$ rpki-client -vvf rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft File: tOfjRK3ONthPHzq8zRSyTBUSu6o.mft (raw, json) Hash identifier: ImJr7kvJi3JTi8SVh6r4KcaKeGQJPIZJUqIyaag7rCc= Subject key identifier: 4A:14:0B:BF:D7:88:94:06:E5:F0:41:A4:CA:A3:AF:C8:4D:8C:E1:4A Authority key identifier: B4:E7:E3:44:AD:CE:36:D8:4F:1F:3A:BC:CD:14:B2:4C:15:12:BB:AA Certificate issuer: /CN=A911BDA9/serialNumber=B4E7E344ADCE36D84F1F3ABCCD14B24C1512BBAA Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft Manifest number: B4 Signing time: Thu 03 Jul 2025 06:09:56 +0000 Manifest this update: Thu 03 Jul 2025 06:09:56 +0000 Manifest next update: Thu 10 Jul 2025 06:09:56 +0000 Files and hashes: 1: tOfjRK3ONthPHzq8zRSyTBUSu6o.crl (hash: 9EJsUMM/BMzumjXQ49sItFBxsbvoIX5E+fDryfeJyhs=) 2: 723720464ABE11EFA87EE85BC4F9AE02.roa (hash: 3HXgfR2xDybCR9JbXAm4K9BmBrTeyB6NLob5uNWXRyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.crl rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BDA9, serialNumber=B4E7E344ADCE36D84F1F3ABCCD14B24C1512BBAA Validity Not Before: Jul 3 06:09:56 2025 GMT Not After : Jul 10 06:09:56 2025 GMT Subject: CN=68661eb4-cde1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:58:63:d4:7f:81:35:02:df:ab:78:e9:8a:df: ff:dd:62:da:08:db:cb:d2:53:67:61:0a:c4:17:f0: 01:a9:81:b3:53:2f:54:87:cc:c9:91:5a:8c:f2:41: 39:23:e4:69:f6:9b:29:ab:b1:15:17:a2:ad:84:e8: 8a:63:b3:57:ca:f7:c8:f9:1a:55:9f:ba:50:2d:86: bb:08:cd:0b:40:18:78:c6:a0:03:3b:47:5e:f1:62: 79:1c:da:40:f0:59:d2:8c:cd:53:90:83:46:3e:c9: d1:30:6a:e0:3e:0a:7b:c4:82:43:0e:35:e7:e3:a0: 0b:ea:f0:c8:79:63:9d:10:56:89:72:f5:8a:45:ab: 9e:e5:7e:66:2d:dc:17:e9:ca:6c:e2:71:f9:87:94: 5e:23:4f:f8:5f:f8:66:16:27:e0:ba:2e:76:41:45: 25:8f:0a:ab:da:8c:c2:9a:12:28:39:e8:27:38:b7: ab:d4:c0:38:cf:9c:97:7d:77:f7:f0:a4:99:fd:bb: 41:ea:f9:9d:b4:85:43:45:51:35:30:bb:2e:93:af: 95:a1:d0:b0:7c:27:cb:c2:b4:41:87:68:b4:c3:f1: b5:f9:a2:78:f7:e4:99:36:bb:d6:1e:f2:2c:f3:28: c5:d0:7f:ce:48:f7:10:4a:07:ce:6c:2b:6a:78:a5: ac:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:14:0B:BF:D7:88:94:06:E5:F0:41:A4:CA:A3:AF:C8:4D:8C:E1:4A X509v3 Authority Key Identifier: keyid:B4:E7:E3:44:AD:CE:36:D8:4F:1F:3A:BC:CD:14:B2:4C:15:12:BB:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:70:fe:ad:09:96:33:98:ab:b2:95:58:4c:51:ca:41:4e:f1: a8:be:d6:41:28:61:97:4c:78:7b:3f:42:bb:44:a0:b1:f2:0b: a1:f0:f2:ce:bd:90:f6:82:57:11:4a:b7:7a:b9:b5:01:22:25: 96:4a:6b:b9:47:5b:d0:04:1d:a2:29:e0:f6:5d:7c:05:30:90: f2:1c:5d:72:70:0e:4d:0d:61:0b:20:81:f7:70:a5:1d:bd:09: 2c:ea:b0:fe:6f:41:9a:1c:a9:74:5a:0d:d5:79:eb:07:27:98: ae:b6:d5:e1:58:3c:66:28:18:46:4a:32:9d:22:dc:c3:08:e9: f2:b7:f3:2a:91:45:3a:22:68:da:e7:11:a4:9c:74:ad:86:41: 66:77:8c:44:b5:2d:c8:64:91:72:ce:12:dd:30:7a:37:22:78: 41:00:79:1a:4a:4b:e2:b3:b3:d0:b9:15:54:c4:19:da:2a:52: 8e:63:1d:15:77:55:df:d4:26:0e:28:96:72:7e:98:c8:9c:3c: 77:00:a1:0e:27:4f:00:47:cc:e1:db:a3:8d:97:a7:55:9c:ce: d7:ab:30:c9:24:ff:c4:e9:8a:70:17:c8:87:23:0c:96:eb:2a: 8c:c7:8d:45:1f:51:66:80:1c:38:bc:6b:73:d9:8f:fa:36:ca: e8:31:d5:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJEQTkxMTAvBgNVBAUTKEI0RTdFMzQ0QURDRTM2RDg0RjFGM0FCQ0NEMTRCMjRD MTUxMkJCQUEwHhcNMjUwNzAzMDYwOTU2WhcNMjUwNzEwMDYwOTU2WjAYMRYwFAYD VQQDEw02ODY2MWViNC1jZGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8lhj1H+BNQLfq3jpit//3WLaCNvL0lNnYQrEF/ABqYGzUy9Uh8zJkVqM8kE5 I+Rp9pspq7EVF6KthOiKY7NXyvfI+RpVn7pQLYa7CM0LQBh4xqADO0de8WJ5HNpA 8FnSjM1TkINGPsnRMGrgPgp7xIJDDjXn46AL6vDIeWOdEFaJcvWKRaue5X5mLdwX 6cps4nH5h5ReI0/4X/hmFifgui52QUUljwqr2ozCmhIoOegnOLer1MA4z5yXfXf3 8KSZ/btB6vmdtIVDRVE1MLsuk6+VodCwfCfLwrRBh2i0w/G1+aJ49+SZNrvWHvIs 8yjF0H/OSPcQSgfObCtqeKWscwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoUC7/X iJQG5fBBpMqjr8hNjOFKMB8GA1UdIwQYMBaAFLTn40StzjbYTx86vM0UskwVEruq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkRBOS8zNkE1MzBGNjQ0 QkQxMUVGQjczREI3N0JDNEY5QUUwMi90T2ZqUkszT050aFBIenE4elJTeVRCVVN1 Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RPZmpSSzNPTnRoUEh6cTh6UlN5VEJVU3U2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkRBOS8zNkE1MzBGNjQ0QkQxMUVGQjczREI3N0JDNEY5QUUwMi90T2ZqUkszT050 aFBIenE4elJTeVRCVVN1Nm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5cP6tCZYzmKuylVhMUcpBTvGovtZBKGGXTHh7P0K7RKCx8guh8PLO vZD2glcRSrd6ubUBIiWWSmu5R1vQBB2iKeD2XXwFMJDyHF1ycA5NDWELIIH3cKUd vQks6rD+b0GaHKl0Wg3VeesHJ5iuttXhWDxmKBhGSjKdItzDCOnyt/MqkUU6Imja 5xGknHSthkFmd4xEtS3IZJFyzhLdMHo3InhBAHkaSkvis7PQuRVUxBnaKlKOYx0V d1Xf1CYOKJZyfpjInDx3AKEOJ08AR8zh26ONl6dVnM7XqzDJJP/E6YpwF8iHIwyW 6yqMx41FH1FmgBw4vGtz2Y/6NsroMdUD -----END CERTIFICATE-----Generated at Thu Jul 3 14:57:51 2025 by rpki-client