$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft File: CuIi7F4XpuYytVnUnFse8zLaQ8s.mft (raw, json) Hash identifier: YsYeKoE1E05K6H0l3B4s3TmJsyPf1fpKMPJlDq48cLQ= Subject key identifier: 67:D1:47:2D:A9:EA:4D:7C:54:D6:BE:B1:EC:35:4F:23:4A:DB:E8:B9 Authority key identifier: 0A:E2:22:EC:5E:17:A6:E6:32:B5:59:D4:9C:5B:1E:F3:32:DA:43:CB Certificate issuer: /CN=A91C7C04/serialNumber=0AE222EC5E17A6E632B559D49C5B1EF332DA43CB Certificate serial: 0719 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft Manifest number: 06FD Signing time: Wed 20 Aug 2025 22:04:35 +0000 Manifest this update: Wed 20 Aug 2025 22:04:35 +0000 Manifest next update: Wed 27 Aug 2025 22:04:35 +0000 Files and hashes: 1: CuIi7F4XpuYytVnUnFse8zLaQ8s.crl (hash: E/F5yZLxmgl+ekeNsegeYpsx5RfBpFfIkj+U40J0iL8=) 2: A825CC96324011EC9E90243EC4F9AE02.roa (hash: Csw4qj9xE9hGEDImUH/XPPY2KPdm1RGZvA3bAW3MNCY=) 3: DA45147EB35E11EE8EED0E37C4F9AE02.roa (hash: MLem2RJrmzD72xixiKpCd0XFlZ6/VicCf/qXTlSWENc=) 4: F097281C169A11EF8927EC2DC4F9AE02.roa (hash: w3Ln1KV8lxVl5Uw2YRQh7wulnVukzVJfQnsYtJXybYU=) 5: 0C42C86EF38611EF92753935C4F9AE02.roa (hash: MdSSPQnzwPVIzYg1f83uFbIF+zvXp1fZov2cahwOMzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.crl rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 22:04:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1817 (0x719) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7C04, serialNumber=0AE222EC5E17A6E632B559D49C5B1EF332DA43CB Validity Not Before: Aug 20 22:04:35 2025 GMT Not After : Aug 27 22:04:35 2025 GMT Subject: CN=68a64673-5d49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a7:c0:cf:db:45:a9:0a:7c:70:cb:52:ab:7d: b1:e2:07:6b:6e:85:9a:27:bd:53:ef:86:6c:5c:22: f9:df:b0:5a:37:6b:fc:5c:dd:19:88:ce:5a:ff:65: 08:03:b4:3e:5a:18:02:3b:c1:b2:9d:f3:3a:b5:69: 96:96:ca:0c:e6:1a:11:16:d6:e4:d6:dc:ce:ba:5d: d4:40:51:42:34:9d:9e:31:fe:6d:45:a0:07:a0:19: a3:29:60:5b:57:3f:39:36:97:02:9f:ae:fc:64:1d: f4:15:65:3e:f1:9f:02:df:47:90:92:54:50:70:95: 7b:43:c1:b1:a0:07:1c:ec:22:3c:19:d3:9d:82:ac: 82:70:a0:57:ae:59:18:f6:79:af:24:c3:9b:c7:f8: 1c:7f:26:14:06:8a:a2:40:62:66:76:79:1c:f8:bf: 32:12:15:e5:ce:ed:4b:8a:5e:50:a7:0f:75:19:39: f5:8c:dd:01:b5:90:52:1b:07:1f:f3:a5:f8:08:b3: fc:a9:fd:75:02:29:41:1c:93:68:fb:93:24:62:4c: 54:25:28:16:bb:65:35:0b:45:33:4c:4d:77:d1:22: d4:a1:8c:90:a2:50:ce:b4:b4:0e:21:b7:7c:e0:75: ef:62:62:d9:57:a5:b5:be:fc:90:fb:05:4e:2d:33: 95:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:D1:47:2D:A9:EA:4D:7C:54:D6:BE:B1:EC:35:4F:23:4A:DB:E8:B9 X509v3 Authority Key Identifier: keyid:0A:E2:22:EC:5E:17:A6:E6:32:B5:59:D4:9C:5B:1E:F3:32:DA:43:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:1e:13:59:25:07:b3:0a:80:8a:ae:9b:ee:36:8f:77:21:4f: f7:e2:5c:fd:9c:d1:61:c9:ea:24:62:ab:65:f5:eb:c9:ed:d2: d0:d2:83:36:1e:06:2b:8e:ae:94:4f:2b:5f:31:23:28:a0:c0: 05:e4:55:78:86:12:6c:7d:55:cf:84:a4:76:fb:d1:53:99:db: d8:d0:3e:4a:11:8c:f1:83:3b:8e:85:2e:5e:f7:f7:20:2f:bc: 3d:bc:f1:77:f3:e5:33:c3:ac:ed:2a:d1:1c:56:de:3e:35:b1: ff:ce:61:36:71:2e:03:98:c5:e6:5c:83:88:dc:de:e4:d5:14: 8f:f3:f5:dc:17:35:14:5c:c7:96:88:4f:0e:1d:6f:9c:14:12: dd:d6:73:59:41:14:21:b3:6f:40:8c:5a:d7:d4:5b:64:d8:77: 8e:03:62:cd:88:0e:af:1f:9d:3c:d9:b2:e1:45:15:eb:76:ea: d4:24:c8:0d:00:f3:4f:07:c1:4f:37:9e:36:6c:f1:3f:90:49: 02:6f:4e:23:7e:4f:5d:be:54:88:f9:43:41:00:a8:91:d4:36: fa:a4:2f:b2:d7:1e:87:54:b9:29:65:e3:ce:0d:7b:df:6c:0b: 81:5c:ee:4a:e8:2b:bc:b1:21:d1:64:7a:ca:ef:e8:ce:4a:4f: 9c:e1:4b:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdDMDQxMTAvBgNVBAUTKDBBRTIyMkVDNUUxN0E2RTYzMkI1NTlENDlDNUIxRUYz MzJEQTQzQ0IwHhcNMjUwODIwMjIwNDM1WhcNMjUwODI3MjIwNDM1WjAYMRYwFAYD VQQDEw02OGE2NDY3My01ZDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKfAz9tFqQp8cMtSq32x4gdrboWaJ71T74ZsXCL537BaN2v8XN0ZiM5a/2UI A7Q+WhgCO8GynfM6tWmWlsoM5hoRFtbk1tzOul3UQFFCNJ2eMf5tRaAHoBmjKWBb Vz85NpcCn678ZB30FWU+8Z8C30eQklRQcJV7Q8GxoAcc7CI8GdOdgqyCcKBXrlkY 9nmvJMObx/gcfyYUBoqiQGJmdnkc+L8yEhXlzu1Lil5Qpw91GTn1jN0BtZBSGwcf 86X4CLP8qf11AilBHJNo+5MkYkxUJSgWu2U1C0UzTE130SLUoYyQolDOtLQOIbd8 4HXvYmLZV6W1vvyQ+wVOLTOVCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfRRy2p 6k18VNa+sew1TyNK2+i5MB8GA1UdIwQYMBaAFAriIuxeF6bmMrVZ1JxbHvMy2kPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0MwNC9BMERCMzU1MjVG QjQxMUVCQUI3QzZBMjNDNEY5QUUwMi9DdUlpN0Y0WHB1WXl0Vm5VbkZzZTh6TGFR OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N1SWk3RjRYcHVZeXRWblVuRnNlOHpMYVE4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0MwNC9BMERCMzU1MjVGQjQxMUVCQUI3QzZBMjNDNEY5QUUwMi9DdUlpN0Y0WHB1 WXl0Vm5VbkZzZTh6TGFROHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOHhNZJQezCoCKrpvuNo93IU/34lz9nNFhyeokYqtl9evJ7dLQ0oM2 HgYrjq6UTytfMSMooMAF5FV4hhJsfVXPhKR2+9FTmdvY0D5KEYzxgzuOhS5e9/cg L7w9vPF38+Uzw6ztKtEcVt4+NbH/zmE2cS4DmMXmXIOI3N7k1RSP8/XcFzUUXMeW iE8OHW+cFBLd1nNZQRQhs29AjFrX1Ftk2HeOA2LNiA6vH5082bLhRRXrdurUJMgN APNPB8FPN542bPE/kEkCb04jfk9dvlSI+UNBAKiR1Db6pC+y1x6HVLkpZePODXvf bAuBXO5K6Cu8sSHRZHrK7+jOSk+c4Uu2 -----END CERTIFICATE-----Generated at Thu Aug 21 08:02:41 2025 by rpki-client