$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft File: TPa6KUJsvCB032LFH683jELTuK8.mft (raw, json) Hash identifier: JkqusByf+AThtoi7SU0cegOpsLZdzg9NIL5WToLCF+M= Subject key identifier: 9C:8B:8C:CD:C2:37:DE:3A:CD:96:55:82:0E:7F:6B:B3:C6:2A:E8:01 Authority key identifier: 4C:F6:BA:29:42:6C:BC:20:74:DF:62:C5:1F:AF:37:8C:42:D3:B8:AF Certificate issuer: /CN=A9148F50/serialNumber=4CF6BA29426CBC2074DF62C51FAF378C42D3B8AF Certificate serial: 071E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TPa6KUJsvCB032LFH683jELTuK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft Manifest number: 0718 Signing time: Wed 02 Jul 2025 22:08:28 +0000 Manifest this update: Wed 02 Jul 2025 22:08:28 +0000 Manifest next update: Wed 09 Jul 2025 22:08:28 +0000 Files and hashes: 1: TPa6KUJsvCB032LFH683jELTuK8.crl (hash: YNIueFMcEe0OuHrntTPgrgEx9yMdz/UsWygRKQ8NvNY=) 2: B6A436A8411F11EBA45D5857C4F9AE02.roa (hash: COBPm0g4nlJAOhrh0hQYrpWCggmct2exc7fAFXJ645A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.crl rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TPa6KUJsvCB032LFH683jELTuK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:08:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1822 (0x71e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F50, serialNumber=4CF6BA29426CBC2074DF62C51FAF378C42D3B8AF Validity Not Before: Jul 2 22:08:28 2025 GMT Not After : Jul 9 22:08:28 2025 GMT Subject: CN=6865addc-2106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:24:36:23:f2:d1:58:31:97:a3:6e:f5:d8:f5: 61:03:07:cd:8b:a6:19:f7:38:6b:1c:90:77:3d:7b: b6:ac:67:81:6f:e4:9a:75:a2:7d:b4:07:d6:a0:2b: 08:74:82:26:1d:92:2a:b8:62:75:a6:89:2f:fc:72: d0:07:97:b7:a1:ec:f2:12:3b:56:5c:50:dc:71:46: a5:e2:67:7b:11:29:df:45:be:5e:14:53:a4:d0:ef: 2a:a4:95:80:4e:b3:51:2f:bd:bc:ed:a8:7d:a0:dc: 26:82:55:33:1e:49:c4:e2:7b:7d:d1:11:e1:90:86: 8d:2d:6d:ff:c6:9b:f6:0d:a6:ef:83:52:68:65:40: 4f:13:f9:f1:07:d2:27:c8:9a:3f:ea:6d:bb:e8:65: 5e:c1:eb:73:95:59:52:cf:6a:05:80:53:35:3b:99: 18:bd:37:18:e5:6d:3e:69:4d:08:4b:55:b6:e2:83: 71:a3:5d:4a:ec:61:77:bb:8e:60:24:ed:13:94:02: 54:e1:0c:e5:6a:9f:45:1b:c4:fe:ed:a3:75:08:1d: 8b:3b:79:ad:73:a4:d8:e4:79:a9:70:a8:25:2f:93: a0:5e:a0:59:e0:88:19:48:93:92:79:f8:53:7d:76: 85:36:57:40:79:0d:10:1a:8b:97:6d:f2:0e:08:4a: 6c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:8B:8C:CD:C2:37:DE:3A:CD:96:55:82:0E:7F:6B:B3:C6:2A:E8:01 X509v3 Authority Key Identifier: keyid:4C:F6:BA:29:42:6C:BC:20:74:DF:62:C5:1F:AF:37:8C:42:D3:B8:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TPa6KUJsvCB032LFH683jELTuK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:21:c8:21:a2:28:bd:97:a8:53:c2:07:b1:fa:c7:6a:34:7d: 3e:17:ef:a1:ae:34:ff:b2:f7:d6:dc:a5:4e:44:9e:5d:b1:d8: fd:c6:22:92:56:98:1a:0d:4b:6b:f6:b6:52:1a:c5:e5:45:43: 20:f5:17:93:b7:00:ea:55:72:3d:be:34:a2:6a:7c:be:c7:76: e9:c3:bc:bd:db:d1:dd:22:a4:77:a0:fa:6b:db:f2:47:ed:b0: 4b:17:ac:e2:25:b6:6f:71:4d:33:0e:11:99:48:62:78:7e:00: 05:c4:5d:00:2b:6c:8b:0d:66:ba:ed:d1:f5:ac:4a:8c:9e:40: a6:a4:41:2e:11:89:9e:91:20:ab:df:7a:2b:1c:3f:a9:b9:ae: 92:cc:44:de:51:3e:bb:bf:78:5b:43:58:6a:a2:5b:f6:4e:76: 7e:d0:47:9b:8e:81:fe:01:a7:87:4e:48:55:69:ae:e5:df:24: 98:8e:f6:0d:03:eb:0e:a2:15:f5:e3:a4:e2:72:f7:00:7a:86: 23:1d:66:bb:62:0e:03:fa:f6:2a:23:e1:34:22:e0:d7:fd:3d: d2:1a:eb:ee:52:07:9f:e4:74:84:56:ba:df:64:d6:d6:b5:88: e0:f2:16:09:14:f2:cf:ad:99:f2:97:88:bb:ac:95:a7:4b:63: 81:4a:3a:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGNTAxMTAvBgNVBAUTKDRDRjZCQTI5NDI2Q0JDMjA3NERGNjJDNTFGQUYzNzhD NDJEM0I4QUYwHhcNMjUwNzAyMjIwODI4WhcNMjUwNzA5MjIwODI4WjAYMRYwFAYD VQQDEw02ODY1YWRkYy0yMTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5SQ2I/LRWDGXo2712PVhAwfNi6YZ9zhrHJB3PXu2rGeBb+SadaJ9tAfWoCsI dIImHZIquGJ1pokv/HLQB5e3oezyEjtWXFDccUal4md7ESnfRb5eFFOk0O8qpJWA TrNRL7287ah9oNwmglUzHknE4nt90RHhkIaNLW3/xpv2Dabvg1JoZUBPE/nxB9In yJo/6m276GVewetzlVlSz2oFgFM1O5kYvTcY5W0+aU0IS1W24oNxo11K7GF3u45g JO0TlAJU4Qzlap9FG8T+7aN1CB2LO3mtc6TY5HmpcKglL5OgXqBZ4IgZSJOSefhT fXaFNldAeQ0QGouXbfIOCEpslQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJyLjM3C N946zZZVgg5/a7PGKugBMB8GA1UdIwQYMBaAFEz2uilCbLwgdN9ixR+vN4xC07iv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY1MC9BMUUxRjc5QzQx MUUxMUVCQTBCOEZBNTZDNEY5QUUwMi9UUGE2S1VKc3ZDQjAzMkxGSDY4M2pFTFR1 SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RQYTZLVUpzdkNCMDMyTEZINjgzakVMVHVLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY1MC9BMUUxRjc5QzQxMUUxMUVCQTBCOEZBNTZDNEY5QUUwMi9UUGE2S1VKc3ZD QjAzMkxGSDY4M2pFTFR1SzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATIcghoii9l6hTwgex+sdqNH0+F++hrjT/svfW3KVORJ5dsdj9xiKS VpgaDUtr9rZSGsXlRUMg9ReTtwDqVXI9vjSiany+x3bpw7y929HdIqR3oPpr2/JH 7bBLF6ziJbZvcU0zDhGZSGJ4fgAFxF0AK2yLDWa67dH1rEqMnkCmpEEuEYmekSCr 33orHD+pua6SzETeUT67v3hbQ1hqolv2TnZ+0EebjoH+AaeHTkhVaa7l3ySYjvYN A+sOohX146TicvcAeoYjHWa7Yg4D+vYqI+E0IuDX/T3SGuvuUgef5HSEVrrfZNbW tYjg8hYJFPLPrZnyl4i7rJWnS2OBSjrq -----END CERTIFICATE-----Generated at Thu Jul 3 06:02:10 2025 by rpki-client