$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft File: cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft (raw, json) Hash identifier: Alt4kYxXEHw/JLSWL1K4EXGiaauC7dxYz+SUdsSFk0M= Subject key identifier: 2C:9B:EC:A3:4F:FB:BF:02:CA:A9:6F:4C:9A:7A:C9:02:5A:CC:D2:74 Authority key identifier: 70:45:A7:18:BB:EB:28:9F:18:D1:F9:30:FA:33:2D:63:32:D9:55:5E Certificate issuer: /CN=A918B936/serialNumber=7045A718BBEB289F18D1F930FA332D6332D9555E Certificate serial: 2130 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft Manifest number: 2130 Signing time: Fri 22 Aug 2025 15:58:59 +0000 Manifest this update: Fri 22 Aug 2025 15:58:58 +0000 Manifest next update: Fri 29 Aug 2025 15:58:58 +0000 Files and hashes: 1: cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.crl (hash: IbVkW4AuGzNUcZDGLY80aLx1YiVlniksgMfoW4jxMGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.crl rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:58:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8496 (0x2130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=7045A718BBEB289F18D1F930FA332D6332D9555E Validity Not Before: Aug 22 15:58:58 2025 GMT Not After : Aug 29 15:58:58 2025 GMT Subject: CN=68a893c2-c4a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8d:96:b4:06:c6:90:d0:1a:aa:c2:39:61:ad: a2:e2:be:21:56:35:4a:0d:7e:3d:70:f5:52:ea:c1: 9f:4d:27:e6:49:3c:ee:94:87:ce:bb:8f:b5:09:4f: 04:50:be:85:e8:79:1e:59:55:e0:7a:e6:c3:3e:00: 04:b9:b3:71:4b:cd:5d:34:07:d4:6c:f6:fc:5e:e3: bd:8d:54:db:83:a3:21:96:2f:1c:2d:ea:0d:c3:61: 32:37:78:54:b0:b2:46:8e:ec:4b:ea:88:f8:0c:ec: 2a:52:fc:ce:c8:a8:d4:88:71:33:61:ee:6b:67:04: f1:a6:84:da:c8:be:09:39:dd:46:6a:83:ea:32:a5: d7:1c:d1:9b:06:5f:d6:3b:bf:9c:64:4f:d4:66:aa: 89:0d:7f:b8:f4:37:9c:cd:c8:e2:ed:c5:16:46:f6: 97:11:c0:93:6f:22:2e:95:46:ed:93:19:7b:6d:33: 05:15:c3:20:d3:f5:c8:06:41:cd:56:83:68:8f:39: 97:89:48:9a:d8:06:ca:50:49:fb:b8:5f:4f:ba:c1: 32:42:dd:c4:d7:90:51:e5:c8:ee:97:1d:45:ee:86: aa:46:ca:f3:f5:3d:f6:85:9d:d2:4d:5f:37:06:70: f4:5d:f9:92:90:0f:fc:ac:d3:8c:b3:d1:a3:07:49: 04:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:9B:EC:A3:4F:FB:BF:02:CA:A9:6F:4C:9A:7A:C9:02:5A:CC:D2:74 X509v3 Authority Key Identifier: keyid:70:45:A7:18:BB:EB:28:9F:18:D1:F9:30:FA:33:2D:63:32:D9:55:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:dc:cc:3e:fa:7d:e0:77:8f:43:24:0a:85:c1:c8:04:59:ab: 54:41:5a:61:4a:7d:1a:cf:29:2a:5c:8c:ed:61:5d:4a:b1:49: 9e:5d:ae:c6:09:da:62:02:27:c7:33:e4:4b:5a:d6:50:28:51: 91:a7:7d:8a:64:9a:48:a2:a0:63:b1:1c:28:9c:f5:4e:9c:9d: 00:2c:95:cd:7c:dd:2d:34:e8:53:60:06:70:a4:cd:d8:9c:10: 38:21:4f:c8:53:ba:27:ea:20:24:8e:d4:7b:f3:44:2b:11:63: 0c:ed:8e:f5:0e:e6:4a:e7:7e:6f:ff:26:fa:44:0a:b0:58:cd: 76:8c:f0:8f:c2:d9:57:c4:67:8c:5b:6c:e0:af:11:c9:e1:60: 9d:df:6c:6a:ab:56:6b:9e:35:bc:71:2d:55:f9:c7:0b:4b:28: 3b:11:bb:7a:be:2b:3c:03:94:a7:89:eb:8d:7c:2e:e5:bd:20: e9:b2:3b:0a:08:9a:17:45:8e:c3:e2:07:b7:db:ce:ef:af:29: aa:6c:7a:f1:d7:ea:2a:c8:17:e4:81:5d:78:31:36:87:7a:32: 88:3e:e6:c1:69:c3:1e:d3:34:c6:9a:02:d0:2a:47:53:0e:b4: 28:18:b9:12:86:32:82:ee:74:48:ed:10:64:97:46:93:a7:29: ec:4f:8f:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICITAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDcwNDVBNzE4QkJFQjI4OUYxOEQxRjkzMEZBMzMyRDYz MzJEOTU1NUUwHhcNMjUwODIyMTU1ODU4WhcNMjUwODI5MTU1ODU4WjAYMRYwFAYD VQQDEw02OGE4OTNjMi1jNGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxo2WtAbGkNAaqsI5Ya2i4r4hVjVKDX49cPVS6sGfTSfmSTzulIfOu4+1CU8E UL6F6HkeWVXgeubDPgAEubNxS81dNAfUbPb8XuO9jVTbg6Mhli8cLeoNw2EyN3hU sLJGjuxL6oj4DOwqUvzOyKjUiHEzYe5rZwTxpoTayL4JOd1GaoPqMqXXHNGbBl/W O7+cZE/UZqqJDX+49Deczcji7cUWRvaXEcCTbyIulUbtkxl7bTMFFcMg0/XIBkHN VoNojzmXiUia2AbKUEn7uF9PusEyQt3E15BR5cjulx1F7oaqRsrz9T32hZ3STV83 BnD0XfmSkA/8rNOMs9GjB0kEFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCyb7KNP +78CyqlvTJp6yQJazNJ0MB8GA1UdIwQYMBaAFHBFpxi76yifGNH5MPozLWMy2VVe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80MDc1MTIxQUYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9jRVduR0x2cktKOFkwZmt3LWpNdFl6TFpW VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NFV25HTHZyS0o4WTBma3ctak10WXpMWlZWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80MDc1MTIxQUYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9jRVduR0x2cktK OFkwZmt3LWpNdFl6TFpWVjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBm3Mw++n3gd49DJAqFwcgEWatUQVphSn0azykqXIztYV1KsUmeXa7G CdpiAifHM+RLWtZQKFGRp32KZJpIoqBjsRwonPVOnJ0ALJXNfN0tNOhTYAZwpM3Y nBA4IU/IU7on6iAkjtR780QrEWMM7Y71DuZK535v/yb6RAqwWM12jPCPwtlXxGeM W2zgrxHJ4WCd32xqq1ZrnjW8cS1V+ccLSyg7Ebt6vis8A5SnieuNfC7lvSDpsjsK CJoXRY7D4ge3287vrymqbHrx1+oqyBfkgV14MTaHejKIPubBacMe0zTGmgLQKkdT DrQoGLkShjKC7nRI7RBkl0aTpynsT49j -----END CERTIFICATE-----Generated at Sat Aug 23 10:38:31 2025 by rpki-client