$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft File: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft (raw, json) Hash identifier: nxIdFxPepnReN8yRMQmmPirKB8h+rgZqLmWC8lkAHHE= Subject key identifier: 8E:EC:16:80:87:E0:DE:4A:0C:A0:85:28:A0:93:71:21:43:F6:FA:D4 Authority key identifier: 71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F Certificate issuer: /CN=A91FF84F/serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Certificate serial: 0654 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft Manifest number: 064E Signing time: Fri 08 Aug 2025 23:02:15 +0000 Manifest this update: Fri 08 Aug 2025 23:02:14 +0000 Manifest next update: Fri 15 Aug 2025 23:02:14 +0000 Files and hashes: 1: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl (hash: Xp9uYaFizrINgKGNaxiexhs1fmO9Tjfnf+XAE7C0pvs=) 2: 2F320256981611EB904AF150C4F9AE02.roa (hash: zydBQ6+XzPsP0D5XfuooCO12kFS+89HKhQ6kY0lGz0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1620 (0x654) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF84F, serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Validity Not Before: Aug 8 23:02:14 2025 GMT Not After : Aug 15 23:02:14 2025 GMT Subject: CN=689681f7-ab54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0e:54:b2:5e:8e:c3:57:d1:6d:c7:ce:59:4c: 8b:a4:33:64:d5:64:01:08:b5:aa:7f:67:5a:c7:93: e8:ea:f0:9d:d7:3c:b5:2e:9e:88:bf:37:83:77:99: 4b:fc:e1:bf:cf:58:b4:a5:96:ca:73:5a:c8:31:ba: 15:02:c9:66:e3:08:81:ab:b2:9b:d6:f9:96:e2:fd: b5:7e:5d:90:f4:a8:e6:2a:d8:4d:dd:9c:60:1d:5c: b9:7a:51:33:15:ba:dd:80:db:6a:10:ce:3d:a6:66: f0:bc:0e:b5:0f:0a:a0:03:b8:94:75:cb:bb:0f:c7: 1f:25:6d:a7:32:bb:18:7e:c3:26:80:94:fa:c6:f9: 58:e7:ec:83:b0:46:58:3e:40:c2:c9:2e:b3:e1:e4: 19:48:fc:9a:9d:fa:1b:7c:f1:70:62:b0:fd:9b:80: 8b:25:4e:96:3e:95:2b:7e:cf:ca:2a:70:dc:aa:ac: d5:c7:21:74:1d:ef:ea:1b:9d:2c:21:6a:95:25:67: 2c:61:cc:91:14:3b:92:52:5c:25:15:57:42:99:4f: df:e1:ba:f9:27:28:6b:b3:69:55:da:03:61:57:9d: de:da:bf:77:65:60:5b:61:56:4a:17:72:a3:11:e8: 7f:b9:ad:ee:2e:c5:a3:07:c1:1b:d5:fd:df:b0:11: 5e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:EC:16:80:87:E0:DE:4A:0C:A0:85:28:A0:93:71:21:43:F6:FA:D4 X509v3 Authority Key Identifier: keyid:71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:5f:6f:8a:9e:15:4b:7c:83:07:13:b2:1e:a1:68:b2:f6:9d: 4a:ee:32:63:32:64:a3:a6:6b:1d:e4:1e:0c:59:5e:68:9f:94: 2a:84:37:39:71:7b:27:c7:71:18:a1:de:51:d9:ef:fa:f0:50: 92:4d:fe:ff:73:8b:8e:d1:96:55:e4:30:82:b3:ea:5f:96:c7: a8:ed:ac:20:7a:01:7a:e9:3d:11:b8:b9:50:b7:9b:d8:75:d2: b8:29:d2:34:dd:6b:d1:93:85:ae:55:75:9d:b6:12:3b:45:ef: a9:3e:4b:5c:d9:59:bb:f9:d0:28:7a:39:a9:ab:68:fa:77:af: a3:b0:dd:98:20:db:dd:f3:a2:1c:8e:08:ec:71:ba:9a:10:ff: 33:9b:b5:04:48:a9:00:f5:c1:ef:44:d2:4f:a5:28:e2:14:e2: 25:97:12:9e:10:d4:32:20:55:0d:4b:a2:8c:ad:25:53:24:95: c8:33:9c:f5:2c:3c:93:41:43:4c:7c:c1:b6:37:95:95:a6:b5: a4:95:a1:9b:b0:ea:d4:99:1e:03:64:be:c2:18:69:af:67:27: cc:56:ff:af:ec:73:bb:1d:5d:ff:41:4b:e5:e9:b4:f7:65:d3: 24:9c:88:51:2d:33:25:70:5f:71:62:f0:02:08:f1:1c:f2:29: b5:ad:01:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4NEYxMTAvBgNVBAUTKDcxNDFDMzE5QkI0NEJGQkNERTMzODJCM0JCNjkxMjY1 Rjk1RDMwOUYwHhcNMjUwODA4MjMwMjE0WhcNMjUwODE1MjMwMjE0WjAYMRYwFAYD VQQDEw02ODk2ODFmNy1hYjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsg5Usl6Ow1fRbcfOWUyLpDNk1WQBCLWqf2dax5Po6vCd1zy1Lp6IvzeDd5lL /OG/z1i0pZbKc1rIMboVAslm4wiBq7Kb1vmW4v21fl2Q9KjmKthN3ZxgHVy5elEz FbrdgNtqEM49pmbwvA61DwqgA7iUdcu7D8cfJW2nMrsYfsMmgJT6xvlY5+yDsEZY PkDCyS6z4eQZSPyanfobfPFwYrD9m4CLJU6WPpUrfs/KKnDcqqzVxyF0He/qG50s IWqVJWcsYcyRFDuSUlwlFVdCmU/f4br5Jyhrs2lV2gNhV53e2r93ZWBbYVZKF3Kj Eeh/ua3uLsWjB8Eb1f3fsBFeCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI7sFoCH 4N5KDKCFKKCTcSFD9vrUMB8GA1UdIwQYMBaAFHFBwxm7RL+83jOCs7tpEmX5XTCf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg0Ri9ERDQ4N0E1Qzk4 MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3emVNNEt6dTJrU1pmbGRN SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVSERHYnRFdjd6ZU00S3p1MmtTWmZsZE1KOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg0Ri9ERDQ4N0E1Qzk4MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3 emVNNEt6dTJrU1pmbGRNSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6X2+KnhVLfIMHE7IeoWiy9p1K7jJjMmSjpmsd5B4MWV5on5QqhDc5 cXsnx3EYod5R2e/68FCSTf7/c4uO0ZZV5DCCs+pflseo7awgegF66T0RuLlQt5vY ddK4KdI03WvRk4WuVXWdthI7Re+pPktc2Vm7+dAoejmpq2j6d6+jsN2YINvd86Ic jgjscbqaEP8zm7UESKkA9cHvRNJPpSjiFOIllxKeENQyIFUNS6KMrSVTJJXIM5z1 LDyTQUNMfMG2N5WVprWklaGbsOrUmR4DZL7CGGmvZyfMVv+v7HO7HV3/QUvl6bT3 ZdMknIhRLTMlcF9xYvACCPEc8im1rQHw -----END CERTIFICATE-----Generated at Sat Aug 9 15:15:31 2025 by rpki-client