$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft File: TPa6KUJsvCB032LFH683jELTuK8.mft (raw, json) Hash identifier: LQTUcFSfAzRnhbFULLWWZty/hciSMxa/O/S/oOnIutA= Subject key identifier: B9:E0:57:80:84:09:CE:3A:A2:55:79:13:34:DF:68:50:1F:19:B0:D1 Authority key identifier: 4C:F6:BA:29:42:6C:BC:20:74:DF:62:C5:1F:AF:37:8C:42:D3:B8:AF Certificate issuer: /CN=A9148F50/serialNumber=4CF6BA29426CBC2074DF62C51FAF378C42D3B8AF Certificate serial: 073E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TPa6KUJsvCB032LFH683jELTuK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft Manifest number: 0736 Signing time: Fri 22 Aug 2025 21:55:51 +0000 Manifest this update: Fri 22 Aug 2025 21:55:51 +0000 Manifest next update: Fri 29 Aug 2025 21:55:51 +0000 Files and hashes: 1: TPa6KUJsvCB032LFH683jELTuK8.crl (hash: EYM+DvYx0rOmznlc4UhmvA6zxI1CehAaBUw41YI6oBo=) 2: B6A436A8411F11EBA45D5857C4F9AE02.roa (hash: 8umaFtJV5TgBXJUzmNOXuQWmgpWLTZbpyNtna3LX4IY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.crl rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TPa6KUJsvCB032LFH683jELTuK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:55:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1854 (0x73e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F50, serialNumber=4CF6BA29426CBC2074DF62C51FAF378C42D3B8AF Validity Not Before: Aug 22 21:55:51 2025 GMT Not After : Aug 29 21:55:51 2025 GMT Subject: CN=68a8e767-e37f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f5:ea:bb:c5:8c:ac:74:61:75:c5:40:a9:0c: 17:89:87:5e:99:22:ca:eb:22:94:e5:29:71:68:b5: 1d:ec:f8:f9:17:72:96:e9:5e:ee:f0:43:df:3e:a0: 81:70:f5:a2:68:8e:f3:42:5b:6e:c8:6b:52:7f:03: f0:31:43:88:dd:ed:da:52:f4:5d:c0:40:da:1a:a9: a9:2f:e8:71:98:b4:53:50:21:d4:6a:a2:27:11:a2: c7:c0:54:d8:c5:b1:c1:91:b7:0a:74:78:69:9a:4b: 12:37:25:88:6c:ee:8e:0a:32:aa:85:42:50:c8:70: 58:37:b8:34:bb:a6:b8:c0:d9:24:1c:ef:d4:9a:d8: 35:88:07:bd:0e:9d:1a:8a:5c:a1:14:fb:88:26:5b: f9:85:e7:cd:cc:8e:6c:e7:b3:e3:30:12:7f:57:da: 6e:98:4c:14:cc:fa:69:98:7a:0a:1d:e0:68:64:14: 15:f3:4b:02:9d:af:27:64:cd:b3:b7:4c:76:69:f3: 20:95:e2:cd:f2:c1:8f:64:31:dd:5c:4d:bf:81:87: 96:63:90:65:c3:97:dd:2a:70:ef:3f:2c:2a:75:9a: ec:f2:dd:21:d6:35:a5:c3:78:aa:2d:1a:9a:4a:e6: 12:1f:e8:65:51:bf:fc:eb:df:31:2a:c1:17:b9:cc: a3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:E0:57:80:84:09:CE:3A:A2:55:79:13:34:DF:68:50:1F:19:B0:D1 X509v3 Authority Key Identifier: keyid:4C:F6:BA:29:42:6C:BC:20:74:DF:62:C5:1F:AF:37:8C:42:D3:B8:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TPa6KUJsvCB032LFH683jELTuK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:36:37:79:c9:12:ef:f7:8a:d3:9f:e0:b0:cf:a8:b7:17:5a: ce:23:e9:34:2f:56:ef:e2:d2:9e:90:50:4b:b1:8d:56:fb:7d: 9e:96:9c:b8:1a:7e:64:86:fe:19:58:ca:05:ab:e0:23:24:21: 14:5f:d8:a2:24:a7:c8:74:67:aa:26:af:34:69:92:ec:26:fb: c4:ca:ac:bc:35:53:5c:38:d5:43:31:71:de:cd:00:67:0a:2c: 99:48:98:99:e3:25:85:b9:ee:e4:d5:a8:06:4d:5f:a1:c7:b3: bb:0c:4b:41:95:5e:9f:3a:4a:49:2c:c6:c7:33:33:72:ab:20: 56:61:c6:3e:4d:81:5e:bc:d9:38:76:a8:93:88:11:11:1c:87: 3b:12:66:e3:d8:ae:b9:fc:14:ac:43:d2:74:5e:24:d9:48:e3: d3:9b:4d:bb:af:8a:44:de:7c:48:2f:c3:5c:3a:9c:d9:17:30: 96:42:25:b0:9e:94:79:e2:36:e9:8a:89:cf:78:0d:50:a1:1a: 75:3d:57:c5:30:f0:b1:50:d9:97:93:49:eb:e0:7c:16:c0:b7: ec:31:65:db:2d:ea:b7:a9:87:1f:5e:a0:0a:f2:83:89:7d:18: 19:a7:74:52:ce:e0:28:0f:df:f2:61:f0:de:7f:64:9d:38:33: 22:93:73:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGNTAxMTAvBgNVBAUTKDRDRjZCQTI5NDI2Q0JDMjA3NERGNjJDNTFGQUYzNzhD NDJEM0I4QUYwHhcNMjUwODIyMjE1NTUxWhcNMjUwODI5MjE1NTUxWjAYMRYwFAYD VQQDEw02OGE4ZTc2Ny1lMzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPXqu8WMrHRhdcVAqQwXiYdemSLK6yKU5SlxaLUd7Pj5F3KW6V7u8EPfPqCB cPWiaI7zQltuyGtSfwPwMUOI3e3aUvRdwEDaGqmpL+hxmLRTUCHUaqInEaLHwFTY xbHBkbcKdHhpmksSNyWIbO6OCjKqhUJQyHBYN7g0u6a4wNkkHO/Umtg1iAe9Dp0a ilyhFPuIJlv5hefNzI5s57PjMBJ/V9pumEwUzPppmHoKHeBoZBQV80sCna8nZM2z t0x2afMgleLN8sGPZDHdXE2/gYeWY5Blw5fdKnDvPywqdZrs8t0h1jWlw3iqLRqa SuYSH+hlUb/8698xKsEXucyjxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLngV4CE Cc46olV5EzTfaFAfGbDRMB8GA1UdIwQYMBaAFEz2uilCbLwgdN9ixR+vN4xC07iv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY1MC9BMUUxRjc5QzQx MUUxMUVCQTBCOEZBNTZDNEY5QUUwMi9UUGE2S1VKc3ZDQjAzMkxGSDY4M2pFTFR1 SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RQYTZLVUpzdkNCMDMyTEZINjgzakVMVHVLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY1MC9BMUUxRjc5QzQxMUUxMUVCQTBCOEZBNTZDNEY5QUUwMi9UUGE2S1VKc3ZD QjAzMkxGSDY4M2pFTFR1SzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBINjd5yRLv94rTn+Cwz6i3F1rOI+k0L1bv4tKekFBLsY1W+32elpy4 Gn5khv4ZWMoFq+AjJCEUX9iiJKfIdGeqJq80aZLsJvvEyqy8NVNcONVDMXHezQBn CiyZSJiZ4yWFue7k1agGTV+hx7O7DEtBlV6fOkpJLMbHMzNyqyBWYcY+TYFevNk4 dqiTiBERHIc7Embj2K65/BSsQ9J0XiTZSOPTm027r4pE3nxIL8NcOpzZFzCWQiWw npR54jbpionPeA1QoRp1PVfFMPCxUNmXk0nr4HwWwLfsMWXbLeq3qYcfXqAK8oOJ fRgZp3RSzuAoD9/yYfDef2SdODMik3ML -----END CERTIFICATE-----Generated at Sat Aug 23 21:33:43 2025 by rpki-client