$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: KtI1KQC8B4xBFUg56kt+lM/Ce2fzuYP/rdOlZQPc2Vc= Subject key identifier: 21:67:66:A7:3C:31:B3:58:A1:29:5F:B0:32:53:40:C5:9F:A7:7C:63 Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 34BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 34B6 Signing time: Fri 22 Aug 2025 15:21:12 +0000 Manifest this update: Fri 22 Aug 2025 15:21:12 +0000 Manifest next update: Fri 29 Aug 2025 15:21:12 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: ZoYTI7Az8QRhTlvnHeoP1giSo0sU9b0XR3s9tv7E8Z8=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: 1r2fILVlnPF9g9/RvWkB32IMvkecllavKDmXeDe08HY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13501 (0x34bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754, serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: Aug 22 15:21:12 2025 GMT Not After : Aug 29 15:21:12 2025 GMT Subject: CN=68a88ae8-bfd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d0:ee:ba:4a:de:bb:5a:34:28:d0:ee:38:0c: e1:a8:63:bf:a3:c1:9c:ad:65:bd:39:9b:ef:1d:d8: 34:0a:f0:ab:36:b3:6d:f8:61:60:ed:af:e3:9c:33: 65:a1:7c:b5:bc:7a:d9:34:bf:f2:fb:2a:28:a7:92: f3:47:83:06:7c:cc:3b:a8:c9:a9:24:a1:8b:1e:20: 15:d4:d8:90:a0:7c:e3:29:47:4c:5d:fe:60:5b:0e: 13:b1:7f:b3:15:f7:06:50:02:8e:57:e7:e8:44:5e: 47:cc:46:5f:1e:e6:01:0f:76:40:f0:81:be:d4:84: b5:85:c1:fb:86:4f:09:b6:43:34:de:b7:b3:e8:20: 38:24:59:c9:0d:1b:b5:63:f6:fb:4e:b7:98:3f:36: d9:20:12:f3:4b:09:e6:80:86:b1:73:e0:40:5a:a3: 5d:71:3f:c3:40:0a:69:0e:99:27:f9:42:2a:cd:1c: 7a:59:32:83:64:29:a4:a3:db:01:b4:9b:43:51:dd: 0b:d3:4e:cd:78:5b:8d:8d:bf:cf:da:36:ab:fb:6d: 02:79:46:d2:f2:ed:d9:e9:77:cd:c5:42:0d:6d:20: 16:5d:f5:19:44:3a:7c:f7:8c:69:1d:d4:ea:96:1b: f1:7e:d1:9f:fb:d9:aa:45:f8:cd:19:e2:65:fb:0e: ea:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:67:66:A7:3C:31:B3:58:A1:29:5F:B0:32:53:40:C5:9F:A7:7C:63 X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:9f:ac:be:f3:23:19:17:03:7f:e0:ff:89:7a:a0:0d:51:b1: 0b:e2:8a:0e:29:6f:d8:9b:9b:42:85:49:89:f3:95:86:7a:31: 24:d3:ed:04:2b:8c:73:38:d0:ac:e0:6b:68:f7:d1:71:72:a5: e4:eb:01:4c:2d:6e:15:df:04:4d:ba:e3:ee:f1:49:de:3f:31: 5a:a8:fd:6d:6d:78:58:37:10:36:38:cd:07:ec:e5:36:fd:4b: 0e:df:6a:4d:e9:9a:d7:c0:65:ed:55:11:ef:d5:a3:71:e1:a9: 91:4e:1c:10:9a:2b:f4:3c:8e:c7:d3:ff:50:ef:9b:cb:5b:9c: a9:f2:94:f7:2d:0a:8f:0a:81:dd:1f:31:99:80:72:b7:8f:e0: 5e:07:1b:22:e9:fc:d5:9a:8a:c6:76:5a:6f:96:08:74:d3:2c: 8a:0d:76:ef:c3:c7:95:0d:a7:c5:af:87:90:bf:bd:f1:7e:72: 4e:70:05:e5:1d:64:8e:11:a0:85:58:8c:73:4d:49:bf:ce:f7: 03:fb:68:31:d6:61:53:97:a6:91:2b:62:82:63:58:39:59:a8: 28:6a:dd:77:ee:3a:3e:e7:1a:10:14:74:17:c2:87:5f:27:6b: cc:ad:89:9e:8b:5e:b8:a4:cf:e8:f9:db:44:46:bb:ba:a1:85: 62:89:83:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjUwODIyMTUyMTEyWhcNMjUwODI5MTUyMTEyWjAYMRYwFAYD VQQDEw02OGE4OGFlOC1iZmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9Duukreu1o0KNDuOAzhqGO/o8GcrWW9OZvvHdg0CvCrNrNt+GFg7a/jnDNl oXy1vHrZNL/y+yoop5LzR4MGfMw7qMmpJKGLHiAV1NiQoHzjKUdMXf5gWw4TsX+z FfcGUAKOV+foRF5HzEZfHuYBD3ZA8IG+1IS1hcH7hk8JtkM03rez6CA4JFnJDRu1 Y/b7TreYPzbZIBLzSwnmgIaxc+BAWqNdcT/DQAppDpkn+UIqzRx6WTKDZCmko9sB tJtDUd0L007NeFuNjb/P2jar+20CeUbS8u3Z6XfNxUINbSAWXfUZRDp894xpHdTq lhvxftGf+9mqRfjNGeJl+w7qswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFnZqc8 MbNYoSlfsDJTQMWfp3xjMB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACn6y+8yMZFwN/4P+JeqANUbEL4ooOKW/Ym5tChUmJ85WGejEk0+0E K4xzONCs4Gto99FxcqXk6wFMLW4V3wRNuuPu8UnePzFaqP1tbXhYNxA2OM0H7OU2 /UsO32pN6ZrXwGXtVRHv1aNx4amRThwQmiv0PI7H0/9Q75vLW5yp8pT3LQqPCoHd HzGZgHK3j+BeBxsi6fzVmorGdlpvlgh00yyKDXbvw8eVDafFr4eQv73xfnJOcAXl HWSOEaCFWIxzTUm/zvcD+2gx1mFTl6aRK2KCY1g5Wagoat137jo+5xoQFHQXwodf J2vMrYmei164pM/o+dtERru6oYViiYNR -----END CERTIFICATE-----Generated at Sun Aug 24 04:56:25 2025 by rpki-client