$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft File: CUoNzYAqBb91c_96buCnqXIFUNE.mft (raw, json) Hash identifier: 3gQ2dQkZAdSD+QM0P/XQgSq6ZSsFRL3MyZFfGj/AO38= Subject key identifier: 40:A4:C5:25:14:4D:65:07:98:56:C2:A0:79:1F:B9:6C:5A:7C:B9:65 Authority key identifier: 09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 Certificate issuer: /CN=A91EC93F/serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Certificate serial: 0196 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft Manifest number: 0193 Signing time: Fri 13 Jun 2025 02:29:18 +0000 Manifest this update: Fri 13 Jun 2025 02:29:18 +0000 Manifest next update: Fri 20 Jun 2025 02:29:18 +0000 Files and hashes: 1: CUoNzYAqBb91c_96buCnqXIFUNE.crl (hash: qAiuwVsF2dkAgTwsNlzlSNz7riJNI8ynnh8ZLOLwE3s=) 2: 5BA557A6DEB011EDB7B0C04EC4F9AE02.roa (hash: SAjkukJRb4ZF5aM/fUJAbMY1lnAEeXzzgnRTsvAlM7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 406 (0x196) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC93F, serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Validity Not Before: Jun 13 02:29:18 2025 GMT Not After : Jun 20 02:29:18 2025 GMT Subject: CN=684b8cfe-f780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:19:e2:61:1e:f5:d2:34:10:73:1c:1e:b7:20: f3:b7:1d:f4:18:54:25:5e:55:11:d1:02:6a:db:a7: 4d:ab:10:39:8d:98:81:d0:80:6b:f8:6a:72:1d:34: 02:74:d4:f9:70:cf:66:3b:76:25:48:80:90:7e:bf: 63:f3:af:d5:1d:2c:ce:87:39:74:6f:8c:bc:1e:c0: 0b:fb:c0:ce:94:94:e4:f6:4a:d2:38:2d:95:d4:dc: 2f:1c:70:d2:8d:30:f8:ad:8b:30:ff:59:28:77:2a: a1:70:a8:cf:9f:47:af:04:59:63:13:72:19:51:2d: 8f:f5:04:97:47:65:e6:0a:b2:72:a7:57:df:ff:46: 34:e5:99:0f:3a:6c:9f:ce:77:2f:98:c7:95:de:75: 7d:7d:39:3c:3d:99:39:3a:3d:cb:f8:2f:3e:32:66: c6:f5:5b:90:a9:7f:7b:4b:f8:9d:49:8f:54:fa:a7: 1b:56:62:63:af:fb:ed:a1:a1:2e:01:4a:01:00:a1: fe:23:ea:ef:0c:bf:ab:ab:17:93:82:df:b0:4a:53: d4:1a:e2:3c:df:ce:14:80:4b:85:2a:90:29:ea:a7: bc:86:e5:8b:b1:31:96:dc:04:b5:96:87:82:91:30: e5:2d:b7:ec:cc:74:af:32:8f:f0:a3:13:32:a9:f7: c6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A4:C5:25:14:4D:65:07:98:56:C2:A0:79:1F:B9:6C:5A:7C:B9:65 X509v3 Authority Key Identifier: keyid:09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:af:bb:c1:1b:62:f1:fa:c7:fa:f8:97:33:aa:3f:84:ef:95: 9b:7f:24:38:f3:71:ab:f1:8a:10:9e:9b:8d:e5:b5:e3:c2:ac: 60:e1:54:ed:04:6a:66:89:c7:fa:9f:7b:ca:ac:56:a3:6c:c2: e4:4d:ca:f6:8d:e3:36:f7:37:cd:09:19:6d:39:75:ce:b2:cd: f4:ac:2f:d0:6b:f4:b9:94:32:03:6d:d4:26:ee:9e:fd:1b:ed: 8f:36:de:4e:f5:0b:5e:3a:c1:97:68:0b:bf:d3:8a:3f:95:fd: 1f:0d:32:17:69:77:8f:8b:a1:32:f5:4b:af:d9:6c:2e:fb:86: c9:ed:05:3b:80:02:23:93:03:b4:60:77:46:ef:28:5e:ea:29: c0:57:94:7b:af:a7:31:8d:0c:e0:a9:5c:26:1c:0d:de:5a:60: 75:81:41:b9:53:cf:86:fe:1f:c0:2a:01:5e:6e:1e:40:cc:09: 44:8f:f5:94:9e:10:07:ef:aa:9f:cc:9f:25:a9:79:6a:ab:64: 73:ed:65:c6:aa:49:5d:01:ab:f8:8b:9a:c7:1d:2e:c5:60:32: 95:a0:ac:b2:da:18:f5:f8:58:4f:98:1b:3a:b2:9a:8a:e9:9d: 93:98:f8:58:94:b6:d5:9d:c2:bc:8b:14:4f:60:a1:9e:ad:4e: 8b:6c:12:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5M0YxMTAvBgNVBAUTKDA5NEEwRENEODAyQTA1QkY3NTczRkY3QTZFRTBBN0E5 NzIwNTUwRDEwHhcNMjUwNjEzMDIyOTE4WhcNMjUwNjIwMDIyOTE4WjAYMRYwFAYD VQQDEw02ODRiOGNmZS1mNzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxniYR710jQQcxwetyDztx30GFQlXlUR0QJq26dNqxA5jZiB0IBr+GpyHTQC dNT5cM9mO3YlSICQfr9j86/VHSzOhzl0b4y8HsAL+8DOlJTk9krSOC2V1NwvHHDS jTD4rYsw/1kodyqhcKjPn0evBFljE3IZUS2P9QSXR2XmCrJyp1ff/0Y05ZkPOmyf zncvmMeV3nV9fTk8PZk5Oj3L+C8+MmbG9VuQqX97S/idSY9U+qcbVmJjr/vtoaEu AUoBAKH+I+rvDL+rqxeTgt+wSlPUGuI8384UgEuFKpAp6qe8huWLsTGW3AS1loeC kTDlLbfszHSvMo/woxMyqffGXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECkxSUU TWUHmFbCoHkfuWxafLllMB8GA1UdIwQYMBaAFAlKDc2AKgW/dXP/em7gp6lyBVDR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzkzRi82MEE4Rjg4Q0RF QUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJiOTFjXzk2YnVDbnFYSUZV TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVb056WUFxQmI5MWNfOTZidUNucVhJRlVORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzkzRi82MEE4Rjg4Q0RFQUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJi OTFjXzk2YnVDbnFYSUZVTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5r7vBG2Lx+sf6+Jczqj+E75WbfyQ483Gr8YoQnpuN5bXjwqxg4VTt BGpmicf6n3vKrFajbMLkTcr2jeM29zfNCRltOXXOss30rC/Qa/S5lDIDbdQm7p79 G+2PNt5O9QteOsGXaAu/04o/lf0fDTIXaXePi6Ey9Uuv2Wwu+4bJ7QU7gAIjkwO0 YHdG7yhe6inAV5R7r6cxjQzgqVwmHA3eWmB1gUG5U8+G/h/AKgFebh5AzAlEj/WU nhAH76qfzJ8lqXlqq2Rz7WXGqkldAav4i5rHHS7FYDKVoKyy2hj1+FhPmBs6spqK 6Z2TmPhYlLbVncK8ixRPYKGerU6LbBJj -----END CERTIFICATE-----Generated at Sat Jun 14 17:09:01 2025 by rpki-client