$ rpki-client -vvf rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft File: CUyLxdrczZwvs89F0UZN7s86HGA.mft (raw, json) Hash identifier: Fu87l6G4SyhAgzdWAsCOnnPYnqnKRDaTYBhrf97SI0w= Subject key identifier: FE:63:24:DF:51:55:92:86:54:0F:C5:DB:1E:B7:D6:CE:91:18:87:8C Authority key identifier: 09:4C:8B:C5:DA:DC:CD:9C:2F:B3:CF:45:D1:46:4D:EE:CF:3A:1C:60 Certificate issuer: /CN=A9164164/serialNumber=094C8BC5DADCCD9C2FB3CF45D1464DEECF3A1C60 Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft Manifest number: 81 Signing time: Wed 23 Jul 2025 06:59:12 +0000 Manifest this update: Wed 23 Jul 2025 06:59:11 +0000 Manifest next update: Wed 30 Jul 2025 06:59:11 +0000 Files and hashes: 1: CUyLxdrczZwvs89F0UZN7s86HGA.crl (hash: P+F/OvL9hZMJhekVaTzYeXDsyrC54gHuIaqmls2bMfM=) 2: F1B3D754A18211EFA2B7E923C4F9AE02.roa (hash: ZgB4/zOUlrbnr+66F7inM4U41pNR0yS6V1N2ZkRjXXY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.crl rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 06:59:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164164, serialNumber=094C8BC5DADCCD9C2FB3CF45D1464DEECF3A1C60 Validity Not Before: Jul 23 06:59:11 2025 GMT Not After : Jul 30 06:59:11 2025 GMT Subject: CN=68808840-a056 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:35:1a:c0:14:42:c9:7e:52:31:22:79:ff:16: dc:a8:3f:c7:16:e0:99:f3:f2:78:0b:68:1d:1e:95: ba:4a:e0:98:21:fb:40:d3:0d:81:d0:6b:7e:3c:b9: d8:0d:0a:b9:5f:68:3f:1b:01:f4:37:8d:80:95:d9: 00:ed:75:c7:78:29:d0:85:b4:0a:da:18:c0:c3:c3: a6:80:e0:a1:6e:d9:f7:47:74:de:a5:14:a5:77:02: 67:cb:52:05:60:50:af:91:55:41:78:32:c5:7c:f1: 4a:43:fb:b0:f1:b3:b5:a0:75:86:66:74:d4:3f:95: dc:8d:28:e7:54:4e:2f:98:ce:e3:cd:66:e2:1e:1c: e3:82:df:11:ce:8b:a2:fc:0c:ab:7d:54:65:1c:46: 95:42:18:f3:63:42:31:64:a4:a0:90:7f:78:c7:2a: d2:84:c5:bd:c6:56:17:3e:38:c7:dc:b1:b2:11:66: 50:a3:6b:c0:78:8a:71:07:e7:39:d3:45:9e:75:6d: ab:82:9e:75:f1:49:94:62:c3:03:d1:cb:56:43:a3: bf:51:7d:14:a3:f1:b5:ab:67:cd:57:dc:4a:14:0d: 77:cc:09:d2:18:18:79:ce:f3:cc:f6:b3:19:3c:1c: b0:5b:38:bf:6c:f5:bf:b5:39:61:e6:71:bc:14:5d: 18:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:63:24:DF:51:55:92:86:54:0F:C5:DB:1E:B7:D6:CE:91:18:87:8C X509v3 Authority Key Identifier: keyid:09:4C:8B:C5:DA:DC:CD:9C:2F:B3:CF:45:D1:46:4D:EE:CF:3A:1C:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:e8:85:90:fd:db:03:7a:35:06:72:9f:03:53:92:15:76:d6: df:8b:a0:3b:84:21:f4:12:cf:19:34:47:91:24:c7:93:f0:18: 13:c9:c3:ee:a6:41:f2:b0:e5:c8:35:f0:78:b5:73:fb:49:4f: 9d:14:12:0b:dd:58:9d:ee:a8:7a:59:5c:c0:ef:78:5d:0b:d4: b3:47:60:e2:82:42:eb:09:a1:20:42:11:b5:b1:84:79:18:40: 2a:59:ea:bc:8a:39:77:c9:29:a1:27:c8:43:27:1d:a5:a2:9f: 7c:0e:f3:58:c0:b4:88:24:c5:c3:1b:f1:a7:6c:52:f4:77:56: e4:82:0d:71:67:d1:bc:d3:bc:c7:f5:3d:87:37:11:f8:4f:45: 23:70:e2:ff:7c:a1:44:7f:b8:9e:3c:47:aa:b4:08:79:da:59: 6f:a8:51:32:16:59:45:9f:32:b0:f7:46:cf:de:99:00:65:84: 04:5a:f1:f6:1e:7d:46:e0:11:af:2a:74:b9:cd:a9:87:cc:4c: 35:d3:0f:8f:b8:b9:27:55:9a:7a:93:ee:7a:33:58:af:41:7b: 31:98:20:cf:0e:e7:44:37:84:97:d9:f0:fe:b8:25:1d:bf:3c: 47:61:89:79:78:a4:ff:c1:8b:ad:76:a1:56:24:95:09:c6:70: 5b:36:d9:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQxNjQxMTAvBgNVBAUTKDA5NEM4QkM1REFEQ0NEOUMyRkIzQ0Y0NUQxNDY0REVF Q0YzQTFDNjAwHhcNMjUwNzIzMDY1OTExWhcNMjUwNzMwMDY1OTExWjAYMRYwFAYD VQQDEw02ODgwODg0MC1hMDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjUawBRCyX5SMSJ5/xbcqD/HFuCZ8/J4C2gdHpW6SuCYIftA0w2B0Gt+PLnY DQq5X2g/GwH0N42AldkA7XXHeCnQhbQK2hjAw8OmgOChbtn3R3TepRSldwJny1IF YFCvkVVBeDLFfPFKQ/uw8bO1oHWGZnTUP5XcjSjnVE4vmM7jzWbiHhzjgt8Rzoui /AyrfVRlHEaVQhjzY0IxZKSgkH94xyrShMW9xlYXPjjH3LGyEWZQo2vAeIpxB+c5 00WedW2rgp518UmUYsMD0ctWQ6O/UX0Uo/G1q2fNV9xKFA13zAnSGBh5zvPM9rMZ PBywWzi/bPW/tTlh5nG8FF0YAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5jJN9R VZKGVA/F2x631s6RGIeMMB8GA1UdIwQYMBaAFAlMi8Xa3M2cL7PPRdFGTe7POhxg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDE2NC9BRTcyMjg5Q0Ex ODIxMUVGOEY0RTE2MjNDNEY5QUUwMi9DVXlMeGRyY3pad3ZzODlGMFVaTjdzODZI R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVeUx4ZHJjelp3dnM4OUYwVVpON3M4NkhHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDE2NC9BRTcyMjg5Q0ExODIxMUVGOEY0RTE2MjNDNEY5QUUwMi9DVXlMeGRyY3pa d3ZzODlGMFVaTjdzODZIR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP6IWQ/dsDejUGcp8DU5IVdtbfi6A7hCH0Es8ZNEeRJMeT8BgTycPu pkHysOXINfB4tXP7SU+dFBIL3Vid7qh6WVzA73hdC9SzR2DigkLrCaEgQhG1sYR5 GEAqWeq8ijl3ySmhJ8hDJx2lop98DvNYwLSIJMXDG/GnbFL0d1bkgg1xZ9G807zH 9T2HNxH4T0UjcOL/fKFEf7iePEeqtAh52llvqFEyFllFnzKw90bP3pkAZYQEWvH2 Hn1G4BGvKnS5zamHzEw10w+PuLknVZp6k+56M1ivQXsxmCDPDudEN4SX2fD+uCUd vzxHYYl5eKT/wYutdqFWJJUJxnBbNtlY -----END CERTIFICATE-----Generated at Thu Jul 24 12:17:25 2025 by rpki-client