$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft File: CuIi7F4XpuYytVnUnFse8zLaQ8s.mft (raw, json) Hash identifier: R0EhiZ6QzKYx2DOaD3q7h7PeF+OAbo9HHpHVSHBXs0w= Subject key identifier: 46:E6:7A:DE:E3:89:3D:4C:6A:28:74:48:F0:3D:EE:D2:75:2F:BA:53 Authority key identifier: 0A:E2:22:EC:5E:17:A6:E6:32:B5:59:D4:9C:5B:1E:F3:32:DA:43:CB Certificate issuer: /CN=A91C7C04/serialNumber=0AE222EC5E17A6E632B559D49C5B1EF332DA43CB Certificate serial: 071A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft Manifest number: 06FE Signing time: Fri 22 Aug 2025 22:09:14 +0000 Manifest this update: Fri 22 Aug 2025 22:09:13 +0000 Manifest next update: Fri 29 Aug 2025 22:09:13 +0000 Files and hashes: 1: CuIi7F4XpuYytVnUnFse8zLaQ8s.crl (hash: LtBHULA9VBO3IhZ/+f23/Pn9h9h1IovTOsYEmBXNWhU=) 2: A825CC96324011EC9E90243EC4F9AE02.roa (hash: Csw4qj9xE9hGEDImUH/XPPY2KPdm1RGZvA3bAW3MNCY=) 3: DA45147EB35E11EE8EED0E37C4F9AE02.roa (hash: MLem2RJrmzD72xixiKpCd0XFlZ6/VicCf/qXTlSWENc=) 4: F097281C169A11EF8927EC2DC4F9AE02.roa (hash: w3Ln1KV8lxVl5Uw2YRQh7wulnVukzVJfQnsYtJXybYU=) 5: 0C42C86EF38611EF92753935C4F9AE02.roa (hash: MdSSPQnzwPVIzYg1f83uFbIF+zvXp1fZov2cahwOMzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.crl rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:09:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1818 (0x71a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7C04, serialNumber=0AE222EC5E17A6E632B559D49C5B1EF332DA43CB Validity Not Before: Aug 22 22:09:13 2025 GMT Not After : Aug 29 22:09:13 2025 GMT Subject: CN=68a8ea89-d6fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:82:e9:b7:93:2b:4e:0a:32:0f:74:fa:c5:b8: 5a:b4:c4:3b:fa:74:7b:b8:04:42:b5:f8:32:ee:35: 96:9e:ed:ce:7a:43:be:6d:85:fe:21:22:0d:59:9c: ca:cd:3a:5e:98:c1:e5:74:66:32:d6:8c:89:b6:b6: a3:48:c8:b5:4e:5d:3a:2c:12:92:b6:92:c1:2e:ba: ec:ea:58:e4:c5:3a:a8:fc:95:f6:2d:f5:85:10:b0: 21:28:60:80:b4:04:e3:ac:5f:88:13:fd:31:d0:91: 54:dd:06:b4:57:6c:f9:86:ff:5d:b4:46:54:37:20: 3d:34:4c:bc:1c:bb:55:1f:97:7d:6a:56:e6:25:37: b6:45:79:23:e0:24:d8:0a:2a:ee:fc:8a:02:b5:5e: d9:be:09:00:af:df:51:e0:0b:77:b5:bf:b9:f5:4a: 4a:18:36:4f:af:b7:b9:31:55:4b:15:8b:28:36:b7: 14:5a:14:02:d4:0e:81:a9:bb:76:01:88:df:04:15: dd:a2:a5:e2:82:3a:e8:44:15:13:49:68:c7:12:aa: 84:a1:3b:ba:e8:9d:7e:ee:f9:da:17:7a:bd:10:b8: 49:36:52:26:71:09:d1:91:05:a5:79:c1:c0:9e:b7: 7d:c1:87:a3:a9:32:28:7c:eb:bd:66:4e:71:8c:a2: 02:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:E6:7A:DE:E3:89:3D:4C:6A:28:74:48:F0:3D:EE:D2:75:2F:BA:53 X509v3 Authority Key Identifier: keyid:0A:E2:22:EC:5E:17:A6:E6:32:B5:59:D4:9C:5B:1E:F3:32:DA:43:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:26:42:d8:ac:d9:8f:9f:39:b9:d7:3d:81:9e:03:92:7d:8d: 57:fe:57:1e:12:a6:e4:b1:c8:ee:6e:2e:2a:93:24:60:ed:55: 5f:ed:4a:c9:f2:2d:27:06:30:67:79:42:0a:54:d7:01:4c:8d: fc:98:07:75:af:fd:b3:91:29:d4:13:ca:ff:15:0f:0e:d0:71: 2e:0e:8f:a6:db:8c:7c:c9:aa:32:e2:6d:6c:c1:b2:6d:4b:81: 28:e1:7f:a4:7d:59:d7:07:7d:bd:de:d6:71:89:2a:9c:38:bd: 99:2c:07:20:15:f6:e6:f1:5e:da:81:3b:92:fd:10:9c:5b:0d: 10:68:03:1e:80:9e:15:75:5b:f2:da:b8:12:27:5f:32:40:4e: 79:2d:bf:b4:ce:b3:76:f9:c9:df:e8:e8:c6:91:e9:26:3e:1a: e0:91:9e:60:e0:fe:2b:a9:9b:9d:9e:f2:ac:56:bc:e7:5b:c9: 9c:c5:d1:6f:2c:8a:80:95:7e:9e:e9:41:fa:18:33:5b:f9:e5: 2a:13:20:3a:f7:55:53:0a:33:d4:1c:25:9f:e3:ab:73:de:8a: 0d:5f:fd:0b:1a:c9:2c:b8:17:dc:89:ae:85:6a:e7:dc:21:89: 20:d7:b4:50:ca:cf:c4:a1:7e:77:8c:52:b7:c4:43:bb:81:22: fd:d7:97:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdDMDQxMTAvBgNVBAUTKDBBRTIyMkVDNUUxN0E2RTYzMkI1NTlENDlDNUIxRUYz MzJEQTQzQ0IwHhcNMjUwODIyMjIwOTEzWhcNMjUwODI5MjIwOTEzWjAYMRYwFAYD VQQDEw02OGE4ZWE4OS1kNmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4Lpt5MrTgoyD3T6xbhatMQ7+nR7uARCtfgy7jWWnu3OekO+bYX+ISINWZzK zTpemMHldGYy1oyJtrajSMi1Tl06LBKStpLBLrrs6ljkxTqo/JX2LfWFELAhKGCA tATjrF+IE/0x0JFU3Qa0V2z5hv9dtEZUNyA9NEy8HLtVH5d9albmJTe2RXkj4CTY Ciru/IoCtV7ZvgkAr99R4At3tb+59UpKGDZPr7e5MVVLFYsoNrcUWhQC1A6Bqbt2 AYjfBBXdoqXigjroRBUTSWjHEqqEoTu66J1+7vnaF3q9ELhJNlImcQnRkQWlecHA nrd9wYejqTIofOu9Zk5xjKIC6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbmet7j iT1Maih0SPA97tJ1L7pTMB8GA1UdIwQYMBaAFAriIuxeF6bmMrVZ1JxbHvMy2kPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0MwNC9BMERCMzU1MjVG QjQxMUVCQUI3QzZBMjNDNEY5QUUwMi9DdUlpN0Y0WHB1WXl0Vm5VbkZzZTh6TGFR OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N1SWk3RjRYcHVZeXRWblVuRnNlOHpMYVE4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0MwNC9BMERCMzU1MjVGQjQxMUVCQUI3QzZBMjNDNEY5QUUwMi9DdUlpN0Y0WHB1 WXl0Vm5VbkZzZTh6TGFROHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGJkLYrNmPnzm51z2BngOSfY1X/lceEqbkscjubi4qkyRg7VVf7UrJ 8i0nBjBneUIKVNcBTI38mAd1r/2zkSnUE8r/FQ8O0HEuDo+m24x8yaoy4m1swbJt S4Eo4X+kfVnXB3293tZxiSqcOL2ZLAcgFfbm8V7agTuS/RCcWw0QaAMegJ4VdVvy 2rgSJ18yQE55Lb+0zrN2+cnf6OjGkekmPhrgkZ5g4P4rqZudnvKsVrznW8mcxdFv LIqAlX6e6UH6GDNb+eUqEyA691VTCjPUHCWf46tz3ooNX/0LGsksuBfcia6Faufc IYkg17RQys/EoX53jFK3xEO7gSL915ei -----END CERTIFICATE-----Generated at Sat Aug 23 19:40:27 2025 by rpki-client