$ rpki-client -vvf rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft File: CViGFDhyEOi2mtPDGnNhnXVe0MA.mft (raw, json) Hash identifier: Up7QFXhncXPuG6PfR3NS+k2EeWWBj0i2RziM12IbtK4= Subject key identifier: 6E:72:BD:37:EF:2B:03:E4:DF:3D:BF:DF:F3:D7:1E:B2:57:8E:26:39 Authority key identifier: 09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 Certificate issuer: /CN=A914CB22/serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft Manifest number: 0145 Signing time: Thu 21 Aug 2025 04:27:18 +0000 Manifest this update: Thu 21 Aug 2025 04:27:17 +0000 Manifest next update: Thu 28 Aug 2025 04:27:17 +0000 Files and hashes: 1: CViGFDhyEOi2mtPDGnNhnXVe0MA.crl (hash: APL5RLZVVuzSsp1PKBrQ5jqSLlu7WRkDCpMkqWuQ9xg=) 2: 2F996DC6C77311EEBD6F2D2BC4F9AE02.roa (hash: lfBaqProMut7Uby4sm5sXFCXR+BzVB4lKdYH7qIjDTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 04:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CB22, serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Validity Not Before: Aug 21 04:27:17 2025 GMT Not After : Aug 28 04:27:17 2025 GMT Subject: CN=68a6a026-e9be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:51:89:26:0e:0f:88:1e:d0:4f:df:9d:bd:fe: 25:46:35:02:0f:af:79:7d:8c:83:69:e6:a3:24:c7: 32:2c:63:fc:db:67:97:2c:2e:c2:78:b1:87:d5:25: 35:e2:66:c7:d6:ec:bb:78:08:ba:48:e4:ca:7f:38: 5a:2e:2d:63:12:8d:ee:0a:60:2c:0b:43:91:87:8e: be:97:f9:8e:63:3f:9b:20:ab:a6:fa:05:19:77:fb: a5:34:1c:85:a1:4f:02:75:5e:c3:fb:4c:70:84:fc: 31:40:e0:1a:9e:bb:4a:7a:bf:9f:60:0a:de:2a:e8: 82:81:29:0f:a6:43:91:cf:bf:fd:af:9a:22:60:ec: dd:ee:c5:67:66:4b:df:ac:55:14:67:de:d4:c0:64: 95:8e:92:49:8d:cc:4b:3a:7d:2b:bb:e4:27:bb:48: a0:1f:10:4f:b3:5c:7f:c0:f2:4d:db:f0:32:80:b7: a9:83:57:b6:4d:1f:e3:aa:05:86:b1:7a:4c:6d:56: b0:d2:dc:6c:73:73:8b:de:35:7e:6e:f3:8b:b7:66: 37:ab:24:19:6f:f4:14:df:f4:4a:42:6e:5c:05:bb: 68:95:53:c6:c7:ef:e6:60:b7:d3:57:e0:9e:bd:c3: 4b:51:57:e7:a1:6e:0e:2a:d2:89:0a:88:2c:00:52: 8a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:72:BD:37:EF:2B:03:E4:DF:3D:BF:DF:F3:D7:1E:B2:57:8E:26:39 X509v3 Authority Key Identifier: keyid:09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:c7:ae:52:bc:60:e7:d5:b8:21:a2:5c:e6:c7:e7:97:7d:4a: 4a:30:29:92:92:80:61:1c:d4:ea:e0:f9:83:44:40:0e:08:b7: b4:68:ef:a8:9f:a9:de:cc:4a:bb:c4:a5:c2:d9:7e:f5:df:8e: 7d:75:50:9a:e1:04:ce:4a:ea:29:b1:60:a1:ff:91:de:02:5a: ba:7b:9f:27:c2:7f:fd:72:9a:ee:36:ad:79:8b:b2:d1:11:7a: fb:6a:7a:c4:de:49:be:71:63:06:04:00:57:f6:45:55:0d:22: ea:d8:b1:d9:e9:18:8a:13:cf:fd:a9:65:7b:fc:6a:59:54:5f: 39:d3:c8:2c:67:37:77:92:d3:5c:56:24:b1:d1:da:72:c4:b1: 92:d8:5d:1f:2e:a7:8d:ff:ff:58:17:ce:7f:74:0a:a1:c4:14: 0e:98:99:49:8f:09:f8:e3:28:a3:0a:b6:54:ea:cf:26:3a:dc: 9a:9d:53:e6:20:4b:7b:77:4f:4c:8a:9d:da:78:1e:67:3b:e1: c9:ad:92:e9:63:f3:cb:6f:16:95:fb:42:16:a4:fc:10:e6:64: 71:81:be:09:f1:a4:c4:5a:fc:c4:50:7d:30:4c:74:cf:d8:9c: c4:a5:7c:1c:fb:38:21:a0:a2:31:fa:b6:47:1a:cb:11:83:9a: 10:a9:7d:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCMjIxMTAvBgNVBAUTKDA5NTg4NjE0Mzg3MjEwRThCNjlBRDNDMzFBNzM2MTlE NzU1RUQwQzAwHhcNMjUwODIxMDQyNzE3WhcNMjUwODI4MDQyNzE3WjAYMRYwFAYD VQQDEw02OGE2YTAyNi1lOWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFGJJg4PiB7QT9+dvf4lRjUCD695fYyDaeajJMcyLGP822eXLC7CeLGH1SU1 4mbH1uy7eAi6SOTKfzhaLi1jEo3uCmAsC0ORh46+l/mOYz+bIKum+gUZd/ulNByF oU8CdV7D+0xwhPwxQOAanrtKer+fYAreKuiCgSkPpkORz7/9r5oiYOzd7sVnZkvf rFUUZ97UwGSVjpJJjcxLOn0ru+Qnu0igHxBPs1x/wPJN2/AygLepg1e2TR/jqgWG sXpMbVaw0txsc3OL3jV+bvOLt2Y3qyQZb/QU3/RKQm5cBbtolVPGx+/mYLfTV+Ce vcNLUVfnoW4OKtKJCogsAFKKWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG5yvTfv KwPk3z2/3/PXHrJXjiY5MB8GA1UdIwQYMBaAFAlYhhQ4chDotprTwxpzYZ11XtDA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0IyMi82NjAyRTk3ODhD RDExMUVFQjYxRkM2MzhDNEY5QUUwMi9DVmlHRkRoeUVPaTJtdFBER25OaG5YVmUw TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NWaUdGRGh5RU9pMm10UERHbk5oblhWZTBNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0IyMi82NjAyRTk3ODhDRDExMUVFQjYxRkM2MzhDNEY5QUUwMi9DVmlHRkRoeUVP aTJtdFBER25OaG5YVmUwTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9x65SvGDn1bgholzmx+eXfUpKMCmSkoBhHNTq4PmDREAOCLe0aO+o n6nezEq7xKXC2X713459dVCa4QTOSuopsWCh/5HeAlq6e58nwn/9cpruNq15i7LR EXr7anrE3km+cWMGBABX9kVVDSLq2LHZ6RiKE8/9qWV7/GpZVF8508gsZzd3ktNc ViSx0dpyxLGS2F0fLqeN//9YF85/dAqhxBQOmJlJjwn44yijCrZU6s8mOtyanVPm IEt7d09Mip3aeB5nO+HJrZLpY/PLbxaV+0IWpPwQ5mRxgb4J8aTEWvzEUH0wTHTP 2JzEpXwc+zghoKIx+rZHGssRg5oQqX0R -----END CERTIFICATE-----Generated at Sat Aug 23 03:25:45 2025 by rpki-client