$ rpki-client -vvf rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft File: tIPaBfgQj61WuWetrdJRxslpwlI.mft (raw, json) Hash identifier: xB4xqCNucYIWLw613HdgSvsMFX1+6Y4C3sWdZlYAFuI= Subject key identifier: 08:9C:14:D9:4C:2A:4F:FE:43:E5:11:C6:63:E5:D8:10:A2:6A:FA:B1 Authority key identifier: B4:83:DA:05:F8:10:8F:AD:56:B9:67:AD:AD:D2:51:C6:C9:69:C2:52 Certificate issuer: /CN=A91178F4/serialNumber=B483DA05F8108FAD56B967ADADD251C6C969C252 Certificate serial: 019E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIPaBfgQj61WuWetrdJRxslpwlI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft Manifest number: 019E Signing time: Sun 20 Jul 2025 18:58:46 +0000 Manifest this update: Sun 20 Jul 2025 18:58:45 +0000 Manifest next update: Sun 27 Jul 2025 18:58:45 +0000 Files and hashes: 1: tIPaBfgQj61WuWetrdJRxslpwlI.crl (hash: bpMH+OjmyFhnr5weuINoZtyizUgSTwv/m9A4/r+cSqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.crl rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIPaBfgQj61WuWetrdJRxslpwlI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 18:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91178F4, serialNumber=B483DA05F8108FAD56B967ADADD251C6C969C252 Validity Not Before: Jul 20 18:58:45 2025 GMT Not After : Jul 27 18:58:45 2025 GMT Subject: CN=687d3c65-9ea4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3e:49:07:0d:21:38:ea:9d:be:72:2d:f9:d7: 49:93:80:c6:d2:7f:47:83:82:c2:df:dd:97:9f:ba: 9d:08:0c:8b:18:c4:d4:19:1d:9a:35:4d:16:66:57: 8b:b8:1d:0b:15:e7:17:dd:ee:fe:4e:2a:7c:1f:2c: cc:59:9e:38:06:f2:95:01:bb:1d:cf:e7:5e:e0:2c: dc:6e:a1:1c:f4:71:15:95:ce:96:c4:c7:0b:ef:30: 86:4e:e1:b1:eb:dd:94:da:01:81:55:60:c9:42:54: 58:3a:75:8a:23:b8:f4:9c:cc:09:11:af:b6:92:cd: bd:be:68:5b:a6:47:71:48:a4:30:50:39:63:a1:a3: 65:c8:ac:36:33:1d:d6:ae:66:ba:6d:df:89:da:e0: b3:39:c3:9e:cc:d2:5a:51:37:c5:be:1d:4f:6b:3e: 5a:90:f0:9e:fe:3a:45:0d:53:0e:d0:0a:f0:ca:06: 13:0f:d4:ba:76:8a:9b:33:e3:bd:5a:3a:2e:64:54: 30:ab:a6:3e:3e:db:1d:49:4c:51:5e:ba:48:63:7a: 01:79:01:14:cc:f2:db:80:9f:d3:32:89:65:66:e2: 6b:22:b6:79:83:6a:2d:0f:c6:e3:32:a7:f1:cf:21: 1d:d3:53:40:27:ee:68:a0:04:52:61:ec:d5:43:35: dd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:9C:14:D9:4C:2A:4F:FE:43:E5:11:C6:63:E5:D8:10:A2:6A:FA:B1 X509v3 Authority Key Identifier: keyid:B4:83:DA:05:F8:10:8F:AD:56:B9:67:AD:AD:D2:51:C6:C9:69:C2:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIPaBfgQj61WuWetrdJRxslpwlI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:b9:e4:5e:90:87:66:48:75:b1:dd:47:f9:6d:5a:2a:ba:56: 81:27:55:81:63:b5:b9:19:ef:30:c7:0f:b9:aa:9f:98:ac:5d: fa:e6:fc:b1:86:e9:21:46:b3:5d:35:60:f3:69:97:c6:e6:11: 76:bb:06:46:8c:d3:15:15:49:a7:e7:e1:47:62:ce:8b:e5:5d: b4:ce:53:c7:30:b7:0e:9d:fa:31:e0:a7:6a:5c:19:72:44:9f: b1:71:56:48:87:b5:4f:bd:9a:8d:ed:00:d8:d5:5c:64:cc:14: 83:cd:7a:d5:2f:75:e2:bf:a6:35:25:46:8f:2c:3f:b0:f9:05: a4:9b:01:2f:ee:c2:8c:07:5c:e4:84:bf:6c:5c:a6:ab:33:3a: 61:47:cb:5c:b1:14:a0:21:0e:da:e5:ea:9f:86:96:3e:17:69: e8:7a:2b:a0:b5:0f:7f:a9:46:0d:1b:bf:06:6d:fe:16:db:6b: 98:35:c7:4b:7d:f7:5c:76:c0:30:10:20:b9:e6:6f:21:ff:75: 63:eb:10:dc:f1:8d:6e:73:08:0f:e2:ce:62:7e:1a:6d:de:7d: b0:95:4f:a9:08:7b:6e:5f:29:aa:a2:9e:37:e9:17:24:e4:7b: 4c:a2:9b:f0:b4:1b:6b:52:b1:67:c6:ed:6b:c1:45:94:58:cf: ea:f0:f1:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4RjQxMTAvBgNVBAUTKEI0ODNEQTA1RjgxMDhGQUQ1NkI5NjdBREFERDI1MUM2 Qzk2OUMyNTIwHhcNMjUwNzIwMTg1ODQ1WhcNMjUwNzI3MTg1ODQ1WjAYMRYwFAYD VQQDEw02ODdkM2M2NS05ZWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwD5JBw0hOOqdvnIt+ddJk4DG0n9Hg4LC392Xn7qdCAyLGMTUGR2aNU0WZleL uB0LFecX3e7+Tip8HyzMWZ44BvKVAbsdz+de4CzcbqEc9HEVlc6WxMcL7zCGTuGx 692U2gGBVWDJQlRYOnWKI7j0nMwJEa+2ks29vmhbpkdxSKQwUDljoaNlyKw2Mx3W rma6bd+J2uCzOcOezNJaUTfFvh1Paz5akPCe/jpFDVMO0ArwygYTD9S6doqbM+O9 WjouZFQwq6Y+PtsdSUxRXrpIY3oBeQEUzPLbgJ/TMollZuJrIrZ5g2otD8bjMqfx zyEd01NAJ+5ooARSYezVQzXdiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAicFNlM Kk/+Q+URxmPl2BCiavqxMB8GA1UdIwQYMBaAFLSD2gX4EI+tVrlnra3SUcbJacJS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzhGNC9CRjBBMUU5QUYw QjYxMUVEQTg4MkU2MjhDNEY5QUUwMi90SVBhQmZnUWo2MVd1V2V0cmRKUnhzbHB3 bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJUGFCZmdRajYxV3VXZXRyZEpSeHNscHdsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzhGNC9CRjBBMUU5QUYwQjYxMUVEQTg4MkU2MjhDNEY5QUUwMi90SVBhQmZnUWo2 MVd1V2V0cmRKUnhzbHB3bEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnueRekIdmSHWx3Uf5bVoqulaBJ1WBY7W5Ge8wxw+5qp+YrF365vyx hukhRrNdNWDzaZfG5hF2uwZGjNMVFUmn5+FHYs6L5V20zlPHMLcOnfox4KdqXBly RJ+xcVZIh7VPvZqN7QDY1VxkzBSDzXrVL3Xiv6Y1JUaPLD+w+QWkmwEv7sKMB1zk hL9sXKarMzphR8tcsRSgIQ7a5eqfhpY+F2noeiugtQ9/qUYNG78Gbf4W22uYNcdL ffdcdsAwECC55m8h/3Vj6xDc8Y1ucwgP4s5ifhpt3n2wlU+pCHtuXymqop436Rck 5HtMopvwtBtrUrFnxu1rwUWUWM/q8PF/ -----END CERTIFICATE-----Generated at Mon Jul 21 12:38:12 2025 by rpki-client