$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft File: cPEzmWaoGrwgfjvuM3CR2fLzydc.mft (raw, json) Hash identifier: 4stWZ7oIS7xy9juAvwpFitdebui2+9N2LEkIlPimCsI= Subject key identifier: AE:29:CB:66:EA:51:46:9F:E9:71:6A:88:7D:8A:4C:21:70:01:D3:F7 Authority key identifier: 70:F1:33:99:66:A8:1A:BC:20:7E:3B:EE:33:70:91:D9:F2:F3:C9:D7 Certificate issuer: /CN=A91C9324/serialNumber=70F1339966A81ABC207E3BEE337091D9F2F3C9D7 Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cPEzmWaoGrwgfjvuM3CR2fLzydc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft Manifest number: 0195 Signing time: Thu 19 Jun 2025 00:58:56 +0000 Manifest this update: Thu 19 Jun 2025 00:58:56 +0000 Manifest next update: Thu 26 Jun 2025 00:58:56 +0000 Files and hashes: 1: cPEzmWaoGrwgfjvuM3CR2fLzydc.crl (hash: HddQH0L6YRiZ3rzVJEkB879CeD7oiGSksy13yZ9ZvgU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.crl rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cPEzmWaoGrwgfjvuM3CR2fLzydc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:58:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9324, serialNumber=70F1339966A81ABC207E3BEE337091D9F2F3C9D7 Validity Not Before: Jun 19 00:58:56 2025 GMT Not After : Jun 26 00:58:56 2025 GMT Subject: CN=685360d0-6415 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2c:97:6e:da:46:76:e2:70:ec:09:01:67:4c: 10:51:f2:1a:71:c6:5e:b4:64:2a:c8:91:c6:ce:dd: 91:a4:ee:0e:fe:d8:6f:68:68:81:00:85:9a:c4:a8: 82:8d:10:a6:fb:60:1f:d2:06:f7:29:d6:56:77:14: e8:51:8c:d2:eb:72:bc:ce:9c:88:65:89:e9:4d:f5: a1:c9:d1:fa:b5:d8:bf:92:3c:71:b3:cb:0a:80:74: 62:0e:a1:d8:39:a7:54:27:a5:b7:d1:35:8a:c1:85: 08:9c:79:ea:f3:9f:07:3c:09:79:5e:d0:5b:df:1a: 7e:64:1b:e3:59:19:67:a2:b1:61:73:57:63:b7:8f: 14:54:a3:b1:00:24:45:85:a7:10:e8:07:8e:22:0b: 16:fa:22:c2:ab:bf:bb:05:cc:63:4e:28:3f:6f:86: d0:8c:0d:9b:71:df:89:e6:f3:93:59:7a:11:48:a0: 3e:00:6d:65:eb:9e:85:7a:7a:7e:a6:9e:6c:14:2c: 75:87:5d:b5:a8:c7:78:96:fd:24:ca:8f:dc:8d:33: 73:79:74:7e:f9:a3:61:e4:5d:10:10:ea:ef:70:c4: b6:6f:23:79:7b:fe:7a:b7:22:63:22:2e:bb:04:b1: d4:e8:4a:39:60:ca:3e:6d:c3:7a:9c:13:01:18:fd: 29:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:29:CB:66:EA:51:46:9F:E9:71:6A:88:7D:8A:4C:21:70:01:D3:F7 X509v3 Authority Key Identifier: keyid:70:F1:33:99:66:A8:1A:BC:20:7E:3B:EE:33:70:91:D9:F2:F3:C9:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cPEzmWaoGrwgfjvuM3CR2fLzydc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:b2:85:3a:c5:21:08:1a:51:5d:3a:1e:10:c5:e4:4f:82:2a: 24:46:18:a8:c9:39:47:b5:b0:3b:04:61:b6:3f:d7:95:58:36: cc:f6:63:f2:0c:f6:bd:ed:8c:ac:46:d1:91:26:be:ac:7c:35: 66:70:d1:ae:5c:e8:c7:3f:a3:8d:05:23:a9:c3:5c:31:9b:d0: 92:11:90:c0:6e:5e:28:cb:48:48:d9:f9:2a:69:8c:84:01:af: 7a:6a:88:69:db:76:64:54:a1:47:99:18:a5:6b:eb:57:24:95: 70:65:ca:12:39:5f:44:1d:cc:d7:04:b4:80:b1:49:09:99:46: ec:d5:71:d9:72:46:4d:74:38:ae:8f:31:91:15:05:5c:ea:fe: a4:d3:68:55:a7:ea:d6:8e:6a:ac:b5:88:a1:a9:72:8d:e8:8a: e2:25:5f:b9:ef:3a:2b:5b:49:6c:67:ca:e6:07:25:15:52:47: 39:ce:13:7e:82:a7:4d:32:b8:fe:65:ce:f0:b5:59:64:76:e2: 4e:c0:bb:b1:da:e0:6c:de:88:27:5e:f8:ed:09:9d:70:ff:42: 30:96:56:70:ea:4c:78:e9:74:3f:9a:83:01:51:fd:59:51:56: a7:ee:39:23:ae:dd:7c:7e:d6:b6:bb:74:e6:15:9c:89:c0:47: d6:cd:51:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzMjQxMTAvBgNVBAUTKDcwRjEzMzk5NjZBODFBQkMyMDdFM0JFRTMzNzA5MUQ5 RjJGM0M5RDcwHhcNMjUwNjE5MDA1ODU2WhcNMjUwNjI2MDA1ODU2WjAYMRYwFAYD VQQDEw02ODUzNjBkMC02NDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiyXbtpGduJw7AkBZ0wQUfIaccZetGQqyJHGzt2RpO4O/thvaGiBAIWaxKiC jRCm+2Af0gb3KdZWdxToUYzS63K8zpyIZYnpTfWhydH6tdi/kjxxs8sKgHRiDqHY OadUJ6W30TWKwYUInHnq858HPAl5XtBb3xp+ZBvjWRlnorFhc1djt48UVKOxACRF hacQ6AeOIgsW+iLCq7+7BcxjTig/b4bQjA2bcd+J5vOTWXoRSKA+AG1l656Fenp+ pp5sFCx1h121qMd4lv0kyo/cjTNzeXR++aNh5F0QEOrvcMS2byN5e/56tyJjIi67 BLHU6Eo5YMo+bcN6nBMBGP0p6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4py2bq UUaf6XFqiH2KTCFwAdP3MB8GA1UdIwQYMBaAFHDxM5lmqBq8IH477jNwkdny88nX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTMyNC8yMkJGOEQzMkUw MkYxMUVEOTUxNTNEMzFDNEY5QUUwMi9jUEV6bVdhb0dyd2dmanZ1TTNDUjJmTHp5 ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NQRXptV2FvR3J3Z2ZqdnVNM0NSMmZMenlkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTMyNC8yMkJGOEQzMkUwMkYxMUVEOTUxNTNEMzFDNEY5QUUwMi9jUEV6bVdhb0dy d2dmanZ1TTNDUjJmTHp5ZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcsoU6xSEIGlFdOh4QxeRPgiokRhioyTlHtbA7BGG2P9eVWDbM9mPy DPa97YysRtGRJr6sfDVmcNGuXOjHP6ONBSOpw1wxm9CSEZDAbl4oy0hI2fkqaYyE Aa96aohp23ZkVKFHmRila+tXJJVwZcoSOV9EHczXBLSAsUkJmUbs1XHZckZNdDiu jzGRFQVc6v6k02hVp+rWjmqstYihqXKN6IriJV+57zorW0lsZ8rmByUVUkc5zhN+ gqdNMrj+Zc7wtVlkduJOwLux2uBs3ognXvjtCZ1w/0IwllZw6kx46XQ/moMBUf1Z UVan7jkjrt18fta2u3TmFZyJwEfWzVGO -----END CERTIFICATE-----Generated at Fri Jun 20 10:39:16 2025 by rpki-client