$ rpki-client -vvf rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft File: CViGFDhyEOi2mtPDGnNhnXVe0MA.mft (raw, json) Hash identifier: gfYtiXoN5+ZCK7qarwwARBumg3NdB/3S0J7NNgBdz68= Subject key identifier: B4:10:26:CF:7F:98:59:67:22:67:D5:C0:B7:79:88:D9:91:03:E1:CF Authority key identifier: 09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 Certificate issuer: /CN=A914CB22/serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft Manifest number: 011E Signing time: Thu 05 Jun 2025 04:09:34 +0000 Manifest this update: Thu 05 Jun 2025 04:09:33 +0000 Manifest next update: Thu 12 Jun 2025 04:09:33 +0000 Files and hashes: 1: CViGFDhyEOi2mtPDGnNhnXVe0MA.crl (hash: ADCmTTb0TgBHgvacs1F3X657ACtlb3X/WBUWfWGRf20=) 2: 2F996DC6C77311EEBD6F2D2BC4F9AE02.roa (hash: lfBaqProMut7Uby4sm5sXFCXR+BzVB4lKdYH7qIjDTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 04:09:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CB22, serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Validity Not Before: Jun 5 04:09:33 2025 GMT Not After : Jun 12 04:09:33 2025 GMT Subject: CN=6841187e-88f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5e:3b:34:67:97:66:e4:37:64:03:4b:35:e8: bc:d4:b9:1b:6c:85:07:d6:db:01:0f:c4:3f:59:0b: 9b:38:ed:3d:30:f4:a9:81:45:32:e9:b8:81:99:89: 60:e5:9c:ed:9f:d2:42:a9:c5:4b:2f:d4:9c:e6:86: 32:db:78:d3:34:2a:b0:29:91:a3:23:93:07:09:77: e4:bf:91:67:1a:d9:62:2c:19:ea:90:de:ee:aa:d4: ca:e5:3c:e9:ae:e3:30:7c:6c:db:5a:3d:fa:cd:96: 7e:13:82:80:a0:43:4e:1b:f3:5b:a2:71:0a:3d:e9: a4:3e:79:0b:c7:16:c4:f5:cc:90:74:49:84:a3:41: d2:d7:4c:89:48:50:8a:e9:78:f2:86:12:6b:cd:cb: 97:0b:93:ac:3b:8b:71:d6:29:6f:eb:b4:79:89:a9: 1a:eb:94:5d:a7:e3:6b:1a:63:f0:f8:91:fa:8a:a2: 1a:80:22:94:28:83:d2:7a:a9:f0:e4:fd:c9:3f:a1: 72:29:32:84:2c:ca:76:fc:de:81:5d:10:84:de:9e: aa:d0:93:4b:02:24:69:d3:19:b2:1c:31:41:94:aa: 22:02:b4:c7:a0:8f:48:33:f4:db:db:37:d3:22:e4: 1a:9f:fe:2e:cc:9d:6b:b2:99:fd:95:c0:7e:a1:e5: 96:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:10:26:CF:7F:98:59:67:22:67:D5:C0:B7:79:88:D9:91:03:E1:CF X509v3 Authority Key Identifier: keyid:09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:16:30:6c:96:71:39:92:cb:10:0b:c0:e9:c4:6a:f0:e8:76: 53:13:e1:9d:c2:27:33:b1:65:0e:0d:32:65:01:43:3b:8e:9b: 4c:23:e8:9d:e1:27:1f:7f:89:05:4f:e5:c9:e3:5f:35:fb:f5: 1d:dc:fd:a9:43:67:c2:1e:18:8f:9d:9a:41:f6:eb:55:ab:ba: 9f:ce:7d:88:98:ac:48:dc:6e:b1:54:c0:92:a5:09:71:ba:5a: f6:d5:d1:90:bd:4e:d5:9e:6d:b5:6b:82:0a:4a:87:36:ae:95: ea:d6:e5:12:5b:3f:59:50:6c:23:cc:5f:18:50:bc:6b:1e:2d: 0d:36:79:4b:18:0c:e2:9c:89:1b:31:23:ec:a9:b3:fa:7d:ee: 4c:fb:7e:69:ba:77:27:be:9b:01:56:d6:a9:25:77:38:eb:a1: 9f:3f:5c:fd:5d:bf:6d:8a:99:98:c8:ec:91:ac:e3:4d:05:b5: d4:b1:95:4d:f0:5c:41:74:ae:be:3b:2e:fe:9a:d1:47:40:b5: ad:c5:ec:7d:3c:b8:66:ee:b7:fd:76:97:a5:85:1f:b0:b4:c8: 6f:7a:4b:71:47:b6:4f:44:3d:e9:bc:24:73:68:4b:3e:5f:ec: dd:c6:bf:86:e1:03:ce:90:15:54:63:30:d4:bf:db:38:15:49: 69:8b:ad:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCMjIxMTAvBgNVBAUTKDA5NTg4NjE0Mzg3MjEwRThCNjlBRDNDMzFBNzM2MTlE NzU1RUQwQzAwHhcNMjUwNjA1MDQwOTMzWhcNMjUwNjEyMDQwOTMzWjAYMRYwFAYD VQQDEw02ODQxMTg3ZS04OGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1l47NGeXZuQ3ZANLNei81LkbbIUH1tsBD8Q/WQubOO09MPSpgUUy6biBmYlg 5Zztn9JCqcVLL9Sc5oYy23jTNCqwKZGjI5MHCXfkv5FnGtliLBnqkN7uqtTK5Tzp ruMwfGzbWj36zZZ+E4KAoENOG/NbonEKPemkPnkLxxbE9cyQdEmEo0HS10yJSFCK 6XjyhhJrzcuXC5OsO4tx1ilv67R5iaka65Rdp+NrGmPw+JH6iqIagCKUKIPSeqnw 5P3JP6FyKTKELMp2/N6BXRCE3p6q0JNLAiRp0xmyHDFBlKoiArTHoI9IM/Tb2zfT IuQan/4uzJ1rspn9lcB+oeWWVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQQJs9/ mFlnImfVwLd5iNmRA+HPMB8GA1UdIwQYMBaAFAlYhhQ4chDotprTwxpzYZ11XtDA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0IyMi82NjAyRTk3ODhD RDExMUVFQjYxRkM2MzhDNEY5QUUwMi9DVmlHRkRoeUVPaTJtdFBER25OaG5YVmUw TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NWaUdGRGh5RU9pMm10UERHbk5oblhWZTBNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0IyMi82NjAyRTk3ODhDRDExMUVFQjYxRkM2MzhDNEY5QUUwMi9DVmlHRkRoeUVP aTJtdFBER25OaG5YVmUwTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSFjBslnE5kssQC8DpxGrw6HZTE+GdwiczsWUODTJlAUM7jptMI+id 4Scff4kFT+XJ4181+/Ud3P2pQ2fCHhiPnZpB9utVq7qfzn2ImKxI3G6xVMCSpQlx ulr21dGQvU7Vnm21a4IKSoc2rpXq1uUSWz9ZUGwjzF8YULxrHi0NNnlLGAzinIkb MSPsqbP6fe5M+35puncnvpsBVtapJXc466GfP1z9Xb9tipmYyOyRrONNBbXUsZVN 8FxBdK6+Oy7+mtFHQLWtxex9PLhm7rf9dpelhR+wtMhvektxR7ZPRD3pvCRzaEs+ X+zdxr+G4QPOkBVUYzDUv9s4FUlpi608 -----END CERTIFICATE-----Generated at Thu Jun 5 19:14:47 2025 by rpki-client