$ rpki-client -vvf rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft File: TDZeNqZHnY6wtQ2Q820dexnvhNM.mft (raw, json) Hash identifier: 8eRrH2He52R8QQJzLTu4SgiXE1YXDh0pK5GPH4rq0Cw= Subject key identifier: 00:6E:4B:A9:F1:2E:AF:07:D2:07:A1:2A:7F:61:FB:6A:D6:48:5E:FE Authority key identifier: 4C:36:5E:36:A6:47:9D:8E:B0:B5:0D:90:F3:6D:1D:7B:19:EF:84:D3 Certificate issuer: /CN=A9135B49/serialNumber=4C365E36A6479D8EB0B50D90F36D1D7B19EF84D3 Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDZeNqZHnY6wtQ2Q820dexnvhNM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft Manifest number: FC Signing time: Tue 01 Jul 2025 06:10:30 +0000 Manifest this update: Tue 01 Jul 2025 06:10:30 +0000 Manifest next update: Tue 08 Jul 2025 06:10:30 +0000 Files and hashes: 1: TDZeNqZHnY6wtQ2Q820dexnvhNM.crl (hash: 8DrVuT8Q4HIklQayqtFLP/FIZ4dUNReTi5lMa+cXtMM=) 2: 59E4E2A415BA11F084EFBB7CC4F9AE02.roa (hash: HZDyu1joYX+dxKnFptiA5xky7OHNJkIOKQTmsVfZf5A=) 3: 26B79D64E9FE11EF8751AE17C4F9AE02.roa (hash: VTVe81N4pW9ER21bMKt6sFjbfFvf/H+A7jZRhppZ5sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.crl rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDZeNqZHnY6wtQ2Q820dexnvhNM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135B49, serialNumber=4C365E36A6479D8EB0B50D90F36D1D7B19EF84D3 Validity Not Before: Jul 1 06:10:30 2025 GMT Not After : Jul 8 06:10:30 2025 GMT Subject: CN=68637bd6-1024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:69:17:4e:b9:2d:f5:8c:30:3c:49:e3:e7:de: 6b:c4:6c:53:f4:d7:96:40:63:c0:4c:54:90:a2:a7: e1:02:fe:db:cd:b5:2c:1d:c7:0b:d4:1b:62:49:3a: 99:7b:dc:f5:a8:34:f6:3c:bf:8a:8b:8a:c1:f0:d1: 87:b3:df:6a:05:d3:e7:e9:e2:e7:e0:c4:57:9b:ef: 1e:3f:89:3e:e3:9f:86:a1:10:42:c8:22:7b:ba:c2: 4e:f2:2a:a8:2f:a2:6c:4b:8e:5e:60:e8:f8:76:5f: 8d:9c:eb:40:48:2a:27:dc:28:9b:e3:6a:57:4b:ee: 31:94:2e:ea:be:1c:ab:37:86:80:02:7b:81:bb:81: 41:8b:8b:a8:cd:77:b9:d7:4d:69:a3:32:ad:86:3b: dd:4e:be:67:ee:52:9f:cb:c3:f2:ad:97:f2:bc:9d: 29:63:cf:a6:45:2c:a3:bf:2f:d9:b8:98:ce:ed:a7: 47:6a:be:e0:6b:c9:3a:42:37:90:d4:7a:64:3a:b4: 26:b8:c2:11:cb:54:22:47:93:9a:22:22:79:a3:79: 21:60:82:95:71:04:fc:28:06:58:17:73:0f:15:04: 53:48:38:c9:5d:d8:65:b4:d0:f7:6d:ce:27:ea:bf: ed:4a:3d:0f:f7:c9:20:45:0d:12:1b:ef:1a:ac:5c: 48:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:6E:4B:A9:F1:2E:AF:07:D2:07:A1:2A:7F:61:FB:6A:D6:48:5E:FE X509v3 Authority Key Identifier: keyid:4C:36:5E:36:A6:47:9D:8E:B0:B5:0D:90:F3:6D:1D:7B:19:EF:84:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDZeNqZHnY6wtQ2Q820dexnvhNM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:37:8a:fe:89:a6:c9:9c:2a:ca:2e:25:8a:2d:23:74:2d:8a: a5:c5:44:84:32:05:02:52:5d:af:27:12:a5:47:5f:61:5f:b3: 6f:ff:d8:8e:25:25:4d:0f:c8:0d:55:4b:b1:6c:97:99:be:57: bc:8f:6d:c5:f3:45:89:5e:8d:ae:f5:e6:74:49:8e:a3:a6:81: 52:dc:54:83:e8:06:19:e5:5b:c0:a1:24:bd:74:13:9c:8c:30: 11:50:4b:c7:b6:3e:fb:33:fd:b2:50:ef:be:89:63:d0:2a:76: 1b:e8:db:63:7f:68:ea:f8:f1:80:9c:9d:40:df:78:20:21:ec: 18:12:16:a9:8a:a3:f4:54:b8:70:03:2c:52:5b:68:80:7f:23: 94:16:58:1b:f5:86:35:bc:89:8e:41:e2:97:74:56:de:be:4c: de:62:56:bb:66:9c:cd:0a:4d:ea:c8:ff:cb:67:db:e8:ea:92: e4:9a:f0:e1:96:c2:25:bb:54:8f:9d:8a:11:ee:d0:cd:f2:d5: 31:e6:6b:df:7f:63:35:d5:bc:bd:b7:3b:56:f6:06:51:5b:93: 99:f1:9b:86:f4:8a:b6:a8:df:36:2e:38:5d:21:8a:db:4e:05: 72:e2:18:56:1b:05:9a:2e:d4:86:c0:24:bf:9a:91:3a:15:34: 23:3f:34:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVCNDkxMTAvBgNVBAUTKDRDMzY1RTM2QTY0NzlEOEVCMEI1MEQ5MEYzNkQxRDdC MTlFRjg0RDMwHhcNMjUwNzAxMDYxMDMwWhcNMjUwNzA4MDYxMDMwWjAYMRYwFAYD VQQDEw02ODYzN2JkNi0xMDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWkXTrkt9YwwPEnj595rxGxT9NeWQGPATFSQoqfhAv7bzbUsHccL1BtiSTqZ e9z1qDT2PL+Ki4rB8NGHs99qBdPn6eLn4MRXm+8eP4k+45+GoRBCyCJ7usJO8iqo L6JsS45eYOj4dl+NnOtASCon3Cib42pXS+4xlC7qvhyrN4aAAnuBu4FBi4uozXe5 101pozKthjvdTr5n7lKfy8PyrZfyvJ0pY8+mRSyjvy/ZuJjO7adHar7ga8k6QjeQ 1HpkOrQmuMIRy1QiR5OaIiJ5o3khYIKVcQT8KAZYF3MPFQRTSDjJXdhltND3bc4n 6r/tSj0P98kgRQ0SG+8arFxIcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFABuS6nx Lq8H0gehKn9h+2rWSF7+MB8GA1UdIwQYMBaAFEw2XjamR52OsLUNkPNtHXsZ74TT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUI0OS81MzE4QTEwODEy MDExMUVGQURDODUzNDVDNEY5QUUwMi9URFplTnFaSG5ZNnd0UTJRODIwZGV4bnZo Tk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1REWmVOcVpIblk2d3RRMlE4MjBkZXhudmhOTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUI0OS81MzE4QTEwODEyMDExMUVGQURDODUzNDVDNEY5QUUwMi9URFplTnFaSG5Z Nnd0UTJRODIwZGV4bnZoTk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADN4r+iabJnCrKLiWKLSN0LYqlxUSEMgUCUl2vJxKlR19hX7Nv/9iO JSVND8gNVUuxbJeZvle8j23F80WJXo2u9eZ0SY6jpoFS3FSD6AYZ5VvAoSS9dBOc jDARUEvHtj77M/2yUO++iWPQKnYb6Ntjf2jq+PGAnJ1A33ggIewYEhapiqP0VLhw AyxSW2iAfyOUFlgb9YY1vImOQeKXdFbevkzeYla7ZpzNCk3qyP/LZ9vo6pLkmvDh lsIlu1SPnYoR7tDN8tUx5mvff2M11by9tztW9gZRW5OZ8ZuG9Iq2qN82LjhdIYrb TgVy4hhWGwWaLtSGwCS/mpE6FTQjPzRB -----END CERTIFICATE-----Generated at Thu Jul 3 02:53:09 2025 by rpki-client