$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft File: cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft (raw, json) Hash identifier: TWFUcAz81SePyoKbSe/5MDYi4WdU9RmSpq6t3VHEEEI= Subject key identifier: 18:76:BC:42:71:89:52:8F:D2:86:E0:2C:A7:3E:44:B3:9A:E0:AE:0C Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 2281 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft Manifest number: 224F Signing time: Fri 18 Jul 2025 15:58:36 +0000 Manifest this update: Fri 18 Jul 2025 15:58:35 +0000 Manifest next update: Fri 25 Jul 2025 15:58:35 +0000 Files and hashes: 1: cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl (hash: CxHdKuiZMreqLWNXmwLGWj+2QZYp5vJeHxZKc1YUhrQ=) 2: BB62FBD82AEC11EA972CB627C4F9AE02.roa (hash: KdmEZEpKoLyIMn6+XZO0IZiKVzRjxKxZXmexqgggUFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8833 (0x2281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6, serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: Jul 18 15:58:35 2025 GMT Not After : Jul 25 15:58:35 2025 GMT Subject: CN=687a6f2c-8d29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:09:a8:83:ef:b8:70:a7:b8:5b:30:79:9e:2d: a4:fe:d9:74:a8:1c:03:1f:15:e9:34:66:cc:f5:50: c0:cc:03:dc:be:aa:d7:dc:6d:af:de:b5:a3:b9:a7: af:16:9c:5f:c9:34:0c:b5:3b:17:07:b5:8d:7d:36: d4:bf:eb:03:f4:34:63:62:59:78:2e:98:f6:53:19: c3:4d:26:81:40:d7:62:1a:0e:4b:85:45:b2:83:28: 33:77:a7:26:d3:5b:58:47:69:1e:cb:f7:9a:33:0d: 1c:b0:a1:4b:8e:56:0f:fa:bd:b4:09:fd:86:68:ab: f7:9f:90:70:80:46:c2:f1:2e:95:7e:91:35:58:b6: dc:22:25:0a:e1:ff:64:e7:3c:a6:a8:98:50:c1:6a: 73:f0:eb:4c:e1:89:e6:63:26:e0:77:a1:68:ca:19: 56:c9:7c:05:5c:35:4c:5e:0f:6f:56:1c:fe:3b:de: 19:73:3b:17:b5:0e:39:6d:c9:21:ae:c7:6b:13:94: 42:ce:ff:f1:83:a7:ac:ec:28:ef:26:97:c3:ff:f2: db:85:6e:5f:09:4a:f9:57:af:f2:e8:17:dc:d7:2e: 88:de:42:62:b5:4c:0a:65:71:31:d5:f0:25:80:18: 00:ad:04:e3:18:2f:b9:21:61:41:ca:4f:a3:fd:d1: 55:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:76:BC:42:71:89:52:8F:D2:86:E0:2C:A7:3E:44:B3:9A:E0:AE:0C X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:68:7c:da:88:35:87:82:42:69:af:8f:4e:77:15:40:12:52: a2:00:0e:a0:59:3b:ff:40:78:fe:59:37:3b:ab:52:e0:d1:b6: b3:31:f4:d9:0c:8e:99:28:f5:43:50:d1:34:ad:c6:88:4b:52: 49:13:0d:b8:b1:06:d5:14:3a:bf:b9:db:34:31:a6:1c:73:ea: de:35:4d:68:ea:80:e8:43:5d:7f:fa:d7:12:f5:1f:02:13:9b: e9:59:c9:21:e5:8e:76:c9:99:65:6a:60:8c:8a:08:c7:3c:79: 1d:a1:84:46:c2:f6:a2:5f:bc:4d:1f:e0:70:b0:71:76:b7:49: 94:aa:b5:07:b7:1d:dc:7f:83:62:65:89:20:6f:1b:26:a4:32: b8:35:c1:26:40:93:87:1a:55:96:a1:6e:33:57:4a:dd:d4:89: 6b:9f:94:cc:f0:3b:27:20:62:8c:29:22:03:75:56:f3:6c:ea: 9a:89:80:99:c6:a3:0a:f8:65:e5:ec:0b:d8:fa:fc:9e:53:9d: 33:d9:67:28:9e:f9:79:d1:be:39:6d:90:b8:19:d1:11:0d:43: 8a:c7:18:cd:9a:bf:ae:e0:80:4e:75:81:b5:2f:0c:f4:9d:31: c2:ab:7f:b0:3b:fa:6a:ec:70:8c:fe:f2:55:b3:33:e4:55:a9: bf:6b:90:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjUwNzE4MTU1ODM1WhcNMjUwNzI1MTU1ODM1WjAYMRYwFAYD VQQDEw02ODdhNmYyYy04ZDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gmog++4cKe4WzB5ni2k/tl0qBwDHxXpNGbM9VDAzAPcvqrX3G2v3rWjuaev FpxfyTQMtTsXB7WNfTbUv+sD9DRjYll4Lpj2UxnDTSaBQNdiGg5LhUWygygzd6cm 01tYR2key/eaMw0csKFLjlYP+r20Cf2GaKv3n5BwgEbC8S6VfpE1WLbcIiUK4f9k 5zymqJhQwWpz8OtM4YnmYybgd6FoyhlWyXwFXDVMXg9vVhz+O94ZczsXtQ45bckh rsdrE5RCzv/xg6es7CjvJpfD//LbhW5fCUr5V6/y6Bfc1y6I3kJitUwKZXEx1fAl gBgArQTjGC+5IWFByk+j/dFVGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBh2vEJx iVKP0obgLKc+RLOa4K4MMB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhENi8yODk5MDUzMEJFNTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5 UVpjQi10TnlvMHQ4WnMtcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWaHzaiDWHgkJpr49OdxVAElKiAA6gWTv/QHj+WTc7q1Lg0bazMfTZ DI6ZKPVDUNE0rcaIS1JJEw24sQbVFDq/uds0MaYcc+reNU1o6oDoQ11/+tcS9R8C E5vpWckh5Y52yZllamCMigjHPHkdoYRGwvaiX7xNH+BwsHF2t0mUqrUHtx3cf4Ni ZYkgbxsmpDK4NcEmQJOHGlWWoW4zV0rd1Ilrn5TM8DsnIGKMKSIDdVbzbOqaiYCZ xqMK+GXl7AvY+vyeU50z2Wconvl50b45bZC4GdERDUOKxxjNmr+u4IBOdYG1Lwz0 nTHCq3+wO/pq7HCM/vJVszPkVam/a5Cr -----END CERTIFICATE-----Generated at Sun Jul 20 11:41:50 2025 by rpki-client