$ rpki-client -vvf rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft File: CmH1ryEJpoNhH7ogbyCM7-NImCE.mft (raw, json) Hash identifier: uwmnLgk+ysqyZC8jn9u9Ftw/r+KttCYMB2keKXLORNk= Subject key identifier: DF:6F:AF:80:35:3C:C5:F8:64:3C:B5:E7:27:9B:8D:60:BD:64:F8:9A Authority key identifier: 0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21 Certificate issuer: /CN=A91559AC/serialNumber=0A61F5AF2109A683611FBA206F208CEFE3489821 Certificate serial: 0A9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft Manifest number: 0AC2 Signing time: Fri 04 Jul 2025 19:57:17 +0000 Manifest this update: Fri 04 Jul 2025 19:57:16 +0000 Manifest next update: Fri 11 Jul 2025 19:57:16 +0000 Files and hashes: 1: CmH1ryEJpoNhH7ogbyCM7-NImCE.crl (hash: 2Ffda9keaG9+7W8eta4QhlJ0/iAb6i5W4wZycQwe6Xs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.crl rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2715 (0xa9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91559AC, serialNumber=0A61F5AF2109A683611FBA206F208CEFE3489821 Validity Not Before: Jul 4 19:57:16 2025 GMT Not After : Jul 11 19:57:16 2025 GMT Subject: CN=6868321c-33e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c3:be:2f:b3:91:e9:35:6e:00:73:bf:2c:b7: 86:1b:fb:bb:cb:e7:59:76:dc:42:81:2b:f7:ea:43: 0f:bc:76:67:80:e0:91:e1:8c:5d:c1:db:cb:3d:b1: b5:93:2e:5e:56:41:d1:09:c8:65:75:2c:ec:7d:8a: f7:2b:2e:78:a0:26:61:2a:c9:76:91:24:2a:be:4f: cc:64:50:6e:3f:ec:42:5c:db:6f:c7:32:59:35:6e: d9:b2:90:2f:9c:60:cb:21:e4:87:79:61:4f:43:a6: 97:fd:85:d8:55:fb:a5:85:82:96:a1:41:08:e4:bd: c8:dc:ab:f4:96:b1:e1:d3:b8:f5:52:e2:cd:ba:ec: 0c:56:de:f5:89:ea:f7:f9:19:6f:48:d1:55:60:c9: 3e:e8:73:7b:d8:82:7b:fc:44:84:51:1c:74:cf:8d: 7d:9a:3e:2a:4b:54:02:f0:33:64:71:e0:db:fb:97: 60:6a:eb:67:05:c7:d3:98:3e:91:85:91:c6:18:43: e1:1e:48:68:33:0f:82:3c:9b:ce:cd:94:3c:89:7c: 0a:0e:6a:53:23:6d:09:bd:4f:b5:91:5b:d8:9e:0b: 4f:b1:a9:c5:16:5e:c3:09:ae:da:d9:62:14:92:85: 75:1e:22:4e:8b:b2:86:eb:c8:93:1f:bc:e5:bb:2b: ef:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:6F:AF:80:35:3C:C5:F8:64:3C:B5:E7:27:9B:8D:60:BD:64:F8:9A X509v3 Authority Key Identifier: keyid:0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:93:e5:e8:52:f1:3f:f7:f0:0f:c9:38:36:7b:31:3f:78:56: a5:db:10:0f:5d:83:fc:00:4e:74:a8:7c:5f:54:d0:bc:12:de: 38:c5:1e:33:f8:72:ea:e2:4d:30:df:06:63:c0:59:c2:9e:d9: c9:84:39:13:9d:80:e3:f9:a4:1f:18:9a:d4:1b:7a:b8:e7:b5: 49:d9:93:c8:2a:74:11:66:ff:50:d5:2b:e8:d0:10:3c:13:d2: 1c:e6:c1:10:ea:ec:21:43:2b:77:44:be:de:40:1e:e6:61:63: c1:4a:80:0a:79:43:c7:f4:87:da:06:fd:07:39:43:30:b8:be: 47:a0:b2:0b:9a:f3:ca:88:5f:fb:9a:4e:b2:44:b8:e2:07:c4: d3:fb:45:45:af:68:5a:73:ca:77:c6:92:a1:f1:99:cc:38:69: ad:59:03:93:43:99:e0:c9:7a:d4:cf:22:86:e7:1c:b2:25:99: 90:dc:ef:a9:43:d7:7e:af:5b:c8:a1:89:30:0b:fa:cd:9e:5a: 3f:b9:90:80:a5:27:f3:17:2e:6e:0d:02:e5:e1:1e:33:c9:4e: 77:68:a8:35:59:a2:e3:cb:36:f5:47:89:90:89:f1:87:d2:dc: 2c:b1:ca:ad:3d:7f:f5:21:a2:33:df:72:0d:d9:2c:3a:5c:54: 74:5e:36:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU5QUMxMTAvBgNVBAUTKDBBNjFGNUFGMjEwOUE2ODM2MTFGQkEyMDZGMjA4Q0VG RTM0ODk4MjEwHhcNMjUwNzA0MTk1NzE2WhcNMjUwNzExMTk1NzE2WjAYMRYwFAYD VQQDEw02ODY4MzIxYy0zM2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8O+L7OR6TVuAHO/LLeGG/u7y+dZdtxCgSv36kMPvHZngOCR4YxdwdvLPbG1 ky5eVkHRCchldSzsfYr3Ky54oCZhKsl2kSQqvk/MZFBuP+xCXNtvxzJZNW7ZspAv nGDLIeSHeWFPQ6aX/YXYVfulhYKWoUEI5L3I3Kv0lrHh07j1UuLNuuwMVt71ier3 +RlvSNFVYMk+6HN72IJ7/ESEURx0z419mj4qS1QC8DNkceDb+5dgautnBcfTmD6R hZHGGEPhHkhoMw+CPJvOzZQ8iXwKDmpTI20JvU+1kVvYngtPsanFFl7DCa7a2WIU koV1HiJOi7KG68iTH7zluyvvMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9vr4A1 PMX4ZDy15yebjWC9ZPiaMB8GA1UdIwQYMBaAFAph9a8hCaaDYR+6IG8gjO/jSJgh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTlBQy9DMDYxMzUxNjVG OEQxMUVBQjUwMEJENjRDNEY5QUUwMi9DbUgxcnlFSnBvTmhIN29nYnlDTTctTklt Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtSDFyeUVKcG9OaEg3b2dieUNNNy1OSW1DRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTlBQy9DMDYxMzUxNjVGOEQxMUVBQjUwMEJENjRDNEY5QUUwMi9DbUgxcnlFSnBv TmhIN29nYnlDTTctTkltQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfk+XoUvE/9/APyTg2ezE/eFal2xAPXYP8AE50qHxfVNC8Et44xR4z +HLq4k0w3wZjwFnCntnJhDkTnYDj+aQfGJrUG3q457VJ2ZPIKnQRZv9Q1Svo0BA8 E9Ic5sEQ6uwhQyt3RL7eQB7mYWPBSoAKeUPH9IfaBv0HOUMwuL5HoLILmvPKiF/7 mk6yRLjiB8TT+0VFr2hac8p3xpKh8ZnMOGmtWQOTQ5ngyXrUzyKG5xyyJZmQ3O+p Q9d+r1vIoYkwC/rNnlo/uZCApSfzFy5uDQLl4R4zyU53aKg1WaLjyzb1R4mQifGH 0twsscqtPX/1IaIz33IN2Sw6XFR0XjaL -----END CERTIFICATE-----Generated at Fri Jul 4 22:07:11 2025 by rpki-client