$ rpki-client -vvf rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft File: CKtUearwyEilFC1v5NyZFitFwzc.mft (raw, json) Hash identifier: +WGOuKoLMPNCh95C6Ae/NUOWDGdZirESTkJx1cWb+Ds= Subject key identifier: 57:E0:F9:1D:3B:BE:CE:37:72:33:68:D5:69:19:84:F8:6D:39:94:DD Authority key identifier: 08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 Certificate issuer: /CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft Manifest number: CC Signing time: Wed 03 Sep 2025 01:07:24 +0000 Manifest this update: Wed 03 Sep 2025 01:07:24 +0000 Manifest next update: Wed 10 Sep 2025 01:07:24 +0000 Files and hashes: 1: CKtUearwyEilFC1v5NyZFitFwzc.crl (hash: FmVdlfDuR6mpq/2f2oHD5p7M4BgZgm5pRp43HCJedqY=) 2: 710957A8559411EFA07E1C5AC4F9AE02.roa (hash: kCmrnMtq0oO23W6srUkZmhxFZ7143rIIMei/dep36jM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 01:07:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DC7C, serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Validity Not Before: Sep 3 01:07:24 2025 GMT Not After : Sep 10 01:07:24 2025 GMT Subject: CN=68b794cc-4588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:60:b4:9c:95:72:f6:63:c9:13:5b:96:7b:08: 3c:e4:34:43:ff:93:8f:98:3c:b4:87:f1:9e:e9:85: 8e:bf:01:c4:82:42:34:73:dd:0d:86:6e:e9:c8:2e: 71:a4:3a:ad:a5:00:47:a9:ef:18:6b:5b:b9:37:f9: 6e:23:10:3f:3e:03:cc:17:ee:9e:e9:3d:54:c2:99: ca:de:21:6d:72:93:27:50:8f:45:09:07:ff:f7:09: 05:35:f5:1f:b7:e7:00:29:12:7c:99:c9:d7:37:5e: 9d:3d:a2:23:39:bf:e7:07:cc:59:d4:44:77:c3:f5: a4:04:e0:e4:dd:be:0f:d3:66:b2:9b:8c:47:31:29: b9:f9:fb:94:40:aa:c5:98:13:0f:99:2a:4f:e0:a2: 19:27:87:e9:8d:f0:19:c8:5b:15:0d:be:29:74:be: 61:4e:61:92:67:39:28:12:e0:cc:39:84:a8:ce:23: f5:bc:8c:d7:ce:fc:d6:75:95:26:f8:6b:b5:3a:d8: 73:10:52:4e:75:66:bf:20:17:3f:ab:c3:f8:89:ba: c6:e2:45:0d:1f:71:b5:ac:99:1f:17:7f:55:e6:2a: 97:91:9d:53:fc:14:22:c7:3d:fb:d0:be:66:44:39: ec:02:86:ed:41:65:1e:67:11:d9:01:a4:e5:76:39: 7d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E0:F9:1D:3B:BE:CE:37:72:33:68:D5:69:19:84:F8:6D:39:94:DD X509v3 Authority Key Identifier: keyid:08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:0d:ad:fa:57:73:d1:d8:1a:5d:15:96:76:06:d4:52:2a:f3: 1e:21:36:aa:3f:66:f9:49:01:ed:a1:73:87:dd:8d:bd:62:73: 8a:7e:44:bb:1c:ab:23:f9:61:6d:66:d9:cf:62:82:b3:1f:85: 87:71:73:c2:56:27:f5:f6:56:5f:da:65:3f:8a:e8:db:77:ba: 49:3b:17:57:aa:28:23:85:9d:0e:bc:c1:ae:c1:bc:f7:e9:84: 4d:43:44:49:1e:40:ad:0b:af:4e:1c:99:a5:a5:5c:6d:45:09: 96:95:a6:47:0a:c9:08:a9:c0:a2:cd:54:d0:55:a8:4b:28:32: c7:02:8e:0e:54:80:f7:99:14:8f:2c:93:77:84:b8:9b:bd:d2: 0e:e5:36:82:49:50:a9:e8:0c:7c:c6:04:d3:f0:c5:b2:33:bf: 00:6a:cc:f5:ee:aa:40:9d:1e:19:01:82:cc:21:c9:02:42:98: fe:6e:ff:49:33:53:e2:8f:50:c3:62:e7:cf:cf:05:16:54:9a: 6d:44:3c:65:77:3a:05:db:06:69:2d:d8:ee:f4:0f:c5:e6:d8: 57:7c:8d:3d:4d:8a:79:30:58:72:80:6c:3f:df:ae:98:31:9d: 2e:11:05:0e:7a:21:df:88:7f:94:9e:31:b9:63:76:62:42:77: ab:05:fb:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRDN0MxMTAvBgNVBAUTKDA4QUI1NDc5QUFGMEM4NDhBNTE0MkQ2RkU0REM5OTE2 MkI0NUMzMzcwHhcNMjUwOTAzMDEwNzI0WhcNMjUwOTEwMDEwNzI0WjAYMRYwFAYD VQQDEw02OGI3OTRjYy00NTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp2C0nJVy9mPJE1uWewg85DRD/5OPmDy0h/Ge6YWOvwHEgkI0c90Nhm7pyC5x pDqtpQBHqe8Ya1u5N/luIxA/PgPMF+6e6T1UwpnK3iFtcpMnUI9FCQf/9wkFNfUf t+cAKRJ8mcnXN16dPaIjOb/nB8xZ1ER3w/WkBODk3b4P02aym4xHMSm5+fuUQKrF mBMPmSpP4KIZJ4fpjfAZyFsVDb4pdL5hTmGSZzkoEuDMOYSoziP1vIzXzvzWdZUm +Gu1OthzEFJOdWa/IBc/q8P4ibrG4kUNH3G1rJkfF39V5iqXkZ1T/BQixz370L5m RDnsAobtQWUeZxHZAaTldjl9gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfg+R07 vs43cjNo1WkZhPhtOZTdMB8GA1UdIwQYMBaAFAirVHmq8MhIpRQtb+TcmRYrRcM3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REM3Qy9BNEMxNDYyODU1 NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lFaWxGQzF2NU55WkZpdEZ3 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NLdFVlYXJ3eUVpbEZDMXY1TnlaRml0Rnd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REM3Qy9BNEMxNDYyODU1NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lF aWxGQzF2NU55WkZpdEZ3emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVDa36V3PR2BpdFZZ2BtRSKvMeITaqP2b5SQHtoXOH3Y29YnOKfkS7 HKsj+WFtZtnPYoKzH4WHcXPCVif19lZf2mU/iujbd7pJOxdXqigjhZ0OvMGuwbz3 6YRNQ0RJHkCtC69OHJmlpVxtRQmWlaZHCskIqcCizVTQVahLKDLHAo4OVID3mRSP LJN3hLibvdIO5TaCSVCp6Ax8xgTT8MWyM78Aasz17qpAnR4ZAYLMIckCQpj+bv9J M1Pij1DDYufPzwUWVJptRDxldzoF2wZpLdju9A/F5thXfI09TYp5MFhygGw/366Y MZ0uEQUOeiHfiH+UnjG5Y3ZiQnerBfsa -----END CERTIFICATE-----Generated at Thu Sep 4 15:49:47 2025 by rpki-client