$ rpki-client -vvf rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft File: tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft (raw, json) Hash identifier: Y8mpN2N2885Tl2HdC9ur3w9+yYsGen8EgV9AP/6sjy4= Subject key identifier: D5:79:BF:D2:F2:7A:48:24:3E:8D:2E:23:C6:AF:F3:57:77:7C:DC:FB Authority key identifier: B4:03:8A:B6:40:39:F3:14:56:22:A2:0F:F7:0E:D7:BE:1D:4E:7F:91 Certificate issuer: /CN=A918ABAC/serialNumber=B4038AB64039F3145622A20FF70ED7BE1D4E7F91 Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tAOKtkA58xRWIqIP9w7Xvh1Of5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft Manifest number: 14 Signing time: Mon 07 Jul 2025 08:32:03 +0000 Manifest this update: Mon 07 Jul 2025 08:32:02 +0000 Manifest next update: Mon 14 Jul 2025 08:32:02 +0000 Files and hashes: 1: tAOKtkA58xRWIqIP9w7Xvh1Of5E.crl (hash: 2SlzJjAonVJ/yIX86aewlPSEdFdyOgPPXCYvBxVgKn8=) 2: E641780E535211F0A795A950C4F9AE02.roa (hash: /6fZjzm6zMKlJavcLCHUvZwJwnYnVUAiwPFKfA2za2E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.crl rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tAOKtkA58xRWIqIP9w7Xvh1Of5E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Jul 2025 08:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918ABAC, serialNumber=B4038AB64039F3145622A20FF70ED7BE1D4E7F91 Validity Not Before: Jul 7 08:32:02 2025 GMT Not After : Jul 14 08:32:02 2025 GMT Subject: CN=686b8603-f2ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:35:d4:0c:ee:64:85:06:d8:6c:d9:12:99:9d: de:00:fa:2f:2c:63:80:d7:7b:a6:e4:2b:90:94:81: a0:8e:89:21:52:73:e4:9a:16:aa:3b:1c:fd:0d:bc: 6a:06:ed:aa:e0:6f:3b:2f:6f:b0:bd:89:e2:8a:31: 8d:11:d7:2a:5d:a8:e6:bc:9b:18:bd:2b:a5:26:7f: 2a:7b:f2:06:e4:e8:03:12:6c:72:1f:f7:69:92:1a: c8:f9:56:82:a7:b6:f3:b4:63:87:6e:ae:8b:98:03: 40:52:a9:a7:8b:29:b3:5e:02:6a:aa:af:40:e8:bc: 2a:dd:ec:3f:38:11:a0:37:ef:3b:52:f9:b8:96:23: 6f:b7:db:51:de:ea:aa:c8:aa:59:7d:58:7c:83:c1: 98:19:75:4b:d1:22:60:ac:ef:36:86:ed:71:6d:87: a0:c9:dc:9e:a4:60:00:e2:ca:da:9d:c7:05:35:4a: 3d:fe:08:45:11:2d:70:0f:4f:68:04:dc:f0:7b:61: fc:a1:2b:37:b1:5e:e0:70:34:4a:5f:62:2c:f8:b8: 7b:f3:3f:fa:51:47:65:98:e4:c3:a2:eb:a2:75:0f: 20:ae:1f:11:e5:99:cb:2e:dc:42:bd:2e:4b:2e:c3: 17:83:04:72:72:23:6f:2f:d1:0b:d0:57:d2:ce:96: b0:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:79:BF:D2:F2:7A:48:24:3E:8D:2E:23:C6:AF:F3:57:77:7C:DC:FB X509v3 Authority Key Identifier: keyid:B4:03:8A:B6:40:39:F3:14:56:22:A2:0F:F7:0E:D7:BE:1D:4E:7F:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tAOKtkA58xRWIqIP9w7Xvh1Of5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:e5:fe:40:8f:b7:f8:07:a5:63:72:84:21:20:1a:4a:83:dc: 2f:17:5a:08:bc:5f:82:64:89:a2:20:09:78:8e:70:11:40:a0: cf:ae:06:2a:98:6c:62:91:4a:d2:ac:ff:c3:5c:a7:db:f1:97: 29:ee:6e:5f:4a:d0:98:05:aa:8a:1c:24:5a:67:64:ce:fe:6a: 53:7d:db:c3:65:7d:e2:69:b0:a9:f9:1b:7d:16:82:86:8a:ce: 5c:42:a9:3b:c4:68:03:17:ac:bb:10:a5:06:4d:7a:69:53:f1: ec:a3:8b:46:bb:00:21:89:9e:92:1a:e2:18:55:18:bb:c0:eb: 99:54:79:ac:48:e1:b3:d9:a0:0a:e3:6a:3f:c9:d7:62:6e:c3: c8:dd:57:01:df:29:6a:09:51:f7:8a:93:94:6c:22:4a:43:01: 37:fd:35:c4:72:72:86:03:96:51:2f:b6:46:10:14:c1:32:09: 24:d8:f7:04:a6:50:57:aa:9b:59:65:f7:b2:be:76:11:46:52: 3d:6a:17:4f:65:5a:36:7a:df:53:5c:b3:a1:58:28:75:4f:8c: 81:6e:21:2b:84:f2:77:95:dd:d9:06:ac:ca:cc:ff:d5:f5:2d: 53:f0:92:7d:d0:0c:0e:c2:38:73:bc:b4:04:cd:d3:48:c9:47: fc:1c:d4:03 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QUJBQzExMC8GA1UEBRMoQjQwMzhBQjY0MDM5RjMxNDU2MjJBMjBGRjcwRUQ3QkUx RDRFN0Y5MTAeFw0yNTA3MDcwODMyMDJaFw0yNTA3MTQwODMyMDJaMBgxFjAUBgNV BAMTDTY4NmI4NjAzLWYyYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXNdQM7mSFBths2RKZnd4A+i8sY4DXe6bkK5CUgaCOiSFSc+SaFqo7HP0NvGoG 7argbzsvb7C9ieKKMY0R1ypdqOa8mxi9K6Umfyp78gbk6AMSbHIf92mSGsj5VoKn tvO0Y4durouYA0BSqaeLKbNeAmqqr0DovCrd7D84EaA37ztS+biWI2+321He6qrI qll9WHyDwZgZdUvRImCs7zaG7XFth6DJ3J6kYADiytqdxwU1Sj3+CEURLXAPT2gE 3PB7YfyhKzexXuBwNEpfYiz4uHvzP/pRR2WY5MOi66J1DyCuHxHlmcsu3EK9Lksu wxeDBHJyI28v0QvQV9LOlrBdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1Xm/0vJ6 SCQ+jS4jxq/zV3d83PswHwYDVR0jBBgwFoAUtAOKtkA58xRWIqIP9w7Xvh1Of5Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBQkFDLzY0OUJDM0IyNTBD OTExRjBCNDczMDI0NkM0RjlBRTAyL3RBT0t0a0E1OHhSV0lxSVA5dzdYdmgxT2Y1 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdEFPS3RrQTU4eFJXSXFJUDl3N1h2aDFPZjVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB QkFDLzY0OUJDM0IyNTBDOTExRjBCNDczMDI0NkM0RjlBRTAyL3RBT0t0a0E1OHhS V0lxSVA5dzdYdmgxT2Y1RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI7l/kCPt/gHpWNyhCEgGkqD3C8XWgi8X4JkiaIgCXiOcBFAoM+uBiqY bGKRStKs/8Ncp9vxlynubl9K0JgFqoocJFpnZM7+alN928NlfeJpsKn5G30WgoaK zlxCqTvEaAMXrLsQpQZNemlT8eyji0a7ACGJnpIa4hhVGLvA65lUeaxI4bPZoArj aj/J12Juw8jdVwHfKWoJUfeKk5RsIkpDATf9NcRycoYDllEvtkYQFMEyCSTY9wSm UFeqm1ll97K+dhFGUj1qF09lWjZ631Ncs6FYKHVPjIFuISuE8neV3dkGrMrM/9X1 LVPwkn3QDA7COHO8tATN00jJR/wc1AM= -----END CERTIFICATE-----Generated at Tue Jul 8 04:07:29 2025 by rpki-client