$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft File: CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft (raw, json) Hash identifier: +/OzzEGVatVnlrAFNek8UxmhffCyci0F1SQQFGd8Tco= Subject key identifier: 51:03:55:04:27:75:69:27:5F:29:B9:45:32:FD:58:73:86:38:5E:F0 Authority key identifier: 0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD Certificate issuer: /CN=A91777B9/serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft Manifest number: 9C Signing time: Sat 19 Jul 2025 06:31:34 +0000 Manifest this update: Sat 19 Jul 2025 06:31:34 +0000 Manifest next update: Sat 26 Jul 2025 06:31:34 +0000 Files and hashes: 1: CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl (hash: Ucr4qHi/V1nmtcAX1uwB10hOt+n8QLo5nGn2WmsY5/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9, serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Validity Not Before: Jul 19 06:31:34 2025 GMT Not After : Jul 26 06:31:34 2025 GMT Subject: CN=687b3bc6-341a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1c:e6:c4:8e:8c:4d:e5:0c:c4:7e:78:32:ac: d4:9f:1f:c0:24:9a:8e:88:b8:3f:97:eb:9a:2b:69: 09:0d:12:ba:e6:8f:e7:91:74:35:19:70:04:6e:c8: 3f:7b:15:d7:d6:85:7f:ac:fd:86:74:c3:65:a1:60: 3d:d4:89:a1:85:82:07:e6:cb:5b:37:ab:fd:57:b7: 5c:88:cd:27:7c:1b:d2:54:d2:61:5b:8d:fd:f4:97: d2:81:6e:5f:f6:16:9b:ce:22:af:32:7e:e4:27:24: cb:bd:ae:03:31:79:8a:7f:51:73:43:99:d7:8d:7a: 91:68:b4:c0:18:e3:f9:e6:7e:c0:e7:6e:97:27:85: 37:53:ae:50:2d:15:07:65:34:69:06:74:6f:b4:06: 39:85:68:a0:18:89:46:36:e7:9f:ca:3f:39:37:98: fa:38:b6:6d:60:60:93:f9:08:40:67:cc:6b:c1:b4: 22:73:bb:0f:88:fb:96:b9:64:93:18:d1:e9:e0:8f: a5:f5:58:d0:5c:9a:17:bf:9d:ff:c3:de:14:be:71: f8:45:75:ee:7b:32:5a:2f:8b:65:02:a0:c1:dd:84: 99:ec:b9:85:f8:e6:f9:af:df:4b:45:d8:e7:ab:d7: 79:3c:84:6c:8c:ec:19:66:e8:10:20:13:dc:f0:4b: 52:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:03:55:04:27:75:69:27:5F:29:B9:45:32:FD:58:73:86:38:5E:F0 X509v3 Authority Key Identifier: keyid:0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:39:9c:dc:ba:80:5a:27:7a:bd:6d:3c:3c:66:5e:de:2b:e2: 30:54:83:3b:67:b2:1e:54:97:2d:59:58:fa:f2:fc:ad:ee:bf: 93:5f:bf:a0:d5:36:79:db:00:9f:9c:67:42:fc:88:0b:f7:22: b8:0e:39:18:34:3e:ce:ed:92:fa:66:5b:81:36:ca:39:ac:8e: 32:83:ae:45:6a:b6:50:bd:d9:f8:87:9d:97:66:ea:4b:1f:ba: ce:39:d6:fe:5f:50:3d:90:d7:f9:e3:4d:72:42:15:41:ba:b4: d3:73:39:c3:5e:b6:89:17:63:1b:2b:10:9d:a1:81:53:d9:14: bb:38:20:e8:14:08:86:59:ab:cf:b8:2e:0e:e2:cb:5b:37:26: 8e:29:8a:46:17:28:b5:6c:8e:5c:e6:02:1c:ef:14:17:b3:b3: 92:f1:4a:fa:58:1f:fd:66:de:42:9d:d9:8e:25:d5:6c:f2:f3: 5e:27:91:49:dc:a1:9e:a4:0d:24:a4:94:5b:6c:88:c5:07:20: 7a:2f:d7:ca:7c:bd:42:e2:31:3a:47:1b:57:fd:09:19:74:4b: 7d:45:fe:ec:bf:af:03:97:a5:32:9b:00:48:b2:2f:79:e2:d5: 93:94:f1:c2:08:63:7c:f3:c4:70:7b:63:41:f8:03:81:42:cb: 4c:f5:4f:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QjkxMTAvBgNVBAUTKDBBMDg4QTE5QkJEQjYxREVEMTkxNkM4NjBBQjJCOEJF RTE4NkVEQ0QwHhcNMjUwNzE5MDYzMTM0WhcNMjUwNzI2MDYzMTM0WjAYMRYwFAYD VQQDEw02ODdiM2JjNi0zNDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RzmxI6MTeUMxH54MqzUnx/AJJqOiLg/l+uaK2kJDRK65o/nkXQ1GXAEbsg/ exXX1oV/rP2GdMNloWA91ImhhYIH5stbN6v9V7dciM0nfBvSVNJhW4399JfSgW5f 9habziKvMn7kJyTLva4DMXmKf1FzQ5nXjXqRaLTAGOP55n7A526XJ4U3U65QLRUH ZTRpBnRvtAY5hWigGIlGNuefyj85N5j6OLZtYGCT+QhAZ8xrwbQic7sPiPuWuWST GNHp4I+l9VjQXJoXv53/w94UvnH4RXXuezJaL4tlAqDB3YSZ7LmF+Ob5r99LRdjn q9d5PIRsjOwZZugQIBPc8EtSJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEDVQQn dWknXym5RTL9WHOGOF7wMB8GA1UdIwQYMBaAFAoIihm722He0ZFshgqyuL7hhu3N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdCOS9EQjUxN0IwODc1 QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9DZ2lLR2J2YllkN1JrV3lHQ3JLNHZ1R0c3 YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NnaUtHYnZiWWQ3UmtXeUdDcks0dnVHRzdjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdCOS9EQjUxN0IwODc1QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9DZ2lLR2J2Yllk N1JrV3lHQ3JLNHZ1R0c3YzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoOZzcuoBaJ3q9bTw8Zl7eK+IwVIM7Z7IeVJctWVj68vyt7r+TX7+g 1TZ52wCfnGdC/IgL9yK4DjkYND7O7ZL6ZluBNso5rI4yg65FarZQvdn4h52XZupL H7rOOdb+X1A9kNf5401yQhVBurTTcznDXraJF2MbKxCdoYFT2RS7OCDoFAiGWavP uC4O4stbNyaOKYpGFyi1bI5c5gIc7xQXs7OS8Ur6WB/9Zt5CndmOJdVs8vNeJ5FJ 3KGepA0kpJRbbIjFByB6L9fKfL1C4jE6RxtX/QkZdEt9Rf7sv68Dl6UymwBIsi95 4tWTlPHCCGN888Rwe2NB+AOBQstM9U9M -----END CERTIFICATE-----Generated at Sun Jul 20 03:20:43 2025 by rpki-client