$ rpki-client -vvf rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft File: TiH1qoySjAtnV8A-VbClkjxOSKs.mft (raw, json) Hash identifier: uaOSd03JvrQR9Tkz8rN3FOg5FAvh+mE19aG3M8rCO7Q= Subject key identifier: B7:F2:9D:96:6C:48:E1:71:E1:31:B3:84:3D:98:AF:0D:2F:97:96:9E Authority key identifier: 4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB Certificate issuer: /CN=A9180D79/serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft Manifest number: 014D Signing time: Sat 19 Jul 2025 04:27:45 +0000 Manifest this update: Sat 19 Jul 2025 04:27:45 +0000 Manifest next update: Sat 26 Jul 2025 04:27:45 +0000 Files and hashes: 1: TiH1qoySjAtnV8A-VbClkjxOSKs.crl (hash: HCj7JXEqnza8TqCUdDDxWtP+gp/cDFv/u21kELADRGM=) 2: E586278C29A111F0BA1F4E63C4F9AE02.roa (hash: iMx1ZiX9rWmGz4A0kr/IlO0X/88Oa+zlLaNS0YVQidY=) 3: F97DB5F229A111F090BC8163C4F9AE02.roa (hash: qSTrfN/t5DWRs97KV7DGaW2piIfbl9N9+lJsbDORhpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180D79, serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Validity Not Before: Jul 19 04:27:45 2025 GMT Not After : Jul 26 04:27:45 2025 GMT Subject: CN=687b1ec1-b074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c6:80:dd:9e:e8:d8:89:9d:70:3d:cc:ae:64: cf:94:5d:98:93:0b:58:a2:e8:b7:14:cd:18:af:8c: 38:74:a1:e0:32:6f:86:d7:f0:d8:b0:24:f5:67:bf: ed:2c:50:50:29:14:41:1d:cf:c1:d2:73:65:14:eb: e0:72:1a:fa:b3:e2:42:28:02:f9:3d:ac:dc:ed:b3: 1f:ce:8e:4c:39:6b:80:32:8f:ac:fa:f0:91:06:55: 29:37:30:79:11:d4:25:2b:90:e1:1b:86:af:7b:17: af:d3:b7:62:26:80:35:b3:a0:f1:43:70:c1:1a:07: bd:51:89:cc:9a:a1:df:35:a0:0d:ba:36:b3:fb:4a: 4f:64:f9:25:41:de:43:85:f0:5c:88:34:18:d8:6b: 07:c0:70:b6:aa:39:59:eb:02:1c:75:6d:ac:35:57: 20:56:27:d2:47:eb:2d:60:bf:c4:9d:fe:00:2b:39: 8c:a7:33:85:ad:57:7a:b9:86:d6:83:3f:7f:b2:cb: 22:f9:b9:9d:39:6d:11:de:a6:ea:c5:e4:f0:49:93: 45:06:87:ec:95:e5:44:fb:01:e6:dc:b6:9b:36:32: 70:c8:c4:1e:f0:e8:f8:15:3d:28:90:b6:bf:8e:5c: 7b:e4:76:51:aa:f8:b0:63:c6:bd:3e:32:51:75:74: 1c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:F2:9D:96:6C:48:E1:71:E1:31:B3:84:3D:98:AF:0D:2F:97:96:9E X509v3 Authority Key Identifier: keyid:4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:e0:4c:38:7a:f9:9f:61:08:45:50:c9:36:6c:aa:fe:4d:4a: 8d:f6:38:15:5f:b9:f6:e3:35:5d:6e:2c:0d:a2:a2:fe:5f:cc: d6:f7:c9:9c:22:6f:f9:81:3f:c3:13:1b:c9:f1:54:07:03:ed: b2:06:d0:ca:40:c7:64:0d:13:61:d8:e0:8b:be:c7:31:f1:e5: 43:23:a0:f8:4b:36:92:66:c6:18:e3:b0:ae:1a:07:ee:d3:59: af:c8:f5:5d:02:e2:77:58:f5:98:98:5b:65:79:db:49:d1:00: 81:cb:3e:f7:05:11:85:d3:1e:5f:98:9d:b1:88:13:c8:65:a6: cd:22:20:c8:b5:bd:83:39:d9:b1:2a:99:aa:ae:d8:7b:10:61: cf:a8:4f:09:16:7b:b4:4f:e5:de:2e:11:1b:47:db:d6:8b:1e: dd:62:cb:40:34:cf:50:8b:7c:f0:e3:96:ba:6d:f8:c5:c1:ca: 5e:94:2d:ac:3e:81:90:68:0b:80:74:53:b2:7c:a7:f4:6c:07: d3:35:df:2f:91:90:7a:b0:0e:bc:a3:55:cf:86:58:b1:dc:7f: 0c:56:92:71:8d:e2:42:3f:5f:e7:27:b1:6b:5f:e1:6c:0a:e5: f0:3e:f9:4b:6c:de:15:b5:ff:2a:f6:37:70:6e:fb:32:36:e3: 8f:c9:30:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBENzkxMTAvBgNVBAUTKDRFMjFGNUFBOEM5MjhDMEI2NzU3QzAzRTU1QjBBNTky M0M0RTQ4QUIwHhcNMjUwNzE5MDQyNzQ1WhcNMjUwNzI2MDQyNzQ1WjAYMRYwFAYD VQQDEw02ODdiMWVjMS1iMDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0caA3Z7o2ImdcD3MrmTPlF2YkwtYoui3FM0Yr4w4dKHgMm+G1/DYsCT1Z7/t LFBQKRRBHc/B0nNlFOvgchr6s+JCKAL5Pazc7bMfzo5MOWuAMo+s+vCRBlUpNzB5 EdQlK5DhG4avexev07diJoA1s6DxQ3DBGge9UYnMmqHfNaANujaz+0pPZPklQd5D hfBciDQY2GsHwHC2qjlZ6wIcdW2sNVcgVifSR+stYL/Enf4AKzmMpzOFrVd6uYbW gz9/sssi+bmdOW0R3qbqxeTwSZNFBofsleVE+wHm3LabNjJwyMQe8Oj4FT0okLa/ jlx75HZRqviwY8a9PjJRdXQcDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfynZZs SOFx4TGzhD2Yrw0vl5aeMB8GA1UdIwQYMBaAFE4h9aqMkowLZ1fAPlWwpZI8Tkir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MEQ3OS9FMTgyMDhCQzZE OUMxMUVFQTAyQkJCMEVDNEY5QUUwMi9UaUgxcW95U2pBdG5WOEEtVmJDbGtqeE9T S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpSDFxb3lTakF0blY4QS1WYkNsa2p4T1NLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MEQ3OS9FMTgyMDhCQzZEOUMxMUVFQTAyQkJCMEVDNEY5QUUwMi9UaUgxcW95U2pB dG5WOEEtVmJDbGtqeE9TS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw4Ew4evmfYQhFUMk2bKr+TUqN9jgVX7n24zVdbiwNoqL+X8zW98mc Im/5gT/DExvJ8VQHA+2yBtDKQMdkDRNh2OCLvscx8eVDI6D4SzaSZsYY47CuGgfu 01mvyPVdAuJ3WPWYmFtledtJ0QCByz73BRGF0x5fmJ2xiBPIZabNIiDItb2DOdmx Kpmqrth7EGHPqE8JFnu0T+XeLhEbR9vWix7dYstANM9Qi3zw45a6bfjFwcpelC2s PoGQaAuAdFOyfKf0bAfTNd8vkZB6sA68o1XPhlix3H8MVpJxjeJCP1/nJ7FrX+Fs CuXwPvlLbN4Vtf8q9jdwbvsyNuOPyTAe -----END CERTIFICATE-----Generated at Sun Jul 20 06:32:26 2025 by rpki-client