$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft File: CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft (raw, json) Hash identifier: G/ga9NzY6ZVcxolLb48uRhs8s/G8pVdtyJN0gpgE3ow= Subject key identifier: 14:19:0F:36:8A:2C:E2:A0:CE:AE:B5:BA:22:5E:39:40:55:4B:75:B3 Authority key identifier: 09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E Certificate issuer: /CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft Manifest number: 01AA Signing time: Wed 23 Jul 2025 04:15:18 +0000 Manifest this update: Wed 23 Jul 2025 04:15:18 +0000 Manifest next update: Wed 30 Jul 2025 04:15:18 +0000 Files and hashes: 1: CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl (hash: p7XMiChzijN9qtH+dJFFSBpCY1Kig7ZJ9Fg5cZeAYto=) 2: F88F98EA55A211F0978C8774C4F9AE02.roa (hash: QNh4Gp3kB3GNMrEGFFxhGCwWm4t5z9f8382iFUZwPZ0=) 3: D0F8C1B2558E11F0AA71D85AC4F9AE02.roa (hash: oh7ui7LK3WMunAv1J2fHvn2kFRTi6Zr/uzSPr1lq2oo=) 4: FBB6EA4E558B11F082FD5637C4F9AE02.roa (hash: Kl6m9JQHHfBeMqk1Tlm1MbQi4JjMBE2qeSJnrNub/g4=) 5: E07CB68455A211F0B55F5674C4F9AE02.roa (hash: EN9le6O09Kb0iq4iN/kD7cySPcZbryI877AWUndMCII=) 6: DA6883FC0F8611F0955A002EC4F9AE02.roa (hash: o6iFpFIV0jtxY3uECfavGNZC5f2SO5jee3QS3JMuNlk=) 7: 935296A6558B11F0BB2DB436C4F9AE02.roa (hash: QdChkVX5/kDffpKHFjUpYMXDKAHSdfijGoyZP5SONNo=) 8: 063FA6B25B2811F09B9A3A54C4F9AE02.roa (hash: PdzatKQUNncHpwKWYwWLFeCXI+EXj5VrdThfE8iLC8o=) 9: BACC6D0A4F7411F0A8124536C4F9AE02.roa (hash: DXd58lVKAvc2UPgiS5Dl9wenDfuBudEt81twiJtKSDE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 04:15:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17AA, serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Validity Not Before: Jul 23 04:15:18 2025 GMT Not After : Jul 30 04:15:18 2025 GMT Subject: CN=688061d6-f40a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:56:41:82:b8:e4:8c:fa:df:fa:b2:c7:4e:6f: 8b:c3:8b:05:d0:0e:63:06:a0:bf:6a:14:c2:dc:4d: 42:fd:6a:b6:9b:7a:26:08:ae:92:1b:e5:64:0b:58: 75:c7:0d:12:bb:28:00:2e:42:d9:3f:75:72:a7:6a: aa:ea:75:ba:a3:d1:6d:9c:4a:6e:63:04:73:fd:89: 34:1c:6a:49:d2:e6:16:a1:e7:64:3f:33:1c:19:c7: 8f:6b:ad:c4:fd:1c:b1:1d:a7:94:d4:73:6f:7a:86: 08:3c:d0:33:e3:88:1a:7d:02:ae:c8:01:f0:68:10: ee:81:65:be:fc:a4:eb:84:da:11:40:0a:27:61:c6: 9e:81:76:e7:7c:0c:06:3c:ce:17:25:c5:ed:dc:4c: e6:5f:09:e8:12:d7:b1:43:1f:9c:32:7b:3c:6e:fa: 95:3c:00:e0:1e:9f:1d:18:ba:08:92:29:69:58:28: ca:4f:4f:a2:13:62:02:70:03:8f:b0:a5:43:7f:ce: 33:93:22:00:26:b5:81:52:3b:8a:27:aa:e1:12:90: d8:8e:8c:cc:cc:81:83:1b:6f:27:27:17:91:f7:6f: 6e:12:10:6c:f1:70:44:dd:16:d4:fd:2a:80:79:de: df:07:38:41:18:d5:0e:9d:de:3d:d5:ec:5f:57:60: 29:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:19:0F:36:8A:2C:E2:A0:CE:AE:B5:BA:22:5E:39:40:55:4B:75:B3 X509v3 Authority Key Identifier: keyid:09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:56:40:81:a4:b1:5e:b0:b8:8a:fa:86:25:3d:71:21:9c:3f: ab:c3:87:84:75:73:62:fd:73:e4:b7:11:71:3d:e1:ac:b3:d1: 01:fc:29:e4:b1:99:cf:8e:48:4d:e5:a9:a6:b1:7b:ad:57:fa: 6e:22:02:e7:98:a2:8c:2f:17:02:f3:0d:34:0a:a2:27:1a:5a: 47:b5:fb:e1:c7:c3:ab:cf:74:45:3c:be:a6:f3:cb:a6:dd:0a: 2b:ad:86:55:ed:17:8c:11:09:0b:6d:c4:63:23:2b:35:6e:fa: c8:9b:bd:41:ea:b8:36:8b:85:ee:90:28:20:8b:98:5e:ee:8a: 7d:2e:51:b1:88:0a:76:a0:48:42:31:bd:bc:95:c2:10:64:a2: ab:33:28:72:7a:c4:a0:4a:51:04:db:2a:af:60:08:20:df:24: 3b:24:a8:7b:79:31:6a:e1:37:f3:56:5f:5d:bc:3e:02:4e:3e: 32:3e:4b:ef:86:61:57:c5:d2:4a:63:4c:a5:11:b9:18:c3:1b: 70:ad:b4:83:2c:d9:d0:12:b5:aa:06:2f:7b:01:2f:8c:a0:bf: 6c:37:fe:06:fa:09:6e:1a:77:0b:53:79:b4:8c:bc:52:c0:9e: bb:3f:93:25:db:21:01:e7:68:89:cd:51:f4:30:13:f7:dd:90: 12:57:bb:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3QUExMTAvBgNVBAUTKDA5NDcwNTFFRkE1MDQyOTIxNTc1MEE0OEJDMDMxQURB OTI2RUY2NkUwHhcNMjUwNzIzMDQxNTE4WhcNMjUwNzMwMDQxNTE4WjAYMRYwFAYD VQQDEw02ODgwNjFkNi1mNDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlZBgrjkjPrf+rLHTm+Lw4sF0A5jBqC/ahTC3E1C/Wq2m3omCK6SG+VkC1h1 xw0SuygALkLZP3Vyp2qq6nW6o9FtnEpuYwRz/Yk0HGpJ0uYWoedkPzMcGcePa63E /RyxHaeU1HNveoYIPNAz44gafQKuyAHwaBDugWW+/KTrhNoRQAonYcaegXbnfAwG PM4XJcXt3EzmXwnoEtexQx+cMns8bvqVPADgHp8dGLoIkilpWCjKT0+iE2ICcAOP sKVDf84zkyIAJrWBUjuKJ6rhEpDYjozMzIGDG28nJxeR929uEhBs8XBE3RbU/SqA ed7fBzhBGNUOnd491exfV2ApCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQZDzaK LOKgzq61uiJeOUBVS3WzMB8GA1UdIwQYMBaAFAlHBR76UEKSFXUKSLwDGtqSbvZu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdBQS80MUYwRjk3RTUy QjgxMUVFOEU0MzAwMERDNEY5QUUwMi9DVWNGSHZwUVFwSVZkUXBJdkFNYTJwSnU5 bTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVY0ZIdnBRUXBJVmRRcEl2QU1hMnBKdTltNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdBQS80MUYwRjk3RTUyQjgxMUVFOEU0MzAwMERDNEY5QUUwMi9DVWNGSHZwUVFw SVZkUXBJdkFNYTJwSnU5bTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzVkCBpLFesLiK+oYlPXEhnD+rw4eEdXNi/XPktxFxPeGss9EB/Cnk sZnPjkhN5ammsXutV/puIgLnmKKMLxcC8w00CqInGlpHtfvhx8Orz3RFPL6m88um 3QorrYZV7ReMEQkLbcRjIys1bvrIm71B6rg2i4XukCggi5he7op9LlGxiAp2oEhC Mb28lcIQZKKrMyhyesSgSlEE2yqvYAgg3yQ7JKh7eTFq4TfzVl9dvD4CTj4yPkvv hmFXxdJKY0ylEbkYwxtwrbSDLNnQErWqBi97AS+MoL9sN/4G+gluGncLU3m0jLxS wJ67P5Ml2yEB52iJzVH0MBP33ZASV7uK -----END CERTIFICATE-----Generated at Wed Jul 23 12:47:40 2025 by rpki-client