$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json) Hash identifier: mWn6i1P9Amw9In5YJ2KISgXHS7J64VVFyxesC69r2VE= Subject key identifier: 65:93:05:F6:DB:D0:EF:2E:0F:2D:98:58:01:B2:50:45:A4:77:23:70 Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft Manifest number: 01B5 Signing time: Thu 07 Aug 2025 03:34:43 +0000 Manifest this update: Thu 07 Aug 2025 03:34:43 +0000 Manifest next update: Thu 14 Aug 2025 03:34:43 +0000 Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: Izh0sKxaB+aa8KFpfpS9U2bvJXrwqYEKFkjOhyd1bms=) 2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: 3MNDiBeknSHzY93vsrPzAAHGYu/SDVnN9ctSXpKt+Ek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 03:34:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677, serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: Aug 7 03:34:43 2025 GMT Not After : Aug 14 03:34:43 2025 GMT Subject: CN=68941ed3-bba0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e2:53:76:ce:21:6f:6c:df:4c:d5:f7:f1:b4: 85:aa:30:75:3d:3d:df:d4:2c:ff:c1:3d:ab:3e:40: ac:25:88:c3:0a:b2:3c:3a:ad:09:de:e9:85:2f:00: e4:f6:91:38:0d:0e:9e:89:e6:02:f5:c2:9b:38:9e: 70:3b:f5:5b:b4:2d:b0:ef:22:25:be:ad:95:1f:a5: f1:f6:06:10:b1:ee:0a:dc:2c:9c:15:d5:29:81:47: 8b:af:6d:36:eb:ed:f9:46:c1:66:39:24:66:6f:86: 7d:2b:48:e9:e3:06:07:ef:1c:1b:b1:e9:64:27:86: 35:06:9d:45:80:c9:be:cd:e6:a1:53:a0:f5:ce:d1: fd:89:33:64:a1:a2:f0:e6:7a:07:b4:33:e9:b0:46: fc:8a:1b:c5:17:7a:44:d8:e3:95:49:6c:85:d0:fa: 66:67:b1:76:17:de:01:b7:14:58:17:eb:7c:83:32: c5:02:87:14:57:c0:b1:fa:e9:26:64:d1:e8:70:11: b3:64:92:3d:23:6e:3b:54:64:3c:d5:70:4e:0b:6a: b5:6e:6f:12:ac:2f:4a:be:e1:bf:fd:cb:81:90:0b: 1d:a0:eb:16:e0:0a:91:81:bd:99:3d:82:35:89:5b: 52:5a:f1:e2:f0:d7:ed:51:20:b2:73:69:04:c2:e8: 62:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:93:05:F6:DB:D0:EF:2E:0F:2D:98:58:01:B2:50:45:A4:77:23:70 X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:4e:fd:a8:53:1b:03:4f:3a:3f:27:0c:f8:d9:f1:67:83:cc: 7a:16:f4:97:06:50:1c:27:0e:cb:22:11:98:be:74:c3:46:6e: 7f:1b:95:3e:09:72:47:5b:a3:88:e1:c1:55:70:ea:b8:16:bb: b3:6e:1d:2a:75:09:50:c6:48:b3:cb:ee:1c:3f:9b:81:eb:f2: 04:97:73:df:4d:a1:c6:55:f0:8b:31:44:59:88:9a:50:d1:97: f2:a6:de:4b:36:f8:40:61:91:28:0f:0c:11:de:32:dc:14:d5: e0:6e:c7:cf:43:44:c7:8c:3f:c9:f4:57:86:7d:c1:1f:72:18: 1e:54:5f:15:33:35:ec:e9:ea:47:8e:73:0c:b6:ac:c0:52:eb: 7d:49:79:0a:df:94:9d:00:0a:7c:a6:56:cc:06:49:3e:a6:b9: 3b:3d:2e:b1:f8:40:78:79:52:a1:b8:ea:96:18:77:a6:c7:5e: 57:d8:04:09:47:c8:f5:12:4d:de:68:25:16:8c:ed:ce:7d:9d: 94:ec:06:4f:59:f8:11:01:3f:2c:31:01:b5:65:38:2a:a1:fa: a5:59:d4:e5:1b:ab:be:89:a9:d5:3e:f3:66:23:fa:28:8e:7f: 9b:f0:4b:39:4b:03:21:d2:6d:b6:07:00:aa:e6:5b:2f:e8:cf: 07:50:1e:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjUwODA3MDMzNDQzWhcNMjUwODE0MDMzNDQzWjAYMRYwFAYD VQQDEw02ODk0MWVkMy1iYmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+JTds4hb2zfTNX38bSFqjB1PT3f1Cz/wT2rPkCsJYjDCrI8Oq0J3umFLwDk 9pE4DQ6eieYC9cKbOJ5wO/VbtC2w7yIlvq2VH6Xx9gYQse4K3CycFdUpgUeLr202 6+35RsFmOSRmb4Z9K0jp4wYH7xwbselkJ4Y1Bp1FgMm+zeahU6D1ztH9iTNkoaLw 5noHtDPpsEb8ihvFF3pE2OOVSWyF0PpmZ7F2F94BtxRYF+t8gzLFAocUV8Cx+ukm ZNHocBGzZJI9I247VGQ81XBOC2q1bm8SrC9KvuG//cuBkAsdoOsW4AqRgb2ZPYI1 iVtSWvHi8NftUSCyc2kEwuhiMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWTBfbb 0O8uDy2YWAGyUEWkdyNwMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjY3Ny82NDU3REZEOEQ4MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12 NHgxMURSTnBibHpxOHFtODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuTv2oUxsDTzo/Jwz42fFng8x6FvSXBlAcJw7LIhGYvnTDRm5/G5U+ CXJHW6OI4cFVcOq4Fruzbh0qdQlQxkizy+4cP5uB6/IEl3PfTaHGVfCLMURZiJpQ 0Zfypt5LNvhAYZEoDwwR3jLcFNXgbsfPQ0THjD/J9FeGfcEfchgeVF8VMzXs6epH jnMMtqzAUut9SXkK35SdAAp8plbMBkk+prk7PS6x+EB4eVKhuOqWGHemx15X2AQJ R8j1Ek3eaCUWjO3OfZ2U7AZPWfgRAT8sMQG1ZTgqofqlWdTlG6u+ianVPvNmI/oo jn+b8Es5SwMh0m22BwCq5lsv6M8HUB4n -----END CERTIFICATE-----Generated at Sat Aug 9 01:08:01 2025 by rpki-client