$ rpki-client -vvf rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft File: CF4MUA89R900skS9OSnO_a3ZbD0.mft (raw, json) Hash identifier: GZCS1zRhxFdjNv0q4xM3Lt27CbS0edveDxfHRTaLKcY= Subject key identifier: 67:0B:7C:69:CA:2B:CE:31:84:D3:34:E2:BD:85:EE:BD:91:E5:E7:BB Authority key identifier: 08:5E:0C:50:0F:3D:47:DD:34:B2:44:BD:39:29:CE:FD:AD:D9:6C:3D Certificate issuer: /CN=A919D118/serialNumber=085E0C500F3D47DD34B244BD3929CEFDADD96C3D Certificate serial: 0A96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft Manifest number: 0A82 Signing time: Wed 02 Jul 2025 19:50:00 +0000 Manifest this update: Wed 02 Jul 2025 19:49:59 +0000 Manifest next update: Wed 09 Jul 2025 19:49:59 +0000 Files and hashes: 1: CF4MUA89R900skS9OSnO_a3ZbD0.crl (hash: tNecV0YERGVarWQAcRLKdBRfbrm13V0PR8HNbbWBQ54=) 2: 676A2DE2564911F08353B443C4F9AE02.roa (hash: YM/jqlM3yjwQowPEPNTW8kWHF+17BJwpa8g+tmnEC0w=) 3: 5FFA4BEC3C0B11ED89AD755FC4F9AE02.roa (hash: +qdSnSMI4Cq6GPacx1y6troGvfBHeu8mDwsrgTG91us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.crl rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2710 (0xa96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D118, serialNumber=085E0C500F3D47DD34B244BD3929CEFDADD96C3D Validity Not Before: Jul 2 19:49:59 2025 GMT Not After : Jul 9 19:49:59 2025 GMT Subject: CN=68658d67-50d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e4:31:ef:33:da:15:7c:ad:ca:16:a3:d8:54: b7:bc:d3:bc:d7:f8:fc:26:2d:81:69:9b:e9:ed:43: d3:4f:a0:06:e0:99:a5:3a:44:95:4d:9f:af:21:5a: dd:07:a6:1e:42:f4:08:ac:83:be:4c:dc:da:b3:bf: 10:9c:36:5e:e9:74:d1:47:7d:cd:ac:d2:af:75:8a: e8:19:57:aa:fd:fb:1c:72:dd:a7:e2:e5:e3:9a:ae: 92:64:5e:bd:d3:da:44:d1:58:87:17:38:26:d6:ac: 0c:d6:8d:6d:61:76:ab:24:99:74:d1:f2:01:15:5f: 42:59:54:fe:d2:62:63:43:83:3e:eb:8a:7e:d6:4a: 2d:4a:18:dd:ed:d8:e6:51:9e:ff:fe:69:11:d1:ca: f5:76:e7:26:3b:44:f5:da:2d:fe:76:1a:8b:ae:ec: a5:69:13:52:67:94:c7:19:6b:50:b2:80:11:d2:a8: 16:d1:8f:b1:2e:36:bf:5b:70:99:32:ed:fa:0f:68: d8:24:f5:77:d2:6e:3a:ae:09:32:e4:3e:d3:f6:31: ef:ec:70:fe:97:79:dc:15:9e:99:f5:ab:34:39:ed: df:fe:2f:7a:11:c6:2d:19:8c:f0:25:1a:fd:35:90: a2:d7:35:a4:4b:1b:c1:4c:30:52:24:5a:87:28:31: a3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:0B:7C:69:CA:2B:CE:31:84:D3:34:E2:BD:85:EE:BD:91:E5:E7:BB X509v3 Authority Key Identifier: keyid:08:5E:0C:50:0F:3D:47:DD:34:B2:44:BD:39:29:CE:FD:AD:D9:6C:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:53:a2:fc:9c:fe:7f:d1:9d:d2:96:4b:a9:4f:60:db:66:ce: 37:7b:af:68:83:e0:7c:11:1d:f3:9f:83:00:8a:41:4d:af:52: af:aa:a6:36:76:9e:24:da:a3:d0:20:53:63:c8:b0:f4:ce:b2: ec:c3:99:e0:dc:c5:bc:08:f4:c7:2e:7a:ba:92:72:a6:d9:c2: 35:f0:4a:10:a4:7c:fa:a9:09:2f:cd:d0:f1:de:86:12:4d:ac: 18:7a:0a:aa:85:ec:cd:32:d1:fd:43:45:e2:de:18:e8:52:2d: 0d:65:d7:0c:50:ab:47:8f:4b:1a:ad:73:04:06:9e:b4:82:96: 9e:9c:31:b2:c0:cd:4e:9d:3f:45:b5:fa:59:fb:07:31:c0:29: 47:57:f9:39:44:da:dc:af:c9:8e:0c:b4:77:67:90:90:c6:41: 56:ed:84:35:8f:69:7f:ad:4d:15:a9:dd:d2:1e:81:2b:ce:42: d8:74:f5:26:c5:da:96:c1:e0:3a:20:e4:e3:07:c0:19:6d:22: b6:1d:1a:c3:59:86:e1:40:67:01:eb:e7:2b:1b:24:29:c2:ac: 21:2a:c8:74:7d:02:b1:e9:37:8f:e9:33:c1:b5:67:f7:69:57: 50:16:8d:8a:8f:3e:e0:12:40:2e:e7:cc:c1:09:71:9c:a0:05: 9d:49:3f:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMTgxMTAvBgNVBAUTKDA4NUUwQzUwMEYzRDQ3REQzNEIyNDRCRDM5MjlDRUZE QUREOTZDM0QwHhcNMjUwNzAyMTk0OTU5WhcNMjUwNzA5MTk0OTU5WjAYMRYwFAYD VQQDEw02ODY1OGQ2Ny01MGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2uQx7zPaFXytyhaj2FS3vNO81/j8Ji2BaZvp7UPTT6AG4JmlOkSVTZ+vIVrd B6YeQvQIrIO+TNzas78QnDZe6XTRR33NrNKvdYroGVeq/fscct2n4uXjmq6SZF69 09pE0ViHFzgm1qwM1o1tYXarJJl00fIBFV9CWVT+0mJjQ4M+64p+1kotShjd7djm UZ7//mkR0cr1ducmO0T12i3+dhqLruylaRNSZ5THGWtQsoAR0qgW0Y+xLja/W3CZ Mu36D2jYJPV30m46rgky5D7T9jHv7HD+l3ncFZ6Z9as0Oe3f/i96EcYtGYzwJRr9 NZCi1zWkSxvBTDBSJFqHKDGjYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcLfGnK K84xhNM04r2F7r2R5ee7MB8GA1UdIwQYMBaAFAheDFAPPUfdNLJEvTkpzv2t2Ww9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDExOC9CQjgxQTUxNDYy QkYxMUVBQUEzQTg5NDVDNEY5QUUwMi9DRjRNVUE4OVI5MDBza1M5T1NuT19hM1pi RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NGNE1VQTg5UjkwMHNrUzlPU25PX2EzWmJEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDExOC9CQjgxQTUxNDYyQkYxMUVBQUEzQTg5NDVDNEY5QUUwMi9DRjRNVUE4OVI5 MDBza1M5T1NuT19hM1piRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1U6L8nP5/0Z3SlkupT2DbZs43e69og+B8ER3zn4MAikFNr1KvqqY2 dp4k2qPQIFNjyLD0zrLsw5ng3MW8CPTHLnq6knKm2cI18EoQpHz6qQkvzdDx3oYS TawYegqqhezNMtH9Q0Xi3hjoUi0NZdcMUKtHj0sarXMEBp60gpaenDGywM1OnT9F tfpZ+wcxwClHV/k5RNrcr8mODLR3Z5CQxkFW7YQ1j2l/rU0Vqd3SHoErzkLYdPUm xdqWweA6IOTjB8AZbSK2HRrDWYbhQGcB6+crGyQpwqwhKsh0fQKx6TeP6TPBtWf3 aVdQFo2Kjz7gEkAu58zBCXGcoAWdST+R -----END CERTIFICATE-----Generated at Thu Jul 3 00:10:28 2025 by rpki-client