$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7426/2128796C1DA211E28F51D29408B02CD2/aUugcLYm4WhY1mDyEg50tvw_cuw.mft File: aUugcLYm4WhY1mDyEg50tvw_cuw.mft (raw, json) Hash identifier: EqEHrE40Yu5EnF7aZAcGfl74+tXxrQZ+/24Ngu9jI6o= Subject key identifier: AC:0A:7B:0D:67:56:6C:3F:5F:29:A7:36:EC:E0:49:63:88:2E:C3:A0 Authority key identifier: 69:4B:A0:70:B6:26:E1:68:58:D6:60:F2:12:0E:74:B6:FC:3F:72:EC Certificate issuer: /CN=A91C7426/serialNumber=694BA070B626E16858D660F2120E74B6FC3F72EC Certificate serial: 3494 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUugcLYm4WhY1mDyEg50tvw_cuw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7426/2128796C1DA211E28F51D29408B02CD2/aUugcLYm4WhY1mDyEg50tvw_cuw.mft Manifest number: 3494 Signing time: Wed 02 Jul 2025 15:10:53 +0000 Manifest this update: Wed 02 Jul 2025 15:10:53 +0000 Manifest next update: Wed 09 Jul 2025 15:10:53 +0000 Files and hashes: 1: aUugcLYm4WhY1mDyEg50tvw_cuw.crl (hash: imCtJmb8aEJyXMHOHgxrFKs34B+2UnQrC/3SObdrGBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7426/2128796C1DA211E28F51D29408B02CD2/aUugcLYm4WhY1mDyEg50tvw_cuw.crl rsync://rpki.apnic.net/member_repository/A91C7426/2128796C1DA211E28F51D29408B02CD2/aUugcLYm4WhY1mDyEg50tvw_cuw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUugcLYm4WhY1mDyEg50tvw_cuw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:10:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13460 (0x3494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7426, serialNumber=694BA070B626E16858D660F2120E74B6FC3F72EC Validity Not Before: Jul 2 15:10:53 2025 GMT Not After : Jul 9 15:10:53 2025 GMT Subject: CN=68654bfd-66da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:63:77:66:56:de:3f:77:5d:cc:1b:f4:58:30: 68:85:92:c2:d1:8a:84:99:aa:c5:87:ed:a1:31:ad: 15:9e:47:75:b0:bf:94:53:7a:7d:50:ab:12:24:84: d5:ef:b9:42:8a:d1:eb:c5:6a:e1:e6:19:f3:82:85: b6:a5:ad:ff:54:37:03:f0:30:65:0a:af:9c:73:82: e7:a7:ef:bc:0a:16:37:99:56:9a:46:25:57:a0:04: 1b:64:d2:72:ee:56:0e:1d:8f:69:95:18:15:46:56: 4e:3a:d0:51:6a:b3:55:29:71:9c:29:00:60:7f:3d: 05:ee:a7:1d:b5:df:21:0b:24:9e:4f:21:37:2d:60: c7:44:7b:d2:99:dd:3c:5e:26:cb:3a:29:1d:c2:38: 72:38:6c:a9:69:01:60:57:ef:24:2c:8d:f1:46:e6: 47:68:c4:f4:98:87:4a:35:bf:04:08:1b:2e:d5:6e: bd:1b:8a:e2:ff:0d:c2:42:d6:77:4b:81:15:c3:7e: 83:12:db:ca:c2:57:6f:d8:ae:56:2b:53:17:1d:9a: 5e:fa:1f:c4:4e:56:5b:cb:bb:e9:a5:ff:9d:8d:cc: 89:9f:0a:55:30:90:fc:08:8e:8d:09:c8:51:c2:4e: 08:7e:27:c9:74:cb:b4:4d:0c:ad:e4:c2:18:df:ad: 99:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:0A:7B:0D:67:56:6C:3F:5F:29:A7:36:EC:E0:49:63:88:2E:C3:A0 X509v3 Authority Key Identifier: keyid:69:4B:A0:70:B6:26:E1:68:58:D6:60:F2:12:0E:74:B6:FC:3F:72:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7426/2128796C1DA211E28F51D29408B02CD2/aUugcLYm4WhY1mDyEg50tvw_cuw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUugcLYm4WhY1mDyEg50tvw_cuw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7426/2128796C1DA211E28F51D29408B02CD2/aUugcLYm4WhY1mDyEg50tvw_cuw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:65:f3:64:a4:07:8c:4b:d9:59:1e:02:d3:fa:46:ef:42:a2: ae:88:c8:2e:4a:81:c8:71:5f:df:4c:45:1a:ca:e5:0f:bb:96: 8a:2c:ea:b1:e1:0c:6c:12:b5:0b:e5:cc:94:21:47:20:90:3d: e3:7b:96:54:dc:ef:56:1a:0d:70:b9:09:a4:3b:4d:d1:62:88: 8a:96:81:9a:66:a0:63:e0:d7:fc:dd:6d:71:a4:2f:5f:8e:ad: 62:9c:a1:73:c9:1a:fa:5f:83:3f:ef:44:6f:9c:f5:8d:02:8a: 1e:d1:b1:05:12:af:46:59:53:09:37:71:dd:9a:ac:99:df:56: 8e:a4:10:0d:6a:be:ef:b3:fa:5c:11:57:7c:61:6d:ea:a3:bc: eb:e2:1a:b7:a7:18:c4:9e:98:9c:86:2e:a4:c6:25:69:0f:72: 01:4b:a3:d4:f1:5a:f4:0a:0e:bb:fb:5b:d1:c4:63:a7:91:86: 7f:9c:45:0b:51:f1:22:0e:82:de:03:d7:00:f0:7b:dd:25:84: 82:ba:c1:3e:dc:86:b1:6b:df:c5:52:ce:89:35:d7:c3:7f:e3: ac:57:0d:c4:77:4e:0f:7e:9a:e0:f6:4a:d7:39:d1:61:04:b3: 63:12:c3:67:14:68:2b:4c:6e:09:ab:91:65:98:6d:44:45:15: ee:be:0c:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc0MjYxMTAvBgNVBAUTKDY5NEJBMDcwQjYyNkUxNjg1OEQ2NjBGMjEyMEU3NEI2 RkMzRjcyRUMwHhcNMjUwNzAyMTUxMDUzWhcNMjUwNzA5MTUxMDUzWjAYMRYwFAYD VQQDEw02ODY1NGJmZC02NmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2N3ZlbeP3ddzBv0WDBohZLC0YqEmarFh+2hMa0Vnkd1sL+UU3p9UKsSJITV 77lCitHrxWrh5hnzgoW2pa3/VDcD8DBlCq+cc4Lnp++8ChY3mVaaRiVXoAQbZNJy 7lYOHY9plRgVRlZOOtBRarNVKXGcKQBgfz0F7qcdtd8hCySeTyE3LWDHRHvSmd08 XibLOikdwjhyOGypaQFgV+8kLI3xRuZHaMT0mIdKNb8ECBsu1W69G4ri/w3CQtZ3 S4EVw36DEtvKwldv2K5WK1MXHZpe+h/ETlZby7vppf+djcyJnwpVMJD8CI6NCchR wk4IfifJdMu0TQyt5MIY362Z4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwKew1n Vmw/XymnNuzgSWOILsOgMB8GA1UdIwQYMBaAFGlLoHC2JuFoWNZg8hIOdLb8P3Ls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzQyNi8yMTI4Nzk2QzFE QTIxMUUyOEY1MUQyOTQwOEIwMkNEMi9hVXVnY0xZbTRXaFkxbUR5RWc1MHR2d19j dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FVdWdjTFltNFdoWTFtRHlFZzUwdHZ3X2N1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzQyNi8yMTI4Nzk2QzFEQTIxMUUyOEY1MUQyOTQwOEIwMkNEMi9hVXVnY0xZbTRX aFkxbUR5RWc1MHR2d19jdXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/ZfNkpAeMS9lZHgLT+kbvQqKuiMguSoHIcV/fTEUayuUPu5aKLOqx 4QxsErUL5cyUIUcgkD3je5ZU3O9WGg1wuQmkO03RYoiKloGaZqBj4Nf83W1xpC9f jq1inKFzyRr6X4M/70RvnPWNAooe0bEFEq9GWVMJN3HdmqyZ31aOpBANar7vs/pc EVd8YW3qo7zr4hq3pxjEnpichi6kxiVpD3IBS6PU8Vr0Cg67+1vRxGOnkYZ/nEUL UfEiDoLeA9cA8HvdJYSCusE+3Iaxa9/FUs6JNdfDf+OsVw3Ed04Pfprg9krXOdFh BLNjEsNnFGgrTG4Jq5FlmG1ERRXuvgwc -----END CERTIFICATE-----Generated at Thu Jul 3 17:57:37 2025 by rpki-client