$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft File: CUoNzYAqBb91c_96buCnqXIFUNE.mft (raw, json) Hash identifier: Nm0P1czdWo5fL8mr5CsGp13eT8gKzG2H6VuFN113GC0= Subject key identifier: DB:9F:7B:A9:7A:86:77:99:17:E9:67:FB:31:37:82:B8:93:4D:6A:42 Authority key identifier: 09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 Certificate issuer: /CN=A91EC93F/serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Certificate serial: 01B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft Manifest number: 01AD Signing time: Sun 03 Aug 2025 03:33:06 +0000 Manifest this update: Sun 03 Aug 2025 03:33:05 +0000 Manifest next update: Sun 10 Aug 2025 03:33:05 +0000 Files and hashes: 1: CUoNzYAqBb91c_96buCnqXIFUNE.crl (hash: CW8dJfdmDkE+rAlf8ZV8zZFXhf5VWAveKFEQGnB37e4=) 2: 5BA557A6DEB011EDB7B0C04EC4F9AE02.roa (hash: SAjkukJRb4ZF5aM/fUJAbMY1lnAEeXzzgnRTsvAlM7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 03:33:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC93F, serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Validity Not Before: Aug 3 03:33:05 2025 GMT Not After : Aug 10 03:33:05 2025 GMT Subject: CN=688ed872-3d9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ef:c1:06:85:52:3f:95:3f:c6:58:fd:12:74: e4:af:38:ec:32:ee:17:63:ed:d7:54:1c:7e:cf:8e: ea:28:b1:0b:a4:a7:66:05:3e:f7:cf:a1:65:6b:13: 58:d6:63:50:f5:ca:b2:bc:99:cb:1f:42:2b:e0:3a: 07:e3:5b:1a:62:7b:ca:82:49:d9:43:c1:8e:d9:32: 2f:20:53:f9:20:a8:c8:db:0c:c1:8f:58:2a:27:72: 6e:b1:f2:4b:d3:a8:ea:7b:95:8e:fb:ba:fe:ec:ca: 1a:f5:b4:6f:10:87:20:c2:0d:7d:e0:e9:2a:90:7f: 62:3d:33:a8:3a:d0:d7:86:11:f9:d2:9e:0e:de:27: 4f:dd:0c:1f:4b:fd:58:b5:f6:3d:dc:8b:a2:e6:ec: d0:b1:e5:9c:16:4e:c8:46:54:66:96:b4:87:a5:f0: 86:90:6e:d3:fe:fc:b0:f8:88:fd:3f:18:00:d8:d7: c7:cd:a9:0b:eb:a8:51:63:f3:c0:11:6c:ba:ee:14: cf:b8:6d:e2:62:e5:d4:4d:96:d0:62:88:74:f1:c7: e9:15:46:55:e8:f7:54:02:d6:1d:72:f5:04:7e:9f: db:b3:d0:3a:2c:bf:08:e4:41:93:cf:09:51:f6:8d: 4d:62:a2:c6:fe:d8:c7:ec:1c:ea:16:f4:14:63:f5: 65:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:9F:7B:A9:7A:86:77:99:17:E9:67:FB:31:37:82:B8:93:4D:6A:42 X509v3 Authority Key Identifier: keyid:09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:8d:ec:9f:11:49:c1:22:48:64:0c:ad:01:6c:8f:5d:4d:b7: d7:ec:59:07:e3:c4:1c:e5:a4:79:40:c9:be:d5:74:0b:31:b0: f0:a8:95:8d:a5:a2:2c:f2:e7:9b:73:bb:fd:75:05:f7:06:63: bd:3f:e8:b8:6e:1e:84:35:05:2d:34:55:e9:99:91:ff:b2:b2: 14:0e:9c:0a:56:30:f0:29:02:38:6d:67:48:cf:19:4d:f0:fd: 21:25:44:2b:8e:10:79:7a:1e:d9:23:b9:5e:aa:33:d3:95:1b: 5a:27:3a:c7:47:50:12:dc:75:37:9d:53:5b:71:d0:77:c6:7e: b2:03:ac:59:7c:45:f1:10:64:f9:4b:6d:20:29:b8:44:75:19: f1:95:4e:ec:29:a6:50:8d:9f:4b:7c:f1:08:93:3b:84:82:4a: ab:f6:e0:c4:08:d6:80:34:be:09:ed:b9:4d:6c:94:6f:a0:b1: 75:bf:64:36:4c:54:49:bf:89:91:07:ec:23:41:cb:55:9d:87: c0:1c:c7:7a:3c:f1:38:3c:44:18:72:c1:99:7d:76:8f:ed:fc: e0:d0:69:79:7e:46:d8:6e:ff:9f:db:2e:f5:60:e2:39:32:66: 43:87:42:2a:46:bf:12:06:13:f0:2b:d3:5a:c9:0d:bf:eb:d6: 28:3d:d3:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5M0YxMTAvBgNVBAUTKDA5NEEwRENEODAyQTA1QkY3NTczRkY3QTZFRTBBN0E5 NzIwNTUwRDEwHhcNMjUwODAzMDMzMzA1WhcNMjUwODEwMDMzMzA1WjAYMRYwFAYD VQQDEw02ODhlZDg3Mi0zZDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAye/BBoVSP5U/xlj9EnTkrzjsMu4XY+3XVBx+z47qKLELpKdmBT73z6FlaxNY 1mNQ9cqyvJnLH0Ir4DoH41saYnvKgknZQ8GO2TIvIFP5IKjI2wzBj1gqJ3JusfJL 06jqe5WO+7r+7Moa9bRvEIcgwg194OkqkH9iPTOoOtDXhhH50p4O3idP3QwfS/1Y tfY93Iui5uzQseWcFk7IRlRmlrSHpfCGkG7T/vyw+Ij9PxgA2NfHzakL66hRY/PA EWy67hTPuG3iYuXUTZbQYoh08cfpFUZV6PdUAtYdcvUEfp/bs9A6LL8I5EGTzwlR 9o1NYqLG/tjH7BzqFvQUY/VlRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNufe6l6 hneZF+ln+zE3griTTWpCMB8GA1UdIwQYMBaAFAlKDc2AKgW/dXP/em7gp6lyBVDR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzkzRi82MEE4Rjg4Q0RF QUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJiOTFjXzk2YnVDbnFYSUZV TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVb056WUFxQmI5MWNfOTZidUNucVhJRlVORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzkzRi82MEE4Rjg4Q0RFQUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJi OTFjXzk2YnVDbnFYSUZVTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqjeyfEUnBIkhkDK0BbI9dTbfX7FkH48Qc5aR5QMm+1XQLMbDwqJWN paIs8uebc7v9dQX3BmO9P+i4bh6ENQUtNFXpmZH/srIUDpwKVjDwKQI4bWdIzxlN 8P0hJUQrjhB5eh7ZI7leqjPTlRtaJzrHR1AS3HU3nVNbcdB3xn6yA6xZfEXxEGT5 S20gKbhEdRnxlU7sKaZQjZ9LfPEIkzuEgkqr9uDECNaANL4J7blNbJRvoLF1v2Q2 TFRJv4mRB+wjQctVnYfAHMd6PPE4PEQYcsGZfXaP7fzg0Gl5fkbYbv+f2y71YOI5 MmZDh0IqRr8SBhPwK9NayQ2/69YoPdMi -----END CERTIFICATE-----Generated at Mon Aug 4 16:00:24 2025 by rpki-client