$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: b3S5BQ8HTxBy0B2sy6I/+AbC59CTmEr6UOlEN8+iLyI= Subject key identifier: 4B:BA:5B:47:4B:84:95:66:34:44:11:08:00:DB:EB:39:3B:4B:67:FD Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2C61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2BB8 Signing time: Thu 04 Sep 2025 15:36:53 +0000 Manifest this update: Thu 04 Sep 2025 15:36:52 +0000 Manifest next update: Thu 11 Sep 2025 15:36:52 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: /LWiPaZ8x6Gv6Nrsuwwga0fOji0pIYw+PCmuYoO/aJI=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: NyqTZQOkUqWoaM40ZktUlOiopL6FbxfHLQstlqudq2c=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: LZsU00B4/gx6lo+GhGlRRaLNP1lXi+x7ZDLzlvJoUls=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: je3auOg70+6cT16YOal/ttbSxW+A5XuODnJlOPCEZSc=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: aSO9wjURcYGva8bAjVzZpymdiAuS5bByHQh+Eq4/Ung=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:36:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11361 (0x2c61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Sep 4 15:36:52 2025 GMT Not After : Sep 11 15:36:52 2025 GMT Subject: CN=68b9b214-6a43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:50:5d:82:d2:fa:80:c0:7b:59:f5:eb:5e:65: 79:ca:c9:bb:da:d0:55:cd:e5:af:23:1e:c2:e5:8d: 29:68:bc:73:af:e8:d3:6f:89:1d:2f:14:e7:cb:b7: 5c:6b:07:04:ea:0b:c5:90:ec:e7:f0:71:e8:07:e6: de:6e:a0:f5:8a:29:a3:21:d3:22:ca:1f:6e:38:b9: 7c:b3:80:17:65:8b:14:dd:4e:f5:5e:43:51:1e:28: 7f:ed:84:54:87:c0:d9:72:5b:b5:8f:9f:0d:e2:11: dc:e2:69:de:7d:b9:d9:62:37:9e:4f:6d:68:82:b3: 80:24:a9:cc:f7:0e:95:c5:ed:8a:1f:d8:73:be:0a: 0f:7b:16:b7:4f:79:84:69:9a:15:d8:f0:47:ca:d0: 3a:b1:d5:fa:37:c5:10:80:b2:ca:ff:fe:2a:e6:3c: 5f:b9:7c:7d:fa:f0:f9:db:e3:05:ac:1e:3d:f2:69: 24:f6:5e:dc:ad:4b:b2:c7:60:cf:a2:a2:9f:90:5a: 15:9c:c9:b4:b0:c4:31:39:b5:49:a1:58:d2:1a:50: e1:69:dc:9f:95:35:ea:dc:6f:ce:8c:76:52:4f:e9: b0:b2:97:de:f6:5b:29:1d:3f:8c:f8:ca:f2:37:c4: c0:f0:c1:7b:24:0c:14:cd:86:7c:ec:f7:3b:bc:53: 8b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:BA:5B:47:4B:84:95:66:34:44:11:08:00:DB:EB:39:3B:4B:67:FD X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:05:0b:96:f2:a2:29:d6:87:3f:28:30:22:7b:76:bc:b0:0f: d2:28:d3:d6:0a:15:26:a5:a9:84:4b:c4:63:b1:e2:a5:6f:c5: 47:b2:6b:79:89:c2:b5:b5:ee:e6:53:70:72:9e:47:8a:bd:85: d1:a8:64:a1:0e:94:58:be:af:58:68:e4:e6:3d:41:90:a5:a6: 14:91:94:c0:9f:dc:01:f8:fe:d6:50:6e:ed:2c:e6:08:fb:e8: d7:18:47:a1:59:b7:2e:1f:b4:f8:be:25:0c:97:e6:f7:aa:02: b0:92:4a:e8:09:ad:0b:6e:60:10:f5:e5:32:f9:40:2a:7b:51: d6:8a:f7:7e:36:c9:34:a1:e0:e3:cb:f2:ba:18:8a:c6:b3:32: d5:5f:11:b8:23:8c:41:d9:22:0e:d9:61:bd:02:b9:67:8b:b2: 8c:5c:d5:8c:52:58:07:71:8c:d1:f3:73:70:2f:66:06:b7:67: 14:a4:69:98:18:65:ef:1e:67:57:87:ff:29:61:70:92:1e:da: 4c:8c:66:bb:08:5b:d0:a2:20:c5:bb:43:3c:ae:32:d6:7c:f9: 8e:2b:94:e9:dc:e4:6e:d9:65:6d:17:25:5c:b4:e3:69:67:86: 35:9a:7e:8f:6e:e0:40:e6:9d:71:f4:2a:51:80:58:d1:88:d3: a7:06:ec:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjUwOTA0MTUzNjUyWhcNMjUwOTExMTUzNjUyWjAYMRYwFAYD VQQDEw02OGI5YjIxNC02YTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVBdgtL6gMB7WfXrXmV5ysm72tBVzeWvIx7C5Y0paLxzr+jTb4kdLxTny7dc awcE6gvFkOzn8HHoB+bebqD1iimjIdMiyh9uOLl8s4AXZYsU3U71XkNRHih/7YRU h8DZclu1j58N4hHc4mnefbnZYjeeT21ogrOAJKnM9w6Vxe2KH9hzvgoPexa3T3mE aZoV2PBHytA6sdX6N8UQgLLK//4q5jxfuXx9+vD52+MFrB498mkk9l7crUuyx2DP oqKfkFoVnMm0sMQxObVJoVjSGlDhadyflTXq3G/OjHZST+mwspfe9lspHT+M+Mry N8TA8MF7JAwUzYZ87Pc7vFOLVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEu6W0dL hJVmNEQRCADb6zk7S2f9MB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZBQuW8qIp1oc/KDAie3a8sA/SKNPWChUmpamES8RjseKlb8VHsmt5 icK1te7mU3BynkeKvYXRqGShDpRYvq9YaOTmPUGQpaYUkZTAn9wB+P7WUG7tLOYI ++jXGEehWbcuH7T4viUMl+b3qgKwkkroCa0LbmAQ9eUy+UAqe1HWivd+Nsk0oeDj y/K6GIrGszLVXxG4I4xB2SIO2WG9Arlni7KMXNWMUlgHcYzR83NwL2YGt2cUpGmY GGXvHmdXh/8pYXCSHtpMjGa7CFvQoiDFu0M8rjLWfPmOK5Tp3ORu2WVtFyVctONp Z4Y1mn6PbuBA5p1x9CpRgFjRiNOnBuy1 -----END CERTIFICATE-----Generated at Sat Sep 6 06:01:55 2025 by rpki-client