$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft File: tYgfusqd6_Rspghj0pd8U_3WwZA.mft (raw, json) Hash identifier: 7NzB3GOBd6bpF1UV0kvcFd7ETZSFmPrOBjAxnQKm00I= Subject key identifier: A1:87:40:A5:66:F5:CF:23:EA:15:94:86:83:4E:DC:3D:CB:5D:E6:13 Authority key identifier: B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 Certificate issuer: /CN=A9188D2D/serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Certificate serial: 01D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft Manifest number: 01CD Signing time: Tue 01 Jul 2025 03:15:20 +0000 Manifest this update: Tue 01 Jul 2025 03:15:19 +0000 Manifest next update: Tue 08 Jul 2025 03:15:19 +0000 Files and hashes: 1: tYgfusqd6_Rspghj0pd8U_3WwZA.crl (hash: vPq5MnYiC3e3phKsjRxtNyn2RqvSnwgk7nxYs394Kno=) 2: D9D943568FFC11ED9776CB38C4F9AE02.roa (hash: CAQTwJ95TZU81HKb4Y7lVQbfnRcyYnVzCOwyM749MwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:15:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D2D, serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Validity Not Before: Jul 1 03:15:19 2025 GMT Not After : Jul 8 03:15:19 2025 GMT Subject: CN=686352c8-9332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:4d:8f:65:11:ba:8b:29:9f:f6:78:93:02:41: 82:1e:bd:58:87:df:aa:0c:2c:0a:00:02:17:a0:18: 7c:13:1f:87:2b:e0:20:4a:9a:77:fc:d9:01:d7:3e: a5:9d:3e:bd:7d:89:c6:94:1c:cb:4e:b7:cd:c6:1d: fc:c5:f4:c0:5d:5f:cd:ca:a0:77:34:4e:e4:e5:62: 9b:fb:14:4c:82:e3:56:39:0b:bc:ec:c7:01:42:3d: b6:7e:09:97:b6:03:73:26:da:c4:60:c5:36:61:a4: 5f:2e:ff:58:bf:0f:ae:4c:ce:93:0b:b3:e3:9b:0c: a2:0d:48:a9:7e:a2:02:ab:c9:b7:b0:66:d7:0c:cd: 11:3f:99:d8:1d:40:29:0e:a2:05:37:fd:bc:77:ce: bd:81:08:9e:44:42:a5:12:10:a4:6a:5c:d8:1c:da: a7:4e:71:f2:32:91:72:47:a0:aa:78:e3:2f:e5:81: d8:fd:cf:ac:8e:0d:84:55:ae:a1:58:60:a0:8c:fb: ba:da:99:82:39:76:4e:75:32:b6:0e:9a:11:21:25: 51:fd:5a:33:b2:48:e8:30:0e:d1:b2:17:fa:f2:2b: 2c:cf:72:dd:dc:a1:e2:10:39:a6:18:90:e8:2a:d0: 85:8d:34:71:12:60:a7:ca:7f:bc:37:7d:3c:d2:d4: 10:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:87:40:A5:66:F5:CF:23:EA:15:94:86:83:4E:DC:3D:CB:5D:E6:13 X509v3 Authority Key Identifier: keyid:B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:72:19:72:4c:2a:81:c4:06:e5:eb:29:91:35:3a:68:b4:e9: 4a:45:48:d0:e7:69:cb:33:93:79:ff:9f:8e:56:a9:56:97:2f: b8:8c:49:99:4b:8f:41:5d:5b:d7:16:03:b0:5f:46:09:e5:4d: 17:36:52:2f:f9:63:b3:07:24:59:c2:c6:f7:c5:ac:f6:18:86: f2:8f:92:37:6f:6b:22:ba:e2:c8:d5:13:d6:47:71:a5:26:29: b1:be:12:aa:05:d3:a6:c8:10:5f:b9:b0:b5:f2:7a:83:b5:dc: 33:89:b6:c8:6b:d6:69:5b:5d:16:73:d9:d1:12:b4:ef:df:90: 0d:df:d7:6c:8c:8b:a9:67:5a:84:f4:03:78:32:89:c2:66:84: f7:ef:48:11:f8:33:0c:88:41:3b:60:37:39:af:4f:1e:c2:b4: a4:07:54:43:b6:21:65:90:bc:19:a8:55:4d:b2:60:7d:8b:12: d5:21:a2:3d:c1:5b:ca:4e:03:2a:94:95:c1:ea:9d:6b:26:c8: f2:d0:86:c7:80:98:d7:de:d1:f3:bd:6e:49:48:cb:6e:d1:05: 07:a9:91:30:e8:62:c7:b6:89:c6:56:2c:45:86:16:c4:8d:d8: 40:fa:c8:a9:ce:2b:0f:9b:9b:e9:39:9d:21:58:a6:93:ac:5d: fa:bc:21:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEMkQxMTAvBgNVBAUTKEI1ODgxRkJBQ0E5REVCRjQ2Q0E2MDg2M0QyOTc3QzUz RkRENkMxOTAwHhcNMjUwNzAxMDMxNTE5WhcNMjUwNzA4MDMxNTE5WjAYMRYwFAYD VQQDEw02ODYzNTJjOC05MzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7U2PZRG6iymf9niTAkGCHr1Yh9+qDCwKAAIXoBh8Ex+HK+AgSpp3/NkB1z6l nT69fYnGlBzLTrfNxh38xfTAXV/NyqB3NE7k5WKb+xRMguNWOQu87McBQj22fgmX tgNzJtrEYMU2YaRfLv9Yvw+uTM6TC7PjmwyiDUipfqICq8m3sGbXDM0RP5nYHUAp DqIFN/28d869gQieREKlEhCkalzYHNqnTnHyMpFyR6CqeOMv5YHY/c+sjg2EVa6h WGCgjPu62pmCOXZOdTK2DpoRISVR/VozskjoMA7Rshf68issz3Ld3KHiEDmmGJDo KtCFjTRxEmCnyn+8N3080tQQQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGHQKVm 9c8j6hWUhoNO3D3LXeYTMB8GA1UdIwQYMBaAFLWIH7rKnev0bKYIY9KXfFP91sGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQyRC9BMDY4MkEwNDhG RjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZfUnNwZ2hqMHBkOFVfM1d3 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZZ2Z1c3FkNl9Sc3BnaGowcGQ4VV8zV3daQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEQyRC9BMDY4MkEwNDhGRjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZf UnNwZ2hqMHBkOFVfM1d3WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFchlyTCqBxAbl6ymRNTpotOlKRUjQ52nLM5N5/5+OVqlWly+4jEmZ S49BXVvXFgOwX0YJ5U0XNlIv+WOzByRZwsb3xaz2GIbyj5I3b2siuuLI1RPWR3Gl JimxvhKqBdOmyBBfubC18nqDtdwzibbIa9ZpW10Wc9nRErTv35AN39dsjIupZ1qE 9AN4MonCZoT370gR+DMMiEE7YDc5r08ewrSkB1RDtiFlkLwZqFVNsmB9ixLVIaI9 wVvKTgMqlJXB6p1rJsjy0IbHgJjX3tHzvW5JSMtu0QUHqZEw6GLHtonGVixFhhbE jdhA+sipzisPm5vpOZ0hWKaTrF36vCHm -----END CERTIFICATE-----Generated at Tue Jul 1 20:55:00 2025 by rpki-client