$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.mft File: tKlqre7ce-3VfWL8mknqCz_29Qw.mft (raw, json) Hash identifier: 4QFABT8Rv6NL827ea0rfq9dbaJFOFgJsS3Gwa2qV8cQ= Subject key identifier: 8B:3E:51:43:9E:ED:EE:6F:56:89:B9:05:FE:2C:CF:FD:AE:2A:38:66 Authority key identifier: B4:A9:6A:AD:EE:DC:7B:ED:D5:7D:62:FC:9A:49:EA:0B:3F:F6:F5:0C Certificate issuer: /CN=A916A983/serialNumber=B4A96AADEEDC7BEDD57D62FC9A49EA0B3FF6F50C Certificate serial: 12B0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tKlqre7ce-3VfWL8mknqCz_29Qw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.mft Manifest number: 12A8 Signing time: Fri 22 Aug 2025 17:12:53 +0000 Manifest this update: Fri 22 Aug 2025 17:12:52 +0000 Manifest next update: Fri 29 Aug 2025 17:12:52 +0000 Files and hashes: 1: tKlqre7ce-3VfWL8mknqCz_29Qw.crl (hash: pfCk3STSntEMiPKSWfLMR6NlbhvzjlH1mAWjHzPaCOE=) 2: 1C839F861BA111EA8BDD6114C4F9AE02.roa (hash: QOShMQ6mMEZRjJ5JESydTLr4xwZz//rE2YbhLSt51RI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.crl rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tKlqre7ce-3VfWL8mknqCz_29Qw.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:12:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4784 (0x12b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A983, serialNumber=B4A96AADEEDC7BEDD57D62FC9A49EA0B3FF6F50C Validity Not Before: Aug 22 17:12:52 2025 GMT Not After : Aug 29 17:12:52 2025 GMT Subject: CN=68a8a515-8f1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ff:fe:9a:3d:54:63:21:a8:da:22:45:e6:6e: 6b:6e:8e:36:2e:89:c3:b4:34:c4:50:13:8b:eb:f3: 17:06:2d:b3:e8:0b:5e:ae:13:89:2a:d4:88:75:8d: 1c:f1:59:41:cc:4d:df:b3:63:36:34:26:96:b8:d4: 47:03:69:63:8a:d1:6c:8a:fb:26:35:56:22:97:21: 96:47:68:f1:b5:20:e3:09:0b:16:ea:c3:87:db:7c: 18:92:06:0c:7c:2c:f1:d6:24:03:08:24:ff:33:46: 01:0a:e2:74:75:b2:29:8c:9b:4a:40:34:1e:55:37: d8:82:52:5c:1a:00:97:cc:17:81:b7:c8:c9:10:d3: 72:f4:ee:66:f6:47:d7:8e:10:9d:d4:b8:7b:18:5c: a5:94:0d:e9:a0:7c:72:e8:80:15:f7:3e:9c:3d:02: c7:ad:91:ec:29:61:61:bc:79:19:05:cd:ad:56:62: 7f:01:7d:71:c8:c6:a2:6f:ae:02:9a:71:54:cd:3a: 63:60:f2:a0:35:19:a2:6c:b2:02:0e:f7:27:ab:7b: 21:36:07:b1:6b:89:ee:e6:dd:64:60:a1:90:c5:bf: 2e:a6:d8:61:18:22:cf:9d:8b:f9:0c:4f:42:74:05: 31:ec:57:80:e4:3e:b6:0e:a4:31:eb:ce:09:38:26: c9:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:3E:51:43:9E:ED:EE:6F:56:89:B9:05:FE:2C:CF:FD:AE:2A:38:66 X509v3 Authority Key Identifier: keyid:B4:A9:6A:AD:EE:DC:7B:ED:D5:7D:62:FC:9A:49:EA:0B:3F:F6:F5:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tKlqre7ce-3VfWL8mknqCz_29Qw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:9a:3f:0b:a5:a6:c7:a3:78:d0:4d:e6:a2:a3:66:a5:ad:f1: 18:f1:a2:d6:17:b8:7b:c8:e6:61:8c:1e:c4:45:74:ac:a5:24: 2f:0e:40:32:fd:25:61:2d:59:e4:dd:94:72:6c:ae:41:24:bb: fc:cc:5b:0a:b7:19:e8:c8:f1:f1:68:4e:9a:2b:1c:4e:1e:88: d8:9a:74:1a:27:90:a9:0c:84:91:66:ee:97:48:56:79:f5:12: 66:35:8c:d7:d5:d9:3e:53:59:54:da:8d:b2:01:0c:2f:a6:c0: ae:61:8d:16:ff:e6:fa:50:f6:65:4d:61:b6:47:52:c4:7a:ba: c8:83:13:90:f3:ac:ac:15:0c:4c:4d:4b:81:8e:2e:f5:fa:23: 11:a0:ea:ad:d1:22:6b:c4:46:a1:5e:5f:3d:90:7a:a0:9c:8f: 4d:05:11:5d:2f:96:68:d5:df:22:37:dc:e3:4d:c4:c2:d1:27: 2b:6d:24:0c:58:27:1c:38:b0:95:7f:dc:46:99:f7:03:96:b6: ec:9f:5f:05:b2:94:5d:85:3b:59:72:b7:bd:ea:1c:2c:d3:d3: 6c:8f:a3:2c:ff:ab:50:54:a2:1b:09:06:c9:f3:03:2b:71:34: cd:60:3b:0a:ac:23:ae:af:2c:ae:b8:8d:13:1f:c9:96:33:88: dd:fe:66:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICErAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE5ODMxMTAvBgNVBAUTKEI0QTk2QUFERUVEQzdCRURENTdENjJGQzlBNDlFQTBC M0ZGNkY1MEMwHhcNMjUwODIyMTcxMjUyWhcNMjUwODI5MTcxMjUyWjAYMRYwFAYD VQQDEw02OGE4YTUxNS04ZjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmv/+mj1UYyGo2iJF5m5rbo42LonDtDTEUBOL6/MXBi2z6AterhOJKtSIdY0c 8VlBzE3fs2M2NCaWuNRHA2ljitFsivsmNVYilyGWR2jxtSDjCQsW6sOH23wYkgYM fCzx1iQDCCT/M0YBCuJ0dbIpjJtKQDQeVTfYglJcGgCXzBeBt8jJENNy9O5m9kfX jhCd1Lh7GFyllA3poHxy6IAV9z6cPQLHrZHsKWFhvHkZBc2tVmJ/AX1xyMaib64C mnFUzTpjYPKgNRmibLICDvcnq3shNgexa4nu5t1kYKGQxb8upthhGCLPnYv5DE9C dAUx7FeA5D62DqQx684JOCbJeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIs+UUOe 7e5vVom5Bf4sz/2uKjhmMB8GA1UdIwQYMBaAFLSpaq3u3Hvt1X1i/JpJ6gs/9vUM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTk4My8yOEIxQjYxQ0NE MEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi90S2xxcmU3Y2UtM1ZmV0w4bWtucUN6XzI5 UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3RLbHFyZTdjZS0zVmZXTDhta25xQ3pfMjlRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTk4My8yOEIxQjYxQ0NEMEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi90S2xxcmU3Y2Ut M1ZmV0w4bWtucUN6XzI5UXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLmj8LpabHo3jQTeaio2alrfEY8aLWF7h7yOZhjB7ERXSspSQvDkAy /SVhLVnk3ZRybK5BJLv8zFsKtxnoyPHxaE6aKxxOHojYmnQaJ5CpDISRZu6XSFZ5 9RJmNYzX1dk+U1lU2o2yAQwvpsCuYY0W/+b6UPZlTWG2R1LEerrIgxOQ86ysFQxM TUuBji71+iMRoOqt0SJrxEahXl89kHqgnI9NBRFdL5Zo1d8iN9zjTcTC0ScrbSQM WCccOLCVf9xGmfcDlrbsn18FspRdhTtZcre96hws09Nsj6Ms/6tQVKIbCQbJ8wMr cTTNYDsKrCOuryyuuI0TH8mWM4jd/mar -----END CERTIFICATE-----Generated at Sun Aug 24 05:15:03 2025 by rpki-client