$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: p13sELwYa8FsHaMrGfOmg2i5E77MzweDH0+oL0iPTDA= Subject key identifier: 8E:F9:E9:70:E1:33:78:24:73:9D:77:4E:A3:62:AD:67:54:1C:93:87 Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2C49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2BA0 Signing time: Sun 20 Jul 2025 15:34:14 +0000 Manifest this update: Sun 20 Jul 2025 15:34:14 +0000 Manifest next update: Sun 27 Jul 2025 15:34:14 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: gCxRxNiw1Ch3GQJsg4lgH2h39mBjw6gP3rl2eGoackA=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: NyqTZQOkUqWoaM40ZktUlOiopL6FbxfHLQstlqudq2c=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: LZsU00B4/gx6lo+GhGlRRaLNP1lXi+x7ZDLzlvJoUls=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: je3auOg70+6cT16YOal/ttbSxW+A5XuODnJlOPCEZSc=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: aSO9wjURcYGva8bAjVzZpymdiAuS5bByHQh+Eq4/Ung=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 15:34:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11337 (0x2c49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Jul 20 15:34:14 2025 GMT Not After : Jul 27 15:34:14 2025 GMT Subject: CN=687d0c76-fb68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:04:a4:5c:51:9d:6b:ad:fb:47:ca:4c:1c:e6: b9:08:9a:a9:54:84:38:1d:5f:c5:61:f3:89:cc:79: ba:a8:b0:8c:3a:7a:46:90:ec:2f:32:d6:96:e8:53: 8a:5f:a2:3d:5f:49:22:e3:df:1f:73:5e:30:5b:92: 8c:1f:78:12:2c:14:44:31:18:57:a3:15:ee:42:9f: c1:6b:d5:9a:32:93:2f:13:83:56:93:7d:11:66:3a: 11:ab:b4:92:c8:01:87:0e:82:3f:0b:e3:e1:46:29: 1c:40:d7:61:21:9e:35:5c:b1:ef:8a:89:88:ac:13: 53:11:b5:22:bb:03:42:29:4d:41:26:25:de:30:7e: 38:94:9c:0b:e4:f8:a6:ec:bc:f1:04:77:83:21:cf: fc:15:e9:da:eb:47:aa:98:3e:76:9d:9c:5b:4a:08: 60:b3:a2:4b:45:e8:a3:5a:24:b6:33:1b:48:fe:2e: 40:41:dd:b0:8f:41:4b:6b:e3:18:9e:bc:10:f6:30: c2:08:46:98:35:5f:0a:f6:e7:2c:e3:91:51:a2:03: 0a:43:33:4d:01:b1:1c:d9:cd:49:80:e5:8b:da:de: 64:2b:aa:ed:24:b8:1e:de:c9:c5:1a:cf:ec:b6:03: 89:f4:cc:7e:3f:90:b9:27:13:d7:58:88:16:10:46: e1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:F9:E9:70:E1:33:78:24:73:9D:77:4E:A3:62:AD:67:54:1C:93:87 X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:c9:bc:63:10:e7:d4:ac:0f:ed:d2:30:9a:e5:15:59:b1:f8: 0f:03:66:51:29:45:73:b3:32:45:2d:18:b1:ba:ec:b3:2b:ae: da:63:d7:2f:9b:02:c1:f8:9e:47:d0:ac:35:85:9c:03:10:3c: 73:11:d5:6b:e8:2b:d3:61:e2:7c:0b:39:64:57:8f:90:ce:c8: d8:d2:13:c5:20:73:ba:21:98:18:e6:32:f5:d8:75:b3:69:3a: 14:db:f1:ef:75:3e:26:92:08:15:0a:ab:26:b7:d0:36:4b:ba: 91:0d:fe:59:75:ea:cd:ec:ab:d6:74:75:2e:37:8d:ca:40:27: d8:0d:68:9a:c9:fa:3a:6b:7a:c7:bd:e9:51:d1:0d:22:03:3f: 81:e6:05:6e:5a:e6:ab:e0:3a:24:c5:5e:56:ef:f2:78:9e:05: 23:b2:2a:0e:43:c4:c1:aa:ee:0d:d8:77:e1:aa:f9:61:6b:0a: ca:ea:29:48:43:c8:50:5b:b0:51:2a:02:f0:07:28:b3:de:03: ea:8f:61:4a:3d:41:f6:8d:58:be:f6:be:cf:df:5b:e6:f6:97: 4c:4f:ef:6c:f3:be:c2:54:46:29:ad:7d:8b:4a:c1:e7:bc:c5: 72:6c:12:0b:fa:29:8b:81:7e:09:59:3a:52:c5:6d:22:c8:ef: 10:ac:0a:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjUwNzIwMTUzNDE0WhcNMjUwNzI3MTUzNDE0WjAYMRYwFAYD VQQDEw02ODdkMGM3Ni1mYjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowSkXFGda637R8pMHOa5CJqpVIQ4HV/FYfOJzHm6qLCMOnpGkOwvMtaW6FOK X6I9X0ki498fc14wW5KMH3gSLBREMRhXoxXuQp/Ba9WaMpMvE4NWk30RZjoRq7SS yAGHDoI/C+PhRikcQNdhIZ41XLHviomIrBNTEbUiuwNCKU1BJiXeMH44lJwL5Pim 7LzxBHeDIc/8Fena60eqmD52nZxbSghgs6JLReijWiS2MxtI/i5AQd2wj0FLa+MY nrwQ9jDCCEaYNV8K9ucs45FRogMKQzNNAbEc2c1JgOWL2t5kK6rtJLge3snFGs/s tgOJ9Mx+P5C5JxPXWIgWEEbhNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI756XDh M3gkc513TqNirWdUHJOHMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAybxjEOfUrA/t0jCa5RVZsfgPA2ZRKUVzszJFLRixuuyzK67aY9cv mwLB+J5H0Kw1hZwDEDxzEdVr6CvTYeJ8CzlkV4+QzsjY0hPFIHO6IZgY5jL12HWz aToU2/HvdT4mkggVCqsmt9A2S7qRDf5ZderN7KvWdHUuN43KQCfYDWiayfo6a3rH velR0Q0iAz+B5gVuWuar4DokxV5W7/J4ngUjsioOQ8TBqu4N2HfhqvlhawrK6ilI Q8hQW7BRKgLwByiz3gPqj2FKPUH2jVi+9r7P31vm9pdMT+9s877CVEYprX2LSsHn vMVybBIL+imLgX4JWTpSxW0iyO8QrAqC -----END CERTIFICATE-----Generated at Sun Jul 20 22:49:08 2025 by rpki-client