$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft File: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft (raw, json) Hash identifier: M8Y1q5zI1FHz4gXl0Xt+Wf6tz+k4wAiVGtp/91Jvo7M= Subject key identifier: C1:DF:3E:8E:44:05:C5:F7:B4:B1:03:85:44:89:08:88:91:E8:73:89 Authority key identifier: 4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B Certificate issuer: /CN=A916C4BC/serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Certificate serial: 0486 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft Manifest number: 0482 Signing time: Sat 23 Aug 2025 00:16:15 +0000 Manifest this update: Sat 23 Aug 2025 00:16:15 +0000 Manifest next update: Sat 30 Aug 2025 00:16:15 +0000 Files and hashes: 1: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl (hash: 6CDDhNJ/+vIBgj5Hb8vONmQ3O9sO9YDyb6ptDyw0rJ0=) 2: F593443851B011ECB5188E24C4F9AE02.roa (hash: CA35rH85+j+YJMr1xe8QwPujExClO3AIGNQ5xuf0vDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1158 (0x486) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4BC, serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Validity Not Before: Aug 23 00:16:15 2025 GMT Not After : Aug 30 00:16:15 2025 GMT Subject: CN=68a9084f-07e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8a:67:60:6a:ab:33:68:60:f9:3a:b3:ee:05: 86:fa:be:16:84:27:61:cd:52:20:31:99:13:82:be: 7e:3d:a3:00:b2:f5:58:05:69:d2:77:ad:56:7a:02: 9f:b7:7b:b1:8a:b1:c4:a7:8d:d0:1a:2e:5a:a4:6e: 54:ae:1a:97:fb:8b:69:f3:14:5c:ea:da:75:e0:c1: 91:bc:5f:73:70:8a:24:26:8e:81:ca:9a:fa:75:95: 01:2e:59:fe:ec:cd:23:45:52:e1:d6:b2:31:4e:95: 88:f0:7c:fd:d1:9a:93:20:16:39:49:c0:e0:2d:45: 58:87:f4:26:65:5d:a3:96:73:a6:cc:f2:92:21:42: f6:48:df:dd:c1:ea:64:8a:b8:84:24:b2:a1:d9:fc: 1e:20:4d:04:77:31:b8:6e:88:4e:32:a3:cf:17:20: 0e:29:a9:5d:37:f4:e7:95:89:41:29:62:26:d2:82: 73:bf:b9:f7:00:b3:68:30:03:81:af:0d:52:af:b7: 7d:54:b4:01:bf:49:e5:30:22:09:4a:af:c6:d5:87: 4c:c4:99:35:90:3c:c7:42:6b:a9:77:e2:b8:73:47: 2a:90:87:a7:16:53:f4:88:1f:18:cc:42:0b:bb:89: b0:70:0e:bb:d6:01:e8:46:ec:96:df:c2:7c:07:f3: 4d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:DF:3E:8E:44:05:C5:F7:B4:B1:03:85:44:89:08:88:91:E8:73:89 X509v3 Authority Key Identifier: keyid:4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:0b:4e:5c:c3:96:17:f5:a7:f4:5d:2e:37:9a:cf:03:e5:b7: da:60:22:40:f1:06:e8:b2:7a:0e:6f:85:f8:a6:9b:40:b0:02: 0f:d2:0e:99:f6:09:8f:d8:80:71:ef:c8:ff:c6:c7:d8:06:16: a9:a8:2d:15:27:2b:f9:7f:8b:ff:6d:c5:e6:43:5c:51:50:1d: d4:f6:d8:b4:11:98:0e:4e:cf:ee:de:0c:db:28:5b:fd:40:1d: 7d:98:b8:fe:e7:e9:43:9a:fb:aa:58:cf:fe:fe:3f:1a:0a:57: d4:11:9f:96:ef:80:57:52:b0:58:d2:bb:90:fe:7b:3b:01:0a: 2c:dd:6b:e8:40:34:22:b9:ff:db:ec:db:d8:56:b4:53:bf:c1: 66:90:15:1c:80:80:4c:64:a6:7e:33:a5:67:1c:3b:67:51:c2: 2f:e1:34:5c:9c:83:ee:c0:5e:1a:ed:70:72:ba:c9:80:14:2c: 09:27:99:66:fb:ed:c3:6a:f4:a6:f0:ec:f1:8c:92:f8:2f:d3: e5:35:df:14:40:03:84:42:fe:51:35:71:70:80:6e:f7:9a:67: 5f:52:f2:22:7e:be:f8:9d:98:f0:ea:85:0c:76:2c:a8:fb:8c: 14:e6:6b:39:ed:98:2a:fc:d0:a1:3b:81:4d:de:64:c7:da:a6: 21:d1:93:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0QkMxMTAvBgNVBAUTKDRERkVDMzQzN0M5MEJGNDE0RDA1MTg4QjQ4MkM3ODQ4 RTZGMzE2MUIwHhcNMjUwODIzMDAxNjE1WhcNMjUwODMwMDAxNjE1WjAYMRYwFAYD VQQDEw02OGE5MDg0Zi0wN2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoYpnYGqrM2hg+Tqz7gWG+r4WhCdhzVIgMZkTgr5+PaMAsvVYBWnSd61WegKf t3uxirHEp43QGi5apG5UrhqX+4tp8xRc6tp14MGRvF9zcIokJo6Bypr6dZUBLln+ 7M0jRVLh1rIxTpWI8Hz90ZqTIBY5ScDgLUVYh/QmZV2jlnOmzPKSIUL2SN/dwepk iriEJLKh2fweIE0EdzG4bohOMqPPFyAOKaldN/TnlYlBKWIm0oJzv7n3ALNoMAOB rw1Sr7d9VLQBv0nlMCIJSq/G1YdMxJk1kDzHQmupd+K4c0cqkIenFlP0iB8YzEIL u4mwcA671gHoRuyW38J8B/NNxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHfPo5E BcX3tLEDhUSJCIiR6HOJMB8GA1UdIwQYMBaAFE3+w0N8kL9BTQUYi0gseEjm8xYb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRCQy9BOTcwQjJFQzUx QUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYwRk5CUmlMU0N4NFNPYnpG aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RmN0RRM3lRdjBGTkJSaUxTQ3g0U09iekZocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRCQy9BOTcwQjJFQzUxQUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYw Rk5CUmlMU0N4NFNPYnpGaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXC05cw5YX9af0XS43ms8D5bfaYCJA8QbosnoOb4X4pptAsAIP0g6Z 9gmP2IBx78j/xsfYBhapqC0VJyv5f4v/bcXmQ1xRUB3U9ti0EZgOTs/u3gzbKFv9 QB19mLj+5+lDmvuqWM/+/j8aClfUEZ+W74BXUrBY0ruQ/ns7AQos3WvoQDQiuf/b 7NvYVrRTv8FmkBUcgIBMZKZ+M6VnHDtnUcIv4TRcnIPuwF4a7XByusmAFCwJJ5lm ++3DavSm8OzxjJL4L9PlNd8UQAOEQv5RNXFwgG73mmdfUvIifr74nZjw6oUMdiyo +4wU5ms57Zgq/NChO4FN3mTH2qYh0ZMR -----END CERTIFICATE-----Generated at Sat Aug 23 16:02:36 2025 by rpki-client