$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json) Hash identifier: 08Tiz4wJJizL+MZbcFu7l2K6QF6mri63uunPnF3sfB8= Subject key identifier: 99:A2:83:3B:C1:7F:F1:6E:84:83:FB:1E:95:45:DC:02:16:63:32:90 Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: 019E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft Manifest number: 019B Signing time: Tue 17 Jun 2025 02:31:32 +0000 Manifest this update: Tue 17 Jun 2025 02:31:31 +0000 Manifest next update: Tue 24 Jun 2025 02:31:31 +0000 Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: 9fMwUsOM/C0FRCdr9hub85ZkYnjNc6Cwlk7rLOdNzmI=) 2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: 3MNDiBeknSHzY93vsrPzAAHGYu/SDVnN9ctSXpKt+Ek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677, serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: Jun 17 02:31:31 2025 GMT Not After : Jun 24 02:31:31 2025 GMT Subject: CN=6850d383-0cbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:60:a0:7c:0c:8f:c0:15:f9:b7:44:00:85:8c: fa:fb:e5:4a:c6:7a:98:ef:b4:0c:6b:67:d1:c7:99: 45:74:a0:7c:b9:37:78:88:12:59:ae:e2:11:c8:b3: 9e:5d:b7:4e:f3:d5:bb:b8:cc:d0:02:f4:ce:13:b3: d4:da:05:8b:2c:14:ae:c3:ac:b6:02:a4:9a:69:31: 3f:bc:72:c8:fa:a0:32:b2:77:1d:7a:79:73:50:73: 54:f0:11:a6:99:fc:28:78:ad:5e:af:93:89:75:8e: ed:0b:d7:ff:33:79:ab:28:4a:86:de:df:04:f1:b7: 69:19:03:21:d6:90:76:42:37:f0:3c:68:03:25:a4: 8f:e8:0e:2d:16:ee:e4:43:56:b2:e1:75:0d:36:96: 3d:b2:a3:64:d0:af:87:1a:36:ce:49:bf:ec:6d:82: c3:88:ab:6a:ba:ed:ab:bf:02:0c:b8:99:5b:49:2a: 8c:36:8b:62:18:7a:cd:db:e4:6a:d8:fe:da:51:f5: 9b:7a:fe:49:60:0c:67:c5:4b:e9:41:b6:3c:66:2a: 2d:eb:12:f7:f2:25:21:e8:47:f9:df:9b:0b:73:7e: 45:db:1a:21:d6:72:90:4c:7c:19:3c:8a:a4:85:ae: 8b:b7:54:53:bd:1a:2c:f9:7e:ff:da:3a:97:a5:71: 05:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A2:83:3B:C1:7F:F1:6E:84:83:FB:1E:95:45:DC:02:16:63:32:90 X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:07:92:d0:4d:d5:ae:3e:f6:6b:4e:b7:98:99:44:dd:91:3e: a6:39:69:4f:5b:c1:ce:b0:1c:4d:9d:f6:02:72:2b:0f:2b:dc: 67:08:1f:77:c1:ad:0a:eb:29:e8:61:f9:ef:c1:f8:54:17:45: 04:e2:85:53:b9:d0:53:8c:29:d0:57:af:03:19:93:26:d9:6d: d7:59:c5:44:5a:b4:07:b4:35:44:67:8e:d6:4b:56:a4:ca:74: e0:7e:7d:47:17:58:a2:71:e1:ae:50:52:02:61:0f:ea:17:3e: 3e:20:43:a6:ad:40:93:c3:fa:18:b4:fc:f0:58:8e:8d:68:65: 16:be:8c:8a:d1:09:3e:98:56:4d:65:b9:1d:8c:e3:52:ef:4a: 10:6f:96:23:03:9b:fd:37:8e:04:35:7b:b1:d5:ae:2c:72:ad: 1b:f2:b2:ba:7c:85:ac:75:79:49:9a:cc:8d:db:01:31:ed:7f: 4c:a3:00:bf:62:07:4e:5e:36:bc:23:1d:2a:a2:06:e1:05:b5: 7c:7d:61:86:a1:b5:fc:21:c1:45:d7:5f:28:a0:73:b5:f6:d8: 5a:52:4b:7e:a1:2d:df:65:43:7d:95:ab:4a:5c:4f:4c:55:ea: a4:9a:0a:b2:b8:3d:47:a3:41:e0:da:4d:60:38:a1:6d:2f:4e: 94:96:67:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjUwNjE3MDIzMTMxWhcNMjUwNjI0MDIzMTMxWjAYMRYwFAYD VQQDEw02ODUwZDM4My0wY2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWCgfAyPwBX5t0QAhYz6++VKxnqY77QMa2fRx5lFdKB8uTd4iBJZruIRyLOe XbdO89W7uMzQAvTOE7PU2gWLLBSuw6y2AqSaaTE/vHLI+qAysncdenlzUHNU8BGm mfwoeK1er5OJdY7tC9f/M3mrKEqG3t8E8bdpGQMh1pB2QjfwPGgDJaSP6A4tFu7k Q1ay4XUNNpY9sqNk0K+HGjbOSb/sbYLDiKtquu2rvwIMuJlbSSqMNotiGHrN2+Rq 2P7aUfWbev5JYAxnxUvpQbY8Ziot6xL38iUh6Ef535sLc35F2xoh1nKQTHwZPIqk ha6Lt1RTvRos+X7/2jqXpXEFpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJmigzvB f/FuhIP7HpVF3AIWYzKQMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjY3Ny82NDU3REZEOEQ4MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12 NHgxMURSTnBibHpxOHFtODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiB5LQTdWuPvZrTreYmUTdkT6mOWlPW8HOsBxNnfYCcisPK9xnCB93 wa0K6ynoYfnvwfhUF0UE4oVTudBTjCnQV68DGZMm2W3XWcVEWrQHtDVEZ47WS1ak ynTgfn1HF1iiceGuUFICYQ/qFz4+IEOmrUCTw/oYtPzwWI6NaGUWvoyK0Qk+mFZN ZbkdjONS70oQb5YjA5v9N44ENXux1a4scq0b8rK6fIWsdXlJmsyN2wEx7X9MowC/ YgdOXja8Ix0qogbhBbV8fWGGobX8IcFF118ooHO19thaUkt+oS3fZUN9latKXE9M VeqkmgqyuD1Ho0Hg2k1gOKFtL06UlmfG -----END CERTIFICATE-----Generated at Wed Jun 18 02:36:25 2025 by rpki-client