$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: hdipIujxTf7+YDb3TJtd8lCsUpmdH1RFd5vp6a5vLVs= Subject key identifier: C5:87:2F:9B:AE:C5:DF:4A:56:3F:E1:E7:CC:D8:CF:8D:F7:1B:72:F5 Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 0A3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 0A34 Signing time: Wed 02 Jul 2025 19:58:57 +0000 Manifest this update: Wed 02 Jul 2025 19:58:57 +0000 Manifest next update: Wed 09 Jul 2025 19:58:57 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: taWeUBOm6VcAlcyUdYVRUKkz5VncivEEEUVtlyQBJMU=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: 3RxABu3KC/9hSKHYQMzVVe4gdoAQgiDaudG41V9QJ3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:58:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2620 (0xa3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309, serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: Jul 2 19:58:57 2025 GMT Not After : Jul 9 19:58:57 2025 GMT Subject: CN=68658f81-ea50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:84:4d:48:1c:24:19:bc:c3:09:81:1f:6b:46: a1:50:7d:e7:5c:42:aa:96:a6:35:25:64:92:4b:8f: 23:91:58:d6:c9:aa:d5:55:84:27:19:42:39:24:6e: 9b:44:4c:2c:43:f1:6a:90:a1:95:6b:2e:9f:a3:25: f2:b3:c0:8a:c3:89:a5:7c:ac:a3:a2:87:47:5a:1f: 15:30:00:d1:b3:ef:3c:bb:ad:8f:c7:0e:5a:30:84: 51:56:f3:29:e1:73:dc:fb:ed:24:5b:6d:03:25:64: c7:bb:f5:3f:01:75:f2:5c:64:85:b6:73:01:19:2a: 99:b4:de:02:58:93:27:87:b7:6d:d8:64:5a:0f:6c: 48:16:e2:85:c9:53:35:d0:77:0a:0c:29:5f:28:53: de:34:94:ea:52:16:83:b7:4e:e3:74:ad:b8:a6:2b: af:82:18:bc:b4:84:35:9d:fb:c6:fa:77:99:df:07: a2:52:08:30:c2:71:5f:2d:e1:cb:f2:d6:1d:f6:84: cd:24:53:e0:04:32:39:83:29:02:42:f1:02:a0:40: 47:2c:22:61:6e:2f:38:bf:56:ac:1b:53:8d:3c:d0: 64:73:29:e2:ce:ca:92:ae:ad:dd:3b:16:71:98:38: 76:99:29:48:f9:56:42:13:a3:90:68:8a:ad:56:36: e1:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:87:2F:9B:AE:C5:DF:4A:56:3F:E1:E7:CC:D8:CF:8D:F7:1B:72:F5 X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:c5:45:9f:65:c9:c1:95:ed:04:2a:6e:01:92:98:d6:e6:29: f5:0e:bc:83:5a:23:df:87:2e:28:61:88:df:cc:f4:71:78:10: b8:cd:43:a3:ee:b4:7f:eb:10:58:cc:72:ea:3c:f3:a0:46:34: d1:2b:9d:c6:1f:9f:59:57:ca:0d:75:13:80:fb:5c:45:36:64: 7d:0c:48:0d:17:c2:eb:f0:a2:ba:e9:bb:75:a5:f7:a3:b2:8d: 26:32:17:57:72:f6:00:5d:0e:7d:80:ee:a5:6d:fc:b5:70:34: 57:31:90:ff:ac:51:74:fd:73:59:cb:04:58:7a:c3:61:4f:ad: 18:83:53:cc:aa:d0:e5:54:c8:77:fc:33:df:5d:09:3e:ec:e4: 4a:6d:ed:05:b0:1c:c4:78:f9:ee:80:25:be:40:f7:bf:02:fd: 3d:39:e1:79:99:8c:58:5f:2c:c4:99:fa:76:84:60:52:07:5b: 27:0b:18:4c:99:e9:eb:c4:30:67:4e:37:c7:b9:31:88:33:4c: f4:91:0e:4a:c2:30:13:cc:a7:04:c7:6d:d6:3a:3a:24:b5:ac: 23:f0:f8:e6:ca:42:c7:0c:33:2c:d8:cf:58:6d:8c:03:35:52: 65:9a:08:ee:ee:dd:fe:fc:8b:48:c7:2a:1b:81:83:f8:84:6b: 99:54:54:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjUwNzAyMTk1ODU3WhcNMjUwNzA5MTk1ODU3WjAYMRYwFAYD VQQDEw02ODY1OGY4MS1lYTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYRNSBwkGbzDCYEfa0ahUH3nXEKqlqY1JWSSS48jkVjWyarVVYQnGUI5JG6b REwsQ/FqkKGVay6foyXys8CKw4mlfKyjoodHWh8VMADRs+88u62Pxw5aMIRRVvMp 4XPc++0kW20DJWTHu/U/AXXyXGSFtnMBGSqZtN4CWJMnh7dt2GRaD2xIFuKFyVM1 0HcKDClfKFPeNJTqUhaDt07jdK24piuvghi8tIQ1nfvG+neZ3weiUggwwnFfLeHL 8tYd9oTNJFPgBDI5gykCQvECoEBHLCJhbi84v1asG1ONPNBkcynizsqSrq3dOxZx mDh2mSlI+VZCE6OQaIqtVjbhZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWHL5uu xd9KVj/h58zYz433G3L1MB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/xUWfZcnBle0EKm4BkpjW5in1DryDWiPfhy4oYYjfzPRxeBC4zUOj 7rR/6xBYzHLqPPOgRjTRK53GH59ZV8oNdROA+1xFNmR9DEgNF8Lr8KK66bt1pfej so0mMhdXcvYAXQ59gO6lbfy1cDRXMZD/rFF0/XNZywRYesNhT60Yg1PMqtDlVMh3 /DPfXQk+7ORKbe0FsBzEePnugCW+QPe/Av09OeF5mYxYXyzEmfp2hGBSB1snCxhM menrxDBnTjfHuTGIM0z0kQ5KwjATzKcEx23WOjoktawj8PjmykLHDDMs2M9YbYwD NVJlmgju7t3+/ItIxyobgYP4hGuZVFQv -----END CERTIFICATE-----Generated at Thu Jul 3 17:26:01 2025 by rpki-client