$ rpki-client -vvf rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.mft File: CGM2oMfhveZ4do0Qwwvrfyvc4Sc.mft (raw, json) Hash identifier: Kjk9OOnZ9cg+d+/oWyxbD/N+YJmuTxZfYE4LZZxph/g= Subject key identifier: 9A:87:0A:35:A5:56:5B:5A:5D:0D:DA:A5:A7:B2:EC:D5:2A:14:CD:2F Authority key identifier: 08:63:36:A0:C7:E1:BD:E6:78:76:8D:10:C3:0B:EB:7F:2B:DC:E1:27 Certificate issuer: /CN=A9164663/serialNumber=086336A0C7E1BDE678768D10C30BEB7F2BDCE127 Certificate serial: 1247 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.mft Manifest number: 1A3A Signing time: Sat 14 Jun 2025 17:04:26 +0000 Manifest this update: Sat 14 Jun 2025 17:04:26 +0000 Manifest next update: Sat 21 Jun 2025 17:04:26 +0000 Files and hashes: 1: CGM2oMfhveZ4do0Qwwvrfyvc4Sc.crl (hash: YyOagwCI+O+7E29Pgc2SstFoiMaCFnqibDOCNv/hIN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.crl rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:04:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4679 (0x1247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164663, serialNumber=086336A0C7E1BDE678768D10C30BEB7F2BDCE127 Validity Not Before: Jun 14 17:04:26 2025 GMT Not After : Jun 21 17:04:26 2025 GMT Subject: CN=684dab9a-93ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:10:c0:6f:e4:0a:01:77:a5:3c:7a:54:9b:04: 7a:89:d6:6c:12:0e:08:32:79:df:0e:8f:cd:f5:23: 7e:9b:30:2c:2c:88:49:00:ec:a1:48:03:d3:2c:be: eb:5b:8f:39:08:70:b9:a2:aa:76:1a:f0:31:70:3c: a4:4c:91:97:46:1e:3a:a2:42:9a:d9:7e:3b:2e:49: 51:b3:a7:19:50:18:7e:bf:e2:87:53:41:fa:18:e0: e9:b9:de:ac:28:85:7b:63:e1:5a:f1:e8:3a:b6:38: 75:ea:f6:0c:f1:05:d7:3e:d0:68:cb:38:2e:ae:c5: eb:bd:67:f6:e8:20:71:bd:8f:06:dd:2a:14:11:98: f9:7c:73:b1:c2:c8:af:0a:d5:ea:df:57:fd:61:87: 0c:52:b4:a2:d5:e4:f5:8d:b3:92:54:02:0f:a6:c5: 1f:d2:7b:7a:15:57:7e:51:95:fe:8a:3c:9b:d4:a1: e0:32:c9:9c:3f:52:5b:e1:76:67:9f:5e:91:a1:2f: a8:c9:30:a6:a0:13:4f:9e:21:0f:7d:4b:9a:1a:5c: 95:25:f7:b6:87:eb:a9:a8:1b:d7:ad:a2:cc:57:e3: 71:fd:9b:9d:67:f8:a2:f5:70:d9:c8:6f:09:42:ae: 8e:c1:ff:69:5b:f4:4c:ab:da:e1:2b:00:20:55:be: a8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:87:0A:35:A5:56:5B:5A:5D:0D:DA:A5:A7:B2:EC:D5:2A:14:CD:2F X509v3 Authority Key Identifier: keyid:08:63:36:A0:C7:E1:BD:E6:78:76:8D:10:C3:0B:EB:7F:2B:DC:E1:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:c4:08:65:62:16:c6:67:80:74:8b:ea:be:db:01:25:45:69: a8:30:82:8b:47:f9:39:e2:b5:7a:d1:44:43:d0:fd:11:5e:ee: 34:57:f6:93:f3:47:e7:a0:f6:62:46:50:f3:b0:b7:b5:1e:66: 9a:25:39:45:d9:4c:77:98:2b:db:44:9d:88:61:5a:4c:69:4f: 97:ac:08:c2:56:5f:01:25:80:31:f2:ca:80:d4:41:d7:d9:8a: bb:89:27:af:f8:f1:d1:12:e2:0c:9d:db:1f:4e:75:52:03:81: 1c:56:c9:54:fd:24:62:33:58:82:3c:b7:29:b5:55:41:28:e3: dc:aa:b5:e9:f5:c5:71:e9:72:09:ed:55:f1:9b:24:5a:75:f0: c5:28:ce:cd:24:24:29:24:c9:87:94:c8:46:0c:05:05:a0:4c: 2b:71:36:58:09:1f:da:38:01:ae:a8:0e:52:eb:34:d7:3c:57: b3:4e:97:ed:a7:3a:88:d7:23:82:ae:4c:50:81:a3:49:3e:27: 77:bd:a2:f1:c1:2f:ea:2d:82:8f:ef:40:57:99:be:4a:d7:56: 8d:c4:1d:eb:42:86:20:ba:d0:fe:44:e7:73:0b:3d:e6:12:c9: 19:6a:e1:70:2b:a3:80:76:b7:e7:0e:12:4c:2c:db:fb:2a:d6: 03:e1:87:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ2NjMxMTAvBgNVBAUTKDA4NjMzNkEwQzdFMUJERTY3ODc2OEQxMEMzMEJFQjdG MkJEQ0UxMjcwHhcNMjUwNjE0MTcwNDI2WhcNMjUwNjIxMTcwNDI2WjAYMRYwFAYD VQQDEw02ODRkYWI5YS05M2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5xDAb+QKAXelPHpUmwR6idZsEg4IMnnfDo/N9SN+mzAsLIhJAOyhSAPTLL7r W485CHC5oqp2GvAxcDykTJGXRh46okKa2X47LklRs6cZUBh+v+KHU0H6GODpud6s KIV7Y+Fa8eg6tjh16vYM8QXXPtBoyzgursXrvWf26CBxvY8G3SoUEZj5fHOxwsiv CtXq31f9YYcMUrSi1eT1jbOSVAIPpsUf0nt6FVd+UZX+ijyb1KHgMsmcP1Jb4XZn n16RoS+oyTCmoBNPniEPfUuaGlyVJfe2h+upqBvXraLMV+Nx/ZudZ/ii9XDZyG8J Qq6Owf9pW/RMq9rhKwAgVb6obQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqHCjWl VltaXQ3apaey7NUqFM0vMB8GA1UdIwQYMBaAFAhjNqDH4b3meHaNEMML638r3OEn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDY2My8xNEVBQTlGQURB NzkxMUU4OUI5NUE2NzJDNEY5QUUwMi9DR00yb01maHZlWjRkbzBRd3d2cmZ5dmM0 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NHTTJvTWZodmVaNGRvMFF3d3ZyZnl2YzRTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDY2My8xNEVBQTlGQURBNzkxMUU4OUI5NUE2NzJDNEY5QUUwMi9DR00yb01maHZl WjRkbzBRd3d2cmZ5dmM0U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuxAhlYhbGZ4B0i+q+2wElRWmoMIKLR/k54rV60URD0P0RXu40V/aT 80fnoPZiRlDzsLe1HmaaJTlF2Ux3mCvbRJ2IYVpMaU+XrAjCVl8BJYAx8sqA1EHX 2Yq7iSev+PHREuIMndsfTnVSA4EcVslU/SRiM1iCPLcptVVBKOPcqrXp9cVx6XIJ 7VXxmyRadfDFKM7NJCQpJMmHlMhGDAUFoEwrcTZYCR/aOAGuqA5S6zTXPFezTpft pzqI1yOCrkxQgaNJPid3vaLxwS/qLYKP70BXmb5K11aNxB3rQoYgutD+ROdzCz3m EskZauFwK6OAdrfnDhJMLNv7KtYD4Yfz -----END CERTIFICATE-----Generated at Sun Jun 15 10:16:15 2025 by rpki-client