$ rpki-client -vvf rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft File: t0SkTltlPmx6kM9gNOANz9iUfWA.mft (raw, json) Hash identifier: 7hUonNGrOGnOcenUNgitVw4I8lgDhSQOUhfThrqugdQ= Subject key identifier: 6D:8F:1E:81:D6:49:96:99:F1:CA:24:E4:85:7D:9C:E1:2E:6D:30:85 Authority key identifier: B7:44:A4:4E:5B:65:3E:6C:7A:90:CF:60:34:E0:0D:CF:D8:94:7D:60 Certificate issuer: /CN=A914EBE5/serialNumber=B744A44E5B653E6C7A90CF6034E00DCFD8947D60 Certificate serial: 188C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0SkTltlPmx6kM9gNOANz9iUfWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft Manifest number: 187B Signing time: Fri 22 Aug 2025 16:35:39 +0000 Manifest this update: Fri 22 Aug 2025 16:35:39 +0000 Manifest next update: Fri 29 Aug 2025 16:35:39 +0000 Files and hashes: 1: t0SkTltlPmx6kM9gNOANz9iUfWA.crl (hash: 5snX+BERztiAmJaTMQr+2FvX1vXUGXsgXkPPpwE/TVw=) 2: 253B1382106C11F08D824C19C4F9AE02.roa (hash: k9TDuPE5aOqFzmvoIPDe+G9DbuyOrQuREAeCHC4kW88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.crl rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0SkTltlPmx6kM9gNOANz9iUfWA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:35:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6284 (0x188c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EBE5, serialNumber=B744A44E5B653E6C7A90CF6034E00DCFD8947D60 Validity Not Before: Aug 22 16:35:39 2025 GMT Not After : Aug 29 16:35:39 2025 GMT Subject: CN=68a89c5b-3b28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3f:d5:a8:08:52:d7:fe:4e:91:29:c6:8c:5e: a5:0c:1d:a8:27:66:e4:5d:ab:be:cb:34:37:02:c2: 69:7a:fa:15:4a:a0:4c:91:c5:87:a3:07:9f:97:56: 98:53:68:63:c3:e4:b1:87:72:ec:16:df:a5:f1:f3: ff:c3:78:e8:67:6d:65:52:77:4f:da:57:fa:6c:4a: e6:cb:f5:9c:3a:2f:32:52:16:9d:a9:fe:ae:84:db: 49:dd:21:76:da:5e:98:47:b2:f0:95:d0:c4:44:bd: c4:99:11:39:f3:d8:78:33:cd:a7:cc:57:7d:da:65: 1f:20:e1:9d:ea:18:8c:75:aa:d4:4e:b8:46:d7:ac: 6e:ba:f6:26:72:38:03:a9:7a:17:d7:a2:2b:42:43: 25:bb:1c:be:d3:15:26:b8:5a:15:3f:69:c9:a4:84: 76:7c:25:35:6c:ec:ef:31:7c:9e:58:e0:c1:25:a4: 07:4e:d4:65:bc:2e:02:ed:a2:b1:99:c5:9a:aa:ae: dc:62:2b:96:63:02:82:a8:4e:a2:46:dd:be:4c:1d: 5b:39:11:81:97:ef:9e:8d:d3:94:4b:75:15:37:c2: ac:b3:63:f7:e5:ca:ce:c3:26:c1:97:ee:86:4c:90: 03:eb:01:cb:16:b7:9f:e3:5c:db:5f:79:0e:36:39: b8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:8F:1E:81:D6:49:96:99:F1:CA:24:E4:85:7D:9C:E1:2E:6D:30:85 X509v3 Authority Key Identifier: keyid:B7:44:A4:4E:5B:65:3E:6C:7A:90:CF:60:34:E0:0D:CF:D8:94:7D:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0SkTltlPmx6kM9gNOANz9iUfWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:78:36:25:cb:6d:3d:54:0b:4f:97:8d:d6:09:ff:99:c2:62: 6f:10:9e:44:87:c4:40:fc:ac:e6:6a:8e:12:3a:91:bf:4c:76: 5e:6a:0b:9b:46:33:87:ed:2c:25:a9:c9:57:9c:32:b7:e5:3e: 1f:c2:a8:e1:9d:66:f2:98:40:65:0b:2a:96:73:41:da:73:35: f8:05:bb:94:04:42:dd:2e:2d:ec:26:4d:26:2a:2e:13:09:e9: e7:b9:ce:89:1d:ca:a2:bc:69:ba:2d:36:7a:15:81:67:55:b6: 11:a1:01:73:c9:3c:86:93:cd:2f:43:22:62:37:05:51:23:cb: bc:2d:24:cd:f0:a1:b2:93:9c:f7:c9:41:75:19:6f:75:d4:84: 35:4c:f4:3f:d2:eb:52:55:01:ad:88:54:06:9f:6a:46:a1:eb: ed:95:2f:69:69:85:30:ef:d4:5b:ac:a9:79:7a:35:18:4b:36: 3f:f9:f8:6d:a7:bd:c7:6e:4c:eb:24:e3:11:08:e5:3f:97:34: 2f:cd:63:5e:e8:0f:dd:ae:4e:0a:78:ea:b5:52:b9:80:e2:10: f8:ed:24:69:1c:78:86:f7:8f:82:56:de:76:89:a7:61:db:41: bb:0c:1d:1d:13:3c:53:be:46:b8:ce:46:f8:fb:e3:ad:19:e0: f5:fa:8d:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVCRTUxMTAvBgNVBAUTKEI3NDRBNDRFNUI2NTNFNkM3QTkwQ0Y2MDM0RTAwRENG RDg5NDdENjAwHhcNMjUwODIyMTYzNTM5WhcNMjUwODI5MTYzNTM5WjAYMRYwFAYD VQQDEw02OGE4OWM1Yi0zYjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArT/VqAhS1/5OkSnGjF6lDB2oJ2bkXau+yzQ3AsJpevoVSqBMkcWHowefl1aY U2hjw+Sxh3LsFt+l8fP/w3joZ21lUndP2lf6bErmy/WcOi8yUhadqf6uhNtJ3SF2 2l6YR7LwldDERL3EmRE589h4M82nzFd92mUfIOGd6hiMdarUTrhG16xuuvYmcjgD qXoX16IrQkMluxy+0xUmuFoVP2nJpIR2fCU1bOzvMXyeWODBJaQHTtRlvC4C7aKx mcWaqq7cYiuWYwKCqE6iRt2+TB1bORGBl++ejdOUS3UVN8Kss2P35crOwybBl+6G TJAD6wHLFref41zbX3kONjm4VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2PHoHW SZaZ8cok5IV9nOEubTCFMB8GA1UdIwQYMBaAFLdEpE5bZT5sepDPYDTgDc/YlH1g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUJFNS82NEM1MjcwOEE5 NUYxMUU3OUFENEU3MzRDNEY5QUUwMi90MFNrVGx0bFBteDZrTTlnTk9BTno5aVVm V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QwU2tUbHRsUG14NmtNOWdOT0FOejlpVWZXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUJFNS82NEM1MjcwOEE5NUYxMUU3OUFENEU3MzRDNEY5QUUwMi90MFNrVGx0bFBt eDZrTTlnTk9BTno5aVVmV0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAteDYly209VAtPl43WCf+ZwmJvEJ5Eh8RA/Kzmao4SOpG/THZeagub RjOH7SwlqclXnDK35T4fwqjhnWbymEBlCyqWc0HaczX4BbuUBELdLi3sJk0mKi4T Cennuc6JHcqivGm6LTZ6FYFnVbYRoQFzyTyGk80vQyJiNwVRI8u8LSTN8KGyk5z3 yUF1GW911IQ1TPQ/0utSVQGtiFQGn2pGoevtlS9paYUw79RbrKl5ejUYSzY/+fht p73HbkzrJOMRCOU/lzQvzWNe6A/drk4KeOq1UrmA4hD47SRpHHiG94+CVt52iadh 20G7DB0dEzxTvka4zkb4++OtGeD1+o1u -----END CERTIFICATE-----Generated at Sat Aug 23 22:41:45 2025 by rpki-client