$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft File: _tgXL4qVo1IC1RxvdfqUfehE9M0.mft (raw, json) Hash identifier: feWo68MPcaInCT6AhGDvEDBP78mi9tv1QYquXMaeoqU= Subject key identifier: 54:4B:AA:3F:A9:1B:54:B4:E9:DA:A5:38:20:ED:3A:5F:F4:DC:21:A2 Authority key identifier: FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD Certificate issuer: /CN=A9198D95/serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft Manifest number: 010E Signing time: Sat 23 Aug 2025 05:04:29 +0000 Manifest this update: Sat 23 Aug 2025 05:04:29 +0000 Manifest next update: Sat 30 Aug 2025 05:04:29 +0000 Files and hashes: 1: _tgXL4qVo1IC1RxvdfqUfehE9M0.crl (hash: cMsv68+uz06O1MFA41hYe33Wh6ZJyyk4+bIU1Zynwn0=) 2: 994A883AE06511EEA8CEC61EC4F9AE02.roa (hash: LjsOflVWx2ASLq3Z//t4WARlGyPly5HO69O4zsWdHy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:04:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D95, serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Validity Not Before: Aug 23 05:04:29 2025 GMT Not After : Aug 30 05:04:29 2025 GMT Subject: CN=68a94bdd-fd6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:5f:0a:c6:15:83:82:1d:cd:d6:af:e9:fa:5e: 83:0c:a0:8c:59:c2:73:94:84:e2:ce:3a:f9:1d:a0: f5:b9:ed:75:d1:b2:af:9c:90:8c:52:8e:36:a4:52: 17:b0:49:20:e6:ef:8d:f2:64:f9:35:ca:68:1f:6e: e8:64:ce:cd:67:64:72:2f:1d:d3:04:1e:53:94:a8: 74:4a:52:b6:b4:9e:fb:97:cb:b7:b7:95:12:ce:3e: 77:f0:ab:ea:9a:cd:eb:03:df:b7:84:f4:b2:f1:3d: d7:95:28:61:aa:a7:a1:56:fa:73:f9:80:f6:8d:7f: e6:71:65:05:77:af:60:d9:fd:8a:32:ec:41:85:52: 3c:85:32:a4:3d:2b:ed:12:f9:c9:84:65:be:d0:5d: 10:71:a0:b9:cd:6c:ab:11:95:d3:8e:a4:e4:ce:cd: be:e4:ed:bf:d4:d3:d8:9a:af:8c:80:4e:03:41:01: 0a:5b:1c:e6:d9:38:df:43:5c:cb:23:50:0d:8b:8b: 40:8b:b2:f5:df:44:12:50:7c:b7:52:88:7a:19:2b: fc:4c:c6:8c:e0:2d:5f:0a:26:8c:34:0a:fd:48:4d: 75:42:88:22:19:19:ed:97:43:2c:3f:5d:a1:a3:aa: 41:1d:d2:9d:18:72:59:9d:0a:bd:b3:88:14:91:4d: 0b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:4B:AA:3F:A9:1B:54:B4:E9:DA:A5:38:20:ED:3A:5F:F4:DC:21:A2 X509v3 Authority Key Identifier: keyid:FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:d4:a3:7f:7f:39:90:f7:09:5b:a3:37:88:fa:9d:3c:a0:c8: 31:7c:a4:f8:a7:c8:72:da:b2:6b:02:d0:46:b9:0b:0b:e5:0e: 63:31:6d:47:80:b3:d8:56:df:22:47:99:c0:cf:f2:32:d3:04: c8:20:98:02:48:8e:38:ad:75:d1:cb:2f:69:3e:0a:01:15:6c: d6:f9:6f:81:3c:9e:ac:60:4e:63:4f:9f:5d:2e:73:e7:d6:9a: c1:74:bd:96:29:75:c6:c4:ae:1a:94:08:08:5b:6c:3b:c8:ca: 80:44:82:9b:5a:50:b9:1d:91:1a:98:7e:09:76:f9:15:02:78: 8a:22:19:44:a1:1c:91:08:f8:88:00:65:3e:9c:a7:ae:6f:0f: ee:05:d4:3e:74:34:81:ab:70:11:94:7f:fb:19:3e:15:50:99: 07:81:59:e4:6c:5f:32:c6:65:33:39:9e:41:52:e6:96:d8:ea: b4:6a:e5:5f:2e:75:dc:ba:b8:bc:c1:25:b8:a4:4c:65:f7:b0: 83:1f:48:f4:43:72:32:cd:d5:9d:c2:6e:33:87:78:b0:a5:d6: d5:dc:ad:a2:8c:84:59:ba:b3:48:13:a5:29:47:d2:d2:e7:aa: 1a:f7:5f:2c:eb:fc:d4:b9:2f:52:a7:82:80:7f:07:b7:5d:19: dc:aa:ab:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEOTUxMTAvBgNVBAUTKEZFRDgxNzJGOEE5NUEzNTIwMkQ1MUM2Rjc1RkE5NDdE RTg0NEY0Q0QwHhcNMjUwODIzMDUwNDI5WhcNMjUwODMwMDUwNDI5WjAYMRYwFAYD VQQDEw02OGE5NGJkZC1mZDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3l8KxhWDgh3N1q/p+l6DDKCMWcJzlITizjr5HaD1ue110bKvnJCMUo42pFIX sEkg5u+N8mT5NcpoH27oZM7NZ2RyLx3TBB5TlKh0SlK2tJ77l8u3t5USzj538Kvq ms3rA9+3hPSy8T3XlShhqqehVvpz+YD2jX/mcWUFd69g2f2KMuxBhVI8hTKkPSvt EvnJhGW+0F0QcaC5zWyrEZXTjqTkzs2+5O2/1NPYmq+MgE4DQQEKWxzm2TjfQ1zL I1ANi4tAi7L130QSUHy3Uoh6GSv8TMaM4C1fCiaMNAr9SE11QogiGRntl0MsP12h o6pBHdKdGHJZnQq9s4gUkU0LfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFRLqj+p G1S06dqlOCDtOl/03CGiMB8GA1UdIwQYMBaAFP7YFy+KlaNSAtUcb3X6lH3oRPTN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQ5NS80OEVEMjk2QUUw NjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8xSUMxUnh2ZGZxVWZlaEU5 TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190Z1hMNHFWbzFJQzFSeHZkZnFVZmVoRTlNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQ5NS80OEVEMjk2QUUwNjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8x SUMxUnh2ZGZxVWZlaEU5TTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy1KN/fzmQ9wlbozeI+p08oMgxfKT4p8hy2rJrAtBGuQsL5Q5jMW1H gLPYVt8iR5nAz/Iy0wTIIJgCSI44rXXRyy9pPgoBFWzW+W+BPJ6sYE5jT59dLnPn 1prBdL2WKXXGxK4alAgIW2w7yMqARIKbWlC5HZEamH4JdvkVAniKIhlEoRyRCPiI AGU+nKeubw/uBdQ+dDSBq3ARlH/7GT4VUJkHgVnkbF8yxmUzOZ5BUuaW2Oq0auVf LnXcuri8wSW4pExl97CDH0j0Q3IyzdWdwm4zh3iwpdbV3K2ijIRZurNIE6UpR9LS 56oa918s6/zUuS9Sp4KAfwe3XRncqqt8 -----END CERTIFICATE-----Generated at Sat Aug 23 19:39:47 2025 by rpki-client