$ rpki-client -vvf rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft File: tkVWXJMbKETS92DqqrDirkvjFBQ.mft (raw, json) Hash identifier: 6YZQ9Dm8BfSC3qaFwoNwqBmX51TYmnXequQx9kBM5GY= Subject key identifier: 91:97:C4:C2:78:21:42:1C:D0:F0:7D:64:CC:5E:97:7E:15:A3:15:79 Authority key identifier: B6:45:56:5C:93:1B:28:44:D2:F7:60:EA:AA:B0:E2:AE:4B:E3:14:14 Certificate issuer: /CN=A9170187/serialNumber=B645565C931B2844D2F760EAAAB0E2AE4BE31414 Certificate serial: 047D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft Manifest number: 0477 Signing time: Sat 23 Aug 2025 00:19:52 +0000 Manifest this update: Sat 23 Aug 2025 00:19:51 +0000 Manifest next update: Sat 30 Aug 2025 00:19:51 +0000 Files and hashes: 1: tkVWXJMbKETS92DqqrDirkvjFBQ.crl (hash: 5igv6dVvvNve6IyyazHjzTZDyMmoqUuB5KcCZJgL7bM=) 2: 838DF1B0572011EC905C770CC4F9AE02.roa (hash: iL8DbZfU13LX2Ap/5AtahLEn5kXxcngJgS8iYsEF4yY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.crl rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:19:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1149 (0x47d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170187, serialNumber=B645565C931B2844D2F760EAAAB0E2AE4BE31414 Validity Not Before: Aug 23 00:19:51 2025 GMT Not After : Aug 30 00:19:51 2025 GMT Subject: CN=68a90928-3860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:db:6b:2e:87:dc:20:3b:bc:12:d3:8d:d8:14: ab:5f:89:d6:73:7e:13:a8:3b:56:51:ae:ad:ea:64: d6:02:59:67:6f:a8:29:4d:c5:78:33:30:11:53:1b: 5f:c6:0e:da:5d:fe:6f:80:0e:5a:ce:c5:2a:56:fb: d8:08:d1:07:60:dd:a4:d8:3a:f3:d0:ac:02:f7:1c: 36:87:8c:93:8d:8e:80:d3:98:41:38:be:66:42:55: 31:94:69:72:43:0c:67:e3:8c:55:36:78:26:58:7f: a0:b6:d1:3f:35:79:5b:e6:6e:0c:d7:e6:5e:65:b8: a5:16:a1:21:fd:02:af:f4:2c:4d:6b:5a:13:cf:97: e7:12:25:00:6d:fd:d7:43:de:5f:50:50:cb:81:92: 85:25:f4:84:1b:48:e9:4c:e3:39:30:04:fe:21:11: 87:cf:47:09:b7:f1:dc:7e:78:9b:7f:33:ae:f1:78: 32:93:6a:8f:78:9e:5c:23:60:c9:01:77:92:2d:98: ea:f8:9d:9a:57:0c:de:40:b9:a9:4c:79:ae:1b:c8: 0d:70:b6:2b:df:b8:71:0b:c0:91:25:db:8e:aa:1a: 5a:d4:f4:84:62:0a:7e:65:74:c9:26:fc:81:e8:c0: 29:1b:54:6e:32:56:2b:5a:a9:33:5b:26:6d:09:86: 38:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:97:C4:C2:78:21:42:1C:D0:F0:7D:64:CC:5E:97:7E:15:A3:15:79 X509v3 Authority Key Identifier: keyid:B6:45:56:5C:93:1B:28:44:D2:F7:60:EA:AA:B0:E2:AE:4B:E3:14:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:d8:3f:08:39:a3:42:e9:ba:2c:89:83:d0:5e:86:53:bc:e6: 33:44:4d:66:4b:98:df:6f:5a:8a:db:81:e7:a4:1f:0c:10:03: ed:a9:60:10:61:8d:05:e1:7d:09:c3:e1:6f:75:a9:b7:43:fc: a2:92:d8:14:ea:51:60:5c:35:0a:0f:2c:31:75:3d:3e:0d:cc: c4:c7:52:f4:e0:1c:7d:83:50:e3:90:8c:57:50:31:98:c0:34: f2:69:e5:a5:5f:12:cb:79:fd:4b:4e:eb:ed:d2:09:13:55:36: 5d:5e:43:2b:f9:f8:4d:07:88:69:29:3d:c7:3f:b8:a0:91:28: f3:a3:76:9c:34:27:31:2c:c4:0c:ee:68:6d:4b:73:ff:32:e7: 4c:9d:71:14:40:bb:cf:a3:f1:33:33:3c:ec:c6:d6:94:a4:f7: 68:55:82:63:42:ba:97:6d:57:62:da:15:9d:66:30:2b:59:a6: 36:46:b2:10:94:b7:7c:f1:be:51:8d:16:ca:63:c2:6f:22:d4: 57:c3:09:40:f6:3a:f1:90:03:81:4d:37:12:f5:78:13:65:50: e2:02:74:ca:af:56:91:25:35:4f:70:c5:2f:ca:0a:c2:3d:24: 2a:70:f2:61:7a:3a:b0:c1:dd:82:79:da:3e:b5:c9:55:28:c2: bf:cd:fa:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAxODcxMTAvBgNVBAUTKEI2NDU1NjVDOTMxQjI4NDREMkY3NjBFQUFBQjBFMkFF NEJFMzE0MTQwHhcNMjUwODIzMDAxOTUxWhcNMjUwODMwMDAxOTUxWjAYMRYwFAYD VQQDEw02OGE5MDkyOC0zODYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmttrLofcIDu8EtON2BSrX4nWc34TqDtWUa6t6mTWAllnb6gpTcV4MzARUxtf xg7aXf5vgA5azsUqVvvYCNEHYN2k2Drz0KwC9xw2h4yTjY6A05hBOL5mQlUxlGly Qwxn44xVNngmWH+gttE/NXlb5m4M1+ZeZbilFqEh/QKv9CxNa1oTz5fnEiUAbf3X Q95fUFDLgZKFJfSEG0jpTOM5MAT+IRGHz0cJt/HcfnibfzOu8Xgyk2qPeJ5cI2DJ AXeSLZjq+J2aVwzeQLmpTHmuG8gNcLYr37hxC8CRJduOqhpa1PSEYgp+ZXTJJvyB 6MApG1RuMlYrWqkzWyZtCYY4IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJGXxMJ4 IUIc0PB9ZMxel34VoxV5MB8GA1UdIwQYMBaAFLZFVlyTGyhE0vdg6qqw4q5L4xQU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDE4Ny9GMUUyQTNGODU3 MUMxMUVDQkI2M0ZFODNDNEY5QUUwMi90a1ZXWEpNYktFVFM5MkRxcXJEaXJrdmpG QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RrVldYSk1iS0VUUzkyRHFxckRpcmt2akZCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDE4Ny9GMUUyQTNGODU3MUMxMUVDQkI2M0ZFODNDNEY5QUUwMi90a1ZXWEpNYktF VFM5MkRxcXJEaXJrdmpGQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw2D8IOaNC6bosiYPQXoZTvOYzRE1mS5jfb1qK24HnpB8MEAPtqWAQ YY0F4X0Jw+Fvdam3Q/yiktgU6lFgXDUKDywxdT0+DczEx1L04Bx9g1DjkIxXUDGY wDTyaeWlXxLLef1LTuvt0gkTVTZdXkMr+fhNB4hpKT3HP7igkSjzo3acNCcxLMQM 7mhtS3P/MudMnXEUQLvPo/EzMzzsxtaUpPdoVYJjQrqXbVdi2hWdZjArWaY2RrIQ lLd88b5RjRbKY8JvItRXwwlA9jrxkAOBTTcS9XgTZVDiAnTKr1aRJTVPcMUvygrC PSQqcPJhejqwwd2Cedo+tclVKMK/zfrq -----END CERTIFICATE-----Generated at Sat Aug 23 20:43:06 2025 by rpki-client