$ rpki-client -vvf rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft File: tRdNgmVknN0nQmySfRaHddeD1Tg.mft (raw, json) Hash identifier: oXtssE8GQzFl96rLClBf0GrEj5HFmGPi5iJwb/ivpkE= Subject key identifier: 4A:45:80:3E:41:97:02:62:02:49:5B:D4:AF:5F:72:17:A3:47:0F:44 Authority key identifier: B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 Certificate issuer: /CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538 Certificate serial: 0B1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft Manifest number: 0B13 Signing time: Thu 12 Jun 2025 19:04:56 +0000 Manifest this update: Thu 12 Jun 2025 19:04:56 +0000 Manifest next update: Thu 19 Jun 2025 19:04:56 +0000 Files and hashes: 1: tRdNgmVknN0nQmySfRaHddeD1Tg.crl (hash: UVwldjolHOVTTtlshgfwK8dZh9adhvgRlBd0nxw07Wc=) 2: 61E12BD0CA0611EEB05EB92CC4F9AE02.roa (hash: muZS9WNxEL2wJKlgL2513BvJDYDXcwI4cyb0WW+U1LY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2842 (0xb1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D459, serialNumber=B5174D8265649CDD27426C927D168775D783D538 Validity Not Before: Jun 12 19:04:56 2025 GMT Not After : Jun 19 19:04:56 2025 GMT Subject: CN=684b24d8-4f74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7c:56:77:1b:7e:4a:96:7f:cb:cc:3f:c2:8a: fb:a9:de:89:49:1f:b7:e1:48:c0:c4:4e:9e:9b:a8: 01:07:db:a5:0c:61:8b:96:59:f5:a8:4e:8d:2f:05: 28:b6:39:42:21:75:7b:6d:e6:18:c3:d3:ee:75:d9: d2:c7:a2:af:61:e1:55:66:ff:0f:7e:ce:4f:bd:2e: a0:f4:a3:95:1c:f7:8e:d9:5f:41:f8:9e:ad:ae:3f: 7e:13:55:cb:84:ec:2e:d4:80:33:9a:65:d3:09:2f: ff:e9:35:c2:5d:db:f9:a2:9b:0b:00:3c:a6:f7:fb: 56:34:69:5b:1a:4c:2b:0a:ca:e3:70:da:a0:cb:05: 7a:5d:d9:a0:bd:20:25:56:9d:1f:cc:37:8a:0b:f8: 8e:92:bc:53:a3:52:bb:df:93:c6:e3:b4:85:97:ff: ea:7a:93:f8:73:fc:b2:3d:07:78:25:db:e7:e0:95: 0b:4b:00:b0:71:70:5f:02:9e:ea:9f:1c:ae:0e:e8: 9a:48:9e:9f:93:5a:65:00:c2:eb:64:00:4f:b4:13: e8:9f:6e:9e:34:94:09:d8:da:90:a1:05:c9:1c:36: 31:7b:1e:c6:4a:e2:b3:c0:6b:62:e8:c1:f3:64:88: fb:fb:0d:3b:a7:a8:15:48:6f:58:fd:b6:ba:65:7c: 3d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:45:80:3E:41:97:02:62:02:49:5B:D4:AF:5F:72:17:A3:47:0F:44 X509v3 Authority Key Identifier: keyid:B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:7c:fd:0a:92:e3:07:62:c3:11:f9:1c:ce:96:57:5e:91:dc: fc:11:0a:03:f5:96:29:57:81:8e:ff:13:00:9b:2b:1b:85:78: 17:60:2f:f7:dd:ec:ae:e0:11:3a:11:78:b4:d9:e0:6b:03:ae: 77:2e:18:f7:ed:a8:02:fe:0b:b1:4b:2f:1e:0c:bb:6f:73:95: 57:80:a5:09:f3:9e:f2:d8:ca:80:b5:58:c7:fa:e1:e1:c1:cb: 47:30:5d:a8:f3:d9:0c:ec:71:3b:38:03:6c:c5:97:51:8c:59: 00:53:96:a1:68:42:4f:18:ea:c7:7b:38:c9:45:2b:21:8c:16: f2:e8:a8:a1:d6:71:bc:e7:37:a2:7b:cc:c7:45:6e:30:cd:15: 64:15:7b:3e:89:c6:ce:45:c8:fb:2e:01:f9:8b:96:42:72:27: ca:3c:a6:16:13:cd:9d:9b:d6:40:3d:00:c6:c3:67:2c:3e:24: ff:44:0b:7e:86:cb:95:bf:69:13:71:4d:f2:2a:a4:84:17:68: dc:2b:0c:14:d9:c7:79:08:95:36:65:c2:96:0f:1b:fe:1f:68: 1d:fa:06:87:6e:60:1b:02:80:62:b9:9e:e8:63:99:b8:a5:7a: b9:62:7a:e2:1a:b3:c5:ab:dc:f6:c8:00:7c:e7:06:8d:a4:9b: d7:7f:34:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ0NTkxMTAvBgNVBAUTKEI1MTc0RDgyNjU2NDlDREQyNzQyNkM5MjdEMTY4Nzc1 RDc4M0Q1MzgwHhcNMjUwNjEyMTkwNDU2WhcNMjUwNjE5MTkwNDU2WjAYMRYwFAYD VQQDEw02ODRiMjRkOC00Zjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXxWdxt+SpZ/y8w/wor7qd6JSR+34UjAxE6em6gBB9ulDGGLlln1qE6NLwUo tjlCIXV7beYYw9PuddnSx6KvYeFVZv8Pfs5PvS6g9KOVHPeO2V9B+J6trj9+E1XL hOwu1IAzmmXTCS//6TXCXdv5opsLADym9/tWNGlbGkwrCsrjcNqgywV6XdmgvSAl Vp0fzDeKC/iOkrxTo1K735PG47SFl//qepP4c/yyPQd4Jdvn4JULSwCwcXBfAp7q nxyuDuiaSJ6fk1plAMLrZABPtBPon26eNJQJ2NqQoQXJHDYxex7GSuKzwGti6MHz ZIj7+w07p6gVSG9Y/ba6ZXw9PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEpFgD5B lwJiAklb1K9fchejRw9EMB8GA1UdIwQYMBaAFLUXTYJlZJzdJ0Jskn0Wh3XXg9U4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDQ1OS85OUVDODlFQzQy MjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25OMG5RbXlTZlJhSGRkZUQx VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RSZE5nbVZrbk4wblFteVNmUmFIZGRlRDFUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDQ1OS85OUVDODlFQzQyMjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25O MG5RbXlTZlJhSGRkZUQxVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVfP0KkuMHYsMR+RzOlldekdz8EQoD9ZYpV4GO/xMAmysbhXgXYC/3 3eyu4BE6EXi02eBrA653Lhj37agC/guxSy8eDLtvc5VXgKUJ857y2MqAtVjH+uHh wctHMF2o89kM7HE7OANsxZdRjFkAU5ahaEJPGOrHezjJRSshjBby6Kih1nG85zei e8zHRW4wzRVkFXs+icbORcj7LgH5i5ZCcifKPKYWE82dm9ZAPQDGw2csPiT/RAt+ hsuVv2kTcU3yKqSEF2jcKwwU2cd5CJU2ZcKWDxv+H2gd+gaHbmAbAoBiuZ7oY5m4 pXq5YnriGrPFq9z2yAB85waNpJvXfzSn -----END CERTIFICATE-----Generated at Fri Jun 13 06:55:38 2025 by rpki-client