$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: LWZ7keZepVufPrGhAxGTCNN6CmneyrTzZCKNWcVq3dw= Subject key identifier: 49:F5:2E:79:BD:7B:BF:2D:E7:1F:5F:A7:F5:FC:AD:2F:49:77:DC:18 Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2C40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2B97 Signing time: Wed 02 Jul 2025 15:39:50 +0000 Manifest this update: Wed 02 Jul 2025 15:39:49 +0000 Manifest next update: Wed 09 Jul 2025 15:39:49 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: OI/TRHq8a512Y8AlYw9y+srlpvdYTaRPQsJ9iRJ5aGE=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: NyqTZQOkUqWoaM40ZktUlOiopL6FbxfHLQstlqudq2c=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: LZsU00B4/gx6lo+GhGlRRaLNP1lXi+x7ZDLzlvJoUls=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: je3auOg70+6cT16YOal/ttbSxW+A5XuODnJlOPCEZSc=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: aSO9wjURcYGva8bAjVzZpymdiAuS5bByHQh+Eq4/Ung=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11328 (0x2c40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Jul 2 15:39:49 2025 GMT Not After : Jul 9 15:39:49 2025 GMT Subject: CN=686552c6-5800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f8:11:3c:18:b3:27:c7:39:a3:ec:98:75:11: 5a:d0:e1:cb:ad:ca:58:13:4d:3e:75:c9:f5:f3:28: 31:50:32:bd:53:b6:7a:2b:08:f9:8f:e2:cd:b9:b2: ff:ba:46:7b:12:ec:3c:a9:f1:c6:4c:d7:f3:d9:e6: 8a:d8:e4:9e:8e:88:39:6d:46:e7:2e:a6:0e:b1:32: 79:f0:5a:e9:82:64:d4:04:7a:29:a9:0e:c5:d9:d0: 3f:da:6d:ac:59:fc:01:0e:aa:02:4a:04:19:35:3e: 11:b7:20:5b:77:a6:4d:1c:4f:96:7a:6e:81:65:26: bf:25:72:4f:5b:9a:c2:9d:34:49:02:30:73:89:36: ae:7e:46:ed:4f:7f:38:52:f2:62:96:ab:4a:9c:49: 0b:97:43:41:b0:dc:78:69:fc:73:dd:9b:97:86:4a: 7c:fb:3f:0a:81:2a:63:95:12:ad:11:c2:95:67:32: 70:63:c1:9f:be:0a:86:ed:02:20:46:c9:c0:73:d2: 1d:a0:d9:bd:9b:c7:82:cc:43:45:0d:4c:b2:c0:9e: c8:f8:ea:ff:ff:63:9f:db:5d:9b:4f:9b:f3:65:7f: e6:90:3c:b2:76:d6:4f:a0:93:c0:6b:b8:d2:2a:e1: 74:5b:a7:5a:73:a8:41:a8:13:f2:3a:d9:f7:b4:1c: 82:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:F5:2E:79:BD:7B:BF:2D:E7:1F:5F:A7:F5:FC:AD:2F:49:77:DC:18 X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:b1:e9:2a:62:41:af:e5:67:38:80:a4:e2:8f:9b:e9:c6:fb: 54:4c:7a:f5:92:c7:71:79:38:11:3d:75:08:03:da:63:cd:76: a2:67:6f:4e:75:02:08:3a:ae:a4:6c:e0:86:b8:db:63:16:59: 0f:df:b2:4c:94:7a:84:ed:30:93:c3:e8:ec:c2:27:9f:98:78: 62:55:72:d7:0c:3b:81:fa:3b:d2:91:a5:8d:ed:a5:b9:5c:8e: 17:56:4d:26:76:70:8b:03:c7:42:fd:3c:5a:26:1b:ca:12:6f: 0f:3f:ec:0e:6a:bc:38:df:b3:7e:fa:6c:66:cc:5c:8c:83:77: 20:f8:70:67:7e:82:1b:dd:5f:1a:7a:33:21:fe:59:c3:ad:de: b6:4a:87:74:2a:98:35:d8:ec:df:d1:66:21:3d:b6:5c:69:f6: a5:05:b6:27:0f:37:41:20:36:22:7d:15:00:89:c1:29:da:a1: 79:c3:7c:a3:f5:93:6e:be:77:ea:d9:d9:54:7c:01:c6:79:71: 62:4d:65:5f:43:19:12:9a:dc:25:be:e6:ed:b4:c4:ad:fc:e1: 72:b2:56:6e:bd:72:f9:36:dc:db:7b:93:63:ce:b6:45:3c:aa: d0:ac:95:b5:b9:2b:58:b7:57:94:55:32:42:fe:53:f0:3c:38: 05:b8:90:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjUwNzAyMTUzOTQ5WhcNMjUwNzA5MTUzOTQ5WjAYMRYwFAYD VQQDEw02ODY1NTJjNi01ODAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5vgRPBizJ8c5o+yYdRFa0OHLrcpYE00+dcn18ygxUDK9U7Z6Kwj5j+LNubL/ ukZ7Euw8qfHGTNfz2eaK2OSejog5bUbnLqYOsTJ58FrpgmTUBHopqQ7F2dA/2m2s WfwBDqoCSgQZNT4RtyBbd6ZNHE+Wem6BZSa/JXJPW5rCnTRJAjBziTaufkbtT384 UvJilqtKnEkLl0NBsNx4afxz3ZuXhkp8+z8KgSpjlRKtEcKVZzJwY8GfvgqG7QIg RsnAc9IdoNm9m8eCzENFDUyywJ7I+Or//2Of212bT5vzZX/mkDyydtZPoJPAa7jS KuF0W6dac6hBqBPyOtn3tByCAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEn1Lnm9 e78t5x9fp/X8rS9Jd9wYMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBusekqYkGv5Wc4gKTij5vpxvtUTHr1ksdxeTgRPXUIA9pjzXaiZ29O dQIIOq6kbOCGuNtjFlkP37JMlHqE7TCTw+jswiefmHhiVXLXDDuB+jvSkaWN7aW5 XI4XVk0mdnCLA8dC/TxaJhvKEm8PP+wOarw437N++mxmzFyMg3cg+HBnfoIb3V8a ejMh/lnDrd62Sod0Kpg12Ozf0WYhPbZcafalBbYnDzdBIDYifRUAicEp2qF5w3yj 9ZNuvnfq2dlUfAHGeXFiTWVfQxkSmtwlvubttMSt/OFyslZuvXL5Ntzbe5NjzrZF PKrQrJW1uStYt1eUVTJC/lPwPDgFuJDI -----END CERTIFICATE-----Generated at Wed Jul 2 23:31:01 2025 by rpki-client