$ rpki-client -vvf rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft File: T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft (raw, json) Hash identifier: oX1wpbjTZ5BcyEa5ORj+PDC1ZSGhYhJ7iSFjimQis3w= Subject key identifier: B1:03:9B:BE:C6:C0:F0:07:78:D8:9C:C3:BC:10:04:76:32:73:6F:76 Authority key identifier: 4F:FA:52:8C:6E:46:7E:D4:58:F5:35:FC:5C:6D:D9:DB:ED:0C:E7:37 Certificate issuer: /CN=A916CDDF/serialNumber=4FFA528C6E467ED458F535FC5C6DD9DBED0CE737 Certificate serial: 0801 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft Manifest number: 141C Signing time: Fri 22 Aug 2025 18:45:22 +0000 Manifest this update: Fri 22 Aug 2025 18:45:21 +0000 Manifest next update: Fri 29 Aug 2025 18:45:21 +0000 Files and hashes: 1: T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl (hash: HYGSdzxcGLdoDe11UivC6cEWmNnIQp7PvmLjYTxFggc=) 2: 3C73210E29E711F0AB5EBA80C4F9AE02.roa (hash: k142c1mhkeL45x3p2n9As909+kYuHAEo9TNndwZMKuc=) 3: 81A55E3629E711F08823E620C4F9AE02.roa (hash: hX5dpHGXTGcDiyEWkvOCWSK7VdcIwU2X7lTjxGfS0x8=) 4: F4075E7CF28611EF976CB83AC4F9AE02.roa (hash: LHvxfj3VCNmuKnrLv2NsZrToWYHoHHWWd+F8Qkfp44A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:45:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2049 (0x801) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CDDF, serialNumber=4FFA528C6E467ED458F535FC5C6DD9DBED0CE737 Validity Not Before: Aug 22 18:45:21 2025 GMT Not After : Aug 29 18:45:21 2025 GMT Subject: CN=68a8bac1-7400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1e:2f:31:ba:ac:35:2d:07:37:d0:f8:6b:58: f7:17:9b:b8:58:a3:e8:cd:13:bb:17:ed:fd:57:bc: da:b2:02:e7:24:ae:aa:dd:72:78:32:d4:88:e4:bc: 22:e5:f1:4f:a4:96:d8:46:fe:bf:d9:bc:32:84:72: d3:05:3d:ad:7a:57:ea:89:ed:c8:e1:f1:24:08:5b: b4:ff:0a:a4:46:60:f0:67:13:64:7c:0b:93:b1:60: eb:c0:8d:be:bc:43:33:8a:06:08:0e:ef:83:15:c2: a5:c4:c3:a0:59:58:69:a5:48:92:49:03:11:4d:ed: 40:62:61:5a:61:e0:59:67:89:e2:fc:4b:13:57:3c: f5:9d:7c:0a:75:ff:ea:c8:57:5d:7f:86:63:e2:6f: c0:6e:dc:16:d3:88:36:6f:3a:09:31:ef:04:20:44: 1e:b4:4c:47:b6:2f:79:4e:0f:a9:a3:3a:b8:e5:0f: c5:93:fb:05:45:8b:cb:aa:4a:55:bd:69:c3:c9:fe: 4f:ce:89:03:5c:12:7b:fa:38:0a:28:70:7f:58:42: ad:3c:16:22:d0:c1:04:08:b3:87:84:3e:20:56:0b: 2c:0d:28:f2:7c:01:db:1a:5d:b0:14:8e:d2:d4:79: 71:22:26:01:e8:d1:d4:f3:ff:18:09:32:6b:3e:4a: 37:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:03:9B:BE:C6:C0:F0:07:78:D8:9C:C3:BC:10:04:76:32:73:6F:76 X509v3 Authority Key Identifier: keyid:4F:FA:52:8C:6E:46:7E:D4:58:F5:35:FC:5C:6D:D9:DB:ED:0C:E7:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:c8:9e:de:bf:27:8d:42:af:9a:39:64:e6:9f:d2:56:02:38: dd:82:00:ef:97:83:62:a5:b0:09:f6:b9:84:7d:d3:ec:94:1d: 63:be:f7:d1:d3:05:b6:05:a2:bd:8d:59:16:2a:ed:dc:39:93: d2:20:0a:4c:f9:1f:83:a4:1e:da:9b:61:95:94:1b:55:66:bd: 31:00:ad:51:d2:11:21:13:25:d0:4f:75:4c:e1:6e:4d:37:75: c0:4c:cd:f0:d8:4a:44:c2:bb:7a:84:51:17:86:39:6d:d6:41: 9d:29:04:ae:5c:88:6c:e8:f3:91:87:7d:c9:7a:bc:16:77:2c: a1:9d:72:94:e5:3c:f3:f0:7e:7c:37:de:68:3a:68:b8:a4:8c: 60:05:d3:8d:ef:99:70:65:09:c5:6f:7e:61:bc:02:b4:a4:5a: 06:2a:19:82:03:54:d1:61:da:33:0a:2a:60:5c:24:74:df:80: ba:21:a2:93:6d:97:f2:6b:d0:97:2f:da:5d:61:f8:19:54:fc: bc:6c:d4:fb:c8:74:63:91:92:8f:94:d7:cc:a5:ce:47:7e:61: 1f:f5:f1:8c:26:91:37:fc:04:85:f5:01:c9:18:74:43:71:6a: 71:d2:43:7b:76:19:ef:5c:5d:e2:76:51:71:58:c3:bd:7a:67: c5:82:f9:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNEREYxMTAvBgNVBAUTKDRGRkE1MjhDNkU0NjdFRDQ1OEY1MzVGQzVDNkREOURC RUQwQ0U3MzcwHhcNMjUwODIyMTg0NTIxWhcNMjUwODI5MTg0NTIxWjAYMRYwFAYD VQQDEw02OGE4YmFjMS03NDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsh4vMbqsNS0HN9D4a1j3F5u4WKPozRO7F+39V7zasgLnJK6q3XJ4MtSI5Lwi 5fFPpJbYRv6/2bwyhHLTBT2telfqie3I4fEkCFu0/wqkRmDwZxNkfAuTsWDrwI2+ vEMzigYIDu+DFcKlxMOgWVhppUiSSQMRTe1AYmFaYeBZZ4ni/EsTVzz1nXwKdf/q yFddf4Zj4m/AbtwW04g2bzoJMe8EIEQetExHti95Tg+pozq45Q/Fk/sFRYvLqkpV vWnDyf5PzokDXBJ7+jgKKHB/WEKtPBYi0MEECLOHhD4gVgssDSjyfAHbGl2wFI7S 1HlxIiYB6NHU8/8YCTJrPko3BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEDm77G wPAHeNicw7wQBHYyc292MB8GA1UdIwQYMBaAFE/6UoxuRn7UWPU1/Fxt2dvtDOc3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0RERi8yNjYwOEQ0NjEw NzIxMUVBQUMwNkIwNzlDNEY5QUUwMi9UX3BTakc1R2Z0Ulk5VFg4WEczWjItME01 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RfcFNqRzVHZnRSWTlUWDhYRzNaMi0wTTV6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0RERi8yNjYwOEQ0NjEwNzIxMUVBQUMwNkIwNzlDNEY5QUUwMi9UX3BTakc1R2Z0 Ulk5VFg4WEczWjItME01emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClyJ7evyeNQq+aOWTmn9JWAjjdggDvl4NipbAJ9rmEfdPslB1jvvfR 0wW2BaK9jVkWKu3cOZPSIApM+R+DpB7am2GVlBtVZr0xAK1R0hEhEyXQT3VM4W5N N3XATM3w2EpEwrt6hFEXhjlt1kGdKQSuXIhs6PORh33JerwWdyyhnXKU5Tzz8H58 N95oOmi4pIxgBdON75lwZQnFb35hvAK0pFoGKhmCA1TRYdozCipgXCR034C6IaKT bZfya9CXL9pdYfgZVPy8bNT7yHRjkZKPlNfMpc5HfmEf9fGMJpE3/ASF9QHJGHRD cWpx0kN7dhnvXF3idlFxWMO9emfFgvm9 -----END CERTIFICATE-----Generated at Sat Aug 23 18:26:09 2025 by rpki-client