$ rpki-client -vvf rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft File: tRdNgmVknN0nQmySfRaHddeD1Tg.mft (raw, json) Hash identifier: n5g0uyKQXv4iXWBGiHWeILAMvijjAtI7BJOKLuBjzXI= Subject key identifier: D3:10:42:46:6C:91:2E:0E:15:74:94:28:24:9C:9B:F3:9A:1A:44:FD Authority key identifier: B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 Certificate issuer: /CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538 Certificate serial: 0B41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft Manifest number: 0B39 Signing time: Fri 22 Aug 2025 19:21:08 +0000 Manifest this update: Fri 22 Aug 2025 19:21:08 +0000 Manifest next update: Fri 29 Aug 2025 19:21:08 +0000 Files and hashes: 1: tRdNgmVknN0nQmySfRaHddeD1Tg.crl (hash: xvExH4s1dpBd1Iw6wL4kngDunRtnNabw2OUrJQBUFlk=) 2: 61E12BD0CA0611EEB05EB92CC4F9AE02.roa (hash: o16pooFHIEBYiC/U+8swfJroVM1JsQPPQfuyHDWfNA4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2881 (0xb41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D459, serialNumber=B5174D8265649CDD27426C927D168775D783D538 Validity Not Before: Aug 22 19:21:08 2025 GMT Not After : Aug 29 19:21:08 2025 GMT Subject: CN=68a8c324-1417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:32:64:d8:2b:1c:ea:f4:96:23:f8:c5:44:ad: 98:c7:b7:d2:49:c3:3f:46:94:00:e0:4d:a5:79:16: 45:8d:6c:ab:bd:52:a0:c3:d7:0d:18:09:93:67:99: 19:93:b1:d0:63:f7:b6:49:21:89:a5:a1:e7:c7:8b: 64:bd:33:c7:e7:14:bb:21:c1:bf:c8:5e:3a:67:b1: 5d:27:95:ac:61:68:6c:34:86:a9:fd:8e:93:e6:65: 48:3d:a8:5b:55:af:84:cb:28:c5:78:ca:d8:b5:b7: 85:93:5d:69:04:81:c4:7e:2b:0c:47:8d:f2:e0:86: a6:9f:6c:96:54:ff:81:4c:16:47:db:87:a0:01:de: 32:50:17:65:83:df:04:df:5f:ee:2f:87:68:bc:b4: 11:af:8c:a2:cb:25:e7:30:be:65:05:4f:47:5a:92: d6:16:77:7f:59:68:ed:64:4f:97:e5:f6:e1:f1:b9: 76:4f:a5:ac:9f:c7:c8:b6:ff:b7:2a:fd:f6:f5:71: 59:61:88:ac:87:09:1a:46:53:d3:ea:5f:ad:ef:ee: 40:bd:d5:54:8c:04:b8:1a:7c:a1:69:a5:21:aa:4f: 5a:95:fd:e4:ff:93:7f:0c:ac:83:69:26:15:51:0c: 30:77:85:15:05:7b:96:5e:d2:00:3c:62:8a:9c:f6: c4:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:10:42:46:6C:91:2E:0E:15:74:94:28:24:9C:9B:F3:9A:1A:44:FD X509v3 Authority Key Identifier: keyid:B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:f1:4f:17:a4:4a:10:0a:9f:26:87:d4:f2:19:4a:98:78:e6: 92:a2:4d:d3:f3:f7:ea:e2:89:90:aa:67:3a:e9:a7:2f:d0:37: 3a:66:fe:70:e7:8c:6b:b3:37:18:5b:24:0f:8e:52:ce:70:a0: 71:1d:ee:68:af:33:8d:06:e2:ee:ba:bc:54:3d:ce:02:11:e7: be:72:77:04:b4:c1:64:73:3b:fd:3a:3f:6a:94:3b:ee:c7:fd: 2b:1a:b3:ea:f4:84:c5:37:3b:fa:f5:c1:68:a6:32:d7:77:e9: 26:54:bb:ef:41:76:72:f1:18:5a:18:45:31:cd:a7:a3:00:c3: 99:a5:11:b0:ce:cd:05:2b:d2:3a:8e:41:4b:19:83:91:83:70: 7f:36:b5:1d:b0:df:4c:9e:b6:69:c6:31:95:8a:60:7b:c7:a6: 2e:10:99:8d:2f:a4:3a:a3:12:62:2a:a5:13:01:41:de:b5:a7: 44:11:3e:df:f0:5d:d1:13:d4:3e:78:75:06:23:64:54:f3:8b: f0:5c:68:f6:9f:a7:a3:4f:31:9d:b3:7e:5e:10:43:cb:c7:a0: c3:e9:b3:f1:57:97:01:15:c3:a4:56:3f:a9:90:f3:9b:b2:d2: fc:cc:21:87:c4:d1:46:73:b7:9b:5f:c2:b8:22:cd:4e:57:2f: 65:85:42:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ0NTkxMTAvBgNVBAUTKEI1MTc0RDgyNjU2NDlDREQyNzQyNkM5MjdEMTY4Nzc1 RDc4M0Q1MzgwHhcNMjUwODIyMTkyMTA4WhcNMjUwODI5MTkyMTA4WjAYMRYwFAYD VQQDEw02OGE4YzMyNC0xNDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7zJk2Csc6vSWI/jFRK2Yx7fSScM/RpQA4E2leRZFjWyrvVKgw9cNGAmTZ5kZ k7HQY/e2SSGJpaHnx4tkvTPH5xS7IcG/yF46Z7FdJ5WsYWhsNIap/Y6T5mVIPahb Va+EyyjFeMrYtbeFk11pBIHEfisMR43y4Iamn2yWVP+BTBZH24egAd4yUBdlg98E 31/uL4dovLQRr4yiyyXnML5lBU9HWpLWFnd/WWjtZE+X5fbh8bl2T6Wsn8fItv+3 Kv329XFZYYishwkaRlPT6l+t7+5AvdVUjAS4GnyhaaUhqk9alf3k/5N/DKyDaSYV UQwwd4UVBXuWXtIAPGKKnPbEAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMQQkZs kS4OFXSUKCScm/OaGkT9MB8GA1UdIwQYMBaAFLUXTYJlZJzdJ0Jskn0Wh3XXg9U4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDQ1OS85OUVDODlFQzQy MjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25OMG5RbXlTZlJhSGRkZUQx VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RSZE5nbVZrbk4wblFteVNmUmFIZGRlRDFUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDQ1OS85OUVDODlFQzQyMjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25O MG5RbXlTZlJhSGRkZUQxVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA8U8XpEoQCp8mh9TyGUqYeOaSok3T8/fq4omQqmc66acv0Dc6Zv5w 54xrszcYWyQPjlLOcKBxHe5orzONBuLuurxUPc4CEee+cncEtMFkczv9Oj9qlDvu x/0rGrPq9ITFNzv69cFopjLXd+kmVLvvQXZy8RhaGEUxzaejAMOZpRGwzs0FK9I6 jkFLGYORg3B/NrUdsN9MnrZpxjGVimB7x6YuEJmNL6Q6oxJiKqUTAUHetadEET7f 8F3RE9Q+eHUGI2RU84vwXGj2n6ejTzGds35eEEPLx6DD6bPxV5cBFcOkVj+pkPOb stL8zCGHxNFGc7ebX8K4Is1OVy9lhUL+ -----END CERTIFICATE-----Generated at Sat Aug 23 16:46:17 2025 by rpki-client