$ rpki-client -vvf rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft File: tRdNgmVknN0nQmySfRaHddeD1Tg.mft (raw, json) Hash identifier: xVyreyNDuaMV+8MQEna1BZAT0ehczYdFxW7kkKl8j4s= Subject key identifier: 47:3C:5C:F7:80:E6:19:9E:36:C5:9E:D4:BB:84:0E:81:3A:FA:86:C7 Authority key identifier: B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 Certificate issuer: /CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538 Certificate serial: 0B42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft Manifest number: 0B3A Signing time: Sun 24 Aug 2025 19:12:59 +0000 Manifest this update: Sun 24 Aug 2025 19:12:58 +0000 Manifest next update: Sun 31 Aug 2025 19:12:58 +0000 Files and hashes: 1: tRdNgmVknN0nQmySfRaHddeD1Tg.crl (hash: qYHCide1lhJO7DFuCJMg4LYvRfZqdXcMv/qqHSZQtMs=) 2: 61E12BD0CA0611EEB05EB92CC4F9AE02.roa (hash: o16pooFHIEBYiC/U+8swfJroVM1JsQPPQfuyHDWfNA4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2882 (0xb42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D459, serialNumber=B5174D8265649CDD27426C927D168775D783D538 Validity Not Before: Aug 24 19:12:58 2025 GMT Not After : Aug 31 19:12:58 2025 GMT Subject: CN=68ab643a-a315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:49:ca:d1:45:23:db:38:6a:a4:cd:7f:c4:08: 7b:c2:30:54:36:29:ca:b5:9d:f8:08:45:fc:6f:df: f5:af:ca:ed:e5:4b:a8:5d:0d:a0:62:db:00:a5:c7: 5f:69:1f:59:b1:39:00:81:9f:bf:52:8e:e7:1a:2c: f2:6a:68:dc:f1:dc:e7:1b:1f:e3:27:f7:52:e8:4f: 36:9b:86:b2:c8:e3:0d:70:8a:2d:df:3b:7c:30:4c: bc:5b:d9:4d:e6:30:72:a2:04:a9:34:22:06:ea:66: 23:9d:01:94:20:d9:f5:68:dc:ec:87:b6:42:9e:65: 82:93:6e:f8:df:10:84:86:d6:a3:72:c1:ae:d6:b5: 53:b6:e0:ea:31:c5:5a:69:b8:bf:0d:7b:2b:9e:06: 18:e2:d0:8c:ea:dc:23:07:bb:a6:76:92:ac:87:b5: 50:2f:08:91:5c:b2:28:1c:a9:1e:30:b6:64:09:61: f7:16:85:2b:d5:45:b5:ff:41:56:4e:b0:20:f7:d6: 01:52:22:ae:0d:23:88:03:40:25:6c:81:9c:b6:99: da:65:ba:10:04:92:a3:c6:29:b7:00:5a:30:99:4a: 6d:fe:cf:08:8e:d9:bd:86:df:17:02:5d:d2:54:6b: 39:18:21:97:43:d5:a2:98:d4:56:79:4e:bf:58:29: 41:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:3C:5C:F7:80:E6:19:9E:36:C5:9E:D4:BB:84:0E:81:3A:FA:86:C7 X509v3 Authority Key Identifier: keyid:B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:66:bb:ca:eb:62:f3:fe:c7:c1:68:aa:85:f0:17:fa:43:0e: 21:0f:cf:5b:23:8a:c8:c3:57:10:e9:fb:c0:06:38:f6:48:aa: 23:da:c5:6d:6a:47:66:97:ed:4a:23:ea:d4:4b:ac:d2:9f:56: c7:ca:f0:b7:c5:54:9c:ee:11:7a:0b:7e:70:16:48:25:ff:44: 38:ea:f0:2f:8f:60:27:f7:ce:3e:f8:df:e1:9f:7f:aa:21:1a: da:c5:4d:92:cd:0e:9a:85:cc:85:45:b5:45:1d:67:69:b2:c6: 81:fc:35:71:90:4a:e3:bc:9c:54:25:ed:db:b1:30:d4:83:24: dc:dd:c1:07:70:db:a4:0d:12:aa:3b:7c:61:26:48:80:5f:15: f8:4e:b0:06:ae:c0:44:57:90:00:0c:4b:d7:b6:a7:28:df:d1: 0a:36:cf:ab:a8:3a:bc:58:f8:76:81:4f:b6:47:dd:62:10:d7: 1c:0f:2d:94:46:64:99:5b:3a:8c:b1:76:ef:dd:fe:8b:fd:cb: 8b:af:c3:fe:31:74:c7:88:2b:4c:ba:29:12:13:bb:85:ca:f0: 06:ba:3e:52:d8:95:ac:c9:4e:d0:5e:d8:ab:83:bc:bb:ea:aa: 74:a3:6a:b8:02:a7:5e:dc:92:82:b4:35:d7:10:97:20:42:e2: cb:d1:aa:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ0NTkxMTAvBgNVBAUTKEI1MTc0RDgyNjU2NDlDREQyNzQyNkM5MjdEMTY4Nzc1 RDc4M0Q1MzgwHhcNMjUwODI0MTkxMjU4WhcNMjUwODMxMTkxMjU4WjAYMRYwFAYD VQQDEw02OGFiNjQzYS1hMzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2UnK0UUj2zhqpM1/xAh7wjBUNinKtZ34CEX8b9/1r8rt5UuoXQ2gYtsApcdf aR9ZsTkAgZ+/Uo7nGizyamjc8dznGx/jJ/dS6E82m4ayyOMNcIot3zt8MEy8W9lN 5jByogSpNCIG6mYjnQGUINn1aNzsh7ZCnmWCk2743xCEhtajcsGu1rVTtuDqMcVa abi/DXsrngYY4tCM6twjB7umdpKsh7VQLwiRXLIoHKkeMLZkCWH3FoUr1UW1/0FW TrAg99YBUiKuDSOIA0AlbIGctpnaZboQBJKjxim3AFowmUpt/s8Ijtm9ht8XAl3S VGs5GCGXQ9WimNRWeU6/WClBiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEc8XPeA 5hmeNsWe1LuEDoE6+obHMB8GA1UdIwQYMBaAFLUXTYJlZJzdJ0Jskn0Wh3XXg9U4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDQ1OS85OUVDODlFQzQy MjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25OMG5RbXlTZlJhSGRkZUQx VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RSZE5nbVZrbk4wblFteVNmUmFIZGRlRDFUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDQ1OS85OUVDODlFQzQyMjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25O MG5RbXlTZlJhSGRkZUQxVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGZrvK62Lz/sfBaKqF8Bf6Qw4hD89bI4rIw1cQ6fvABjj2SKoj2sVt akdml+1KI+rUS6zSn1bHyvC3xVSc7hF6C35wFkgl/0Q46vAvj2An984++N/hn3+q IRraxU2SzQ6ahcyFRbVFHWdpssaB/DVxkErjvJxUJe3bsTDUgyTc3cEHcNukDRKq O3xhJkiAXxX4TrAGrsBEV5AADEvXtqco39EKNs+rqDq8WPh2gU+2R91iENccDy2U RmSZWzqMsXbv3f6L/cuLr8P+MXTHiCtMuikSE7uFyvAGuj5S2JWsyU7QXtirg7y7 6qp0o2q4Aqde3JKCtDXXEJcgQuLL0apf -----END CERTIFICATE-----Generated at Sun Aug 24 21:42:41 2025 by rpki-client