$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft File: _tgXL4qVo1IC1RxvdfqUfehE9M0.mft (raw, json) Hash identifier: dLZfbOhI0LVsqTVdDmYQGwHRrGBQCZOZrz0o0NcXnkU= Subject key identifier: B5:1C:C2:F5:70:E3:E7:EA:6D:7E:68:F4:8B:2E:6B:F0:75:54:84:E0 Authority key identifier: FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD Certificate issuer: /CN=A9198D95/serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft Manifest number: 0118 Signing time: Sun 07 Sep 2025 05:15:44 +0000 Manifest this update: Sun 07 Sep 2025 05:15:43 +0000 Manifest next update: Sun 14 Sep 2025 05:15:43 +0000 Files and hashes: 1: _tgXL4qVo1IC1RxvdfqUfehE9M0.crl (hash: JTIwt6zaRR8vdDGdGpehklpQHxF/kjiFB+Itx0bvWvk=) 2: 994A883AE06511EEA8CEC61EC4F9AE02.roa (hash: VIkL73Ao9GMOlF5higO2xRTxCND3iZkpVBfNLk5tPMM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:15:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D95, serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Validity Not Before: Sep 7 05:15:43 2025 GMT Not After : Sep 14 05:15:43 2025 GMT Subject: CN=68bd1500-b7aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:45:3b:40:3b:46:c7:70:63:b4:b4:95:77:4c: df:6f:ad:2a:1f:d4:2d:89:3d:50:80:fb:d0:57:ed: 76:5e:c3:6c:4e:d9:14:2a:65:1b:69:b0:07:a9:b1: d4:a7:2a:1f:b8:2b:fe:cb:8d:44:e6:47:cd:89:bf: fd:57:20:78:96:37:2f:b3:3c:57:66:b7:e9:f6:d8: d5:18:38:f0:26:75:63:3e:24:d2:13:8b:3c:e4:9c: ca:70:43:36:e7:84:a5:b1:16:c6:7a:e2:5f:c8:56: 55:15:05:b2:dc:d7:66:04:29:32:0b:ba:69:72:02: 85:3e:4e:40:74:18:ed:14:0f:10:71:d5:29:52:af: ec:5e:07:d3:02:db:70:d2:fa:4b:3a:df:dd:f7:22: 41:90:98:6d:2a:fb:b9:ef:a0:7e:9e:73:0f:a3:83: cd:9c:49:7d:ed:7d:63:1f:af:bd:2a:80:05:3f:72: 20:c3:e0:39:5a:8b:59:39:f1:db:58:60:41:07:17: 2c:a8:b7:3c:e4:fd:3e:a4:25:2d:b5:47:e8:5d:b2: 1c:37:82:bf:f1:31:8c:d9:d8:c4:25:4b:11:7d:db: d2:4f:43:6a:7f:be:ab:1c:bf:72:60:56:d4:a5:92: 1c:d5:e4:f1:bc:9e:99:5c:8d:15:c9:86:ac:cc:fc: b2:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:1C:C2:F5:70:E3:E7:EA:6D:7E:68:F4:8B:2E:6B:F0:75:54:84:E0 X509v3 Authority Key Identifier: keyid:FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:4a:85:41:dd:b8:40:7a:f2:22:5c:1f:7d:fb:41:4a:79:57: c3:8a:30:54:7a:45:38:93:0a:70:2d:7b:d4:01:26:98:5f:11: 7a:2c:d3:be:1b:c5:0e:d1:d6:33:e1:25:20:3b:13:05:17:1e: 85:8d:8c:19:4c:56:0c:68:55:18:98:89:42:14:36:f8:55:61: 62:3d:6a:bc:b2:fe:16:e1:da:4f:64:0c:2d:54:44:34:25:84: d3:47:fc:8b:c9:77:27:7e:fd:af:04:00:31:37:25:59:8e:4d: df:2a:d7:50:35:ca:32:3b:82:d6:df:6e:1f:08:89:50:fb:45: 3b:3c:b1:31:cc:93:be:59:27:69:8c:f5:28:76:52:6d:1b:4b: 4a:6a:20:29:ec:61:f7:23:70:19:ec:f4:1d:bf:ff:1a:81:c7: a4:2f:11:c2:ae:dd:ae:ac:a9:88:49:f3:ab:75:22:3e:89:0f: 8d:a0:de:38:3b:ef:2c:c2:86:63:85:fb:25:4d:2f:0b:82:48: aa:bc:29:ae:a4:26:30:8d:8c:e4:4e:ad:4f:48:df:5b:0e:bf: 97:ab:e7:f3:97:c4:12:58:68:00:55:70:e7:e8:39:f3:de:4f: ed:41:39:08:6c:ba:c6:d4:1e:1e:0b:2d:e8:a1:2e:82:40:ff: 1f:38:c5:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEOTUxMTAvBgNVBAUTKEZFRDgxNzJGOEE5NUEzNTIwMkQ1MUM2Rjc1RkE5NDdE RTg0NEY0Q0QwHhcNMjUwOTA3MDUxNTQzWhcNMjUwOTE0MDUxNTQzWjAYMRYwFAYD VQQDEw02OGJkMTUwMC1iN2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn0U7QDtGx3BjtLSVd0zfb60qH9QtiT1QgPvQV+12XsNsTtkUKmUbabAHqbHU pyofuCv+y41E5kfNib/9VyB4ljcvszxXZrfp9tjVGDjwJnVjPiTSE4s85JzKcEM2 54SlsRbGeuJfyFZVFQWy3NdmBCkyC7ppcgKFPk5AdBjtFA8QcdUpUq/sXgfTAttw 0vpLOt/d9yJBkJhtKvu576B+nnMPo4PNnEl97X1jH6+9KoAFP3Igw+A5WotZOfHb WGBBBxcsqLc85P0+pCUttUfoXbIcN4K/8TGM2djEJUsRfdvST0Nqf76rHL9yYFbU pZIc1eTxvJ6ZXI0VyYaszPyyDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUcwvVw 4+fqbX5o9Isua/B1VITgMB8GA1UdIwQYMBaAFP7YFy+KlaNSAtUcb3X6lH3oRPTN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQ5NS80OEVEMjk2QUUw NjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8xSUMxUnh2ZGZxVWZlaEU5 TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190Z1hMNHFWbzFJQzFSeHZkZnFVZmVoRTlNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQ5NS80OEVEMjk2QUUwNjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8x SUMxUnh2ZGZxVWZlaEU5TTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCSoVB3bhAevIiXB99+0FKeVfDijBUekU4kwpwLXvUASaYXxF6LNO+ G8UO0dYz4SUgOxMFFx6FjYwZTFYMaFUYmIlCFDb4VWFiPWq8sv4W4dpPZAwtVEQ0 JYTTR/yLyXcnfv2vBAAxNyVZjk3fKtdQNcoyO4LW324fCIlQ+0U7PLExzJO+WSdp jPUodlJtG0tKaiAp7GH3I3AZ7PQdv/8agcekLxHCrt2urKmISfOrdSI+iQ+NoN44 O+8swoZjhfslTS8LgkiqvCmupCYwjYzkTq1PSN9bDr+Xq+fzl8QSWGgAVXDn6Dnz 3k/tQTkIbLrG1B4eCy3ooS6CQP8fOMW7 -----END CERTIFICATE-----Generated at Sun Sep 7 10:52:54 2025 by rpki-client