$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft File: tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft (raw, json) Hash identifier: KjpValQbole/rwF4fcWdnrTUTMK/oKHIvyvNml0kgcU= Subject key identifier: 49:C4:31:01:49:DD:94:D5:62:47:CE:57:A9:EF:EC:EF:94:C0:A0:0E Authority key identifier: B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 Certificate issuer: /CN=A911AE4D/serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Certificate serial: 01B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft Manifest number: 019C Signing time: Sat 19 Jul 2025 03:44:23 +0000 Manifest this update: Sat 19 Jul 2025 03:44:22 +0000 Manifest next update: Sat 26 Jul 2025 03:44:22 +0000 Files and hashes: 1: tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl (hash: NJ6wXKgaQ30RRz/AgrrnJ7hC1rxRyJeaMuCx/O4xQi4=) 2: 3A9B86AED0C011EEB134543DC4F9AE02.roa (hash: wrNQzAuRQVjZjCzpBxMXn6kt4KShOSGQnoTCPEIgheQ=) 3: 7203E112568C11EEA2DD9914C4F9AE02.roa (hash: gF8SP0nG0LD9gIiEjyyKah/KS5kKQp222tN7wLJ4Gdw=) 4: 6F4F0F4230AA11F0AD39210DC4F9AE02.roa (hash: +d1sU0yUiz73D5euMUQlwAefx/2UEcW1zqA4TD64tDI=) 5: 221A3064480411F0A14D5A83C4F9AE02.roa (hash: ATF/fdwZLaYvPHUpDvAt6YQCavrO94OcrrVt0+AB3Lc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:44:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4D, serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Validity Not Before: Jul 19 03:44:22 2025 GMT Not After : Jul 26 03:44:22 2025 GMT Subject: CN=687b1497-a786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:af:5f:7d:c1:17:67:0c:31:dc:f1:03:1d:48: 38:11:f8:44:63:cc:fa:ce:77:6e:bc:47:71:9d:60: 28:cf:1e:b3:0b:65:13:7c:cf:91:01:47:2e:74:cc: c8:79:bd:b9:9d:fb:4e:86:e6:78:f5:05:7b:65:ce: a0:e1:69:87:13:7d:bc:f0:c5:2a:da:7d:c3:bf:62: 2c:22:ce:d5:c7:74:e7:ba:c3:1f:29:b5:bf:d6:fb: bb:43:1a:3c:91:d8:3d:e8:6b:bc:79:c0:d1:25:c6: a1:19:ce:b1:9f:18:79:71:9c:b8:19:e5:d6:a7:4a: b0:72:06:2e:80:38:1f:0d:31:7a:7d:44:c7:12:69: f9:8f:5c:9f:19:c8:60:b8:1c:dc:0d:64:22:83:6c: b5:8e:77:17:f9:53:e6:fb:b6:a9:fe:a5:c2:7e:2e: 64:a1:fc:0e:7a:68:5c:b3:f2:09:4c:c7:a6:58:c9: 87:db:9a:33:9a:ab:98:e7:87:df:f3:e9:3f:b4:1d: aa:1e:67:06:f5:50:54:14:d8:d0:f9:e0:3d:b7:d3: d5:d9:4e:03:4d:7e:eb:9a:71:11:e0:de:24:89:76: fd:b4:12:0f:aa:8e:97:9d:44:1d:f3:3f:91:13:73: 5a:ce:fb:62:b2:9f:cd:e3:b2:f8:70:4c:5d:e2:95: fe:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C4:31:01:49:DD:94:D5:62:47:CE:57:A9:EF:EC:EF:94:C0:A0:0E X509v3 Authority Key Identifier: keyid:B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:a9:59:4a:a1:03:bf:da:66:1e:ab:ca:d4:32:59:28:0d:9c: a8:63:c2:48:6a:ef:4b:0c:d5:d1:60:9c:b9:ad:83:eb:0d:03: 1d:b2:4e:e3:00:9b:8d:cb:01:49:01:40:60:73:64:1c:03:c3: 10:2e:b2:2f:d0:75:2b:25:b5:86:74:a0:d0:16:0a:64:bd:40: 0b:81:0e:27:7c:7d:cb:67:61:ba:96:5a:3f:b1:ee:ea:4e:79: da:73:e3:b2:49:b2:e4:b0:54:20:74:2e:79:35:cf:22:77:7d: c4:05:41:85:b3:51:26:a7:24:6f:04:ee:7d:3b:74:75:47:36: 6a:d0:3b:8d:51:8f:48:53:d3:ab:1a:2a:b8:7c:68:60:51:dc: 60:e2:7f:fd:06:a9:75:67:be:cf:b6:97:3d:5f:d3:ff:20:2b: 6e:f1:4f:1d:db:4b:28:77:45:e7:49:6a:a0:d3:e8:2b:ff:35: fd:5a:b1:91:4c:59:32:32:73:ed:8d:5d:c0:53:c5:b3:e0:85: 1c:ae:91:91:dc:ff:52:39:34:70:21:e0:15:c4:34:59:28:90: ff:52:90:8e:0d:79:29:7c:04:3f:1e:d4:bb:6b:49:2f:c9:1d: 9a:9e:3c:d7:6b:8c:e4:09:46:62:65:ad:f0:42:4e:cf:f2:1d: 24:51:1c:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEQxMTAvBgNVBAUTKEI0NTlCOTE1RDY3QjcyRDgzMzUzODQyMDJEQkZCQjM5 NTY1Qzk0RDgwHhcNMjUwNzE5MDM0NDIyWhcNMjUwNzI2MDM0NDIyWjAYMRYwFAYD VQQDEw02ODdiMTQ5Ny1hNzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA169ffcEXZwwx3PEDHUg4EfhEY8z6znduvEdxnWAozx6zC2UTfM+RAUcudMzI eb25nftOhuZ49QV7Zc6g4WmHE3288MUq2n3Dv2IsIs7Vx3TnusMfKbW/1vu7Qxo8 kdg96Gu8ecDRJcahGc6xnxh5cZy4GeXWp0qwcgYugDgfDTF6fUTHEmn5j1yfGchg uBzcDWQig2y1jncX+VPm+7ap/qXCfi5kofwOemhcs/IJTMemWMmH25ozmquY54ff 8+k/tB2qHmcG9VBUFNjQ+eA9t9PV2U4DTX7rmnER4N4kiXb9tBIPqo6XnUQd8z+R E3Nazvtisp/N47L4cExd4pX+zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnEMQFJ 3ZTVYkfOV6nv7O+UwKAOMB8GA1UdIwQYMBaAFLRZuRXWe3LYM1OEIC2/uzlWXJTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0RC81N0MzN0UzODBB NTcxMUVFOEM2MzVBNDZDNEY5QUUwMi90Rm01RmRaN2N0Z3pVNFFnTGItN09WWmNs TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RGbTVGZFo3Y3RnelU0UWdMYi03T1ZaY2xOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUU0RC81N0MzN0UzODBBNTcxMUVFOEM2MzVBNDZDNEY5QUUwMi90Rm01RmRaN2N0 Z3pVNFFnTGItN09WWmNsTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUqVlKoQO/2mYeq8rUMlkoDZyoY8JIau9LDNXRYJy5rYPrDQMdsk7j AJuNywFJAUBgc2QcA8MQLrIv0HUrJbWGdKDQFgpkvUALgQ4nfH3LZ2G6llo/se7q Tnnac+OySbLksFQgdC55Nc8id33EBUGFs1EmpyRvBO59O3R1RzZq0DuNUY9IU9Or Giq4fGhgUdxg4n/9Bql1Z77Ptpc9X9P/ICtu8U8d20sod0XnSWqg0+gr/zX9WrGR TFkyMnPtjV3AU8Wz4IUcrpGR3P9SOTRwIeAVxDRZKJD/UpCODXkpfAQ/HtS7a0kv yR2anjzXa4zkCUZiZa3wQk7P8h0kURxw -----END CERTIFICATE-----Generated at Sun Jul 20 14:27:04 2025 by rpki-client