$ rpki-client -vvf rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft File: tkVWXJMbKETS92DqqrDirkvjFBQ.mft (raw, json) Hash identifier: CUBzCXKxOkNGfFtjqVepA6NTZVlODrCwIZ5Po86d2x0= Subject key identifier: 42:6B:CF:1A:2D:22:13:FF:BC:5B:72:EC:F0:51:18:C6:6A:E6:B7:85 Authority key identifier: B6:45:56:5C:93:1B:28:44:D2:F7:60:EA:AA:B0:E2:AE:4B:E3:14:14 Certificate issuer: /CN=A9170187/serialNumber=B645565C931B2844D2F760EAAAB0E2AE4BE31414 Certificate serial: 0461 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft Manifest number: 045C Signing time: Sat 05 Jul 2025 00:40:45 +0000 Manifest this update: Sat 05 Jul 2025 00:40:45 +0000 Manifest next update: Sat 12 Jul 2025 00:40:45 +0000 Files and hashes: 1: tkVWXJMbKETS92DqqrDirkvjFBQ.crl (hash: W52q2FwTyVFWWwVwZe3BkSSEeLnwTHSf76qU6oU4ol0=) 2: 838DF1B0572011EC905C770CC4F9AE02.roa (hash: jLktry4iXdQWD0/47QB08nrgPUPRx2Qy+Cc/teSX0cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.crl rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1121 (0x461) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170187, serialNumber=B645565C931B2844D2F760EAAAB0E2AE4BE31414 Validity Not Before: Jul 5 00:40:45 2025 GMT Not After : Jul 12 00:40:45 2025 GMT Subject: CN=6868748d-bbfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8c:c5:1c:93:6a:b8:ae:64:8c:cd:a1:4f:be: 34:73:47:39:52:5f:d0:92:73:97:df:23:de:12:50: fb:ab:cd:ad:9b:c4:68:36:b1:9c:ff:c3:16:6e:f2: be:f6:ab:c7:a7:2f:89:18:b5:3b:81:91:de:76:ce: 80:19:b7:21:a5:70:db:ca:82:24:4b:85:64:db:b1: 09:70:78:db:f7:bd:63:9e:f6:2e:fd:a7:c7:c0:b5: fa:90:c4:5f:e9:0e:75:e6:66:4d:d6:5f:a1:5e:47: 2c:61:b8:3d:fa:46:d8:6e:df:a3:ef:f4:8d:c5:ca: c6:35:03:46:c7:a2:3e:0f:91:c5:62:0d:0b:0d:21: e8:55:9d:d7:f8:9f:1b:fc:b9:90:d1:bf:eb:3e:6f: f8:17:63:08:b0:8f:29:01:5d:a9:5d:cd:ff:38:ef: 6f:3e:06:bc:cb:13:8f:cb:5f:c9:bc:0a:ad:1d:40: 41:37:e1:95:81:4e:35:70:ac:ba:1a:27:0c:17:08: 3a:24:08:4f:18:62:72:bd:2a:1b:54:e8:cd:99:48: ca:d2:96:60:9b:19:64:e1:34:a4:ae:ca:c1:d8:6f: a2:38:8a:f4:05:34:db:1c:bc:7e:01:a2:e9:19:39: 2a:43:f7:85:14:a9:7d:cf:9c:4f:91:8c:f7:d5:60: 75:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:6B:CF:1A:2D:22:13:FF:BC:5B:72:EC:F0:51:18:C6:6A:E6:B7:85 X509v3 Authority Key Identifier: keyid:B6:45:56:5C:93:1B:28:44:D2:F7:60:EA:AA:B0:E2:AE:4B:E3:14:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:b0:e0:4b:20:97:9b:e2:66:82:8f:d5:ad:85:e8:fe:1e:f6: 84:51:ba:1c:47:e9:37:65:04:23:a1:1a:5c:b6:aa:8f:8c:20: 7c:ba:32:76:b7:34:b6:c2:35:b4:ba:88:e7:4f:70:16:42:7e: c6:72:8f:b3:7d:07:78:0a:30:27:3c:64:0b:2f:dd:de:b7:e4: 5b:05:fe:91:59:9f:57:4b:1c:61:e5:e4:3c:cd:98:ec:f7:58: 02:8c:83:a2:4d:19:9e:75:ba:f6:f5:e5:d1:79:b2:bd:69:c1: 76:b2:cf:74:62:11:b3:4f:6d:a4:0b:66:ca:08:e7:44:cb:50: 11:27:1e:89:1b:4f:64:69:7a:32:86:66:5d:fd:7a:99:a7:e0: bd:ee:1f:c9:d0:2e:90:a8:f9:b7:98:04:5b:18:d0:37:9b:bf: 86:51:6d:b6:31:27:c0:3a:3a:ac:60:5a:d3:12:a0:2f:db:6b: b2:b3:c1:13:8d:cf:03:04:47:45:23:e6:fa:23:25:8a:fa:6b: f4:8d:13:b5:70:28:44:4a:8a:6b:09:7c:36:9e:f0:7e:fd:27: cb:3f:1c:98:7c:ab:a8:d6:c2:d6:75:1c:be:1f:8d:c7:f4:3c: a6:08:f8:54:7c:ec:79:0b:c1:6b:8c:34:9d:5b:8f:1d:f0:29: 98:99:08:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAxODcxMTAvBgNVBAUTKEI2NDU1NjVDOTMxQjI4NDREMkY3NjBFQUFBQjBFMkFF NEJFMzE0MTQwHhcNMjUwNzA1MDA0MDQ1WhcNMjUwNzEyMDA0MDQ1WjAYMRYwFAYD VQQDEw02ODY4NzQ4ZC1iYmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYzFHJNquK5kjM2hT740c0c5Ul/QknOX3yPeElD7q82tm8RoNrGc/8MWbvK+ 9qvHpy+JGLU7gZHeds6AGbchpXDbyoIkS4Vk27EJcHjb971jnvYu/afHwLX6kMRf 6Q515mZN1l+hXkcsYbg9+kbYbt+j7/SNxcrGNQNGx6I+D5HFYg0LDSHoVZ3X+J8b /LmQ0b/rPm/4F2MIsI8pAV2pXc3/OO9vPga8yxOPy1/JvAqtHUBBN+GVgU41cKy6 GicMFwg6JAhPGGJyvSobVOjNmUjK0pZgmxlk4TSkrsrB2G+iOIr0BTTbHLx+AaLp GTkqQ/eFFKl9z5xPkYz31WB1IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEJrzxot IhP/vFty7PBRGMZq5reFMB8GA1UdIwQYMBaAFLZFVlyTGyhE0vdg6qqw4q5L4xQU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDE4Ny9GMUUyQTNGODU3 MUMxMUVDQkI2M0ZFODNDNEY5QUUwMi90a1ZXWEpNYktFVFM5MkRxcXJEaXJrdmpG QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RrVldYSk1iS0VUUzkyRHFxckRpcmt2akZCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDE4Ny9GMUUyQTNGODU3MUMxMUVDQkI2M0ZFODNDNEY5QUUwMi90a1ZXWEpNYktF VFM5MkRxcXJEaXJrdmpGQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1sOBLIJeb4maCj9Wthej+HvaEUbocR+k3ZQQjoRpctqqPjCB8ujJ2 tzS2wjW0uojnT3AWQn7Gco+zfQd4CjAnPGQLL93et+RbBf6RWZ9XSxxh5eQ8zZjs 91gCjIOiTRmedbr29eXRebK9acF2ss90YhGzT22kC2bKCOdEy1ARJx6JG09kaXoy hmZd/XqZp+C97h/J0C6QqPm3mARbGNA3m7+GUW22MSfAOjqsYFrTEqAv22uys8ET jc8DBEdFI+b6IyWK+mv0jRO1cChESoprCXw2nvB+/SfLPxyYfKuo1sLWdRy+H43H 9DymCPhUfOx5C8FrjDSdW48d8CmYmQiR -----END CERTIFICATE-----Generated at Sat Jul 5 08:35:08 2025 by rpki-client