$ rpki-client -vvf rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft File: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft (raw, json) Hash identifier: y/jMvFJusAq+P/ZzkicgYURZ2fHDKoD/zIg3SAWexbY= Subject key identifier: B4:A6:BA:58:81:49:CE:3E:DA:DD:65:5E:84:98:46:51:6F:1D:84:B3 Authority key identifier: D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 Certificate issuer: /CN=A919608D/serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Certificate serial: 10F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft Manifest number: 10D5 Signing time: Wed 20 Aug 2025 17:23:27 +0000 Manifest this update: Wed 20 Aug 2025 17:23:26 +0000 Manifest next update: Wed 27 Aug 2025 17:23:26 +0000 Files and hashes: 1: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl (hash: fuze+prx6F3bjkG9dhrHT1vwh+5y+qQlVh744byCLkA=) 2: 0E17B1AE78F511EC83E56014C4F9AE02.roa (hash: lCmO2moRnEyFjHn2T0RrSpJHfoRMsDo8flibJ/q1im8=) 3: 0D0B79E478F511EC83E56014C4F9AE02.roa (hash: tpKBG2KlXfT/Zt122B62y1RWSYubHmXeyHELnt2EtS4=) 4: 1ED5B13E30C111ECBB5A4116C4F9AE02.roa (hash: IHi+IFG70AY+pGCPcqa0F+qxqcr2LZY1LLXZfYW/jkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 17:23:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4336 (0x10f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919608D, serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Validity Not Before: Aug 20 17:23:26 2025 GMT Not After : Aug 27 17:23:26 2025 GMT Subject: CN=68a6048e-a768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:f2:85:f9:f2:56:7d:ff:f4:80:80:59:9a:aa: a3:64:30:60:6b:5f:87:18:67:7d:3c:71:9a:d1:8f: 04:b3:ca:b8:e4:4e:69:7c:ec:e2:41:e9:1f:fc:ee: 34:69:1e:e1:ca:ac:f3:1b:59:3f:fd:7a:e9:f2:b0: 16:6a:ed:f3:2c:98:9b:61:90:54:e8:92:43:a7:07: e7:1d:c0:4f:03:b0:01:c4:a8:1a:22:92:68:0e:9a: 02:d1:9e:d8:eb:ea:3b:ea:a9:1b:f2:37:69:92:e0: 5e:92:15:f3:63:20:6f:66:b8:f1:f7:78:89:de:0b: 2c:d4:d4:b8:a0:70:8f:7a:b1:c1:a1:1a:74:40:32: c4:e0:b9:12:92:6f:4a:b6:cd:eb:33:46:53:3e:56: 7e:95:0c:ad:98:67:01:85:44:99:dc:61:e6:2c:2e: 2d:bd:4f:6a:04:59:9c:1a:8e:75:e7:aa:00:d8:78: 25:d1:12:76:da:40:e0:af:a6:4d:28:e1:59:51:aa: 96:08:84:fa:3e:d2:13:f1:9a:b6:f2:9e:ff:2b:25: 80:0f:df:87:13:44:c8:14:e0:74:0b:08:5e:06:fd: 64:81:73:31:6c:1d:60:50:8f:75:c0:d5:4a:33:b6: 8b:b9:d9:0c:ff:57:ca:3f:78:78:4d:c6:16:2f:26: e8:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:A6:BA:58:81:49:CE:3E:DA:DD:65:5E:84:98:46:51:6F:1D:84:B3 X509v3 Authority Key Identifier: keyid:D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:50:b8:c8:9e:ba:cf:e4:60:b4:f1:7c:0b:64:47:6c:c2:bf: 59:5c:cb:07:6c:07:1d:5c:9c:63:da:3b:e2:de:6f:1b:4c:f3: db:e7:5f:2f:fa:9a:2b:c6:0a:4c:fd:9a:1f:94:17:52:69:3e: 11:df:14:27:ef:4c:0b:bf:4b:f9:46:30:a8:11:12:01:e1:91: 3b:2e:6f:aa:ba:08:4d:40:03:8f:8a:e7:e4:6e:ae:e8:15:13: 4c:60:5f:d8:7f:c9:10:5e:23:ef:87:5c:bc:f6:b9:fc:e3:90: c2:44:fb:fc:a8:82:4f:dc:da:4e:e9:58:c5:f7:7d:a2:e1:8a: c6:e7:d9:f3:c7:97:fa:f3:1a:cb:44:67:6e:2b:75:83:cd:16: aa:21:65:ed:ad:a1:cb:59:cf:87:bd:18:36:6c:45:20:10:09: 72:22:a1:c7:c7:e0:44:29:2b:04:2b:9e:23:71:87:19:f8:29: a0:11:88:a2:2d:51:d5:e3:bd:57:4d:b0:14:b9:f5:67:f6:0c: 87:a3:9c:9b:1c:54:d0:75:a4:38:ab:97:74:c5:a1:9c:9b:7b: 6b:5f:65:27:a3:f1:47:84:d3:a6:b0:b2:08:cc:e4:55:40:73: 1f:ce:e7:bf:e4:c1:15:27:5d:c5:1e:2f:38:4c:0d:dd:94:bf: 07:4f:27:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYwOEQxMTAvBgNVBAUTKEQyRDgwODA0OUE0NkVENzk3QzIxRjlGNjAyNTIzNDU2 NDYzMUIzRjkwHhcNMjUwODIwMTcyMzI2WhcNMjUwODI3MTcyMzI2WjAYMRYwFAYD VQQDEw02OGE2MDQ4ZS1hNzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+fKF+fJWff/0gIBZmqqjZDBga1+HGGd9PHGa0Y8Es8q45E5pfOziQekf/O40 aR7hyqzzG1k//Xrp8rAWau3zLJibYZBU6JJDpwfnHcBPA7ABxKgaIpJoDpoC0Z7Y 6+o76qkb8jdpkuBekhXzYyBvZrjx93iJ3gss1NS4oHCPerHBoRp0QDLE4LkSkm9K ts3rM0ZTPlZ+lQytmGcBhUSZ3GHmLC4tvU9qBFmcGo5156oA2Hgl0RJ22kDgr6ZN KOFZUaqWCIT6PtIT8Zq28p7/KyWAD9+HE0TIFOB0CwheBv1kgXMxbB1gUI91wNVK M7aLudkM/1fKP3h4TcYWLybobwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSmuliB Sc4+2t1lXoSYRlFvHYSzMB8GA1UdIwQYMBaAFNLYCASaRu15fCH59gJSNFZGMbP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjA4RC84MTA3M0EzMDI4 NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdYbDhJZm4yQWxJMFZrWXhz X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB0Z0lCSnBHN1hsOElmbjJBbEkwVmtZeHNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjA4RC84MTA3M0EzMDI4NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdY bDhJZm4yQWxJMFZrWXhzX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAULjInrrP5GC08XwLZEdswr9ZXMsHbAcdXJxj2jvi3m8bTPPb518v +porxgpM/ZoflBdSaT4R3xQn70wLv0v5RjCoERIB4ZE7Lm+qughNQAOPiufkbq7o FRNMYF/Yf8kQXiPvh1y89rn845DCRPv8qIJP3NpO6VjF932i4YrG59nzx5f68xrL RGduK3WDzRaqIWXtraHLWc+HvRg2bEUgEAlyIqHHx+BEKSsEK54jcYcZ+CmgEYii LVHV471XTbAUufVn9gyHo5ybHFTQdaQ4q5d0xaGcm3trX2Uno/FHhNOmsLIIzORV QHMfzue/5MEVJ13FHi84TA3dlL8HTyd5 -----END CERTIFICATE-----Generated at Fri Aug 22 16:34:37 2025 by rpki-client