$ rpki-client -vvf rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft File: CStU0vnpbT_OHwwNuzGxuCyNLOA.mft (raw, json) Hash identifier: EW01Nk9xfexfHvKOrIo6Xxw6RehqS7iQB8s4w5KI8ls= Subject key identifier: 5B:C6:B6:48:50:1A:9A:98:63:9B:D0:EF:CF:3F:AB:74:38:CE:4B:4D Authority key identifier: 09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 Certificate issuer: /CN=A9122EA2/serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Certificate serial: 01F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft Manifest number: 01ED Signing time: Wed 23 Jul 2025 02:55:06 +0000 Manifest this update: Wed 23 Jul 2025 02:55:05 +0000 Manifest next update: Wed 30 Jul 2025 02:55:05 +0000 Files and hashes: 1: CStU0vnpbT_OHwwNuzGxuCyNLOA.crl (hash: y6a6B1hVj44GrrWipFszBYqPwEpUONR3yvMnAH//BaQ=) 2: C20F71E0992A11EEBDE4AF84C4F9AE02.roa (hash: csl85VTomjs4iPv8bKOFHRUkLivByj84d/cWaa81y8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 02:55:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 505 (0x1f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122EA2, serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Validity Not Before: Jul 23 02:55:05 2025 GMT Not After : Jul 30 02:55:05 2025 GMT Subject: CN=68804f0a-ba70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:91:31:f9:21:3a:16:50:2c:63:b7:f2:1f:85: f7:1f:b4:a7:62:7c:02:fa:fc:05:04:db:0a:e6:1f: 56:e1:e3:9b:1b:34:aa:bc:cb:d3:48:e3:ce:1b:82: 6a:42:9e:e7:03:6b:a8:a7:b6:cf:e6:2b:c4:ee:f5: e1:2d:4a:3c:6f:9e:64:18:e9:92:c0:31:b5:9e:0b: 99:a8:a6:2f:71:48:d3:85:bd:38:da:19:4e:8d:12: 7e:c9:2d:77:c3:31:d1:7b:a1:58:07:be:e9:db:19: 4d:f6:87:b1:83:9b:8f:86:a5:21:26:1a:56:11:5e: 71:bb:06:6e:6b:70:7e:9d:63:5a:b3:cc:cb:3e:af: cf:10:b0:ea:49:69:87:7a:3c:df:7b:61:2e:68:cf: b1:6d:1a:dd:d8:53:73:23:09:ef:55:9f:d5:73:a8: 8a:9f:06:87:79:6b:f0:93:0e:c5:56:80:35:fb:2c: 78:0c:09:71:ba:d0:72:65:a9:a5:17:95:e9:df:13: da:bb:e6:e3:03:6a:f2:47:63:84:97:e1:b7:26:06: c9:19:49:a3:8a:4c:d7:00:ca:11:18:5f:cc:f0:fe: 6e:56:b4:05:66:80:62:d1:bc:d3:1b:67:ff:93:f5: 6b:0d:31:4a:ae:9d:4c:f5:0b:7f:18:79:13:53:38: 5f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C6:B6:48:50:1A:9A:98:63:9B:D0:EF:CF:3F:AB:74:38:CE:4B:4D X509v3 Authority Key Identifier: keyid:09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:89:a8:12:90:dd:61:0b:d2:0f:ae:cd:ea:83:2a:e8:43:e6: 07:f0:36:83:18:c2:71:85:b8:f3:70:9b:9d:2e:59:d0:e8:65: b8:2e:8e:ac:41:17:01:1c:a1:2f:28:83:cf:d2:45:41:e2:c0: bb:ee:15:0a:5c:e3:cf:e7:d1:70:74:51:3f:49:b6:5f:72:68: 8c:2b:b6:dd:44:6e:49:e7:30:ab:b1:a6:c7:ee:b6:26:32:90: db:90:76:9e:95:68:a2:37:ca:fa:6b:10:7e:32:f3:25:6b:4f: cb:de:c6:f3:97:3c:d4:26:c5:6c:e3:b3:1a:be:e0:05:3f:cc: d7:5e:03:b8:bf:41:da:f0:ea:40:3c:66:71:54:87:54:65:1c: b3:3d:fb:f7:0e:0b:5d:e8:06:3a:b3:e8:e7:14:ef:0f:e7:d1: a5:9b:02:f2:df:f8:fe:26:d7:58:75:bf:74:ff:86:68:51:76: 51:6d:f1:61:5d:4d:00:6b:0f:35:a8:5d:63:f8:f7:97:0e:97: 2f:45:4b:3e:18:8f:2e:56:49:fe:3a:93:6d:ba:24:5d:de:00: 5f:9f:c4:bd:a9:ea:5f:ec:25:a2:9a:10:8b:9f:1a:81:8a:ea: 53:ef:78:26:b3:9f:13:5c:c3:80:bb:87:cf:07:b1:81:03:33: 21:a5:47:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJFQTIxMTAvBgNVBAUTKDA5MkI1NEQyRjlFOTZEM0ZDRTFGMEMwREJCMzFCMUI4 MkM4RDJDRTAwHhcNMjUwNzIzMDI1NTA1WhcNMjUwNzMwMDI1NTA1WjAYMRYwFAYD VQQDEw02ODgwNGYwYS1iYTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpEx+SE6FlAsY7fyH4X3H7SnYnwC+vwFBNsK5h9W4eObGzSqvMvTSOPOG4Jq Qp7nA2uop7bP5ivE7vXhLUo8b55kGOmSwDG1nguZqKYvcUjThb042hlOjRJ+yS13 wzHRe6FYB77p2xlN9oexg5uPhqUhJhpWEV5xuwZua3B+nWNas8zLPq/PELDqSWmH ejzfe2EuaM+xbRrd2FNzIwnvVZ/Vc6iKnwaHeWvwkw7FVoA1+yx4DAlxutByZaml F5Xp3xPau+bjA2ryR2OEl+G3JgbJGUmjikzXAMoRGF/M8P5uVrQFZoBi0bzTG2f/ k/VrDTFKrp1M9Qt/GHkTUzhfnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvGtkhQ GpqYY5vQ788/q3Q4zktNMB8GA1UdIwQYMBaAFAkrVNL56W0/zh8MDbsxsbgsjSzg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkVBMi8xNTI1MzQxNDg1 NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJUX09Id3dOdXpHeHVDeU5M T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NTdFUwdm5wYlRfT0h3d051ekd4dUN5TkxPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkVBMi8xNTI1MzQxNDg1NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJU X09Id3dOdXpHeHVDeU5MT0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6iagSkN1hC9IPrs3qgyroQ+YH8DaDGMJxhbjzcJudLlnQ6GW4Lo6s QRcBHKEvKIPP0kVB4sC77hUKXOPP59FwdFE/SbZfcmiMK7bdRG5J5zCrsabH7rYm MpDbkHaelWiiN8r6axB+MvMla0/L3sbzlzzUJsVs47MavuAFP8zXXgO4v0Ha8OpA PGZxVIdUZRyzPfv3Dgtd6AY6s+jnFO8P59GlmwLy3/j+JtdYdb90/4ZoUXZRbfFh XU0Aaw81qF1j+PeXDpcvRUs+GI8uVkn+OpNtuiRd3gBfn8S9qepf7CWimhCLnxqB iupT73gms58TXMOAu4fPB7GBAzMhpUci -----END CERTIFICATE-----Generated at Wed Jul 23 23:29:58 2025 by rpki-client