 80:93:66:bf:95:51:e6:be:fe:64:a3:54:01:eb:c3:ae:49:e8: 73:c1:28:47:27:1c:62:35:2e:7d:8a:cd:93:6a:0f:51:f0:35: 75:62:3d:da:37:c6:57:7a:fa:40:77:1e:25:5b:86:9e:9b:ec: dc:4d:a5:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjUxMDE4MjEyMjI3WhcNMjUxMDI1MjEyMjI3WjAYMRYwFAYD VQQDEw02OGY0MDUxMy0zOTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApoqy/++SjwjZbIis1PbchdvYn0BKkSaOTHaH/ZHosRA0snfnv+3O4BLHzl41 CUfixfYcjoBnExhkI8mXE3O283amGZPwd6TCZDVknuRsnqOE236ss8IMiK1vvfe7 f23MHQocRzWXCOHS1xTIluA9PhJyBr0kkdhVYoJ1u5l6FE+PtMO4S+YW83j5mgD+ qGClS/SxwLG9L0J13yRcnD1LOucq+DS8uF/jxfJmj/azQq9s+bmSjmmv9otQM734 fTRYv1WNKdGltpeo3YvjIu4GtSIIkLT/e+RPgnyAM9ig/IiWf6yc0Tk6oxxPgV2i GKpoeyzZoVck0Bz4m9pzpuAOhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5Moq1G Roj2Eg5KKWVQ2M5SFJREMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVyvg5mfcnuSSlBTBb8VxqqR67uBvMzuaHOkLy2AL50Sk8wtzMKWoq kvcDpE9UDkSVrLpAZkx9XzKRmqdA/UD6l5Vb+Q4jEWMOH/3YN9S8P8uS+/zjG40z t9v5AiKFQdjUG/woNFJAgmkQwiQ1I3DjWHfe2o2URSt/75Nkm2Id/w2u3jMij7zl aupJVgnC4+gtn9hl2CkAcgOXkML987VF5Bbc4D/7xsuQSpi3+n9WfhQOPt9sLrP5 MIJ3hXmD131LtVGFVn2Ak2a/lVHmvv5ko1QB68OuSehzwShHJxxiNS59is2Tag9R 8DV1Yj3aN8ZXevpAdx4lW4aem+zcTaXA -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:57 2025 by rpki-client