$ rpki-client -vvf rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.mft File: CGM2oMfhveZ4do0Qwwvrfyvc4Sc.mft (raw, json) Hash identifier: FBK73MQF/lUuP3nPTCYW5pqP1zA312o7mw/VeeCHuqQ= Subject key identifier: 77:CE:AA:00:8D:05:34:95:A7:6F:0F:B2:05:3D:4A:0E:F7:4E:40:D4 Authority key identifier: 08:63:36:A0:C7:E1:BD:E6:78:76:8D:10:C3:0B:EB:7F:2B:DC:E1:27 Certificate issuer: /CN=A9164663/serialNumber=086336A0C7E1BDE678768D10C30BEB7F2BDCE127 Certificate serial: 1265 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.mft Manifest number: 1A76 Signing time: Tue 12 Aug 2025 17:13:35 +0000 Manifest this update: Tue 12 Aug 2025 17:13:35 +0000 Manifest next update: Tue 19 Aug 2025 17:13:35 +0000 Files and hashes: 1: CGM2oMfhveZ4do0Qwwvrfyvc4Sc.crl (hash: iIgL4DZYeRuyF5CFAkrJkZWdif9MCXrt64KjPmAQHA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.crl rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 17:13:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4709 (0x1265) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164663, serialNumber=086336A0C7E1BDE678768D10C30BEB7F2BDCE127 Validity Not Before: Aug 12 17:13:35 2025 GMT Not After : Aug 19 17:13:35 2025 GMT Subject: CN=689b763f-dae0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ba:72:b1:f3:97:a2:c3:fc:14:b2:66:ae:7c: 11:86:0b:35:22:da:2b:9c:fb:cf:0c:bf:2e:38:aa: 2b:18:ae:e4:18:d3:05:79:d3:bc:c7:99:d1:f1:9a: 50:7b:ee:72:54:31:7a:84:9e:02:fd:f7:ed:90:22: ae:9d:85:81:e0:9f:a3:46:12:58:2a:7b:3c:b6:aa: 80:af:61:84:ec:7a:97:35:3e:68:89:fa:32:5e:68: 11:37:3d:52:29:f8:6f:f1:68:93:8a:58:4c:98:0f: 1d:fd:c3:96:07:1d:9b:53:01:28:03:29:bd:83:ba: 33:d5:d9:c0:ef:48:05:43:aa:f4:5d:ba:2e:e6:23: 70:48:fc:ce:32:1c:b9:a7:b4:b4:05:bb:4c:d8:f9: 3e:dd:09:10:04:a3:9b:90:6f:0c:de:e6:db:29:ae: 89:d3:c6:81:02:74:45:00:83:bb:08:e8:14:88:77: ad:d1:76:d0:f9:f3:4a:06:9f:4b:1c:d7:cd:64:56: 31:c3:5b:d9:fd:6d:34:66:50:cd:e0:c8:57:6c:c9: 9d:c0:1c:f3:58:2f:4a:59:8d:7b:b1:87:b0:e3:fe: 08:a1:1f:5f:34:6c:68:7b:42:eb:96:d1:ff:12:df: 1e:81:7b:06:e5:47:ea:ee:de:9f:39:28:73:f1:bc: 34:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:CE:AA:00:8D:05:34:95:A7:6F:0F:B2:05:3D:4A:0E:F7:4E:40:D4 X509v3 Authority Key Identifier: keyid:08:63:36:A0:C7:E1:BD:E6:78:76:8D:10:C3:0B:EB:7F:2B:DC:E1:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:fe:ec:c0:46:e6:38:6b:a0:75:82:35:f7:da:86:8e:23:79: 3b:fc:fc:26:d5:aa:cd:18:c9:52:65:fb:58:4b:0c:d5:92:3c: 41:85:00:a0:33:a6:3f:75:a9:a3:fb:60:ab:0d:b1:45:92:23: fa:ce:f7:ae:8b:bc:6e:f6:10:d7:2e:a0:33:4f:8e:66:34:22: 28:b3:a0:33:2b:d7:8d:49:8a:f0:ff:5b:e4:f2:ab:18:f6:76: 91:8e:ad:ab:1f:0b:58:e1:b4:ba:02:bd:42:8e:3e:7c:4e:e2: 0b:bd:82:33:36:b6:f3:36:67:4f:9b:4a:74:4d:9a:10:86:5b: 21:cf:a8:f1:f4:21:3f:e9:bc:6a:3d:32:ea:98:a6:48:87:94: 19:a4:d2:69:fe:2a:58:69:f3:af:22:c2:26:56:cc:c7:7a:e7: 38:cd:fa:29:cc:bc:94:db:8f:cb:a5:5c:05:9a:d5:d4:58:45: 48:02:01:94:6f:1e:55:4e:ca:a2:20:cc:91:a1:6f:e1:ad:33: f5:9f:41:2e:cb:81:ff:00:9a:96:7c:4a:ae:ba:7e:c8:17:27: 5b:c0:d4:82:b8:41:28:8f:ef:88:f5:6a:54:e6:fa:33:74:9b: 1e:d3:bf:6d:af:f5:98:f4:b7:82:ee:67:1d:80:77:f6:bb:f8: eb:b2:5b:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ2NjMxMTAvBgNVBAUTKDA4NjMzNkEwQzdFMUJERTY3ODc2OEQxMEMzMEJFQjdG MkJEQ0UxMjcwHhcNMjUwODEyMTcxMzM1WhcNMjUwODE5MTcxMzM1WjAYMRYwFAYD VQQDEw02ODliNzYzZi1kYWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAobpysfOXosP8FLJmrnwRhgs1ItornPvPDL8uOKorGK7kGNMFedO8x5nR8ZpQ e+5yVDF6hJ4C/fftkCKunYWB4J+jRhJYKns8tqqAr2GE7HqXNT5oifoyXmgRNz1S Kfhv8WiTilhMmA8d/cOWBx2bUwEoAym9g7oz1dnA70gFQ6r0Xbou5iNwSPzOMhy5 p7S0BbtM2Pk+3QkQBKObkG8M3ubbKa6J08aBAnRFAIO7COgUiHet0XbQ+fNKBp9L HNfNZFYxw1vZ/W00ZlDN4MhXbMmdwBzzWC9KWY17sYew4/4IoR9fNGxoe0LrltH/ Et8egXsG5Ufq7t6fOShz8bw05QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfOqgCN BTSVp28PsgU9Sg73TkDUMB8GA1UdIwQYMBaAFAhjNqDH4b3meHaNEMML638r3OEn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDY2My8xNEVBQTlGQURB NzkxMUU4OUI5NUE2NzJDNEY5QUUwMi9DR00yb01maHZlWjRkbzBRd3d2cmZ5dmM0 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NHTTJvTWZodmVaNGRvMFF3d3ZyZnl2YzRTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDY2My8xNEVBQTlGQURBNzkxMUU4OUI5NUE2NzJDNEY5QUUwMi9DR00yb01maHZl WjRkbzBRd3d2cmZ5dmM0U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa/uzARuY4a6B1gjX32oaOI3k7/Pwm1arNGMlSZftYSwzVkjxBhQCg M6Y/damj+2CrDbFFkiP6zveui7xu9hDXLqAzT45mNCIos6AzK9eNSYrw/1vk8qsY 9naRjq2rHwtY4bS6Ar1Cjj58TuILvYIzNrbzNmdPm0p0TZoQhlshz6jx9CE/6bxq PTLqmKZIh5QZpNJp/ipYafOvIsImVszHeuc4zfopzLyU24/LpVwFmtXUWEVIAgGU bx5VTsqiIMyRoW/hrTP1n0Euy4H/AJqWfEquun7IFydbwNSCuEEoj++I9WpU5voz dJse079tr/WY9LeC7mcdgHf2u/jrslvr -----END CERTIFICATE-----Generated at Wed Aug 13 08:53:21 2025 by rpki-client