$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.mft File: tKlqre7ce-3VfWL8mknqCz_29Qw.mft (raw, json) Hash identifier: hV9E00AIEH8ynVeUdCl4+0Iu7O0yOFXqX7ODl2l1ZzU= Subject key identifier: 38:F4:0E:83:3F:11:EE:DA:D0:CF:96:5D:AE:00:6D:32:EB:C1:DA:50 Authority key identifier: B4:A9:6A:AD:EE:DC:7B:ED:D5:7D:62:FC:9A:49:EA:0B:3F:F6:F5:0C Certificate issuer: /CN=A916A983/serialNumber=B4A96AADEEDC7BEDD57D62FC9A49EA0B3FF6F50C Certificate serial: 1293 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tKlqre7ce-3VfWL8mknqCz_29Qw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.mft Manifest number: 128C Signing time: Wed 02 Jul 2025 17:17:14 +0000 Manifest this update: Wed 02 Jul 2025 17:17:13 +0000 Manifest next update: Wed 09 Jul 2025 17:17:13 +0000 Files and hashes: 1: tKlqre7ce-3VfWL8mknqCz_29Qw.crl (hash: Q9uQM0UbtHTYe8dMB6tG3kwUyJWqm6rTpQFyhBI8cUw=) 2: 1C839F861BA111EA8BDD6114C4F9AE02.roa (hash: /xC7PbFaPdYR1z14EMh8nZ3np50j+H8RH/0TSNmCnBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.crl rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tKlqre7ce-3VfWL8mknqCz_29Qw.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4755 (0x1293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A983, serialNumber=B4A96AADEEDC7BEDD57D62FC9A49EA0B3FF6F50C Validity Not Before: Jul 2 17:17:13 2025 GMT Not After : Jul 9 17:17:13 2025 GMT Subject: CN=68656999-0158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:53:0c:cf:3e:4f:06:08:fb:86:1d:74:2b:01: b6:1f:ba:ca:e5:cf:40:a3:83:f7:cb:52:f2:65:54: c9:97:6d:e0:97:be:9b:40:55:f2:98:09:95:26:67: c4:4c:40:75:9b:83:21:ac:b9:1d:f5:37:fb:b5:4b: b5:02:e0:f2:03:39:76:ba:31:40:98:52:06:75:98: e7:21:9b:08:ee:0b:3b:c6:c3:50:2f:5b:50:d7:47: b3:b6:05:72:b2:6e:57:e9:51:73:22:11:49:31:0c: f0:49:65:72:5c:fc:5a:17:ed:86:a6:d0:73:06:31: 9e:ab:c4:69:f9:10:c2:b9:d3:ea:a2:f4:0f:51:36: 3b:01:1c:4f:43:2c:90:ae:51:d6:5b:ea:7e:d6:b6: 0d:27:d3:33:3c:3a:8f:8b:8d:36:72:08:07:d5:92: 1a:11:5b:2e:f2:be:1a:ca:65:c2:42:f1:d9:97:54: d8:3f:61:53:ed:c0:b4:4e:37:09:0c:65:04:ab:92: ce:c9:e2:34:c4:f2:03:3d:3e:d6:5d:0a:e3:ba:1b: ac:51:c4:a5:65:d3:96:18:ff:90:28:7c:61:5a:a5: b2:14:f5:08:ac:4a:92:b2:ce:32:e7:c5:2d:7c:4f: 70:b0:18:9d:fb:14:1a:00:53:e2:88:c5:73:06:f7: 2a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:F4:0E:83:3F:11:EE:DA:D0:CF:96:5D:AE:00:6D:32:EB:C1:DA:50 X509v3 Authority Key Identifier: keyid:B4:A9:6A:AD:EE:DC:7B:ED:D5:7D:62:FC:9A:49:EA:0B:3F:F6:F5:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tKlqre7ce-3VfWL8mknqCz_29Qw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:e1:3e:0f:80:16:75:83:84:cb:81:6f:86:f3:34:93:16:ad: 31:f5:19:8d:c6:cd:d2:51:b2:49:e7:4b:dc:bd:27:fd:77:fe: 27:d9:bb:16:a5:fe:10:ad:5b:66:5d:e8:9d:76:73:41:e5:af: ea:4b:e9:2a:91:5c:c7:14:12:97:3d:0b:29:ed:f7:dc:2e:23: b8:80:45:17:2c:6c:72:c5:e4:9e:8c:02:00:6c:45:02:30:f2: c0:d9:09:71:63:3a:a3:fd:17:d5:4f:9f:8b:ae:d5:44:02:32: 68:7a:84:ce:72:40:83:0b:e3:2b:2d:f4:db:44:db:46:fd:4e: 47:d0:49:2a:3a:a0:2e:14:4a:dd:1d:2e:94:2a:b9:b9:98:b0: 76:a0:6c:7d:18:ae:2f:cf:fa:a3:d7:51:bf:e0:a5:f8:9f:e3: 51:75:58:b6:db:2a:e0:ea:f7:75:0d:3c:f3:11:9d:7a:f7:6f: 6b:0a:8f:56:d3:a6:36:11:1d:e7:14:54:64:81:46:86:91:f9: f5:0d:8c:86:b8:1c:9a:a5:0c:25:fa:e3:c4:50:b5:6a:69:0a: 53:8e:69:72:84:f0:c2:8b:de:2a:07:5d:66:31:7e:08:8f:36: 02:0a:c8:18:6d:3e:7a:9a:8b:93:51:6a:fb:f9:99:07:6e:be: 62:e3:eb:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE5ODMxMTAvBgNVBAUTKEI0QTk2QUFERUVEQzdCRURENTdENjJGQzlBNDlFQTBC M0ZGNkY1MEMwHhcNMjUwNzAyMTcxNzEzWhcNMjUwNzA5MTcxNzEzWjAYMRYwFAYD VQQDEw02ODY1Njk5OS0wMTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FMMzz5PBgj7hh10KwG2H7rK5c9Ao4P3y1LyZVTJl23gl76bQFXymAmVJmfE TEB1m4MhrLkd9Tf7tUu1AuDyAzl2ujFAmFIGdZjnIZsI7gs7xsNQL1tQ10eztgVy sm5X6VFzIhFJMQzwSWVyXPxaF+2GptBzBjGeq8Rp+RDCudPqovQPUTY7ARxPQyyQ rlHWW+p+1rYNJ9MzPDqPi402cggH1ZIaEVsu8r4aymXCQvHZl1TYP2FT7cC0TjcJ DGUEq5LOyeI0xPIDPT7WXQrjuhusUcSlZdOWGP+QKHxhWqWyFPUIrEqSss4y58Ut fE9wsBid+xQaAFPiiMVzBvcq4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDj0DoM/ Ee7a0M+WXa4AbTLrwdpQMB8GA1UdIwQYMBaAFLSpaq3u3Hvt1X1i/JpJ6gs/9vUM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTk4My8yOEIxQjYxQ0NE MEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi90S2xxcmU3Y2UtM1ZmV0w4bWtucUN6XzI5 UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3RLbHFyZTdjZS0zVmZXTDhta25xQ3pfMjlRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTk4My8yOEIxQjYxQ0NEMEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi90S2xxcmU3Y2Ut M1ZmV0w4bWtucUN6XzI5UXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw4T4PgBZ1g4TLgW+G8zSTFq0x9RmNxs3SUbJJ50vcvSf9d/4n2bsW pf4QrVtmXeiddnNB5a/qS+kqkVzHFBKXPQsp7ffcLiO4gEUXLGxyxeSejAIAbEUC MPLA2QlxYzqj/RfVT5+LrtVEAjJoeoTOckCDC+MrLfTbRNtG/U5H0EkqOqAuFErd HS6UKrm5mLB2oGx9GK4vz/qj11G/4KX4n+NRdVi22yrg6vd1DTzzEZ16929rCo9W 06Y2ER3nFFRkgUaGkfn1DYyGuByapQwl+uPEULVqaQpTjmlyhPDCi94qB11mMX4I jzYCCsgYbT56mouTUWr7+ZkHbr5i4+sa -----END CERTIFICATE-----Generated at Fri Jul 4 00:03:59 2025 by rpki-client