$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft File: CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json) Hash identifier: cZ1vcqFjBIVLPgNibc47wjB+xr/6XhK45ZJgW3LYuz4= Subject key identifier: 51:F9:3A:D8:16:C3:41:E6:A5:E9:9E:3F:D6:D3:9A:58:AF:22:12:A8 Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 Certificate issuer: /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft Manifest number: B3 Signing time: Thu 07 Aug 2025 06:37:27 +0000 Manifest this update: Thu 07 Aug 2025 06:37:27 +0000 Manifest next update: Thu 14 Aug 2025 06:37:27 +0000 Files and hashes: 1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: /KCcnbxHI+VaaXui03EcA0blFLz5a2n473YldNnq45Q=) 2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: 2I1s5RbX9mRnDSwDS9XqFVY3yT7dmC+Kb1B8YfP6Dhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18, serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Validity Not Before: Aug 7 06:37:27 2025 GMT Not After : Aug 14 06:37:27 2025 GMT Subject: CN=689449a7-f994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:0e:60:70:1f:9d:b1:77:13:1a:55:f0:ab:95: a5:1f:8d:c1:3a:27:85:32:d0:cb:93:bc:a7:25:dc: d9:ca:7a:01:59:f4:8b:ff:a8:9f:85:55:39:3c:51: f9:67:a4:04:6e:af:23:92:4d:70:8d:9b:ba:c9:42: 44:f1:36:29:49:0f:00:47:eb:4c:5b:c6:df:c9:ef: 90:99:79:83:3a:5a:48:a7:21:f3:d3:05:be:2d:18: db:2c:ab:c7:62:6d:ab:e5:28:1b:6f:bf:52:b1:7b: 6f:97:9e:4d:6e:ec:88:9b:69:45:06:11:7a:45:e4: 47:f4:74:f2:69:7f:92:d9:be:ac:3b:48:25:8d:30: 80:ab:89:e4:e9:84:e2:ca:79:d7:29:6a:fa:d0:85: 89:bf:be:e5:68:c9:e4:b1:12:12:62:f0:8e:3c:95: 7a:e1:44:d0:86:df:20:e4:1a:60:db:73:df:84:b1: e9:00:de:5c:8f:2e:b1:24:80:45:ff:df:73:72:6e: 92:25:6e:d3:2d:63:2d:02:ca:b1:e9:76:a5:19:69: 43:51:d3:1d:77:23:d6:67:74:ff:df:9f:02:c8:04: 71:45:4a:7b:ee:a5:03:32:1d:bc:d0:af:2c:bf:ff: 00:d2:c2:29:a7:b9:10:d2:65:4d:59:12:ca:6d:5d: ef:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:F9:3A:D8:16:C3:41:E6:A5:E9:9E:3F:D6:D3:9A:58:AF:22:12:A8 X509v3 Authority Key Identifier: keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:b5:81:60:9d:ba:e2:24:a5:6b:cd:ec:b7:ff:a0:e2:7d:80: bb:d2:2d:79:9c:0c:6c:13:17:f9:13:2b:7a:8a:9f:cd:8c:8a: 2e:79:a5:f6:74:7f:f6:20:0c:c1:17:c4:ba:37:68:1d:5c:b2: 9a:c3:be:ef:84:08:e6:da:da:ce:b1:7f:68:c3:a2:22:a1:e7: 62:cb:0a:b3:23:00:96:f6:29:ab:e5:07:3b:17:93:4d:ce:70: 99:a2:57:c1:37:ad:8b:2d:8c:47:16:99:f1:95:78:16:c9:ad: 7b:7b:43:01:28:1d:f9:dd:75:42:c8:9d:68:72:57:f6:92:77: 2c:a3:6e:ec:ae:e4:f6:d0:a1:25:71:e5:9c:cc:04:14:b0:1b: f7:d2:be:76:7d:b1:5b:c3:b3:88:a1:74:2f:f8:df:5e:e8:f2: 6b:a8:31:2a:25:dd:d4:f2:2a:cf:55:77:de:77:6d:fc:0d:cf: 96:c1:fb:08:a4:0d:7a:d1:6d:a2:79:98:82:7c:35:60:0c:27: 25:02:81:dc:66:11:5f:be:bd:06:be:16:06:41:99:06:ad:a4: fa:3f:89:ce:5e:2f:4a:10:9b:a3:4c:8b:dd:1a:c9:9f:b5:b2: 2e:2e:e1:60:b4:68:06:22:1c:02:6a:91:69:5b:01:6a:4c:30: ac:58:70:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTgxMTAvBgNVBAUTKDA4OUNCNUEyQjMzQjc4NkQ3NTRBMDdENjgwQTlDNDk0 MTQyNjE5RTEwHhcNMjUwODA3MDYzNzI3WhcNMjUwODE0MDYzNzI3WjAYMRYwFAYD VQQDEw02ODk0NDlhNy1mOTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Q5gcB+dsXcTGlXwq5WlH43BOieFMtDLk7ynJdzZynoBWfSL/6ifhVU5PFH5 Z6QEbq8jkk1wjZu6yUJE8TYpSQ8AR+tMW8bfye+QmXmDOlpIpyHz0wW+LRjbLKvH Ym2r5Sgbb79SsXtvl55NbuyIm2lFBhF6ReRH9HTyaX+S2b6sO0gljTCAq4nk6YTi ynnXKWr60IWJv77laMnksRISYvCOPJV64UTQht8g5Bpg23PfhLHpAN5cjy6xJIBF /99zcm6SJW7TLWMtAsqx6XalGWlDUdMddyPWZ3T/358CyARxRUp77qUDMh280K8s v/8A0sIpp7kQ0mVNWRLKbV3vUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFH5OtgW w0HmpemeP9bTmlivIhKoMB8GA1UdIwQYMBaAFAictaKzO3htdUoH1oCpxJQUJhnh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxOC82ODNCQTA5NjY0 NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VHMTFTZ2ZXZ0tuRWxCUW1H ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxOC82ODNCQTA5NjY0NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VH MTFTZ2ZXZ0tuRWxCUW1HZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKtYFgnbriJKVrzey3/6DifYC70i15nAxsExf5Eyt6ip/NjIoueaX2 dH/2IAzBF8S6N2gdXLKaw77vhAjm2trOsX9ow6IioediywqzIwCW9imr5Qc7F5NN znCZolfBN62LLYxHFpnxlXgWya17e0MBKB353XVCyJ1oclf2kncso27sruT20KEl ceWczAQUsBv30r52fbFbw7OIoXQv+N9e6PJrqDEqJd3U8irPVXfed238Dc+WwfsI pA160W2ieZiCfDVgDCclAoHcZhFfvr0GvhYGQZkGraT6P4nOXi9KEJujTIvdGsmf tbIuLuFgtGgGIhwCapFpWwFqTDCsWHD7 -----END CERTIFICATE-----Generated at Fri Aug 8 00:33:04 2025 by rpki-client