$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: CS71nBt62PKSOoNJ/kHLb4Z49NQy14la6YlDDQEXDGY= Subject key identifier: B3:2D:1E:C9:44:12:17:1D:08:AA:02:F0:66:F7:5B:48:20:06:6D:CD Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 34BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 34B7 Signing time: Sun 24 Aug 2025 15:18:37 +0000 Manifest this update: Sun 24 Aug 2025 15:18:36 +0000 Manifest next update: Sun 31 Aug 2025 15:18:36 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: vi2KQOQTVRup1pDRwFCVQjJaIfTgHHEh9W4HKv3ilgA=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: 1r2fILVlnPF9g9/RvWkB32IMvkecllavKDmXeDe08HY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 15:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13502 (0x34be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754, serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: Aug 24 15:18:36 2025 GMT Not After : Aug 31 15:18:36 2025 GMT Subject: CN=68ab2d4c-dcfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5e:11:e4:f0:05:f9:7e:16:4b:fc:40:2b:9c: dc:a4:f2:d1:00:4c:2c:bc:77:b9:27:0e:51:cb:3d: 2c:36:d9:b9:90:1b:3d:cb:8e:ba:0c:db:bc:85:d1: 9b:5f:48:e9:1d:42:39:60:50:d3:48:b1:d6:4a:cd: c6:3e:52:80:ba:a6:88:5b:b5:0c:32:18:07:a6:04: 6d:aa:8d:68:2e:31:34:88:27:7f:27:f4:fe:f7:b2: ba:fb:2b:91:d6:97:7e:87:2a:c3:69:4b:54:81:63: 8f:c0:a5:fd:80:24:d8:c8:8b:7f:5e:b1:78:e4:49: 6c:eb:d2:6e:46:ca:bc:da:00:9b:90:06:74:b8:a9: c1:7c:a5:a0:63:82:50:2b:58:bb:23:12:ef:49:1f: 66:53:da:37:8c:c3:3f:43:52:d0:23:c2:a5:f4:0c: 15:22:67:3d:54:54:f0:f0:ea:2b:27:e1:f6:80:1a: 53:27:09:66:9f:33:b3:08:f0:d9:a4:c5:0e:a1:83: 06:b3:01:a7:3b:98:32:13:23:0e:63:67:91:66:bc: 32:eb:1e:99:65:ee:3e:30:f7:8a:ee:a9:e7:29:fd: 5c:39:05:82:57:c7:b0:3c:c9:ca:f1:6f:56:6a:3a: fd:c1:6b:1a:97:10:e3:49:1b:f3:6c:8d:5c:32:b9: 8f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:2D:1E:C9:44:12:17:1D:08:AA:02:F0:66:F7:5B:48:20:06:6D:CD X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:e1:b7:c7:48:d3:7b:b1:24:c7:fc:91:3a:bf:7d:a5:d7:0d: 42:56:df:fa:db:44:7d:df:8f:be:8a:f1:16:75:39:8a:5c:ab: c4:ad:6c:8b:20:c6:2d:ac:3e:f7:c6:4c:ed:ca:69:86:1a:47: 8d:14:da:28:d0:06:35:11:b4:d9:be:1e:55:bc:23:9e:e9:39: 6c:e1:39:49:b2:aa:f8:10:c8:d7:be:50:aa:ac:d5:37:66:df: 7b:2e:78:b7:78:54:f4:08:5b:0b:60:d3:ad:54:c2:74:55:fc: 68:50:d7:a0:61:1f:66:d7:4a:cf:5b:19:2c:1d:32:2d:f8:90: e2:34:16:65:af:18:ba:87:28:f8:52:6c:f7:78:68:9e:e0:b6: 82:3c:88:25:6f:a1:81:84:a0:c2:9a:28:4d:ff:94:4d:77:51: 8c:3a:28:6b:a0:21:b8:36:44:32:94:fc:46:0b:a8:5f:95:b8: c8:49:5d:0f:15:af:e7:4c:87:50:4c:b0:43:44:bb:31:ec:6f: a9:c9:1e:97:f2:36:38:bf:f2:44:33:4a:04:15:8e:a1:24:bc: 59:b2:5e:b5:29:83:a4:a8:78:b6:64:2a:c0:6f:e8:50:16:ac: 5f:04:d4:25:ae:41:d2:5f:f2:56:07:b6:8e:40:95:9b:2d:00: 55:29:ef:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjUwODI0MTUxODM2WhcNMjUwODMxMTUxODM2WjAYMRYwFAYD VQQDEw02OGFiMmQ0Yy1kY2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA214R5PAF+X4WS/xAK5zcpPLRAEwsvHe5Jw5Ryz0sNtm5kBs9y466DNu8hdGb X0jpHUI5YFDTSLHWSs3GPlKAuqaIW7UMMhgHpgRtqo1oLjE0iCd/J/T+97K6+yuR 1pd+hyrDaUtUgWOPwKX9gCTYyIt/XrF45Els69JuRsq82gCbkAZ0uKnBfKWgY4JQ K1i7IxLvSR9mU9o3jMM/Q1LQI8Kl9AwVImc9VFTw8OorJ+H2gBpTJwlmnzOzCPDZ pMUOoYMGswGnO5gyEyMOY2eRZrwy6x6ZZe4+MPeK7qnnKf1cOQWCV8ewPMnK8W9W ajr9wWsalxDjSRvzbI1cMrmPewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMtHslE EhcdCKoC8Gb3W0ggBm3NMB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq4bfHSNN7sSTH/JE6v32l1w1CVt/620R934++ivEWdTmKXKvErWyL IMYtrD73xkztymmGGkeNFNoo0AY1EbTZvh5VvCOe6Tls4TlJsqr4EMjXvlCqrNU3 Zt97Lni3eFT0CFsLYNOtVMJ0VfxoUNegYR9m10rPWxksHTIt+JDiNBZlrxi6hyj4 Umz3eGie4LaCPIglb6GBhKDCmihN/5RNd1GMOihroCG4NkQylPxGC6hflbjISV0P Fa/nTIdQTLBDRLsx7G+pyR6X8jY4v/JEM0oEFY6hJLxZsl61KYOkqHi2ZCrAb+hQ FqxfBNQlrkHSX/JWB7aOQJWbLQBVKe/J -----END CERTIFICATE-----Generated at Sun Aug 24 22:07:13 2025 by rpki-client