$ rpki-client -vvf rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft File: Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft (raw, json) Hash identifier: cZ14XOqecPyGck6zI3pQswhBSS7LMEhsfucaMfyAZlU= Subject key identifier: 64:A5:4F:E7:82:CB:02:CE:D5:D5:E0:08:DE:E1:C8:11:3C:E0:18:81 Authority key identifier: 4E:7F:EA:71:A4:47:A6:A1:61:79:C2:69:7E:BE:E5:55:19:9D:B0:98 Certificate issuer: /CN=A9148CCE/serialNumber=4E7FEA71A447A6A16179C2697EBEE555199DB098 Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn_qcaRHpqFhecJpfr7lVRmdsJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft Manifest number: 0B Signing time: Sat 05 Jul 2025 08:28:54 +0000 Manifest this update: Sat 05 Jul 2025 08:28:53 +0000 Manifest next update: Sat 12 Jul 2025 08:28:53 +0000 Files and hashes: 1: Tn_qcaRHpqFhecJpfr7lVRmdsJg.crl (hash: JJhCT01nKWYvX5l+a8cOJHgxHVfz8pbDnNtMepS5Lr4=) 2: 8FD5A938522911F0AECD911AC4F9AE02.roa (hash: Dtb6Fb2JpEd/Zi2+qi9cOHLUquodmN8UKkbWls/zEtM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.crl rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn_qcaRHpqFhecJpfr7lVRmdsJg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148CCE, serialNumber=4E7FEA71A447A6A16179C2697EBEE555199DB098 Validity Not Before: Jul 5 08:28:53 2025 GMT Not After : Jul 12 08:28:53 2025 GMT Subject: CN=6868e246-039e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:eb:7d:49:90:06:cc:4a:3d:62:07:69:50:56: 89:9f:e1:d2:4e:32:0c:e3:77:ed:69:39:66:ac:cf: 2f:0f:1d:65:f1:13:89:f5:51:25:ff:03:6a:8e:b4: e6:1b:df:8b:5f:b0:91:67:7a:be:e3:61:b6:dc:5c: c9:6c:ba:c9:6d:c7:46:15:bc:16:dd:87:30:1e:39: e5:4e:e3:06:30:06:1a:50:80:c3:2d:1a:b3:4c:87: b5:3f:d1:8c:c7:27:6d:9f:3f:e8:5d:6c:13:48:a3: 38:ed:84:62:61:f8:00:9d:57:6a:5d:73:9e:e9:0c: d2:14:ce:9c:65:c6:56:ea:f0:c0:ac:98:3c:2a:0d: bd:ab:f9:fe:43:b9:90:f7:6b:72:b9:4c:04:b2:89: 41:7f:f2:41:79:20:4e:d2:33:63:6e:70:8b:d0:5c: fd:98:c9:5c:2f:38:43:34:8e:e4:e7:50:d6:ab:3e: ae:37:e1:57:b8:05:b2:1b:ab:dc:62:ea:d8:4f:5b: 66:f1:de:8c:5d:7e:aa:33:0a:e3:53:82:af:e8:c8: 63:9b:74:73:0b:f6:1c:0b:8a:4d:11:9c:3b:bb:ea: 0e:5f:83:9f:98:89:c7:93:bc:09:74:19:58:69:44: 4a:67:a3:c0:9d:59:c8:0b:8e:cb:38:5f:a0:b7:4d: e4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:A5:4F:E7:82:CB:02:CE:D5:D5:E0:08:DE:E1:C8:11:3C:E0:18:81 X509v3 Authority Key Identifier: keyid:4E:7F:EA:71:A4:47:A6:A1:61:79:C2:69:7E:BE:E5:55:19:9D:B0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn_qcaRHpqFhecJpfr7lVRmdsJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:8f:3f:5d:af:00:a2:a0:dc:45:cf:aa:f6:cb:3e:f6:94:4a: a7:0d:9c:33:59:22:26:25:6b:29:89:6c:7c:ef:8e:3f:ad:6f: 67:ea:49:46:69:ab:1a:85:70:4a:4d:79:98:7f:0d:45:50:5c: 3c:09:54:2d:e0:6c:11:eb:42:b0:2c:15:0f:7d:57:1e:1d:c3: 64:c6:10:54:98:43:80:ce:bc:f3:e8:e9:bb:5c:fa:a2:88:6e: 35:65:e6:6d:4c:ed:9c:64:ba:3f:48:85:96:d8:5c:4b:91:f7: 72:df:9e:db:20:58:1a:95:57:e7:24:2b:2b:18:e0:94:5a:79: c1:3f:70:6a:28:1d:06:bd:79:6b:76:6f:e4:17:72:da:62:09: 38:23:42:b3:ce:6e:57:f8:5a:85:c2:21:79:19:71:20:cb:99: 34:2e:9b:8b:12:3f:e8:d2:56:50:24:5b:32:2e:26:b9:1e:1b: 90:fb:77:b0:af:3a:cc:4f:67:eb:4c:15:7b:48:9b:bd:b7:6a: 30:f2:2a:ef:c3:45:67:55:42:87:de:1a:c3:31:e5:50:48:40: e7:fb:49:53:cb:e5:fa:5f:41:5b:d1:62:19:b6:bf:f5:02:2c: 60:14:c8:c2:ac:e1:39:20:69:3b:19:6a:45:ea:72:94:57:c2: c6:54:08:40 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OENDRTExMC8GA1UEBRMoNEU3RkVBNzFBNDQ3QTZBMTYxNzlDMjY5N0VCRUU1NTUx OTlEQjA5ODAeFw0yNTA3MDUwODI4NTNaFw0yNTA3MTIwODI4NTNaMBgxFjAUBgNV BAMTDTY4NjhlMjQ2LTAzOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8631JkAbMSj1iB2lQVomf4dJOMgzjd+1pOWaszy8PHWXxE4n1USX/A2qOtOYb 34tfsJFner7jYbbcXMlsusltx0YVvBbdhzAeOeVO4wYwBhpQgMMtGrNMh7U/0YzH J22fP+hdbBNIozjthGJh+ACdV2pdc57pDNIUzpxlxlbq8MCsmDwqDb2r+f5DuZD3 a3K5TASyiUF/8kF5IE7SM2NucIvQXP2YyVwvOEM0juTnUNarPq434Ve4BbIbq9xi 6thPW2bx3oxdfqozCuNTgq/oyGObdHML9hwLik0RnDu76g5fg5+YiceTvAl0GVhp REpno8CdWcgLjss4X6C3TeQPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZKVP54LL As7V1eAI3uHIETzgGIEwHwYDVR0jBBgwFoAUTn/qcaRHpqFhecJpfr7lVRmdsJgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ4Q0NFLzhCMjE5MDlDNEZF RTExRjA4MDM3OTQ4MkM0RjlBRTAyL1RuX3FjYVJIcHFGaGVjSnBmcjdsVlJtZHNK Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVG5fcWNhUkhwcUZoZWNKcGZyN2xWUm1kc0pnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ4 Q0NFLzhCMjE5MDlDNEZFRTExRjA4MDM3OTQ4MkM0RjlBRTAyL1RuX3FjYVJIcHFG aGVjSnBmcjdsVlJtZHNKZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHqPP12vAKKg3EXPqvbLPvaUSqcNnDNZIiYlaymJbHzvjj+tb2fqSUZp qxqFcEpNeZh/DUVQXDwJVC3gbBHrQrAsFQ99Vx4dw2TGEFSYQ4DOvPPo6btc+qKI bjVl5m1M7Zxkuj9IhZbYXEuR93LfntsgWBqVV+ckKysY4JRaecE/cGooHQa9eWt2 b+QXctpiCTgjQrPOblf4WoXCIXkZcSDLmTQum4sSP+jSVlAkWzIuJrkeG5D7d7Cv OsxPZ+tMFXtIm723ajDyKu/DRWdVQofeGsMx5VBIQOf7SVPL5fpfQVvRYhm2v/UC LGAUyMKs4TkgaTsZakXqcpRXwsZUCEA= -----END CERTIFICATE-----Generated at Sat Jul 5 16:08:17 2025 by rpki-client