$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: quhq/dSumKSilhHExgQVBKBwo94bxS6GWILYVene3Fc= Subject key identifier: 74:75:FD:52:2D:1E:B0:B0:EA:E7:56:81:C0:DC:6D:36:31:AA:C1:9D Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2C5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2BB1 Signing time: Fri 22 Aug 2025 15:35:42 +0000 Manifest this update: Fri 22 Aug 2025 15:35:42 +0000 Manifest next update: Fri 29 Aug 2025 15:35:42 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: fYAQb7+9QGm23gqQxCjJDqO0i2rcy4LziMkZP7Qwmig=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: NyqTZQOkUqWoaM40ZktUlOiopL6FbxfHLQstlqudq2c=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: LZsU00B4/gx6lo+GhGlRRaLNP1lXi+x7ZDLzlvJoUls=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: je3auOg70+6cT16YOal/ttbSxW+A5XuODnJlOPCEZSc=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: aSO9wjURcYGva8bAjVzZpymdiAuS5bByHQh+Eq4/Ung=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11354 (0x2c5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Aug 22 15:35:42 2025 GMT Not After : Aug 29 15:35:42 2025 GMT Subject: CN=68a88e4e-b8bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2e:ef:87:8f:23:7d:24:a1:8f:2a:31:f1:a3: f7:74:55:21:81:87:bc:b7:f8:92:2c:b6:b5:3e:92: 89:00:8b:8d:a8:0c:f3:59:4f:3c:5f:8b:7a:b5:ef: 0b:33:03:d4:7e:fe:4d:2e:72:47:52:2c:ff:b4:73: d0:3c:c4:94:cf:76:4e:b6:45:32:b8:94:68:85:cd: 7c:38:83:08:83:5c:77:32:df:42:c9:53:56:c6:d2: 95:e0:3e:33:b8:d2:cb:28:03:2c:ff:88:86:99:ea: 74:a8:89:e0:49:a5:97:38:b3:85:c0:45:09:bb:5e: 6f:9b:81:c7:c7:6c:ff:5b:9b:56:e3:8b:f9:38:47: 94:f4:05:31:73:80:50:ab:4c:7b:5b:15:7a:de:8c: fe:77:0f:f5:6f:37:af:38:fe:7c:c3:65:c1:2b:b4: 12:f5:ec:3d:44:ed:ea:55:16:4b:d6:fb:5f:c5:ec: 59:9e:e9:2a:c9:cb:1b:30:19:05:45:81:ab:f6:f9: 13:10:4d:5b:43:62:de:a6:13:a7:eb:e4:ff:db:11: 65:2f:12:08:38:0d:ec:96:fc:40:c1:fe:a3:97:e3: 6a:a4:d7:07:05:46:70:b5:de:ea:d0:3c:c1:f5:ea: 03:bb:52:8c:c8:c9:4f:15:0d:4e:f4:30:aa:42:f8: 53:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:75:FD:52:2D:1E:B0:B0:EA:E7:56:81:C0:DC:6D:36:31:AA:C1:9D X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:50:fe:92:ef:de:ca:56:bd:a2:b4:7d:91:64:c5:2e:7f:c9: 9d:3c:17:c7:a5:7e:51:d8:33:4a:6d:35:48:bd:95:f0:8e:d6: 12:08:43:54:c2:47:0d:e6:83:24:f8:1a:67:73:1d:19:55:5c: 7e:f7:f8:f3:da:59:d3:36:d7:f9:81:95:de:b0:fe:b6:2e:3a: fa:c1:9e:79:9c:8b:0b:04:d9:5d:75:cb:be:87:a0:d1:9b:59: 15:7c:97:65:b4:61:1c:72:a3:bd:c1:c7:85:3c:cd:ba:e4:42: 81:2d:c2:3b:48:d9:e2:17:84:6e:db:e2:75:df:d7:a5:86:a2: 86:b8:3f:12:34:71:11:cd:7a:19:51:24:30:29:1d:10:17:f3: b1:fd:f2:fa:82:fb:21:ac:61:fc:dd:3d:2c:e6:b3:a8:04:87: 51:cc:a2:49:ab:dd:dc:56:1b:90:bf:4a:3b:00:ca:7e:28:84: 84:1c:51:35:cb:a9:03:58:57:1a:03:92:44:57:31:ff:ea:b9: 89:cb:76:79:b9:33:14:f8:30:02:a0:9c:53:6b:ac:4f:c0:36: 6f:8d:f7:a3:31:b5:9c:c6:cb:0e:32:6e:9a:03:ed:bf:9b:23: 57:3b:32:18:0a:3a:9e:5d:fd:51:98:d2:89:ae:9f:37:7f:9b: db:97:cf:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjUwODIyMTUzNTQyWhcNMjUwODI5MTUzNTQyWjAYMRYwFAYD VQQDEw02OGE4OGU0ZS1iOGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxC7vh48jfSShjyox8aP3dFUhgYe8t/iSLLa1PpKJAIuNqAzzWU88X4t6te8L MwPUfv5NLnJHUiz/tHPQPMSUz3ZOtkUyuJRohc18OIMIg1x3Mt9CyVNWxtKV4D4z uNLLKAMs/4iGmep0qIngSaWXOLOFwEUJu15vm4HHx2z/W5tW44v5OEeU9AUxc4BQ q0x7WxV63oz+dw/1bzevOP58w2XBK7QS9ew9RO3qVRZL1vtfxexZnukqycsbMBkF RYGr9vkTEE1bQ2LephOn6+T/2xFlLxIIOA3slvxAwf6jl+NqpNcHBUZwtd7q0DzB 9eoDu1KMyMlPFQ1O9DCqQvhTIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHR1/VIt HrCw6udWgcDcbTYxqsGdMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUUP6S797KVr2itH2RZMUuf8mdPBfHpX5R2DNKbTVIvZXwjtYSCENU wkcN5oMk+Bpncx0ZVVx+9/jz2lnTNtf5gZXesP62Ljr6wZ55nIsLBNlddcu+h6DR m1kVfJdltGEccqO9wceFPM265EKBLcI7SNniF4Ru2+J139elhqKGuD8SNHERzXoZ USQwKR0QF/Ox/fL6gvshrGH83T0s5rOoBIdRzKJJq93cVhuQv0o7AMp+KISEHFE1 y6kDWFcaA5JEVzH/6rmJy3Z5uTMU+DACoJxTa6xPwDZvjfejMbWcxssOMm6aA+2/ myNXOzIYCjqeXf1RmNKJrp83f5vbl8+K -----END CERTIFICATE-----Generated at Sat Aug 23 19:12:29 2025 by rpki-client