$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft File: tDxOPTL5W1BV0E_cAfhRljfImm8.mft (raw, json) Hash identifier: NNCQ3Xb03IbQN+4p5lyL/nOO1C9jzn0ETRHHZqgfE9A= Subject key identifier: 98:77:9C:9E:F8:CF:4F:07:70:C4:95:67:24:09:18:E3:F8:62:50:21 Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft Manifest number: BB Signing time: Thu 03 Jul 2025 06:06:32 +0000 Manifest this update: Thu 03 Jul 2025 06:06:31 +0000 Manifest next update: Thu 10 Jul 2025 06:06:31 +0000 Files and hashes: 1: tDxOPTL5W1BV0E_cAfhRljfImm8.crl (hash: 25oxywgBvPUsdiDzW1i57FTvZ/9/OYEe9peclk1GIwM=) 2: 858870583D0A11EF829DCE39C4F9AE02.roa (hash: RTDmiAUTa+6e7BNeD1q7cr5hG3t1MJJWblXaDUXHJew=) 3: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (hash: ZlBqKGquKmDZSHNnRJSZITSYuAIz8r1LwmFTYmRFcj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73, serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Validity Not Before: Jul 3 06:06:31 2025 GMT Not After : Jul 10 06:06:31 2025 GMT Subject: CN=68661de7-ccf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:42:49:65:5c:36:b1:dd:56:24:24:d4:a0:4e: 33:7f:0a:0f:e7:7b:89:50:39:fb:e1:99:2f:aa:d5: 39:20:39:55:1e:25:59:00:50:79:b8:62:45:77:36: aa:63:a0:49:36:fd:a1:12:5d:e5:96:a7:30:57:fb: 11:04:eb:4e:21:b8:04:c6:1d:f5:b1:3e:cb:a9:dc: 09:d2:3e:b6:97:4b:6e:09:6b:8c:90:71:bc:25:32: 9d:bb:38:ca:a3:45:25:88:f9:cb:33:3c:6e:f1:d9: 3c:01:aa:bf:25:63:76:ed:2a:65:c5:48:55:90:01: b9:5e:d4:c8:f7:4d:dc:ca:02:ba:0d:f3:c7:d7:3b: 71:0c:dd:fd:4d:04:11:bf:f9:a8:a5:4b:87:ee:bc: 7b:15:7d:82:3e:d0:8c:79:32:06:6e:54:b3:f9:1e: 1d:d7:05:de:9b:28:c1:de:f8:89:3b:79:22:06:84: a3:ec:dc:9b:b0:ac:97:1f:03:10:02:4f:0f:a8:21: c9:dd:6e:70:0f:02:2e:5e:c8:41:f9:f2:cd:68:1b: b0:f3:48:ac:f0:46:b7:27:d0:6d:a5:f8:b3:99:bc: c9:ac:4d:ba:4e:30:b6:c2:65:cb:ad:d1:22:5d:b7: 74:a6:83:f5:14:73:73:67:ba:30:36:21:1a:5c:2f: 64:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:77:9C:9E:F8:CF:4F:07:70:C4:95:67:24:09:18:E3:F8:62:50:21 X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:13:d9:b0:37:c2:68:a5:54:63:e5:37:6b:55:67:ed:84:9c: 95:2f:4c:23:31:3a:8e:e6:76:d0:98:92:e8:ad:0d:6b:da:6d: 9b:4c:15:ce:e4:5a:02:20:4f:60:38:e3:ce:1d:70:f6:5f:34: d0:5a:3e:22:6f:5a:c3:8b:4c:8a:5e:a7:15:0e:b4:3c:81:41: 27:69:25:b0:69:8d:d8:d3:58:5d:de:89:59:d8:96:7c:65:df: b9:38:e4:95:8d:2c:19:a7:2d:b4:d6:fd:77:7c:66:ea:f0:54: c4:6c:df:f8:f2:66:29:89:84:40:b3:82:37:41:60:a5:73:b4: 14:de:49:a4:bd:ce:89:d1:7a:6c:e1:75:f9:08:bf:03:cb:11: 09:ee:f3:1f:07:55:d6:df:bb:1a:14:f7:9d:8b:5c:50:88:9b: 2d:e4:1c:35:82:2c:d1:7e:a9:3e:ff:18:f5:06:27:7c:21:f8: f9:45:79:f2:ee:26:cd:24:1a:dd:86:31:f3:aa:cd:c9:28:ba: 11:32:1a:cf:79:6a:8a:be:45:cf:6a:8b:2e:7a:ac:6f:85:af: 2f:95:d7:d0:32:2a:ee:c2:dd:1e:4a:45:5d:d1:af:a1:6a:61: c1:ab:ff:a1:c9:61:a0:15:8b:f1:44:0d:87:f8:e1:fd:44:f0: ff:c4:f4:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGNzMxMTAvBgNVBAUTKEI0M0M0RTNEMzJGOTVCNTA1NUQwNEZEQzAxRjg1MTk2 MzdDODlBNkYwHhcNMjUwNzAzMDYwNjMxWhcNMjUwNzEwMDYwNjMxWjAYMRYwFAYD VQQDEw02ODY2MWRlNy1jY2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0JJZVw2sd1WJCTUoE4zfwoP53uJUDn74ZkvqtU5IDlVHiVZAFB5uGJFdzaq Y6BJNv2hEl3llqcwV/sRBOtOIbgExh31sT7LqdwJ0j62l0tuCWuMkHG8JTKduzjK o0UliPnLMzxu8dk8Aaq/JWN27SplxUhVkAG5XtTI903cygK6DfPH1ztxDN39TQQR v/mopUuH7rx7FX2CPtCMeTIGblSz+R4d1wXemyjB3viJO3kiBoSj7NybsKyXHwMQ Ak8PqCHJ3W5wDwIuXshB+fLNaBuw80is8Ea3J9BtpfizmbzJrE26TjC2wmXLrdEi Xbd0poP1FHNzZ7owNiEaXC9kqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJh3nJ74 z08HcMSVZyQJGOP4YlAhMB8GA1UdIwQYMBaAFLQ8Tj0y+VtQVdBP3AH4UZY3yJpv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUY3My82REYwRTEwODNE MDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcxQlYwRV9jQWZoUmxqZklt bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1tOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUY3My82REYwRTEwODNEMDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcx QlYwRV9jQWZoUmxqZkltbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUE9mwN8JopVRj5TdrVWfthJyVL0wjMTqO5nbQmJLorQ1r2m2bTBXO 5FoCIE9gOOPOHXD2XzTQWj4ib1rDi0yKXqcVDrQ8gUEnaSWwaY3Y01hd3olZ2JZ8 Zd+5OOSVjSwZpy201v13fGbq8FTEbN/48mYpiYRAs4I3QWClc7QU3kmkvc6J0Xps 4XX5CL8DyxEJ7vMfB1XW37saFPedi1xQiJst5Bw1gizRfqk+/xj1Bid8Ifj5RXny 7ibNJBrdhjHzqs3JKLoRMhrPeWqKvkXPaosueqxvha8vldfQMiruwt0eSkVd0a+h amHBq/+hyWGgFYvxRA2H+OH9RPD/xPQR -----END CERTIFICATE-----Generated at Fri Jul 4 07:30:39 2025 by rpki-client