$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft File: tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft (raw, json) Hash identifier: PkSZorfch9JI3wvrbRuPdU/1D/PI7MGppzkgz5l7Xr0= Subject key identifier: 2E:DB:F4:FD:A0:FA:F2:C2:48:AE:52:C3:03:47:63:64:84:91:36:CB Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft Manifest number: 0116 Signing time: Thu 03 Jul 2025 05:02:32 +0000 Manifest this update: Thu 03 Jul 2025 05:02:32 +0000 Manifest next update: Thu 10 Jul 2025 05:02:32 +0000 Files and hashes: 1: tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl (hash: 2x0ntHwMliUHtae3TvOB/T3JjYc5UAyk42HYthDzIpk=) 2: 4074E5EA7B1D11EFB5696E45C4F9AE02.roa (hash: 1SdPp/miyItNAEGeBSAKuJFOP+wIUKHiHtHU72zXu1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: Jul 3 05:02:32 2025 GMT Not After : Jul 10 05:02:32 2025 GMT Subject: CN=68660ee8-ca56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ee:f4:89:5a:89:69:3e:3b:9f:dd:65:f2:c4: b9:4b:03:9a:56:87:25:ce:b0:d4:06:57:c9:e2:3f: 03:ee:79:dd:f0:26:27:1a:02:01:e5:03:9d:61:f2: 09:4c:30:0f:a1:84:93:c4:70:3f:b2:e3:45:37:cc: 61:47:bc:a3:74:96:41:66:e1:55:16:6d:7f:e3:75: ed:31:f6:d9:72:1d:51:15:82:e7:05:c3:11:d5:d9: f4:e8:f1:ec:a7:01:51:7c:d3:c2:b0:2f:d0:5a:07: be:a9:68:32:f7:13:82:db:47:69:05:76:3b:8c:c3: 88:e9:f0:a4:17:1f:72:1b:50:e0:95:86:70:ca:71: 63:bd:13:ea:02:44:ac:5a:be:2b:ba:06:b0:df:da: 89:ac:39:b5:ca:c3:08:8f:2c:2a:65:63:3f:c5:b1: 24:49:b0:9c:96:36:e4:73:98:f6:af:15:d9:49:be: 91:6e:73:24:4a:f3:65:2c:0b:27:ba:11:8d:07:d4: 32:ed:2d:18:c6:75:90:92:ea:01:fc:86:8e:7f:72: 2e:2a:28:94:3b:e3:f5:73:f1:d3:b5:86:49:40:4d: 1b:6a:56:92:eb:65:a2:f2:a4:95:6a:3c:bb:51:cc: fc:e1:e2:ef:f7:71:75:ef:28:45:49:13:92:70:22: 1d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:DB:F4:FD:A0:FA:F2:C2:48:AE:52:C3:03:47:63:64:84:91:36:CB X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:ec:67:ab:22:04:ed:c2:85:d7:e6:43:8d:46:d8:65:22:80: 73:d5:7c:5c:fd:b7:96:d2:ea:b4:5d:fe:1d:28:26:f0:0a:4e: d5:2f:fd:a5:5f:bc:14:12:37:c3:0e:af:4b:be:84:cd:e2:57: ae:f2:58:79:7c:b0:ac:f3:92:3c:d1:d8:b0:7b:19:18:fb:3f: 80:c7:8b:a4:e0:b4:32:5e:39:c1:80:59:ab:18:5d:e8:ca:c3: 5e:24:37:87:0c:75:05:93:1d:cd:24:89:20:f5:52:99:19:f8: b4:ea:17:0d:82:35:11:00:8c:9a:6b:02:a6:a2:58:10:4c:3d: f2:bb:e2:be:dc:11:e7:8f:7a:8f:10:15:88:52:03:59:e7:4c: ef:09:93:4a:c9:ac:fd:b9:9b:96:82:74:a7:0c:c4:b7:8f:05: 87:14:d6:fe:40:73:8a:04:ce:df:28:36:1d:ec:14:51:d6:56: 37:bb:5a:55:46:2f:8a:ec:c9:6c:e8:98:d5:cc:17:b8:9a:f4: a1:e9:e9:43:96:2b:27:76:c2:23:96:0b:53:47:1d:af:e4:1b: 11:97:46:f6:8a:47:b1:e0:4d:ec:9e:87:11:69:45:28:2c:dd: 8e:35:0d:bf:86:c2:56:18:ab:d8:bb:4c:92:9c:46:ba:ba:b9: f2:73:49:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjUwNzAzMDUwMjMyWhcNMjUwNzEwMDUwMjMyWjAYMRYwFAYD VQQDEw02ODY2MGVlOC1jYTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoe70iVqJaT47n91l8sS5SwOaVoclzrDUBlfJ4j8D7nnd8CYnGgIB5QOdYfIJ TDAPoYSTxHA/suNFN8xhR7yjdJZBZuFVFm1/43XtMfbZch1RFYLnBcMR1dn06PHs pwFRfNPCsC/QWge+qWgy9xOC20dpBXY7jMOI6fCkFx9yG1DglYZwynFjvRPqAkSs Wr4rugaw39qJrDm1ysMIjywqZWM/xbEkSbCcljbkc5j2rxXZSb6RbnMkSvNlLAsn uhGNB9Qy7S0YxnWQkuoB/IaOf3IuKiiUO+P1c/HTtYZJQE0balaS62Wi8qSVajy7 Ucz84eLv93F17yhFSROScCIdzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC7b9P2g +vLCSK5SwwNHY2SEkTbLMB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCRC8zNTcwREYyRUIxMTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFk SzVQeXcxSEtzazBWQnFyQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB67GerIgTtwoXX5kONRthlIoBz1Xxc/beW0uq0Xf4dKCbwCk7VL/2l X7wUEjfDDq9LvoTN4leu8lh5fLCs85I80diwexkY+z+Ax4uk4LQyXjnBgFmrGF3o ysNeJDeHDHUFkx3NJIkg9VKZGfi06hcNgjURAIyaawKmolgQTD3yu+K+3BHnj3qP EBWIUgNZ50zvCZNKyaz9uZuWgnSnDMS3jwWHFNb+QHOKBM7fKDYd7BRR1lY3u1pV Ri+K7Mls6JjVzBe4mvSh6elDlisndsIjlgtTRx2v5BsRl0b2ikex4E3snocRaUUo LN2ONQ2/hsJWGKvYu0ySnEa6urnyc0le -----END CERTIFICATE-----Generated at Thu Jul 3 23:10:15 2025 by rpki-client