$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft File: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft (raw, json) Hash identifier: TT92p4hajI2N8xQSFZo/CxaRAIeAi4ExJS54qiBNnXg= Subject key identifier: 4B:F6:56:19:4E:DA:FB:25:38:35:62:5A:DD:BD:83:16:B5:49:3E:7E Authority key identifier: 4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B Certificate issuer: /CN=A916C4BC/serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Certificate serial: 046A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft Manifest number: 0466 Signing time: Sat 28 Jun 2025 23:42:37 +0000 Manifest this update: Sat 28 Jun 2025 23:42:37 +0000 Manifest next update: Sat 05 Jul 2025 23:42:37 +0000 Files and hashes: 1: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl (hash: pQxaV1QmIMnyfrvfQw5R8s8QuVMaiqLSh8UGzAM/bGQ=) 2: F593443851B011ECB5188E24C4F9AE02.roa (hash: CA35rH85+j+YJMr1xe8QwPujExClO3AIGNQ5xuf0vDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 23:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1130 (0x46a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4BC, serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Validity Not Before: Jun 28 23:42:37 2025 GMT Not After : Jul 5 23:42:37 2025 GMT Subject: CN=68607ded-1f3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e6:a8:64:cf:4e:46:ed:5a:04:8b:91:e3:4d: ea:fd:e1:f1:eb:16:46:78:b5:f5:e6:9c:37:35:cb: d9:15:ef:64:07:21:f1:a8:52:ff:7f:5b:79:23:87: e0:e8:b0:b9:10:b4:65:00:7c:4e:1e:ea:65:e2:6d: 6b:13:76:8c:5a:74:ce:b6:05:53:04:64:f9:f5:57: e7:96:b9:ce:d2:2e:3b:d7:a6:34:17:cc:43:3f:4c: 03:fc:a4:cd:93:54:11:17:0f:64:15:ab:43:40:f3: ae:9b:af:c4:4b:06:a6:f0:d4:19:39:58:6c:71:6c: bb:bf:67:3c:5e:00:20:64:a5:44:14:52:62:85:16: ae:97:32:3b:98:65:e9:27:8e:c5:3d:c2:bc:ee:da: d5:1f:7e:b9:3f:e5:70:cb:68:96:97:20:f6:5c:b2: c9:4b:fd:dd:2b:0e:76:38:a5:71:6d:2d:c5:5c:2e: dc:76:d5:8b:8e:15:99:ea:69:30:c4:73:3b:52:bd: 30:6a:16:b7:32:6d:7c:fe:e5:13:ad:9e:89:4f:4b: cf:51:93:b2:5e:6f:77:4e:b2:3a:29:f5:c6:81:2d: ae:59:1e:0e:5e:8e:d9:58:ce:f3:ef:df:f2:85:b9: d8:ec:f8:a1:50:a6:1b:3f:b4:23:d9:21:bc:07:33: 8a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:F6:56:19:4E:DA:FB:25:38:35:62:5A:DD:BD:83:16:B5:49:3E:7E X509v3 Authority Key Identifier: keyid:4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:17:f4:a6:8a:b5:3d:af:e2:d9:bc:26:07:85:89:29:ef:96: 7b:18:1f:53:27:c2:88:77:88:2a:cc:bb:86:7a:d0:96:32:7d: 36:61:fe:d7:0f:e7:ce:e7:2b:55:a2:d0:e3:40:64:00:a0:92: 38:d6:b4:29:fc:a5:f4:4f:2e:32:c5:33:29:56:11:24:89:ae: 65:4e:3c:e3:65:eb:3e:0b:f2:c7:1f:33:52:23:56:8e:96:4b: a0:4e:41:ff:d4:61:68:ca:0e:a9:77:a6:40:94:83:77:c3:17: ea:09:a1:70:ce:70:12:66:76:7c:79:3e:75:4a:c1:7f:3a:c6: 64:b9:24:fe:cf:92:6e:2e:1b:62:28:29:41:07:65:c8:72:00: 50:3b:b1:27:13:5c:fb:a2:91:bf:f8:56:49:a1:35:dc:ab:85: 2d:37:24:9c:1e:6a:21:3b:4e:c6:15:cb:92:f4:e6:01:d9:16: 49:74:05:8c:ac:17:2e:23:d4:03:16:b8:9f:00:de:97:fa:47: d3:90:5f:a2:6f:da:0b:c3:fc:5d:e7:68:fc:d7:8c:db:ea:f4: 57:97:1b:47:95:62:28:e0:2a:6a:a7:e2:9b:85:1f:eb:cb:79: e0:3e:2b:c6:9e:21:01:9e:ca:27:ba:1b:63:e6:a7:93:e2:a1: 45:c1:f8:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0QkMxMTAvBgNVBAUTKDRERkVDMzQzN0M5MEJGNDE0RDA1MTg4QjQ4MkM3ODQ4 RTZGMzE2MUIwHhcNMjUwNjI4MjM0MjM3WhcNMjUwNzA1MjM0MjM3WjAYMRYwFAYD VQQDEw02ODYwN2RlZC0xZjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6uaoZM9ORu1aBIuR403q/eHx6xZGeLX15pw3NcvZFe9kByHxqFL/f1t5I4fg 6LC5ELRlAHxOHupl4m1rE3aMWnTOtgVTBGT59VfnlrnO0i4716Y0F8xDP0wD/KTN k1QRFw9kFatDQPOum6/ESwam8NQZOVhscWy7v2c8XgAgZKVEFFJihRaulzI7mGXp J47FPcK87trVH365P+Vwy2iWlyD2XLLJS/3dKw52OKVxbS3FXC7cdtWLjhWZ6mkw xHM7Ur0waha3Mm18/uUTrZ6JT0vPUZOyXm93TrI6KfXGgS2uWR4OXo7ZWM7z79/y hbnY7PihUKYbP7Qj2SG8BzOKcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEv2VhlO 2vslODViWt29gxa1ST5+MB8GA1UdIwQYMBaAFE3+w0N8kL9BTQUYi0gseEjm8xYb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRCQy9BOTcwQjJFQzUx QUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYwRk5CUmlMU0N4NFNPYnpG aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RmN0RRM3lRdjBGTkJSaUxTQ3g0U09iekZocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRCQy9BOTcwQjJFQzUxQUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYw Rk5CUmlMU0N4NFNPYnpGaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfF/SmirU9r+LZvCYHhYkp75Z7GB9TJ8KId4gqzLuGetCWMn02Yf7X D+fO5ytVotDjQGQAoJI41rQp/KX0Ty4yxTMpVhEkia5lTjzjZes+C/LHHzNSI1aO lkugTkH/1GFoyg6pd6ZAlIN3wxfqCaFwznASZnZ8eT51SsF/OsZkuST+z5JuLhti KClBB2XIcgBQO7EnE1z7opG/+FZJoTXcq4UtNyScHmohO07GFcuS9OYB2RZJdAWM rBcuI9QDFrifAN6X+kfTkF+ib9oLw/xd52j814zb6vRXlxtHlWIo4Cpqp+KbhR/r y3ngPivGniEBnsonuhtj5qeT4qFFwfht -----END CERTIFICATE-----Generated at Mon Jun 30 18:21:21 2025 by rpki-client