$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft File: CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft (raw, json) Hash identifier: SXF7rgidjOL1s2y7nXfyj2xqA0GJrG9olx4TXnjlVbM= Subject key identifier: E7:C3:24:85:98:FC:D0:FE:BE:92:C5:63:02:96:8A:12:A5:29:7C:E1 Authority key identifier: 09:97:14:A7:0E:6F:40:12:89:10:82:09:D6:A7:F4:85:9F:98:00:CC Certificate issuer: /CN=A91A5098/serialNumber=099714A70E6F401289108209D6A7F4859F9800CC Certificate serial: 1D8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft Manifest number: 1D76 Signing time: Sat 14 Jun 2025 16:06:17 +0000 Manifest this update: Sat 14 Jun 2025 16:06:17 +0000 Manifest next update: Sat 21 Jun 2025 16:06:17 +0000 Files and hashes: 1: CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl (hash: VCpHohjgsg1EOTgKwU+W7kJOIeIskp4enK7Roneltcc=) 2: 945DB376E34711EE87868164C4F9AE02.roa (hash: NAFJJXNP6W1IL/8p5XX1DsTHhpW+KT2jLZylfntYa8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7566 (0x1d8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5098, serialNumber=099714A70E6F401289108209D6A7F4859F9800CC Validity Not Before: Jun 14 16:06:17 2025 GMT Not After : Jun 21 16:06:17 2025 GMT Subject: CN=684d9df9-0437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:85:22:cd:e4:9e:69:45:74:69:05:f0:a3:cd: f7:ee:c0:b1:d2:75:44:3b:00:78:2c:d1:2a:65:52: 57:60:f3:4c:bb:7b:e0:3b:2d:35:78:10:0a:f1:28: fe:b8:4c:ef:c1:6d:f9:0c:80:52:ca:67:93:d7:66: b2:3b:c2:29:16:87:de:16:be:1b:4a:da:3b:04:b8: 16:81:db:30:95:c8:ca:31:9a:e3:01:b3:60:78:8e: 30:19:ab:71:ee:a4:23:c2:d9:92:71:64:16:89:5a: 84:c8:dd:b0:08:c5:eb:23:97:3f:d8:c9:73:91:43: fa:7a:fc:74:4e:3a:42:7b:2a:19:2f:f1:0b:cb:cb: 3f:74:c6:2a:d7:71:e0:fc:3d:56:c3:26:cb:45:02: 41:5a:d6:bc:58:39:b6:bd:91:e8:13:8f:76:e8:83: 68:8f:bf:71:5e:d7:7b:1d:a5:2f:60:b5:fa:e2:03: 1f:6f:dd:df:87:de:e0:6c:30:f6:ca:2c:69:34:ad: 37:e9:47:b0:4d:2d:0b:18:a8:8b:cc:26:74:c7:42: 02:69:c3:59:e9:e9:8e:04:12:af:59:b9:ab:0e:94: dc:41:4f:c3:76:42:91:c7:0f:32:bd:57:55:f9:a4: d5:a3:9e:47:c5:f8:6c:23:65:35:56:d5:a1:b7:f6: e4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C3:24:85:98:FC:D0:FE:BE:92:C5:63:02:96:8A:12:A5:29:7C:E1 X509v3 Authority Key Identifier: keyid:09:97:14:A7:0E:6F:40:12:89:10:82:09:D6:A7:F4:85:9F:98:00:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:e4:3e:1d:19:c7:f8:ed:81:1e:9d:f0:b6:b5:af:e8:93:75: 0f:92:f5:02:6d:eb:b1:10:42:67:2a:2a:c5:6c:ec:57:75:07: 36:59:a8:d8:12:a5:a0:54:c0:e6:2e:26:bf:84:1d:d8:1a:8e: 62:80:8a:e4:ab:b7:7d:7f:81:00:2c:9e:22:cd:35:3a:03:6b: 1f:72:b9:ef:84:52:5b:33:4c:91:e2:96:93:60:7d:a1:9f:98: 07:2e:5b:98:9c:05:eb:f6:4f:11:e6:c6:2c:7f:e1:cd:c5:a6: 36:cc:57:a3:63:b8:a7:b1:56:27:c5:6c:7a:14:e1:ca:6b:2c: 2b:7f:05:8e:5e:05:e3:a1:e1:de:dc:45:2c:3d:8f:95:22:a1: 08:4f:50:f6:33:69:8e:0f:63:72:bc:21:5f:96:5c:e3:7b:51: ef:5e:80:03:0a:08:77:2a:f9:25:42:dd:5b:e0:a4:2d:8e:63: 74:ac:92:7f:ae:fe:e1:80:4d:af:a3:d2:f9:9f:ba:f5:00:e5: 04:09:65:98:af:de:fa:b1:94:53:8f:13:ba:8a:31:64:a5:1a: 8a:8d:90:a3:72:58:3f:11:2b:02:19:46:b5:71:e7:59:4f:0d: b7:db:33:c8:a9:25:ae:54:bc:76:44:0e:7a:80:f0:ba:f7:6d: da:0f:c1:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwOTgxMTAvBgNVBAUTKDA5OTcxNEE3MEU2RjQwMTI4OTEwODIwOUQ2QTdGNDg1 OUY5ODAwQ0MwHhcNMjUwNjE0MTYwNjE3WhcNMjUwNjIxMTYwNjE3WjAYMRYwFAYD VQQDEw02ODRkOWRmOS0wNDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YUizeSeaUV0aQXwo8337sCx0nVEOwB4LNEqZVJXYPNMu3vgOy01eBAK8Sj+ uEzvwW35DIBSymeT12ayO8IpFofeFr4bSto7BLgWgdswlcjKMZrjAbNgeI4wGatx 7qQjwtmScWQWiVqEyN2wCMXrI5c/2MlzkUP6evx0TjpCeyoZL/ELy8s/dMYq13Hg /D1WwybLRQJBWta8WDm2vZHoE4926INoj79xXtd7HaUvYLX64gMfb93fh97gbDD2 yixpNK036UewTS0LGKiLzCZ0x0ICacNZ6emOBBKvWbmrDpTcQU/DdkKRxw8yvVdV +aTVo55HxfhsI2U1VtWht/bkdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfDJIWY /ND+vpLFYwKWihKlKXzhMB8GA1UdIwQYMBaAFAmXFKcOb0ASiRCCCdan9IWfmADM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTA5OC9DNjgwOTE5NkFD OTcxMUU2QTQ5MURDMTdDNEY5QUUwMi9DWmNVcHc1dlFCS0pFSUlKMXFmMGhaLVlB TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaY1VwdzV2UUJLSkVJSUoxcWYwaFotWUFNdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTA5OC9DNjgwOTE5NkFDOTcxMUU2QTQ5MURDMTdDNEY5QUUwMi9DWmNVcHc1dlFC S0pFSUlKMXFmMGhaLVlBTXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAW5D4dGcf47YEenfC2ta/ok3UPkvUCbeuxEEJnKirFbOxXdQc2WajY EqWgVMDmLia/hB3YGo5igIrkq7d9f4EALJ4izTU6A2sfcrnvhFJbM0yR4paTYH2h n5gHLluYnAXr9k8R5sYsf+HNxaY2zFejY7insVYnxWx6FOHKaywrfwWOXgXjoeHe 3EUsPY+VIqEIT1D2M2mOD2NyvCFfllzje1HvXoADCgh3KvklQt1b4KQtjmN0rJJ/ rv7hgE2vo9L5n7r1AOUECWWYr976sZRTjxO6ijFkpRqKjZCjclg/ESsCGUa1cedZ Tw232zPIqSWuVLx2RA56gPC6923aD8E7 -----END CERTIFICATE-----Generated at Sat Jun 14 19:32:24 2025 by rpki-client