$ rpki-client -vvf rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft File: CStU0vnpbT_OHwwNuzGxuCyNLOA.mft (raw, json) Hash identifier: qu7cGkdKmFOD4SAasvzWWbO/SZhGV/asYlaAeMO94oA= Subject key identifier: BC:10:24:66:9F:C6:40:5D:F4:00:D0:A6:A3:50:57:AA:AD:D6:A8:C0 Authority key identifier: 09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 Certificate issuer: /CN=A9122EA2/serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft Manifest number: 01E2 Signing time: Tue 01 Jul 2025 03:10:47 +0000 Manifest this update: Tue 01 Jul 2025 03:10:46 +0000 Manifest next update: Tue 08 Jul 2025 03:10:46 +0000 Files and hashes: 1: CStU0vnpbT_OHwwNuzGxuCyNLOA.crl (hash: LQsJ3AY/PT3Fz8u3oKdhdtMkr1uoYQu1KyVtjA0Dlq0=) 2: C20F71E0992A11EEBDE4AF84C4F9AE02.roa (hash: csl85VTomjs4iPv8bKOFHRUkLivByj84d/cWaa81y8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:10:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122EA2, serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Validity Not Before: Jul 1 03:10:46 2025 GMT Not After : Jul 8 03:10:46 2025 GMT Subject: CN=686351b7-c62c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4b:78:c3:13:ce:1e:71:f7:d6:14:cd:35:76: 81:5e:06:0d:17:2e:80:68:a1:bd:a3:4d:be:90:00: 92:76:db:98:98:4e:0f:04:c6:58:9a:1b:c3:bb:b1: be:cb:42:eb:0f:c4:9b:c9:6c:88:01:40:c5:c8:da: 49:9a:f9:1b:90:dd:8a:8e:e1:95:b5:72:8c:b0:2e: 26:af:3a:50:bd:60:84:58:1b:2c:d5:61:6a:45:fc: 29:fb:c3:33:e1:43:de:63:5d:5f:0a:89:93:12:07: 9f:e3:50:62:5a:ad:38:17:57:6e:c0:6c:89:4d:db: 76:91:9f:39:e7:d9:6d:f1:8d:18:85:a2:f3:58:be: 35:f5:ab:f8:60:7c:bc:c4:fd:74:40:85:18:49:00: 2f:c7:ee:15:24:d8:b5:6f:79:d8:37:dc:3e:b9:ff: 96:9b:4f:8c:7a:fb:34:93:8b:ee:cf:bd:f5:a8:49: 47:91:5b:e4:65:a5:5d:09:c2:65:de:9f:c5:cd:42: 48:46:92:94:4c:ad:e4:d8:ad:93:7b:a2:43:50:d2: b1:ac:af:0b:45:e7:b9:12:11:f9:3f:75:06:f8:4c: 20:cb:48:1a:01:fe:aa:ec:9b:33:33:9d:c1:44:a5: bf:6b:d7:80:2e:87:ca:7f:17:c9:ad:81:41:ae:59: 6a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:10:24:66:9F:C6:40:5D:F4:00:D0:A6:A3:50:57:AA:AD:D6:A8:C0 X509v3 Authority Key Identifier: keyid:09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:f9:61:61:32:fb:e2:80:a3:ec:76:8f:78:90:b0:53:d8:b4: 44:92:8c:3e:2e:cf:6e:d2:3a:40:97:63:b7:da:60:ad:54:b2: b8:d9:77:61:20:2d:24:ed:73:47:07:bc:4d:eb:e3:ef:4e:8e: 83:67:a3:b5:02:c2:ea:a5:7f:28:39:ee:b9:48:48:32:38:d8: df:d0:40:f2:0a:59:2e:8d:80:79:17:c9:ad:b4:61:a5:66:b6: 40:b5:95:4e:3d:7d:8a:b9:e0:1b:8f:2b:5e:8a:ac:9e:92:9b: c3:b9:b6:bc:4c:66:1e:12:84:29:34:87:3c:33:e2:b3:cb:03: 8d:20:f6:3f:0f:ed:12:04:4e:ae:2c:73:2b:3b:b9:e8:7f:3c: d6:2b:d2:a4:74:25:11:7e:ca:f8:3c:ad:79:fe:65:95:ac:a6: 05:26:2b:ec:01:35:dd:38:8d:ba:89:8b:5d:06:aa:59:0c:03: 94:04:3e:3b:76:62:c2:4c:ec:13:bc:24:64:7b:b6:16:23:e0: 84:07:3d:3e:93:e8:64:bc:74:de:09:77:91:be:e4:12:8a:41: 5b:1f:66:8d:20:72:9f:a1:0b:b8:fc:4f:15:8b:9e:92:d3:61: 3d:ba:13:fc:e9:5b:f5:b6:ba:0a:cd:23:6e:60:e8:64:d6:e4: 25:59:8e:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJFQTIxMTAvBgNVBAUTKDA5MkI1NEQyRjlFOTZEM0ZDRTFGMEMwREJCMzFCMUI4 MkM4RDJDRTAwHhcNMjUwNzAxMDMxMDQ2WhcNMjUwNzA4MDMxMDQ2WjAYMRYwFAYD VQQDEw02ODYzNTFiNy1jNjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEt4wxPOHnH31hTNNXaBXgYNFy6AaKG9o02+kACSdtuYmE4PBMZYmhvDu7G+ y0LrD8SbyWyIAUDFyNpJmvkbkN2KjuGVtXKMsC4mrzpQvWCEWBss1WFqRfwp+8Mz 4UPeY11fComTEgef41BiWq04F1duwGyJTdt2kZ8559lt8Y0YhaLzWL419av4YHy8 xP10QIUYSQAvx+4VJNi1b3nYN9w+uf+Wm0+Mevs0k4vuz731qElHkVvkZaVdCcJl 3p/FzUJIRpKUTK3k2K2Te6JDUNKxrK8LRee5EhH5P3UG+Ewgy0gaAf6q7JszM53B RKW/a9eALofKfxfJrYFBrllqMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwQJGaf xkBd9ADQpqNQV6qt1qjAMB8GA1UdIwQYMBaAFAkrVNL56W0/zh8MDbsxsbgsjSzg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkVBMi8xNTI1MzQxNDg1 NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJUX09Id3dOdXpHeHVDeU5M T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NTdFUwdm5wYlRfT0h3d051ekd4dUN5TkxPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkVBMi8xNTI1MzQxNDg1NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJU X09Id3dOdXpHeHVDeU5MT0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq+WFhMvvigKPsdo94kLBT2LREkow+Ls9u0jpAl2O32mCtVLK42Xdh IC0k7XNHB7xN6+PvTo6DZ6O1AsLqpX8oOe65SEgyONjf0EDyClkujYB5F8mttGGl ZrZAtZVOPX2KueAbjyteiqyekpvDuba8TGYeEoQpNIc8M+KzywONIPY/D+0SBE6u LHMrO7nofzzWK9KkdCURfsr4PK15/mWVrKYFJivsATXdOI26iYtdBqpZDAOUBD47 dmLCTOwTvCRke7YWI+CEBz0+k+hkvHTeCXeRvuQSikFbH2aNIHKfoQu4/E8Vi56S 02E9uhP86Vv1troKzSNuYOhk1uQlWY6R -----END CERTIFICATE-----Generated at Thu Jul 3 01:16:39 2025 by rpki-client