$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft File: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft (raw, json) Hash identifier: Cd1Fo0xL+cYLnZz9j/tNpBiFNTDjTnJKwwjX1zPoGCM= Subject key identifier: 86:96:2B:B9:E1:FA:1E:A0:5E:57:08:9C:0D:03:AD:49:C7:5A:53:F3 Authority key identifier: 71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F Certificate issuer: /CN=A91FF84F/serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Certificate serial: 0638 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft Manifest number: 0632 Signing time: Sat 14 Jun 2025 22:25:58 +0000 Manifest this update: Sat 14 Jun 2025 22:25:58 +0000 Manifest next update: Sat 21 Jun 2025 22:25:58 +0000 Files and hashes: 1: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl (hash: v8oQ9B3VZhOtoZxPnO0bKsEaBzpWDyJLxx1atQ+ChZ8=) 2: 2F320256981611EB904AF150C4F9AE02.roa (hash: zydBQ6+XzPsP0D5XfuooCO12kFS+89HKhQ6kY0lGz0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:25:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1592 (0x638) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF84F, serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Validity Not Before: Jun 14 22:25:58 2025 GMT Not After : Jun 21 22:25:58 2025 GMT Subject: CN=684df6f6-5cd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d4:c7:82:43:07:6f:f1:6f:1a:91:9a:88:c6: b4:99:57:a6:5d:57:67:f8:c6:14:a5:31:4d:b1:26: 5f:26:29:ad:75:3a:5f:f9:ba:2c:14:c0:84:a8:b2: 3e:b0:e6:48:45:66:01:49:08:b9:8f:9b:0e:ec:07: 7d:6c:08:7f:eb:9e:a6:ee:a0:6f:42:33:ac:f6:78: 5a:bf:e4:a9:28:d7:15:d1:6a:df:47:c5:57:79:c8: 34:8f:e6:b6:44:15:4b:b2:b5:4e:fc:bc:6a:39:ee: f9:97:a8:b5:49:ea:7d:46:f3:9b:a9:9d:ed:c5:24: b8:c3:a5:b0:b2:fa:9d:7c:bb:7e:3f:55:a2:0d:7d: 15:d2:71:34:e0:ef:92:0b:2b:da:6d:0b:51:8d:26: 88:1e:6f:b2:17:37:ef:b8:58:23:0b:c2:b6:52:d9: 9b:bf:b9:3c:3e:33:cd:97:08:4a:fc:ba:8d:3a:1e: 26:b0:3c:52:8d:db:33:76:1d:b5:17:59:92:6b:99: 8b:aa:49:c8:64:0f:89:08:f8:a6:b3:97:3b:09:8b: dc:d3:17:6f:28:e1:82:cb:ea:bf:68:72:05:b5:be: 6c:8e:e1:1b:41:35:d8:42:d4:e1:9b:d4:26:55:cd: 79:e9:f7:bb:cc:50:6b:6a:c8:da:ea:1b:60:6c:c5: 61:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:96:2B:B9:E1:FA:1E:A0:5E:57:08:9C:0D:03:AD:49:C7:5A:53:F3 X509v3 Authority Key Identifier: keyid:71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:2b:50:80:75:c2:c7:42:97:33:9d:26:af:33:58:25:e7:17: 33:7e:9f:68:3d:a3:67:25:19:a1:e2:43:87:cd:7b:ff:3b:8a: 28:97:24:95:f7:3d:93:20:e5:e5:af:94:8f:32:ec:45:5e:81: 7a:b8:e5:39:8d:2f:d5:f5:cf:18:b2:31:fa:a5:29:5d:bc:61: 0d:3f:95:ad:dc:d2:38:54:da:d7:c8:d0:cd:f2:3b:91:be:d2: a4:48:15:5d:51:c0:80:1e:64:1c:07:64:3c:ed:ef:0f:75:ca: c8:05:67:d3:a2:18:e1:ce:57:1c:02:14:2d:f3:65:5f:47:ca: 3c:af:d1:4a:cf:3e:38:b7:08:7d:8b:ab:a2:8e:89:f9:06:71: 00:38:20:c3:52:d1:37:98:77:11:ef:c5:10:66:56:5a:78:5a: c3:7d:73:2e:32:a6:dc:e2:ec:dc:82:9b:88:fd:24:4a:92:4c: 1a:f0:2f:ff:f4:a4:2c:41:99:9d:ee:69:00:a7:b1:58:8d:5b: c8:66:1e:27:56:f6:23:c2:9c:bd:86:45:75:fa:d9:91:f9:c7: d7:31:c1:cd:e6:47:7a:bd:75:fe:3c:9d:21:ce:60:b3:8e:3f: 8d:ed:83:16:ef:43:b4:a4:50:85:15:14:58:99:db:dd:2c:c3: 25:12:14:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4NEYxMTAvBgNVBAUTKDcxNDFDMzE5QkI0NEJGQkNERTMzODJCM0JCNjkxMjY1 Rjk1RDMwOUYwHhcNMjUwNjE0MjIyNTU4WhcNMjUwNjIxMjIyNTU4WjAYMRYwFAYD VQQDEw02ODRkZjZmNi01Y2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2tTHgkMHb/FvGpGaiMa0mVemXVdn+MYUpTFNsSZfJimtdTpf+bosFMCEqLI+ sOZIRWYBSQi5j5sO7Ad9bAh/656m7qBvQjOs9nhav+SpKNcV0WrfR8VXecg0j+a2 RBVLsrVO/LxqOe75l6i1Sep9RvObqZ3txSS4w6WwsvqdfLt+P1WiDX0V0nE04O+S CyvabQtRjSaIHm+yFzfvuFgjC8K2Utmbv7k8PjPNlwhK/LqNOh4msDxSjdszdh21 F1mSa5mLqknIZA+JCPims5c7CYvc0xdvKOGCy+q/aHIFtb5sjuEbQTXYQtThm9Qm Vc156fe7zFBrasja6htgbMVhRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIaWK7nh +h6gXlcInA0DrUnHWlPzMB8GA1UdIwQYMBaAFHFBwxm7RL+83jOCs7tpEmX5XTCf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg0Ri9ERDQ4N0E1Qzk4 MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3emVNNEt6dTJrU1pmbGRN SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVSERHYnRFdjd6ZU00S3p1MmtTWmZsZE1KOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg0Ri9ERDQ4N0E1Qzk4MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3 emVNNEt6dTJrU1pmbGRNSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyK1CAdcLHQpcznSavM1gl5xczfp9oPaNnJRmh4kOHzXv/O4oolySV 9z2TIOXlr5SPMuxFXoF6uOU5jS/V9c8YsjH6pSldvGENP5Wt3NI4VNrXyNDN8juR vtKkSBVdUcCAHmQcB2Q87e8PdcrIBWfTohjhzlccAhQt82VfR8o8r9FKzz44twh9 i6uijon5BnEAOCDDUtE3mHcR78UQZlZaeFrDfXMuMqbc4uzcgpuI/SRKkkwa8C// 9KQsQZmd7mkAp7FYjVvIZh4nVvYjwpy9hkV1+tmR+cfXMcHN5kd6vXX+PJ0hzmCz jj+N7YMW70O0pFCFFRRYmdvdLMMlEhQm -----END CERTIFICATE-----Generated at Sun Jun 15 08:40:23 2025 by rpki-client