$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.mft File: CptpgbEtWk0t827p0oCmWVwyUTY.mft (raw, json) Hash identifier: b6zpy8gwF6IR07T9ButbEKnElHTol18Od7Mxv1jG3Hs= Subject key identifier: AF:39:D1:F6:A6:C6:87:8D:28:FA:C5:5C:82:F5:2A:02:96:82:9F:51 Authority key identifier: 0A:9B:69:81:B1:2D:5A:4D:2D:F3:6E:E9:D2:80:A6:59:5C:32:51:36 Certificate issuer: /CN=A91EAC82/serialNumber=0A9B6981B12D5A4D2DF36EE9D280A6595C325136 Certificate serial: 0AFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CptpgbEtWk0t827p0oCmWVwyUTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.mft Manifest number: 0AEC Signing time: Sun 20 Jul 2025 19:30:17 +0000 Manifest this update: Sun 20 Jul 2025 19:30:16 +0000 Manifest next update: Sun 27 Jul 2025 19:30:16 +0000 Files and hashes: 1: CptpgbEtWk0t827p0oCmWVwyUTY.crl (hash: vxy5AS1/XUwnr2/R8KaGlKTGlP/0L7E9T3b+mb/ecNo=) 2: 2FC13F564ED511EA945E3314C4F9AE02.roa (hash: A/a0M5805rjTnXrE1n/14FN5oLiy6+lmzg+Var9FAeo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.crl rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CptpgbEtWk0t827p0oCmWVwyUTY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2810 (0xafa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAC82, serialNumber=0A9B6981B12D5A4D2DF36EE9D280A6595C325136 Validity Not Before: Jul 20 19:30:16 2025 GMT Not After : Jul 27 19:30:16 2025 GMT Subject: CN=687d43c8-672e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b7:ed:a9:42:32:1f:6a:0e:b3:9a:6b:ef:d9: 72:15:2f:1b:c7:e4:9d:d1:f5:f5:64:83:e1:b8:be: a1:2c:ff:0e:19:36:3a:5c:d7:b7:df:6c:19:09:6e: da:6e:30:5f:03:94:07:ca:43:4b:7a:44:66:b3:a1: 20:84:50:17:d5:e9:3d:5c:f7:86:e9:37:a9:80:7d: b4:e5:32:47:50:db:46:00:4f:b3:3f:47:b2:8c:aa: 63:ff:4a:1d:99:c6:6c:80:70:ca:73:c0:21:f7:22: fc:a9:68:ee:54:57:6a:83:91:e9:b7:69:25:ed:ca: ab:94:a7:33:4e:9b:b0:65:93:55:30:62:32:72:54: b7:e8:a0:9f:d2:be:9b:3c:ab:92:01:e5:1e:06:63: 0d:87:5b:67:b1:2e:fd:60:c8:3c:95:15:ac:3a:ba: e0:d6:86:2c:09:56:bd:cb:bc:61:c1:39:dd:bc:5e: 91:21:e2:bf:63:19:ec:89:5f:ce:d7:49:88:77:50: 99:56:94:9b:23:4d:76:57:f2:15:c5:72:68:5f:be: 20:88:f9:33:ab:68:b4:4f:a3:28:6f:4f:91:21:e1: b9:11:93:a8:a0:99:10:48:24:75:17:34:58:c1:68: 65:a9:39:ac:f7:84:de:e1:0a:15:04:b6:47:64:7e: 5f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:39:D1:F6:A6:C6:87:8D:28:FA:C5:5C:82:F5:2A:02:96:82:9F:51 X509v3 Authority Key Identifier: keyid:0A:9B:69:81:B1:2D:5A:4D:2D:F3:6E:E9:D2:80:A6:59:5C:32:51:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CptpgbEtWk0t827p0oCmWVwyUTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:ae:08:f1:ad:65:77:09:1b:2e:90:68:57:80:f7:1c:48:55: 9e:67:52:34:bc:bd:dd:8d:5b:09:4d:a2:f4:30:a9:84:e5:bc: 37:02:37:c6:3f:46:78:5a:2e:46:9e:08:45:64:e3:ed:eb:dc: 3b:26:ae:33:27:31:4a:b4:ed:33:a8:a8:b1:2e:ed:48:33:59: 48:1e:a4:ea:cf:d3:9d:06:ac:33:1d:30:98:2e:e0:25:f1:a1: 24:96:ad:39:04:d9:12:7d:56:fc:20:39:b8:7a:a3:99:0f:ca: f5:1c:59:8d:da:ea:83:ff:c8:b9:70:23:49:f2:d3:cc:34:30: 0e:09:2b:30:63:03:71:10:b6:1a:6c:de:87:7d:9d:81:e2:72: 7b:21:f2:d3:80:d3:f4:26:cb:52:49:79:78:98:3e:ac:a0:04: ea:8c:1d:34:63:4c:4f:bb:63:79:96:9b:b3:0b:7e:fe:4b:c1: b3:fb:6b:fc:32:df:7e:04:bb:f1:b4:ef:9d:f9:cd:f8:be:df: 04:22:cc:2f:73:d1:c5:41:03:7d:db:e4:b4:43:8d:ce:97:91: e3:cb:46:6b:3e:11:fc:dd:ad:b1:b1:e0:ee:52:6d:f4:a6:f4: ec:91:41:a2:c9:85:9f:6a:1e:ad:a6:84:3a:70:58:30:f8:ec: f9:72:6b:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFDODIxMTAvBgNVBAUTKDBBOUI2OTgxQjEyRDVBNEQyREYzNkVFOUQyODBBNjU5 NUMzMjUxMzYwHhcNMjUwNzIwMTkzMDE2WhcNMjUwNzI3MTkzMDE2WjAYMRYwFAYD VQQDEw02ODdkNDNjOC02NzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rftqUIyH2oOs5pr79lyFS8bx+Sd0fX1ZIPhuL6hLP8OGTY6XNe332wZCW7a bjBfA5QHykNLekRms6EghFAX1ek9XPeG6TepgH205TJHUNtGAE+zP0eyjKpj/0od mcZsgHDKc8Ah9yL8qWjuVFdqg5Hpt2kl7cqrlKczTpuwZZNVMGIyclS36KCf0r6b PKuSAeUeBmMNh1tnsS79YMg8lRWsOrrg1oYsCVa9y7xhwTndvF6RIeK/YxnsiV/O 10mId1CZVpSbI012V/IVxXJoX74giPkzq2i0T6Mob0+RIeG5EZOooJkQSCR1FzRY wWhlqTms94Te4QoVBLZHZH5fiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK850fam xoeNKPrFXIL1KgKWgp9RMB8GA1UdIwQYMBaAFAqbaYGxLVpNLfNu6dKApllcMlE2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUM4Mi9DQkQ4OTNBMDRF RDMxMUVBQUQ3QkEyMTFDNEY5QUUwMi9DcHRwZ2JFdFdrMHQ4MjdwMG9DbVdWd3lV VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwdHBnYkV0V2swdDgyN3Awb0NtV1Z3eVVUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUM4Mi9DQkQ4OTNBMDRFRDMxMUVBQUQ3QkEyMTFDNEY5QUUwMi9DcHRwZ2JFdFdr MHQ4MjdwMG9DbVdWd3lVVFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVrgjxrWV3CRsukGhXgPccSFWeZ1I0vL3djVsJTaL0MKmE5bw3AjfG P0Z4Wi5GnghFZOPt69w7Jq4zJzFKtO0zqKixLu1IM1lIHqTqz9OdBqwzHTCYLuAl 8aEklq05BNkSfVb8IDm4eqOZD8r1HFmN2uqD/8i5cCNJ8tPMNDAOCSswYwNxELYa bN6HfZ2B4nJ7IfLTgNP0JstSSXl4mD6soATqjB00Y0xPu2N5lpuzC37+S8Gz+2v8 Mt9+BLvxtO+d+c34vt8EIswvc9HFQQN92+S0Q43Ol5Hjy0ZrPhH83a2xseDuUm30 pvTskUGiyYWfah6tpoQ6cFgw+Oz5cmv2 -----END CERTIFICATE-----Generated at Mon Jul 21 08:05:07 2025 by rpki-client