$ rpki-client -vvf rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft File: T4QeODPgrG_hvu69ABI10VKOzno.mft (raw, json) Hash identifier: /ry3Zf/JPIMvtWutETCg06V/0u4+44GW5A3ZTPLd0So= Subject key identifier: EE:EC:97:7C:01:EB:13:CC:2F:E7:06:89:C0:D1:31:57:2C:59:83:22 Authority key identifier: 4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A Certificate issuer: /CN=A913AF6A/serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft Manifest number: 0136 Signing time: Fri 05 Sep 2025 04:49:29 +0000 Manifest this update: Fri 05 Sep 2025 04:49:28 +0000 Manifest next update: Fri 12 Sep 2025 04:49:28 +0000 Files and hashes: 1: T4QeODPgrG_hvu69ABI10VKOzno.crl (hash: /UTUwCvs56Kb/SFghXakSRwmcNrBSfC+5+gnkmd7+kg=) 2: 658B1AC8AE4711EE8C130419C4F9AE02.roa (hash: pBuyb8tUeoDi0BGNU1PyCW1Le78/gB9wiXHTRO2r0pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AF6A, serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Validity Not Before: Sep 5 04:49:28 2025 GMT Not After : Sep 12 04:49:28 2025 GMT Subject: CN=68ba6bd8-4464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:b8:63:b4:ce:2c:2f:89:73:74:9e:54:7a:1d: ca:09:e9:69:79:02:fd:38:e1:71:b8:c1:5f:97:ba: 74:a3:a0:36:08:cf:77:b5:7e:9e:5c:7d:08:a4:2a: 2a:27:13:31:97:51:c2:f2:63:24:5d:8e:13:cd:53: 25:f8:e2:c1:87:ad:6c:0c:11:73:27:50:2d:c9:e8: 21:3d:f7:1f:33:67:6f:9b:07:39:35:3d:73:b4:ef: 8d:0b:38:ea:5c:1d:50:8b:14:ef:0c:1e:55:98:43: 96:19:61:c8:fa:39:7a:4c:94:46:88:ab:d6:6f:d4: d3:9a:84:f9:f5:f7:7a:3c:8f:6c:ac:5a:ee:c4:85: 0e:4a:3f:87:1b:0a:98:8f:14:e8:e2:59:92:45:fa: 34:28:fc:69:d6:c4:6e:d8:e7:37:48:b1:28:1a:2c: cf:71:06:70:45:46:ff:9e:c6:60:7c:47:fe:48:7a: 06:20:62:f7:55:15:00:eb:f1:39:76:ce:11:2b:7b: 98:92:89:84:5f:65:ae:53:7c:19:e3:b5:60:c3:38: 1f:4e:b1:ce:e6:bb:af:d3:70:c9:01:ae:77:5f:3d: 6b:0d:2b:4a:e8:6a:bd:9e:6d:f2:17:af:b5:e4:2c: c2:d0:eb:04:12:0e:ea:a7:13:79:28:18:78:6e:36: 92:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:EC:97:7C:01:EB:13:CC:2F:E7:06:89:C0:D1:31:57:2C:59:83:22 X509v3 Authority Key Identifier: keyid:4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:f9:5c:b3:d1:59:1e:85:0e:c6:05:6d:02:a6:1b:d0:65:f9: de:d7:7a:24:e8:ed:4d:33:02:f3:f3:32:4f:d8:83:e8:08:01: dc:de:2b:f3:8c:b1:03:7f:ab:00:f9:50:fc:f5:2d:91:b9:48: 30:13:96:e6:30:17:bc:3c:e2:81:37:6e:44:3a:69:38:60:41: 58:8b:cd:b5:f7:8d:e5:62:68:aa:47:fb:03:3a:23:30:3a:6b: e4:07:0a:3b:6e:8f:a4:4f:38:f5:ef:d7:5f:13:cb:74:49:03: f3:2c:c6:bf:e5:a2:d7:86:91:8d:aa:43:5c:06:ef:0a:1c:4a: 47:4a:67:36:7b:c3:ef:bf:85:b2:28:c9:f9:dd:f7:6c:69:1e: 50:74:8f:12:be:9c:58:2c:cf:71:4b:f3:92:70:53:44:0b:4a: 08:85:e4:7d:a6:ef:48:dc:2b:bd:9b:ae:00:c9:b6:21:4e:e1: b3:37:a8:7b:f3:5c:be:27:cf:7d:e2:6c:df:43:50:33:82:2b: b2:9b:e3:aa:8f:40:6a:e5:73:b6:f3:47:58:71:b4:e4:fa:1f: a5:e2:60:8c:65:bb:01:b3:34:82:05:53:77:fd:f7:dc:e4:8a: fc:44:cd:ed:24:4e:45:cd:d7:11:36:b5:76:8f:36:1b:19:c3: 50:6a:8f:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FGNkExMTAvBgNVBAUTKDRGODQxRTM4MzNFMEFDNkZFMUJFRUVCRDAwMTIzNUQx NTI4RUNFN0EwHhcNMjUwOTA1MDQ0OTI4WhcNMjUwOTEyMDQ0OTI4WjAYMRYwFAYD VQQDEw02OGJhNmJkOC00NDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+rhjtM4sL4lzdJ5Ueh3KCelpeQL9OOFxuMFfl7p0o6A2CM93tX6eXH0IpCoq JxMxl1HC8mMkXY4TzVMl+OLBh61sDBFzJ1AtyeghPfcfM2dvmwc5NT1ztO+NCzjq XB1QixTvDB5VmEOWGWHI+jl6TJRGiKvWb9TTmoT59fd6PI9srFruxIUOSj+HGwqY jxTo4lmSRfo0KPxp1sRu2Oc3SLEoGizPcQZwRUb/nsZgfEf+SHoGIGL3VRUA6/E5 ds4RK3uYkomEX2WuU3wZ47VgwzgfTrHO5ruv03DJAa53Xz1rDStK6Gq9nm3yF6+1 5CzC0OsEEg7qpxN5KBh4bjaSTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7sl3wB 6xPML+cGicDRMVcsWYMiMB8GA1UdIwQYMBaAFE+EHjgz4Kxv4b7uvQASNdFSjs56 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUY2QS84MzdDRDM0NkFF NDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JHX2h2dTY5QUJJMTBWS096 bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1Q0UWVPRFBnckdfaHZ1NjlBQkkxMFZLT3puby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUY2QS84MzdDRDM0NkFFNDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JH X2h2dTY5QUJJMTBWS096bm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm+Vyz0VkehQ7GBW0CphvQZfne13ok6O1NMwLz8zJP2IPoCAHc3ivz jLEDf6sA+VD89S2RuUgwE5bmMBe8POKBN25EOmk4YEFYi821943lYmiqR/sDOiMw OmvkBwo7bo+kTzj179dfE8t0SQPzLMa/5aLXhpGNqkNcBu8KHEpHSmc2e8Pvv4Wy KMn53fdsaR5QdI8SvpxYLM9xS/OScFNEC0oIheR9pu9I3Cu9m64AybYhTuGzN6h7 81y+J8994mzfQ1Azgiuym+Oqj0Bq5XO280dYcbTk+h+l4mCMZbsBszSCBVN3/ffc 5Ir8RM3tJE5FzdcRNrV2jzYbGcNQao8b -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:08 2025 by rpki-client