$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json) Hash identifier: dSAYIxzx+fPBG73lk5jlT4Yq2u0BE2IyZogT5CrFIN4= Subject key identifier: 72:76:53:7A:33:83:1D:6D:7B:26:77:95:7F:9F:D9:40:32:B3:A7:13 Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft Manifest number: 0196 Signing time: Sat 07 Jun 2025 03:03:11 +0000 Manifest this update: Sat 07 Jun 2025 03:03:11 +0000 Manifest next update: Sat 14 Jun 2025 03:03:11 +0000 Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: bT9osfUlbMcz403WIVF9ES+J2+0Aum2u2142MXlenls=) 2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: 3MNDiBeknSHzY93vsrPzAAHGYu/SDVnN9ctSXpKt+Ek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 03:03:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677, serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: Jun 7 03:03:11 2025 GMT Not After : Jun 14 03:03:11 2025 GMT Subject: CN=6843abef-ee75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:03:b8:9b:55:5d:75:bc:80:e7:ba:77:6e:0d: 43:f9:a3:1b:a2:cf:e7:d6:96:57:b0:58:e5:e2:6d: 26:62:53:d9:b0:c5:bd:aa:4c:43:4a:74:1f:ab:56: b6:78:8b:9b:ba:6a:11:e7:ae:b1:27:14:45:fd:fd: 79:9e:bb:c2:c6:05:72:73:de:61:cb:3e:0c:e9:fa: 1d:15:f5:bf:61:43:b2:aa:df:de:7f:11:03:8a:fb: 21:16:66:95:ba:52:2d:c4:c1:3f:c1:79:5f:d4:ef: d8:5a:2a:d8:61:5f:85:20:71:4d:5e:b2:49:3f:95: 87:4d:b9:d5:36:98:ec:1c:ce:76:50:a0:4d:1e:89: 21:64:79:f9:57:8c:a1:d0:ab:73:ca:b6:a8:cc:73: 49:d2:99:b3:cd:86:e7:b3:c1:c2:56:cf:9e:9a:9b: 81:c8:28:f0:c8:d3:78:46:15:b6:b9:f8:76:21:38: e7:3e:04:c6:70:06:f2:3d:17:2e:06:a3:10:5b:97: d6:58:d4:9f:92:1c:bb:70:a7:50:1a:78:87:fa:c1: 83:b8:7b:f3:82:0a:45:50:89:e8:e8:03:3f:3f:72: ad:ef:f7:45:87:f1:e2:0e:b5:32:90:16:40:6d:bd: 2d:53:6b:e2:90:ae:18:da:9a:8b:f8:3a:94:f9:f8: d1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:76:53:7A:33:83:1D:6D:7B:26:77:95:7F:9F:D9:40:32:B3:A7:13 X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:8d:28:a7:e7:64:d1:7c:7d:8c:55:b0:a4:bb:08:ab:b7:f7: 01:f0:df:44:fe:23:08:32:ed:16:71:79:5b:46:14:1a:d9:49: cd:fa:5e:72:77:1f:bb:78:82:3f:cf:5e:c9:56:0f:40:af:2f: 26:29:32:12:46:46:34:41:93:67:de:b4:02:89:9f:75:49:71: c1:0f:d8:29:48:a3:98:67:65:36:cb:f5:04:5f:f8:58:2d:f2: 44:f5:3d:85:39:c6:51:d4:3f:bd:d7:e6:f8:6f:d9:2e:ed:04: 71:47:a4:05:e4:1d:b9:13:26:de:35:3a:59:ee:56:23:d0:ec: 57:b7:82:42:d6:83:c5:fa:81:66:fb:5f:01:ae:ce:cf:48:f1: c7:4e:3f:d3:49:fd:27:20:bd:1d:53:8b:6f:05:b6:b1:5d:e6: 11:3c:eb:ec:74:9e:9e:e6:78:f1:18:68:0c:e6:03:d5:ac:95: 2c:2e:93:8d:dd:1a:91:c8:ff:aa:99:12:3e:59:4a:2b:b2:7d: 32:99:12:1d:73:31:66:1f:ac:b6:5a:bb:2f:7e:c7:9c:74:b6: c7:46:88:59:3f:dd:bf:46:70:66:85:47:90:38:a7:d0:98:fe: 54:b1:57:ae:06:b1:19:12:49:01:4b:49:18:d4:df:af:a6:01: c9:a8:16:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjUwNjA3MDMwMzExWhcNMjUwNjE0MDMwMzExWjAYMRYwFAYD VQQDEw02ODQzYWJlZi1lZTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QO4m1VddbyA57p3bg1D+aMbos/n1pZXsFjl4m0mYlPZsMW9qkxDSnQfq1a2 eIubumoR566xJxRF/f15nrvCxgVyc95hyz4M6fodFfW/YUOyqt/efxEDivshFmaV ulItxME/wXlf1O/YWirYYV+FIHFNXrJJP5WHTbnVNpjsHM52UKBNHokhZHn5V4yh 0KtzyraozHNJ0pmzzYbns8HCVs+empuByCjwyNN4RhW2ufh2ITjnPgTGcAbyPRcu BqMQW5fWWNSfkhy7cKdQGniH+sGDuHvzggpFUIno6AM/P3Kt7/dFh/HiDrUykBZA bb0tU2vikK4Y2pqL+DqU+fjRqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJ2U3oz gx1teyZ3lX+f2UAys6cTMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjY3Ny82NDU3REZEOEQ4MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12 NHgxMURSTnBibHpxOHFtODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBejSin52TRfH2MVbCkuwirt/cB8N9E/iMIMu0WcXlbRhQa2UnN+l5y dx+7eII/z17JVg9Ary8mKTISRkY0QZNn3rQCiZ91SXHBD9gpSKOYZ2U2y/UEX/hY LfJE9T2FOcZR1D+91+b4b9ku7QRxR6QF5B25EybeNTpZ7lYj0OxXt4JC1oPF+oFm +18Brs7PSPHHTj/TSf0nIL0dU4tvBbaxXeYRPOvsdJ6e5njxGGgM5gPVrJUsLpON 3RqRyP+qmRI+WUorsn0ymRIdczFmH6y2WrsvfsecdLbHRohZP92/RnBmhUeQOKfQ mP5UsVeuBrEZEkkBS0kY1N+vpgHJqBYq -----END CERTIFICATE-----Generated at Sun Jun 8 23:21:19 2025 by rpki-client