$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft File: tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft (raw, json) Hash identifier: VK83cBomSZ1gNRoYje7D6SfW0CcQga/u0LMWnUBe074= Subject key identifier: 16:1A:4C:1B:8B:AB:0F:60:1D:19:1A:E9:94:CD:13:8E:BB:CF:CC:2B Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft Manifest number: 011E Signing time: Sat 19 Jul 2025 04:58:52 +0000 Manifest this update: Sat 19 Jul 2025 04:58:52 +0000 Manifest next update: Sat 26 Jul 2025 04:58:52 +0000 Files and hashes: 1: tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl (hash: Xlo3kRXyiUwPp4jxURrp2SmmX9MF4+B/LLMioEZH6WQ=) 2: 4074E5EA7B1D11EFB5696E45C4F9AE02.roa (hash: 1SdPp/miyItNAEGeBSAKuJFOP+wIUKHiHtHU72zXu1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:58:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: Jul 19 04:58:52 2025 GMT Not After : Jul 26 04:58:52 2025 GMT Subject: CN=687b260c-1140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:15:e0:16:da:bc:96:95:df:3b:73:d0:f8:ca: ff:ca:53:9d:dd:2f:8f:ae:dd:a6:5a:b2:f8:bc:0b: 54:76:f2:22:e8:04:b2:7b:72:3c:53:79:9b:b0:8f: b1:d7:53:67:21:73:67:67:e4:10:9b:be:57:fe:3b: ec:5d:c3:45:4f:68:77:17:e6:81:8b:22:11:1b:87: 83:f8:d9:c1:53:17:90:8d:6f:bc:b4:40:8c:2d:12: 58:53:01:81:1a:16:60:50:be:fd:d2:ec:c8:36:5d: 0a:56:94:79:73:98:c7:83:f7:4a:f6:43:90:82:0c: c8:11:99:56:8b:e3:e8:7a:23:3d:18:4b:69:e8:26: 91:9e:8c:2d:87:3b:03:4e:89:bb:9e:03:d0:37:7f: 92:f8:1e:1a:2b:4d:39:41:a3:37:cf:9e:6a:be:f5: af:c1:08:19:ee:18:53:db:9d:7c:fc:78:b9:d6:1e: b6:14:be:7c:0c:a5:c1:87:64:40:25:b5:bd:4a:74: af:b7:8d:4a:86:ed:4e:7f:7e:80:fd:0d:82:6b:4f: 9a:b4:e3:40:20:a0:78:c8:df:56:10:6d:68:ff:1f: 70:4e:8c:02:7d:af:43:0c:8b:c1:5d:54:02:e0:38: f8:fb:13:6d:a0:76:74:81:fb:eb:6e:45:9b:66:b6: 9a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:1A:4C:1B:8B:AB:0F:60:1D:19:1A:E9:94:CD:13:8E:BB:CF:CC:2B X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:d5:3d:b2:c3:98:4f:53:1c:6c:8b:0c:dc:06:c9:4b:c4:41: a2:68:33:f5:cb:bf:60:9b:dc:6a:74:c9:c9:0c:3d:6f:cf:1c: 72:23:79:97:07:2c:ff:c1:2b:dd:d0:23:1a:cf:8e:c0:e2:73: ba:0b:f8:a8:89:cd:51:b4:b7:ae:7a:cd:5e:47:84:54:85:0b: 1d:cf:ba:73:75:b0:62:1e:ba:50:57:75:39:cf:34:9b:bf:2d: 16:a5:42:86:3a:a1:90:18:25:82:c5:c2:29:81:73:5d:7f:cd: 94:90:64:75:02:35:09:ad:f8:38:de:0d:b3:66:14:6b:43:b8: 85:72:b0:d7:22:ee:ca:15:78:36:af:a8:ab:6e:57:60:c0:b3: 05:82:11:77:28:68:09:10:ba:c3:93:76:b3:76:79:d5:a9:87: 4d:05:1a:6d:73:dd:3a:d1:44:97:5a:0e:f2:f2:5f:d7:86:c9: 36:5c:32:e5:a1:6e:67:79:e0:c3:b3:14:83:d5:48:a3:11:90: 11:53:39:9c:c2:f0:f3:57:c4:aa:ca:37:b5:8a:4b:fe:f9:eb: 6c:14:b5:83:f2:90:45:55:74:b0:01:ed:5f:be:18:bc:d6:40: 74:f5:3a:6f:12:0e:10:90:34:39:b0:61:0d:de:e1:e5:2d:35: 25:3c:74:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjUwNzE5MDQ1ODUyWhcNMjUwNzI2MDQ1ODUyWjAYMRYwFAYD VQQDEw02ODdiMjYwYy0xMTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxXgFtq8lpXfO3PQ+Mr/ylOd3S+Prt2mWrL4vAtUdvIi6ASye3I8U3mbsI+x 11NnIXNnZ+QQm75X/jvsXcNFT2h3F+aBiyIRG4eD+NnBUxeQjW+8tECMLRJYUwGB GhZgUL790uzINl0KVpR5c5jHg/dK9kOQggzIEZlWi+PoeiM9GEtp6CaRnowthzsD Tom7ngPQN3+S+B4aK005QaM3z55qvvWvwQgZ7hhT2518/Hi51h62FL58DKXBh2RA JbW9SnSvt41Khu1Of36A/Q2Ca0+atONAIKB4yN9WEG1o/x9wTowCfa9DDIvBXVQC 4Dj4+xNtoHZ0gfvrbkWbZraaWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYaTBuL qw9gHRka6ZTNE467z8wrMB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCRC8zNTcwREYyRUIxMTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFk SzVQeXcxSEtzazBWQnFyQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/1T2yw5hPUxxsiwzcBslLxEGiaDP1y79gm9xqdMnJDD1vzxxyI3mX Byz/wSvd0CMaz47A4nO6C/ioic1RtLeues1eR4RUhQsdz7pzdbBiHrpQV3U5zzSb vy0WpUKGOqGQGCWCxcIpgXNdf82UkGR1AjUJrfg43g2zZhRrQ7iFcrDXIu7KFXg2 r6irbldgwLMFghF3KGgJELrDk3azdnnVqYdNBRptc9060USXWg7y8l/Xhsk2XDLl oW5neeDDsxSD1UijEZARUzmcwvDzV8Sqyje1ikv++etsFLWD8pBFVXSwAe1fvhi8 1kB09TpvEg4QkDQ5sGEN3uHlLTUlPHSQ -----END CERTIFICATE-----Generated at Sun Jul 20 18:38:36 2025 by rpki-client