$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: +0a0MXgzkSQOdmnMOmp5Otzr+Ag4i+6F0UCzBkoI6ZU= Subject key identifier: 34:15:A4:43:FA:FD:B2:BC:D8:59:76:8A:C9:67:16:88:61:E0:B4:31 Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 0A56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 0A4E Signing time: Fri 22 Aug 2025 19:50:32 +0000 Manifest this update: Fri 22 Aug 2025 19:50:32 +0000 Manifest next update: Fri 29 Aug 2025 19:50:32 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: vS+qH8nclJfaUTsK+YVGPiKFEC7aTsbc7jVfEMsM5wk=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: 3RxABu3KC/9hSKHYQMzVVe4gdoAQgiDaudG41V9QJ3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2646 (0xa56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309, serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: Aug 22 19:50:32 2025 GMT Not After : Aug 29 19:50:32 2025 GMT Subject: CN=68a8ca08-29fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f4:42:90:0e:32:b8:a3:9b:c7:c0:49:73:9c: 1e:af:97:d6:55:a1:8e:1c:58:ea:7e:d6:d3:16:cb: d4:bd:fd:bc:8c:5a:0d:3e:94:b6:c1:9f:ae:4d:43: bf:a8:27:dc:e8:c9:90:15:cd:c0:55:79:27:b4:a9: 85:c4:f1:84:3b:31:40:2e:55:7d:ed:33:d9:d9:5f: 6b:e7:e3:e0:ca:ed:19:70:fc:3f:7e:1b:7f:5c:9b: b6:74:03:61:19:46:4d:16:57:43:66:89:56:8d:c2: a6:93:99:54:34:02:5b:74:0f:64:0f:e2:f3:25:12: a6:7a:27:ab:36:80:84:56:e6:6a:91:c0:43:f8:48: c3:7c:d3:bc:51:de:ab:49:96:a2:7a:e6:a5:b0:57: a9:30:f9:5f:b3:0b:90:b1:31:e2:0d:87:cb:e7:9a: 21:b1:2f:9c:e0:d8:19:52:04:09:f8:e9:97:f0:2f: 87:39:32:93:89:65:3f:05:b2:48:bc:51:0e:f0:3e: bf:fd:05:29:2b:b3:58:b1:81:57:03:62:f9:f3:bf: b7:9b:52:31:af:d6:6b:95:f3:33:d7:72:fa:a7:dc: c9:11:e8:50:8b:b5:53:48:02:3e:d6:e0:ea:b9:fc: 68:24:87:f8:df:55:f8:1e:a8:14:7a:9b:9b:3b:53: 38:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:15:A4:43:FA:FD:B2:BC:D8:59:76:8A:C9:67:16:88:61:E0:B4:31 X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:dd:e4:88:94:68:a2:d7:50:3a:87:70:64:c2:0e:ce:37:91: c7:74:f7:e5:e1:7d:fa:d3:4d:60:d8:fc:c7:4d:1b:f1:78:6d: 9b:1d:44:da:3f:22:0a:c1:b9:50:3c:b4:53:5f:4b:de:bf:31: 5d:8c:fb:05:ad:c9:db:86:d7:5a:4c:22:28:41:f2:08:42:07: a8:bb:c4:59:c1:d1:23:e8:cc:53:b3:87:68:9a:67:f8:ba:3f: 1a:97:67:b9:5f:81:68:fb:d9:8c:bb:dc:b3:b5:55:a6:0b:0d: 05:c9:d5:d3:aa:58:9f:44:fd:99:9f:92:82:27:cb:01:2a:34: 5d:c5:b8:29:36:da:20:d1:9f:0a:a6:0e:9a:67:4c:d2:dd:9a: 34:74:d2:ef:e0:0a:b9:78:b7:52:84:5d:0d:d2:ab:97:42:9c: 15:47:72:7d:8b:67:e7:b7:53:ea:5d:3b:45:2b:59:a8:e6:98: 65:65:ce:40:4e:b1:a9:bf:f1:ce:39:cd:40:d7:ee:16:12:a6: bb:b9:0d:a1:9a:86:4a:6a:0a:90:f4:77:6b:e5:10:19:84:1e: c9:6f:e4:d7:8d:68:1c:e8:4b:d3:d2:60:90:4a:fa:00:ca:8a: f1:55:b0:69:70:5e:db:74:49:6c:58:94:7e:9b:f2:4e:cb:6b: 03:1a:a0:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjUwODIyMTk1MDMyWhcNMjUwODI5MTk1MDMyWjAYMRYwFAYD VQQDEw02OGE4Y2EwOC0yOWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8PRCkA4yuKObx8BJc5wer5fWVaGOHFjqftbTFsvUvf28jFoNPpS2wZ+uTUO/ qCfc6MmQFc3AVXkntKmFxPGEOzFALlV97TPZ2V9r5+Pgyu0ZcPw/fht/XJu2dANh GUZNFldDZolWjcKmk5lUNAJbdA9kD+LzJRKmeierNoCEVuZqkcBD+EjDfNO8Ud6r SZaieualsFepMPlfswuQsTHiDYfL55ohsS+c4NgZUgQJ+OmX8C+HOTKTiWU/BbJI vFEO8D6//QUpK7NYsYFXA2L587+3m1Ixr9ZrlfMz13L6p9zJEehQi7VTSAI+1uDq ufxoJIf431X4HqgUepubO1M4EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQVpEP6 /bK82Fl2islnFohh4LQxMB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD3eSIlGii11A6h3Bkwg7ON5HHdPfl4X36001g2PzHTRvxeG2bHUTa PyIKwblQPLRTX0vevzFdjPsFrcnbhtdaTCIoQfIIQgeou8RZwdEj6MxTs4dommf4 uj8al2e5X4Fo+9mMu9yztVWmCw0FydXTqlifRP2Zn5KCJ8sBKjRdxbgpNtog0Z8K pg6aZ0zS3Zo0dNLv4Aq5eLdShF0N0quXQpwVR3J9i2fnt1PqXTtFK1mo5phlZc5A TrGpv/HOOc1A1+4WEqa7uQ2hmoZKagqQ9Hdr5RAZhB7Jb+TXjWgc6EvT0mCQSvoA yorxVbBpcF7bdElsWJR+m/JOy2sDGqCa -----END CERTIFICATE-----Generated at Sat Aug 23 19:39:12 2025 by rpki-client