$ rpki-client -vvf rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft File: tOfjRK3ONthPHzq8zRSyTBUSu6o.mft (raw, json) Hash identifier: 6MzTsBTJeKf+fZv6rqJhGiM3HQTpIfAvQgJEztomN40= Subject key identifier: D6:AC:B5:A8:A1:53:F9:76:B1:19:0A:B6:71:85:40:03:E5:7A:F0:05 Authority key identifier: B4:E7:E3:44:AD:CE:36:D8:4F:1F:3A:BC:CD:14:B2:4C:15:12:BB:AA Certificate issuer: /CN=A911BDA9/serialNumber=B4E7E344ADCE36D84F1F3ABCCD14B24C1512BBAA Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft Manifest number: D0 Signing time: Sat 23 Aug 2025 05:49:48 +0000 Manifest this update: Sat 23 Aug 2025 05:49:47 +0000 Manifest next update: Sat 30 Aug 2025 05:49:47 +0000 Files and hashes: 1: tOfjRK3ONthPHzq8zRSyTBUSu6o.crl (hash: MpRyHeyGTY0Kxod9CE/0Ke9jnqojund2h2UflG0o1Lw=) 2: 723720464ABE11EFA87EE85BC4F9AE02.roa (hash: piBG26jjxocqk1EfDzKmzUArtL5VT+oZB8alGAtK9pg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.crl rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:49:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BDA9, serialNumber=B4E7E344ADCE36D84F1F3ABCCD14B24C1512BBAA Validity Not Before: Aug 23 05:49:47 2025 GMT Not After : Aug 30 05:49:47 2025 GMT Subject: CN=68a9567b-d942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4a:73:27:f1:81:0f:9f:a8:ba:7d:6e:70:ea: e8:c5:4d:b4:05:f6:3a:82:a8:2f:02:dd:96:fa:5b: ab:7b:db:69:61:21:7d:3a:bb:95:bc:06:71:f5:30: 28:e9:1b:a7:0c:9c:79:c8:32:9e:a4:c4:13:5f:82: 77:f6:71:6f:1b:ad:47:4c:5d:47:bd:a3:d3:7a:58: 2d:6b:8c:0d:83:60:3f:1a:b1:cb:bc:64:07:d2:15: ef:a0:8e:8f:ab:cd:c1:0a:8c:07:be:9a:9d:b4:0f: de:31:80:8a:b5:52:8a:43:af:78:7f:57:0b:a4:c4: 4f:3a:b5:13:90:86:83:f7:d6:1c:ff:14:7e:93:9d: a7:01:2f:44:d0:c1:c3:c7:fd:0e:eb:fe:8e:84:16: 22:7a:81:ca:5a:d3:32:a9:b5:33:de:6f:a5:5e:33: a6:84:a0:6c:71:1c:b3:d3:c3:72:dc:ba:ae:4d:97: d6:81:88:14:dd:9f:a0:3d:02:8f:21:d9:46:ad:48: 17:93:b0:24:30:1a:28:5b:34:fd:b0:c5:cc:23:f5: 11:d7:0b:a2:76:50:82:da:dc:e8:6d:ba:4d:81:0e: 71:46:23:e9:db:50:e8:16:e0:a7:5e:77:af:d6:ad: f5:e4:fd:6b:8e:f0:88:99:a7:38:2d:7f:2d:89:87: 43:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:AC:B5:A8:A1:53:F9:76:B1:19:0A:B6:71:85:40:03:E5:7A:F0:05 X509v3 Authority Key Identifier: keyid:B4:E7:E3:44:AD:CE:36:D8:4F:1F:3A:BC:CD:14:B2:4C:15:12:BB:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:ae:8d:4e:59:6e:26:ea:9e:03:da:13:e1:a8:9d:68:d6:2a: 73:68:77:fb:7b:d6:c3:9d:e3:d4:37:e1:b6:59:0d:87:a5:ea: df:12:23:b7:9f:28:fe:ae:c0:30:e3:e3:93:47:94:b0:a5:9e: 79:f5:78:48:51:31:55:d3:cb:c8:91:6e:2e:49:e5:c2:e7:56: 1d:94:ca:9c:0b:d8:33:34:37:8f:1e:bb:6b:3c:71:cc:c8:04: 8a:87:2e:34:e5:77:fd:ce:78:97:4a:00:bb:81:99:ce:25:bb: 8f:b3:74:d6:0a:96:18:2e:3b:1b:3e:9d:3c:e4:b6:bd:95:f5: 8c:42:ea:62:33:8b:ff:9b:63:27:9f:32:33:30:f0:a7:0e:ec: 2d:dc:15:c8:61:c8:43:be:7b:b1:4e:0b:1b:4e:4e:67:5b:04: 62:72:05:e1:83:87:46:41:d9:e5:7a:40:d3:56:62:15:06:4a: 04:6f:0b:29:e4:b1:6a:d9:33:3e:b2:c4:b5:cd:72:6d:75:de: 37:03:26:f4:16:c9:de:91:b6:c6:28:52:09:9b:df:40:ae:95: a9:7f:94:89:46:ca:b9:67:01:20:66:14:6e:99:2f:10:88:e3: 81:e4:cc:ca:a2:08:d1:77:13:ed:38:15:2e:e0:b6:e7:82:c8: ae:1f:51:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJEQTkxMTAvBgNVBAUTKEI0RTdFMzQ0QURDRTM2RDg0RjFGM0FCQ0NEMTRCMjRD MTUxMkJCQUEwHhcNMjUwODIzMDU0OTQ3WhcNMjUwODMwMDU0OTQ3WjAYMRYwFAYD VQQDEw02OGE5NTY3Yi1kOTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0pzJ/GBD5+oun1ucOroxU20BfY6gqgvAt2W+lure9tpYSF9OruVvAZx9TAo 6RunDJx5yDKepMQTX4J39nFvG61HTF1HvaPTelgta4wNg2A/GrHLvGQH0hXvoI6P q83BCowHvpqdtA/eMYCKtVKKQ694f1cLpMRPOrUTkIaD99Yc/xR+k52nAS9E0MHD x/0O6/6OhBYieoHKWtMyqbUz3m+lXjOmhKBscRyz08Ny3LquTZfWgYgU3Z+gPQKP IdlGrUgXk7AkMBooWzT9sMXMI/UR1wuidlCC2tzobbpNgQ5xRiPp21DoFuCnXnev 1q315P1rjvCImac4LX8tiYdD+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNastaih U/l2sRkKtnGFQAPlevAFMB8GA1UdIwQYMBaAFLTn40StzjbYTx86vM0UskwVEruq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkRBOS8zNkE1MzBGNjQ0 QkQxMUVGQjczREI3N0JDNEY5QUUwMi90T2ZqUkszT050aFBIenE4elJTeVRCVVN1 Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RPZmpSSzNPTnRoUEh6cTh6UlN5VEJVU3U2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkRBOS8zNkE1MzBGNjQ0QkQxMUVGQjczREI3N0JDNEY5QUUwMi90T2ZqUkszT050 aFBIenE4elJTeVRCVVN1Nm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKro1OWW4m6p4D2hPhqJ1o1ipzaHf7e9bDnePUN+G2WQ2HperfEiO3 nyj+rsAw4+OTR5SwpZ559XhIUTFV08vIkW4uSeXC51YdlMqcC9gzNDePHrtrPHHM yASKhy405Xf9zniXSgC7gZnOJbuPs3TWCpYYLjsbPp085La9lfWMQupiM4v/m2Mn nzIzMPCnDuwt3BXIYchDvnuxTgsbTk5nWwRicgXhg4dGQdnlekDTVmIVBkoEbwsp 5LFq2TM+ssS1zXJtdd43Ayb0FsnekbbGKFIJm99ArpWpf5SJRsq5ZwEgZhRumS8Q iOOB5MzKogjRdxPtOBUu4LbngsiuH1GR -----END CERTIFICATE-----Generated at Sun Aug 24 08:51:37 2025 by rpki-client