$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft File: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft (raw, json) Hash identifier: jkQHKq6rH8pbEnqmP63u4FTpnk6SWY2ok4MZy6p62Jk= Subject key identifier: C8:83:DC:75:BA:99:4A:54:B2:3E:C4:91:4A:38:0D:B6:0B:6B:E8:DA Authority key identifier: 71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F Certificate issuer: /CN=A91FF84F/serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Certificate serial: 065B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft Manifest number: 0655 Signing time: Fri 22 Aug 2025 22:46:07 +0000 Manifest this update: Fri 22 Aug 2025 22:46:06 +0000 Manifest next update: Fri 29 Aug 2025 22:46:06 +0000 Files and hashes: 1: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl (hash: +UXwk5dFKKMhWQld4unwZuLjGqwLeN37a0Ba+E2x+hE=) 2: 2F320256981611EB904AF150C4F9AE02.roa (hash: zydBQ6+XzPsP0D5XfuooCO12kFS+89HKhQ6kY0lGz0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1627 (0x65b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF84F, serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Validity Not Before: Aug 22 22:46:06 2025 GMT Not After : Aug 29 22:46:06 2025 GMT Subject: CN=68a8f32f-f9dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:41:37:00:67:a3:15:7f:e5:d4:e2:0e:7b:cc: b8:4e:01:35:08:f3:2f:09:de:35:3b:43:57:49:d3: 42:c2:c6:86:f7:40:85:05:12:b1:c7:64:35:70:b0: 62:72:75:44:0f:a2:1a:a9:df:fa:11:e8:89:90:70: ee:b1:91:b5:84:f3:ef:f1:07:b8:5a:af:fe:53:fb: 8c:fc:93:18:5a:67:46:8c:03:15:38:d2:2f:1d:be: bd:f0:4d:85:9c:9e:30:cc:e4:0a:dd:58:8a:ae:90: de:6a:9e:19:c8:67:83:e5:f1:bf:f8:89:64:e6:03: b0:b1:c3:47:16:e1:b2:e7:52:25:27:3a:15:40:aa: bd:7c:54:eb:48:46:d3:75:60:16:fc:b5:cb:f2:5e: 03:51:d9:8c:51:34:06:18:ac:8f:d1:42:1f:f4:32: c7:2b:32:7a:83:7f:f7:59:8b:59:7e:e4:86:45:65: e4:9b:ad:0a:49:83:29:84:f7:ef:09:e2:0a:60:fc: 26:c9:a8:c9:99:d0:e8:5d:0a:84:f5:be:fc:9c:c9: be:45:79:a2:fc:93:f4:a7:eb:d6:60:e4:0e:22:61: c4:53:21:2e:1f:ca:ff:78:f2:78:1a:17:ff:3a:08: e6:4a:8d:57:af:de:09:26:0a:ad:50:d6:cf:e6:f9: 67:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:83:DC:75:BA:99:4A:54:B2:3E:C4:91:4A:38:0D:B6:0B:6B:E8:DA X509v3 Authority Key Identifier: keyid:71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:8e:41:e2:c8:db:c3:fa:5f:0f:d4:f0:f9:21:cd:a2:ea:2a: c7:f9:c1:46:c6:d2:19:d7:94:f4:0d:75:e9:ea:8f:20:c7:4e: f0:70:57:75:16:93:d6:f9:e1:9e:bc:a0:96:c3:32:8c:87:0e: d1:fb:7e:ef:a2:0d:01:3b:15:8c:c9:f6:bb:19:24:77:f1:fd: ff:3e:77:d6:4a:9a:95:3d:15:61:30:51:20:cc:93:25:bb:4a: 24:23:a1:34:87:1f:57:6d:1b:98:c9:c6:f9:b9:4f:10:f4:c0: a7:23:af:06:b4:f6:31:7f:03:3c:99:67:3b:1c:36:fd:cc:63: 8b:ef:5f:38:94:4a:7a:77:6e:62:ac:b4:90:a2:db:aa:08:f6: 7d:66:75:28:15:5a:c7:86:7d:4d:e7:0e:02:a2:a6:f4:1c:45: 7d:d5:a9:d7:77:7a:42:49:44:e5:14:ad:5e:4e:13:29:64:69: f1:f7:b9:da:c7:19:63:e9:23:d3:de:02:6f:96:6c:37:eb:62: c2:06:a0:da:35:66:94:03:3e:58:0e:4e:54:d7:08:aa:94:d1: 02:eb:23:02:5c:22:d1:a6:cc:da:cc:cb:e0:ac:8a:f3:e9:f1: 73:11:ae:17:7b:3e:ac:b5:05:96:90:08:00:b2:84:50:f8:81: d9:a9:aa:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4NEYxMTAvBgNVBAUTKDcxNDFDMzE5QkI0NEJGQkNERTMzODJCM0JCNjkxMjY1 Rjk1RDMwOUYwHhcNMjUwODIyMjI0NjA2WhcNMjUwODI5MjI0NjA2WjAYMRYwFAYD VQQDEw02OGE4ZjMyZi1mOWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkE3AGejFX/l1OIOe8y4TgE1CPMvCd41O0NXSdNCwsaG90CFBRKxx2Q1cLBi cnVED6Iaqd/6EeiJkHDusZG1hPPv8Qe4Wq/+U/uM/JMYWmdGjAMVONIvHb698E2F nJ4wzOQK3ViKrpDeap4ZyGeD5fG/+Ilk5gOwscNHFuGy51IlJzoVQKq9fFTrSEbT dWAW/LXL8l4DUdmMUTQGGKyP0UIf9DLHKzJ6g3/3WYtZfuSGRWXkm60KSYMphPfv CeIKYPwmyajJmdDoXQqE9b78nMm+RXmi/JP0p+vWYOQOImHEUyEuH8r/ePJ4Ghf/ OgjmSo1Xr94JJgqtUNbP5vlnIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMiD3HW6 mUpUsj7EkUo4DbYLa+jaMB8GA1UdIwQYMBaAFHFBwxm7RL+83jOCs7tpEmX5XTCf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg0Ri9ERDQ4N0E1Qzk4 MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3emVNNEt6dTJrU1pmbGRN SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVSERHYnRFdjd6ZU00S3p1MmtTWmZsZE1KOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg0Ri9ERDQ4N0E1Qzk4MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3 emVNNEt6dTJrU1pmbGRNSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+jkHiyNvD+l8P1PD5Ic2i6irH+cFGxtIZ15T0DXXp6o8gx07wcFd1 FpPW+eGevKCWwzKMhw7R+37vog0BOxWMyfa7GSR38f3/PnfWSpqVPRVhMFEgzJMl u0okI6E0hx9XbRuYycb5uU8Q9MCnI68GtPYxfwM8mWc7HDb9zGOL7184lEp6d25i rLSQotuqCPZ9ZnUoFVrHhn1N5w4Coqb0HEV91anXd3pCSUTlFK1eThMpZGnx97na xxlj6SPT3gJvlmw362LCBqDaNWaUAz5YDk5U1wiqlNEC6yMCXCLRpszazMvgrIrz 6fFzEa4Xez6stQWWkAgAsoRQ+IHZqaqt -----END CERTIFICATE-----Generated at Sat Aug 23 17:23:30 2025 by rpki-client