$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft File: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft (raw, json) Hash identifier: 21le+M31jgtkrHQiSqE04W0lBJMOtO12YMHuzy/Lw4M= Subject key identifier: A0:71:03:B4:6E:89:15:69:CC:C2:4B:35:1F:CE:61:9C:B1:94:56:F6 Authority key identifier: 71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F Certificate issuer: /CN=A91FF84F/serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Certificate serial: 0640 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft Manifest number: 063A Signing time: Mon 30 Jun 2025 23:01:47 +0000 Manifest this update: Mon 30 Jun 2025 23:01:47 +0000 Manifest next update: Mon 07 Jul 2025 23:01:47 +0000 Files and hashes: 1: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl (hash: gGMtVTpKCYFtlGsF0YyVmryzC3qxPeBTU3qbyeP7/Bs=) 2: 2F320256981611EB904AF150C4F9AE02.roa (hash: zydBQ6+XzPsP0D5XfuooCO12kFS+89HKhQ6kY0lGz0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1600 (0x640) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF84F, serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Validity Not Before: Jun 30 23:01:47 2025 GMT Not After : Jul 7 23:01:47 2025 GMT Subject: CN=6863175b-c64f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:52:13:33:7b:e7:36:ae:90:d5:64:99:0d:a1: 37:96:bb:94:66:87:ca:1e:6e:47:b4:f9:71:6f:cb: 11:0a:a3:48:f4:c1:cd:63:4f:b0:d8:bd:6b:9c:02: 9b:59:01:ac:76:f9:e5:b5:2e:20:3f:cc:83:8a:ed: 65:b4:b9:95:5e:40:04:a1:98:eb:b3:49:c9:6e:7b: 12:76:40:21:da:73:9a:ec:70:2f:c0:31:33:28:70: 6a:18:81:88:86:3b:6e:f0:5e:e7:e4:02:f6:d9:6b: cb:e4:d9:7f:a4:01:16:5f:ec:0e:cb:45:7a:6c:70: 73:88:01:29:ab:6b:d6:a8:a7:a5:b7:0d:76:b7:86: 7b:30:7a:ff:8c:2f:25:61:05:bd:44:05:f2:eb:4d: 14:f5:c5:8f:f0:e9:ee:6f:b9:85:05:56:04:fc:ad: 69:73:75:87:3d:b1:7f:5e:0c:6f:89:f2:0e:2e:c9: 87:07:8f:8e:d9:30:5a:8a:c4:8c:a2:45:bf:11:dd: d3:c6:18:4a:c5:99:a9:4b:69:6f:73:f1:6e:2c:ca: d7:e3:19:98:49:68:09:b6:63:5b:6b:1c:81:1e:2b: 84:67:49:e0:eb:1e:1e:aa:de:60:5e:51:87:f4:5b: 9c:77:3c:8b:6f:3e:33:a5:bd:d8:a8:93:16:36:33: 51:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:71:03:B4:6E:89:15:69:CC:C2:4B:35:1F:CE:61:9C:B1:94:56:F6 X509v3 Authority Key Identifier: keyid:71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:91:7b:63:b8:f7:af:0e:42:06:85:b4:52:bb:00:c2:98:93: a2:5e:c4:b4:22:33:9c:6c:57:05:21:b2:ed:5a:04:bb:bd:f8: 78:ab:f1:f1:30:29:9a:7c:a4:b9:9a:28:5a:6d:2a:6b:bc:f2: 48:38:89:73:e9:a5:dc:29:8b:f1:52:e2:e8:91:b9:15:6a:5a: ef:c9:d0:8f:99:2a:26:4e:5d:31:1c:68:09:ac:4e:7f:9e:1d: d1:1f:42:c8:6f:e6:05:d0:8a:de:19:f6:6c:9b:9e:a0:ce:c8: 3c:32:73:bc:ca:a7:3f:c4:31:a4:13:b4:f5:3b:0e:14:ee:09: e6:bf:28:0b:cf:cc:fb:ee:5e:6f:35:f3:5d:b6:64:46:a2:d2: c1:ff:2c:81:c8:f4:9d:42:2e:fa:01:ea:24:5a:e4:de:4f:c5: 17:45:29:50:f9:55:9f:16:7a:ca:5f:24:55:0c:ce:87:78:eb: 85:7d:7e:b6:bf:fb:4c:89:82:ef:65:01:af:58:c0:f8:34:4b: aa:63:ae:c6:eb:2f:63:f4:61:eb:1f:a4:ad:fe:71:62:f8:d5: 79:22:a5:bd:35:7c:6e:45:0b:ed:da:6a:6e:80:9e:16:f2:91: d7:e4:49:01:3b:1d:33:65:60:b6:73:82:26:7c:d7:a0:5c:16: 8e:99:cd:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4NEYxMTAvBgNVBAUTKDcxNDFDMzE5QkI0NEJGQkNERTMzODJCM0JCNjkxMjY1 Rjk1RDMwOUYwHhcNMjUwNjMwMjMwMTQ3WhcNMjUwNzA3MjMwMTQ3WjAYMRYwFAYD VQQDEw02ODYzMTc1Yi1jNjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6lITM3vnNq6Q1WSZDaE3lruUZofKHm5HtPlxb8sRCqNI9MHNY0+w2L1rnAKb WQGsdvnltS4gP8yDiu1ltLmVXkAEoZjrs0nJbnsSdkAh2nOa7HAvwDEzKHBqGIGI hjtu8F7n5AL22WvL5Nl/pAEWX+wOy0V6bHBziAEpq2vWqKeltw12t4Z7MHr/jC8l YQW9RAXy600U9cWP8Onub7mFBVYE/K1pc3WHPbF/XgxvifIOLsmHB4+O2TBaisSM okW/Ed3TxhhKxZmpS2lvc/FuLMrX4xmYSWgJtmNbaxyBHiuEZ0ng6x4eqt5gXlGH 9FucdzyLbz4zpb3YqJMWNjNRHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBxA7Ru iRVpzMJLNR/OYZyxlFb2MB8GA1UdIwQYMBaAFHFBwxm7RL+83jOCs7tpEmX5XTCf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg0Ri9ERDQ4N0E1Qzk4 MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3emVNNEt6dTJrU1pmbGRN SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVSERHYnRFdjd6ZU00S3p1MmtTWmZsZE1KOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg0Ri9ERDQ4N0E1Qzk4MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3 emVNNEt6dTJrU1pmbGRNSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMkXtjuPevDkIGhbRSuwDCmJOiXsS0IjOcbFcFIbLtWgS7vfh4q/Hx MCmafKS5mihabSprvPJIOIlz6aXcKYvxUuLokbkValrvydCPmSomTl0xHGgJrE5/ nh3RH0LIb+YF0IreGfZsm56gzsg8MnO8yqc/xDGkE7T1Ow4U7gnmvygLz8z77l5v NfNdtmRGotLB/yyByPSdQi76AeokWuTeT8UXRSlQ+VWfFnrKXyRVDM6HeOuFfX62 v/tMiYLvZQGvWMD4NEuqY67G6y9j9GHrH6St/nFi+NV5IqW9NXxuRQvt2mpugJ4W 8pHX5EkBOx0zZWC2c4ImfNegXBaOmc3+ -----END CERTIFICATE-----Generated at Wed Jul 2 20:26:44 2025 by rpki-client