$ rpki-client -vvf rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft File: CmlvYzZ3zH-l3H1bspnTmDD76UI.mft (raw, json) Hash identifier: UnC9VPlsXp4Y6JEXkd2hGNTYsCagNLbU9ozZSYd7Roc= Subject key identifier: A1:2F:D7:98:9B:37:75:E8:A9:32:3C:F1:20:85:BC:10:53:A1:7D:9B Authority key identifier: 0A:69:6F:63:36:77:CC:7F:A5:DC:7D:5B:B2:99:D3:98:30:FB:E9:42 Certificate issuer: /CN=A9165739/serialNumber=0A696F633677CC7FA5DC7D5BB299D39830FBE942 Certificate serial: 096C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmlvYzZ3zH-l3H1bspnTmDD76UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft Manifest number: 0948 Signing time: Mon 04 Aug 2025 20:36:02 +0000 Manifest this update: Mon 04 Aug 2025 20:36:01 +0000 Manifest next update: Mon 11 Aug 2025 20:36:01 +0000 Files and hashes: 1: CmlvYzZ3zH-l3H1bspnTmDD76UI.crl (hash: bbjdUuTnAsb4uOWSYAQc+Dv9SpIupKwoShjs0WFGDrM=) 2: 5EFDD3C4641511EF92F73520C4F9AE02.roa (hash: +5v/UPyW3dQ/0rVuztf81a9oZSnTgo/JoecluNMVK0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.crl rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmlvYzZ3zH-l3H1bspnTmDD76UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 20:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2412 (0x96c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165739, serialNumber=0A696F633677CC7FA5DC7D5BB299D39830FBE942 Validity Not Before: Aug 4 20:36:01 2025 GMT Not After : Aug 11 20:36:01 2025 GMT Subject: CN=689119b2-730b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:26:e4:f9:68:bb:e9:d0:d3:de:81:0f:16:e1: c6:a3:46:6a:3e:fb:49:85:bc:05:f4:68:da:d3:62: 32:d7:62:86:13:c7:ac:38:c4:d5:ce:64:ac:21:ab: e9:6a:5f:10:a4:b3:cb:69:6b:8f:d0:1d:0f:0a:65: 91:d4:66:8a:13:db:17:d3:b2:36:5b:56:c4:89:f6: a5:40:a6:7d:92:1e:15:43:74:14:40:16:4c:24:06: 55:85:1c:0d:b4:75:cb:35:d3:48:bc:7f:0d:24:fa: 85:78:d8:7f:3f:a5:92:f5:93:96:02:9f:9e:6b:47: 1c:ff:8a:99:a8:76:31:fb:73:5e:09:16:6e:63:f8: 41:5f:f0:80:2d:7f:fc:df:fd:24:b1:e8:83:73:9b: e9:87:52:b9:4d:e7:e5:d3:c9:3b:58:cb:b4:a9:08: ca:76:0a:4d:da:ff:a4:58:83:02:36:26:f3:f9:e6: fa:02:13:6b:6a:87:d0:2b:4f:1f:1a:d1:cd:de:54: 71:cc:99:10:44:c9:bb:1a:63:39:09:df:d0:fa:93: a6:ec:83:29:a7:08:ed:af:05:fc:f2:4e:89:05:10: b5:a1:6e:bc:cc:47:78:12:5a:69:a3:b3:aa:e5:66: 53:a8:7d:12:07:5c:a4:97:03:a9:d0:68:3f:d9:d2: 46:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:2F:D7:98:9B:37:75:E8:A9:32:3C:F1:20:85:BC:10:53:A1:7D:9B X509v3 Authority Key Identifier: keyid:0A:69:6F:63:36:77:CC:7F:A5:DC:7D:5B:B2:99:D3:98:30:FB:E9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmlvYzZ3zH-l3H1bspnTmDD76UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:08:1a:d9:4e:24:7c:d0:24:85:55:7a:3d:c0:c0:f5:26:be: 0a:65:c8:b2:b1:c3:f4:64:8f:db:45:62:71:5c:a1:37:00:76: fa:95:b4:f3:b8:22:0c:81:2b:08:89:be:0e:42:4b:76:5f:19: a0:19:61:15:6b:1f:26:f9:81:b4:fd:9c:80:cb:cc:fe:c7:1b: 64:cc:c3:d0:57:85:09:ca:cc:27:93:fa:ef:84:b3:75:d6:2a: 8b:7b:8c:66:18:5a:98:bb:6c:28:2e:25:2c:76:23:0a:20:13: 44:2e:7a:cc:03:ff:4d:89:12:af:0d:12:39:85:90:db:2f:f2: 55:63:56:f7:a2:70:b3:60:dd:2f:e8:db:18:b9:3e:31:ce:7a: 75:a5:34:43:e1:fd:9e:ab:60:0f:46:24:8a:72:39:b8:42:db: d6:7a:58:63:68:f4:5e:37:c1:d5:c0:e0:26:d5:f9:ea:78:be: 2c:79:4f:23:46:78:0a:c6:ea:52:e8:6d:4f:92:ec:f4:27:6f: 17:37:b6:88:be:c1:a8:80:ad:d5:bd:44:2b:f1:8b:8a:59:a5: 1c:a0:5c:a9:a1:a6:b2:96:1a:d2:b0:16:58:ae:62:e6:12:16: 26:2f:76:95:ec:f0:8e:64:93:23:bd:e2:ae:8d:16:c7:79:4d: 23:a5:7d:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU3MzkxMTAvBgNVBAUTKDBBNjk2RjYzMzY3N0NDN0ZBNURDN0Q1QkIyOTlEMzk4 MzBGQkU5NDIwHhcNMjUwODA0MjAzNjAxWhcNMjUwODExMjAzNjAxWjAYMRYwFAYD VQQDEw02ODkxMTliMi03MzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSbk+Wi76dDT3oEPFuHGo0ZqPvtJhbwF9Gja02Iy12KGE8esOMTVzmSsIavp al8QpLPLaWuP0B0PCmWR1GaKE9sX07I2W1bEifalQKZ9kh4VQ3QUQBZMJAZVhRwN tHXLNdNIvH8NJPqFeNh/P6WS9ZOWAp+ea0cc/4qZqHYx+3NeCRZuY/hBX/CALX/8 3/0kseiDc5vph1K5Tefl08k7WMu0qQjKdgpN2v+kWIMCNibz+eb6AhNraofQK08f GtHN3lRxzJkQRMm7GmM5Cd/Q+pOm7IMppwjtrwX88k6JBRC1oW68zEd4Elppo7Oq 5WZTqH0SB1yklwOp0Gg/2dJG3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEv15ib N3XoqTI88SCFvBBToX2bMB8GA1UdIwQYMBaAFAppb2M2d8x/pdx9W7KZ05gw++lC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTczOS82QkEwMzI4OEFD NTUxMUVBQTgxNTlFNUNDNEY5QUUwMi9DbWx2WXpaM3pILWwzSDFic3BuVG1ERDc2 VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtbHZZelozekgtbDNIMWJzcG5UbURENzZVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTczOS82QkEwMzI4OEFDNTUxMUVBQTgxNTlFNUNDNEY5QUUwMi9DbWx2WXpaM3pI LWwzSDFic3BuVG1ERDc2VUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHCBrZTiR80CSFVXo9wMD1Jr4KZciyscP0ZI/bRWJxXKE3AHb6lbTz uCIMgSsIib4OQkt2XxmgGWEVax8m+YG0/ZyAy8z+xxtkzMPQV4UJyswnk/rvhLN1 1iqLe4xmGFqYu2woLiUsdiMKIBNELnrMA/9NiRKvDRI5hZDbL/JVY1b3onCzYN0v 6NsYuT4xznp1pTRD4f2eq2APRiSKcjm4QtvWelhjaPReN8HVwOAm1fnqeL4seU8j RngKxupS6G1Pkuz0J28XN7aIvsGogK3VvUQr8YuKWaUcoFypoaaylhrSsBZYrmLm EhYmL3aV7PCOZJMjveKujRbHeU0jpX2K -----END CERTIFICATE-----Generated at Wed Aug 6 10:10:52 2025 by rpki-client