$ rpki-client -vvf rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft File: CmH1ryEJpoNhH7ogbyCM7-NImCE.mft (raw, json) Hash identifier: Mz8u7KMSqqiBKIvncgO+0YqlmUS+Hvr+t52CGbzeA7E= Subject key identifier: E3:DB:ED:7A:22:14:D3:CA:88:11:7E:5C:6C:C6:37:50:AF:BB:B0:60 Authority key identifier: 0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21 Certificate issuer: /CN=A91559AC/serialNumber=0A61F5AF2109A683611FBA206F208CEFE3489821 Certificate serial: 0AB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft Manifest number: 0AF4 Signing time: Fri 22 Aug 2025 19:40:41 +0000 Manifest this update: Fri 22 Aug 2025 19:40:40 +0000 Manifest next update: Fri 29 Aug 2025 19:40:40 +0000 Files and hashes: 1: CmH1ryEJpoNhH7ogbyCM7-NImCE.crl (hash: y7eLDXKcs0GYsDxdF45RQYTHOnqU4dRHUXtZuzMlq3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.crl rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:40:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2740 (0xab4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91559AC, serialNumber=0A61F5AF2109A683611FBA206F208CEFE3489821 Validity Not Before: Aug 22 19:40:40 2025 GMT Not After : Aug 29 19:40:40 2025 GMT Subject: CN=68a8c7b9-d6b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:df:51:13:57:cd:9c:94:29:d6:59:2f:fd:29: 7b:e5:b2:bb:1a:04:63:77:5a:3e:d7:7f:ab:cf:11: 08:1f:36:43:1a:e3:53:9f:85:89:6c:9f:4c:0d:ba: 27:74:12:f1:5b:5b:3f:e3:84:a2:ab:28:9d:76:81: 24:af:3a:ab:00:12:f1:d3:fc:0d:b9:7e:94:2b:ec: 6a:a3:00:d4:3c:9f:8c:96:c0:2b:0a:7b:dd:0b:cc: 16:50:77:6c:04:63:cd:50:63:3f:8f:28:f4:94:50: 27:04:46:6c:95:da:d8:88:f6:2f:56:64:61:b7:3f: 27:75:67:86:32:19:9b:a8:2f:c0:6a:54:ba:25:1e: e8:a5:27:9e:14:17:9b:fa:34:cc:d2:e6:65:f9:cb: 72:cd:61:cf:e1:f3:f6:0d:5c:b8:f0:a2:76:af:3e: cf:09:b7:18:41:61:59:14:5a:71:4c:d1:7e:8c:4c: d5:75:ea:8a:dc:41:43:0b:ae:ee:95:5f:41:fd:ea: 4a:a1:82:57:21:87:ca:41:00:f9:26:b4:43:22:17: 7a:81:c2:5f:55:9b:a1:dd:53:1a:94:d0:a2:7a:52: b1:66:95:5d:c7:f2:0d:43:a3:a7:cd:4d:07:cc:d6: 85:71:e3:e2:a8:74:62:d7:ee:d6:9b:ff:08:d1:af: fd:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:DB:ED:7A:22:14:D3:CA:88:11:7E:5C:6C:C6:37:50:AF:BB:B0:60 X509v3 Authority Key Identifier: keyid:0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:cf:e0:a8:3b:80:9c:55:4f:64:4f:e3:d6:1e:57:bb:dd:10: 92:fe:b7:e4:85:ac:2e:62:ad:f8:33:24:f0:f7:0a:69:08:75: 14:cf:fe:9e:a3:72:73:86:18:e6:ae:45:7d:ec:24:a0:bc:92: 09:17:17:91:f2:40:c2:2a:b1:8e:28:7b:83:bf:48:5d:16:26: 6f:1b:9a:b8:f6:1e:5e:00:97:06:99:31:19:a5:db:c4:a9:6f: e8:5a:0b:cd:fb:2e:9c:cc:43:ae:4d:f8:73:74:7d:5a:8d:36: af:80:2d:78:cb:70:f2:46:3b:9b:12:78:cf:2e:d4:eb:bb:1a: e2:53:0f:33:1e:f0:f4:f2:b0:ff:c5:cd:49:7b:4e:b3:9c:78: 38:0c:54:be:fe:7a:03:b9:e6:81:87:ee:13:1d:1f:57:28:4a: ad:2d:24:c0:14:d3:12:fe:13:bf:38:6a:2f:c3:e6:19:08:b3: 76:0e:ca:3c:c8:bb:e6:15:22:27:4e:4f:f5:cd:43:c7:cd:38: 43:6e:60:3f:56:5c:b6:39:dc:b6:7e:20:16:8e:b3:7c:bc:e4: 7f:5d:61:e6:1e:67:f5:40:b2:ea:8c:f9:c4:bc:41:b1:56:c0: e6:f0:c4:1b:57:09:ac:bb:0a:1e:08:e9:5a:8c:4f:ef:cc:06: f5:a6:f9:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU5QUMxMTAvBgNVBAUTKDBBNjFGNUFGMjEwOUE2ODM2MTFGQkEyMDZGMjA4Q0VG RTM0ODk4MjEwHhcNMjUwODIyMTk0MDQwWhcNMjUwODI5MTk0MDQwWjAYMRYwFAYD VQQDEw02OGE4YzdiOS1kNmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyt9RE1fNnJQp1lkv/Sl75bK7GgRjd1o+13+rzxEIHzZDGuNTn4WJbJ9MDbon dBLxW1s/44SiqyiddoEkrzqrABLx0/wNuX6UK+xqowDUPJ+MlsArCnvdC8wWUHds BGPNUGM/jyj0lFAnBEZsldrYiPYvVmRhtz8ndWeGMhmbqC/AalS6JR7opSeeFBeb +jTM0uZl+ctyzWHP4fP2DVy48KJ2rz7PCbcYQWFZFFpxTNF+jEzVdeqK3EFDC67u lV9B/epKoYJXIYfKQQD5JrRDIhd6gcJfVZuh3VMalNCielKxZpVdx/INQ6OnzU0H zNaFcePiqHRi1+7Wm/8I0a/9OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPb7Xoi FNPKiBF+XGzGN1Cvu7BgMB8GA1UdIwQYMBaAFAph9a8hCaaDYR+6IG8gjO/jSJgh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTlBQy9DMDYxMzUxNjVG OEQxMUVBQjUwMEJENjRDNEY5QUUwMi9DbUgxcnlFSnBvTmhIN29nYnlDTTctTklt Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtSDFyeUVKcG9OaEg3b2dieUNNNy1OSW1DRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTlBQy9DMDYxMzUxNjVGOEQxMUVBQjUwMEJENjRDNEY5QUUwMi9DbUgxcnlFSnBv TmhIN29nYnlDTTctTkltQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTz+CoO4CcVU9kT+PWHle73RCS/rfkhawuYq34MyTw9wppCHUUz/6e o3JzhhjmrkV97CSgvJIJFxeR8kDCKrGOKHuDv0hdFiZvG5q49h5eAJcGmTEZpdvE qW/oWgvN+y6czEOuTfhzdH1ajTavgC14y3DyRjubEnjPLtTruxriUw8zHvD08rD/ xc1Je06znHg4DFS+/noDueaBh+4THR9XKEqtLSTAFNMS/hO/OGovw+YZCLN2Dso8 yLvmFSInTk/1zUPHzThDbmA/Vly2Ody2fiAWjrN8vOR/XWHmHmf1QLLqjPnEvEGx VsDm8MQbVwmsuwoeCOlajE/vzAb1pvmQ -----END CERTIFICATE-----Generated at Sat Aug 23 19:31:44 2025 by rpki-client