$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft File: tYgfusqd6_Rspghj0pd8U_3WwZA.mft (raw, json) Hash identifier: kOYI4/1lqxgUTIWsshONkk49WvbP08y8h+WhAqoja34= Subject key identifier: 8F:29:E5:DE:99:E1:43:8A:1D:B1:E3:FD:56:65:5E:03:33:A2:80:64 Authority key identifier: B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 Certificate issuer: /CN=A9188D2D/serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft Manifest number: 01E8 Signing time: Sat 23 Aug 2025 02:42:07 +0000 Manifest this update: Sat 23 Aug 2025 02:42:07 +0000 Manifest next update: Sat 30 Aug 2025 02:42:07 +0000 Files and hashes: 1: tYgfusqd6_Rspghj0pd8U_3WwZA.crl (hash: 6B9w6a6PuI5h8w4mzgxReJ6JcOTJPX1SiYHnmdJvth0=) 2: D9D943568FFC11ED9776CB38C4F9AE02.roa (hash: CAQTwJ95TZU81HKb4Y7lVQbfnRcyYnVzCOwyM749MwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D2D, serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Validity Not Before: Aug 23 02:42:07 2025 GMT Not After : Aug 30 02:42:07 2025 GMT Subject: CN=68a92a7f-f514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f6:8b:0a:f6:0e:e5:6f:7a:86:68:89:8b:c4: f2:46:cf:fe:c4:0d:99:b6:47:9d:58:67:fa:46:3a: 67:a3:54:ad:3f:ec:73:bf:a0:f7:33:9b:04:43:74: da:fc:e4:ad:95:18:fc:05:da:3e:fd:fa:bd:74:c3: f6:bf:71:c9:82:29:41:19:9e:59:99:3b:e6:09:26: b0:5b:59:d2:94:d6:87:bc:00:25:2d:fd:dc:56:39: 13:ba:8b:4b:0d:f5:96:8b:91:76:50:1a:4b:b6:14: d2:0f:97:53:5b:25:c3:35:41:f6:4c:5b:6e:ab:46: d8:cf:6d:65:bf:ec:c2:89:06:85:f9:91:1f:17:5b: 19:1c:ae:4a:cb:a8:30:1d:17:7d:d4:2a:ce:89:c1: 82:0c:d4:9b:1c:b2:f4:45:98:3d:43:ef:6d:e6:cd: ac:07:4f:55:4c:fb:3e:15:4f:ee:e1:ee:5c:25:47: ed:f7:fb:bb:ac:c2:d4:3a:1c:ae:03:f6:6a:db:e1: bc:a8:19:f8:4d:ab:c6:1a:6e:53:e9:22:79:ac:7c: 02:bb:c8:9a:8d:30:92:c3:aa:75:58:ef:9e:10:2e: 55:2a:bd:5f:56:fc:51:ee:e0:0a:37:1b:f2:03:89: 56:62:34:83:98:97:8f:27:75:21:7d:43:ba:91:ac: 79:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:29:E5:DE:99:E1:43:8A:1D:B1:E3:FD:56:65:5E:03:33:A2:80:64 X509v3 Authority Key Identifier: keyid:B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:93:d0:0c:be:89:57:92:0f:8b:1a:b6:70:95:e5:37:49:41: 84:2b:33:c9:41:1b:eb:0b:51:8c:b7:3d:f5:1d:3d:9f:89:11: 5b:bd:62:18:0f:f4:91:4e:35:0a:5c:0d:0f:b4:97:dd:6e:01: f7:e8:32:73:e3:e5:5b:9d:2d:ee:bb:0a:3b:41:01:04:88:66: 42:82:41:88:a3:fe:2a:31:80:51:33:0f:78:10:5c:19:b4:59: 48:4d:1c:2d:10:42:4b:72:3e:50:a5:0a:4b:51:da:8b:61:87: cb:83:91:a5:5e:5c:12:e4:0e:7a:d2:df:25:59:f3:bd:c7:82: ad:d3:d2:41:70:18:d8:7a:39:fb:33:09:e3:78:14:53:1c:46: bd:79:49:64:9a:f7:14:59:ce:10:cb:33:e6:db:d4:a1:81:9e: 5b:8d:44:1f:3d:d6:7b:93:20:e9:ef:80:69:29:5d:ee:dc:2b: 9c:ba:60:b3:7d:01:f4:64:b6:db:70:f0:f1:62:cc:ff:d3:a5: fc:75:6e:5c:73:82:ba:cb:af:eb:76:d0:52:f0:ac:95:5a:fa: 84:72:77:5e:32:94:af:f1:70:db:b8:8b:4b:62:61:56:81:44: db:5d:f5:58:9e:76:5f:9c:e0:77:c4:5a:c4:7a:c2:79:1d:e4: 2f:59:1d:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEMkQxMTAvBgNVBAUTKEI1ODgxRkJBQ0E5REVCRjQ2Q0E2MDg2M0QyOTc3QzUz RkRENkMxOTAwHhcNMjUwODIzMDI0MjA3WhcNMjUwODMwMDI0MjA3WjAYMRYwFAYD VQQDEw02OGE5MmE3Zi1mNTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7PaLCvYO5W96hmiJi8TyRs/+xA2ZtkedWGf6Rjpno1StP+xzv6D3M5sEQ3Ta /OStlRj8Bdo+/fq9dMP2v3HJgilBGZ5ZmTvmCSawW1nSlNaHvAAlLf3cVjkTuotL DfWWi5F2UBpLthTSD5dTWyXDNUH2TFtuq0bYz21lv+zCiQaF+ZEfF1sZHK5Ky6gw HRd91CrOicGCDNSbHLL0RZg9Q+9t5s2sB09VTPs+FU/u4e5cJUft9/u7rMLUOhyu A/Zq2+G8qBn4TavGGm5T6SJ5rHwCu8iajTCSw6p1WO+eEC5VKr1fVvxR7uAKNxvy A4lWYjSDmJePJ3UhfUO6kax53wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8p5d6Z 4UOKHbHj/VZlXgMzooBkMB8GA1UdIwQYMBaAFLWIH7rKnev0bKYIY9KXfFP91sGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQyRC9BMDY4MkEwNDhG RjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZfUnNwZ2hqMHBkOFVfM1d3 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZZ2Z1c3FkNl9Sc3BnaGowcGQ4VV8zV3daQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEQyRC9BMDY4MkEwNDhGRjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZf UnNwZ2hqMHBkOFVfM1d3WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPk9AMvolXkg+LGrZwleU3SUGEKzPJQRvrC1GMtz31HT2fiRFbvWIY D/SRTjUKXA0PtJfdbgH36DJz4+VbnS3uuwo7QQEEiGZCgkGIo/4qMYBRMw94EFwZ tFlITRwtEEJLcj5QpQpLUdqLYYfLg5GlXlwS5A560t8lWfO9x4Kt09JBcBjYejn7 MwnjeBRTHEa9eUlkmvcUWc4QyzPm29ShgZ5bjUQfPdZ7kyDp74BpKV3u3CucumCz fQH0ZLbbcPDxYsz/06X8dW5cc4K6y6/rdtBS8KyVWvqEcndeMpSv8XDbuItLYmFW gUTbXfVYnnZfnOB3xFrEesJ5HeQvWR3Y -----END CERTIFICATE-----Generated at Sat Aug 23 14:26:39 2025 by rpki-client