$ rpki-client -vvf rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft File: cpJvxg98GEph1zvQlKpqOGtjACo.mft (raw, json) Hash identifier: ZgH7PNDM4gmLRddrHzkT9ojM7Jw9LxcYjbjtcrx9dD4= Subject key identifier: 62:89:B5:7D:7E:33:E9:AB:61:52:41:78:29:80:53:CC:57:84:20:46 Authority key identifier: 72:92:6F:C6:0F:7C:18:4A:61:D7:3B:D0:94:AA:6A:38:6B:63:00:2A Certificate issuer: /CN=A91805CE/serialNumber=72926FC60F7C184A61D73BD094AA6A386B63002A Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft Manifest number: 0136 Signing time: Sat 09 Aug 2025 05:00:21 +0000 Manifest this update: Sat 09 Aug 2025 05:00:20 +0000 Manifest next update: Sat 16 Aug 2025 05:00:20 +0000 Files and hashes: 1: cpJvxg98GEph1zvQlKpqOGtjACo.crl (hash: 9FyFo99Brjo+U1w3+VLqcdCAruLb6bU+PI2I7NAU4wY=) 2: 9E194914B3EC11EE8B2EE910C4F9AE02.roa (hash: 9cLUWM+lWWpZt/EGTjBbXr6teTbVNtgXpN+WMvBwXno=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.crl rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805CE, serialNumber=72926FC60F7C184A61D73BD094AA6A386B63002A Validity Not Before: Aug 9 05:00:20 2025 GMT Not After : Aug 16 05:00:20 2025 GMT Subject: CN=6896d5e4-e314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3b:37:03:97:c6:9f:71:b0:f8:1b:02:0b:d3: 72:ad:4e:17:6c:c7:e1:6d:cc:8a:18:06:13:ed:41: 40:14:83:d4:66:d6:ec:17:83:9b:fd:07:ff:89:bb: dc:fb:4d:d5:a0:e5:c1:9f:60:f8:55:d9:b1:6c:3d: 4c:14:de:33:0e:d9:e3:02:4a:8d:01:14:d0:78:09: 3e:62:8e:3f:ee:d3:d3:34:07:9c:43:f0:aa:39:b3: 34:36:24:8e:e7:79:8c:71:4a:a5:b9:6d:a2:fc:30: 3b:4d:e7:ff:e2:55:5b:62:e5:48:75:00:24:7d:4d: 09:bd:2a:a9:b1:7e:d9:3e:15:12:90:98:58:1e:30: c0:cc:10:ab:14:e3:98:82:03:53:24:f8:85:1d:c7: 4c:e8:5a:2e:59:7f:66:9c:6a:c2:71:6a:88:54:48: 96:11:6a:af:cb:de:fd:f5:03:04:4f:77:7b:2d:bb: a3:d6:0d:61:ca:33:77:07:59:f5:48:eb:11:93:b9: a8:26:f7:15:ef:7b:49:e3:36:44:c5:46:05:03:52: c1:64:36:5c:7c:3f:5c:53:a7:cd:9d:c1:20:0e:e7: 31:c5:08:28:1f:88:51:1d:3e:4d:2e:8b:2b:af:9e: a8:7d:ba:89:59:13:b4:7e:1f:48:33:5d:01:db:26: e3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:89:B5:7D:7E:33:E9:AB:61:52:41:78:29:80:53:CC:57:84:20:46 X509v3 Authority Key Identifier: keyid:72:92:6F:C6:0F:7C:18:4A:61:D7:3B:D0:94:AA:6A:38:6B:63:00:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:c8:94:d9:de:9e:f9:25:04:04:e1:a2:cc:a3:78:dc:87:af: a2:ad:39:50:71:54:ff:30:e4:e3:2a:71:ae:d2:54:9d:4c:8a: 0b:c6:80:68:b6:b8:50:43:35:90:11:8b:60:5f:13:91:45:c8: 66:15:db:a3:a1:5c:df:85:e9:24:1d:50:ab:e5:00:a3:98:bf: 58:f8:f6:75:05:d5:51:a8:17:e3:63:07:67:ac:b8:e6:39:a7: 64:c6:91:17:64:43:8a:cd:1c:d0:0a:50:be:05:0c:50:5b:8c: 9e:8a:92:c0:5f:e5:df:f6:01:bd:c3:33:bd:be:fc:9e:51:a4: 5c:e2:ae:f2:1a:be:21:e3:40:d9:00:dd:06:6c:2e:dc:a9:c5: 10:46:e5:db:cd:54:9f:4d:5c:e3:05:07:3a:f9:e5:2b:8d:d5: 16:8f:4b:17:8a:1b:d0:df:3d:41:6c:17:5a:a2:7b:d7:c6:43: 3e:97:ec:3e:6b:57:e4:86:97:5c:d1:35:5f:60:bc:0e:ef:5e: 1f:32:e7:29:48:31:5b:12:90:05:46:6b:fd:8c:88:21:34:47: 8b:72:da:1e:ea:46:e3:99:f0:3c:27:90:08:ce:28:3a:ea:07: 16:e5:5d:a9:5e:33:94:7f:b8:2e:1d:63:22:65:91:dc:18:94: f9:d5:a3:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1Q0UxMTAvBgNVBAUTKDcyOTI2RkM2MEY3QzE4NEE2MUQ3M0JEMDk0QUE2QTM4 NkI2MzAwMkEwHhcNMjUwODA5MDUwMDIwWhcNMjUwODE2MDUwMDIwWjAYMRYwFAYD VQQDEw02ODk2ZDVlNC1lMzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjs3A5fGn3Gw+BsCC9NyrU4XbMfhbcyKGAYT7UFAFIPUZtbsF4Ob/Qf/ibvc +03VoOXBn2D4VdmxbD1MFN4zDtnjAkqNARTQeAk+Yo4/7tPTNAecQ/CqObM0NiSO 53mMcUqluW2i/DA7Tef/4lVbYuVIdQAkfU0JvSqpsX7ZPhUSkJhYHjDAzBCrFOOY ggNTJPiFHcdM6FouWX9mnGrCcWqIVEiWEWqvy9799QMET3d7Lbuj1g1hyjN3B1n1 SOsRk7moJvcV73tJ4zZExUYFA1LBZDZcfD9cU6fNncEgDucxxQgoH4hRHT5NLosr r56ofbqJWRO0fh9IM10B2ybj9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKJtX1+ M+mrYVJBeCmAU8xXhCBGMB8GA1UdIwQYMBaAFHKSb8YPfBhKYdc70JSqajhrYwAq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDVDRS8wRUIwOUQzNkFF NzQxMUVFOENFRDIzNUNDNEY5QUUwMi9jcEp2eGc5OEdFcGgxenZRbEtwcU9HdGpB Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NwSnZ4Zzk4R0VwaDF6dlFsS3BxT0d0akFDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDVDRS8wRUIwOUQzNkFFNzQxMUVFOENFRDIzNUNDNEY5QUUwMi9jcEp2eGc5OEdF cGgxenZRbEtwcU9HdGpBQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEyJTZ3p75JQQE4aLMo3jch6+irTlQcVT/MOTjKnGu0lSdTIoLxoBo trhQQzWQEYtgXxORRchmFdujoVzfhekkHVCr5QCjmL9Y+PZ1BdVRqBfjYwdnrLjm OadkxpEXZEOKzRzQClC+BQxQW4yeipLAX+Xf9gG9wzO9vvyeUaRc4q7yGr4h40DZ AN0GbC7cqcUQRuXbzVSfTVzjBQc6+eUrjdUWj0sXihvQ3z1BbBdaonvXxkM+l+w+ a1fkhpdc0TVfYLwO714fMucpSDFbEpAFRmv9jIghNEeLctoe6kbjmfA8J5AIzig6 6gcW5V2pXjOUf7guHWMiZZHcGJT51aPG -----END CERTIFICATE-----Generated at Mon Aug 11 04:09:42 2025 by rpki-client