$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft File: _tgXL4qVo1IC1RxvdfqUfehE9M0.mft (raw, json) Hash identifier: LLFHoZG9O98scxVlDdC0mtYnHTk5QmNMXa29OTW93eE= Subject key identifier: D2:A7:34:08:75:2E:2A:FC:E3:65:95:A5:33:AE:AB:E7:0B:2A:AB:2B Authority key identifier: FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD Certificate issuer: /CN=A9198D95/serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft Manifest number: F3 Signing time: Tue 01 Jul 2025 05:45:24 +0000 Manifest this update: Tue 01 Jul 2025 05:45:23 +0000 Manifest next update: Tue 08 Jul 2025 05:45:23 +0000 Files and hashes: 1: _tgXL4qVo1IC1RxvdfqUfehE9M0.crl (hash: ca3gvO1DDU4dbYhUdbcaCMG482T8sO4r8UvvNnx5TrQ=) 2: 994A883AE06511EEA8CEC61EC4F9AE02.roa (hash: LjsOflVWx2ASLq3Z//t4WARlGyPly5HO69O4zsWdHy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:45:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D95, serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Validity Not Before: Jul 1 05:45:23 2025 GMT Not After : Jul 8 05:45:23 2025 GMT Subject: CN=686375f3-65ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d3:23:ee:db:d3:45:6a:df:8f:3a:cb:eb:86: 31:6f:8e:4c:6b:a6:94:5a:8a:b1:0a:2e:dd:e0:f2: 94:f6:d0:cf:bb:af:99:57:8b:66:fc:b5:08:8a:d6: c0:41:78:c3:52:d4:0d:1c:7d:f3:b0:d2:15:b4:9a: 00:9c:10:c3:d2:f5:3c:db:6d:0c:67:54:25:bd:cf: 71:e1:15:7d:49:2b:03:f4:24:a4:6a:5a:8f:02:77: 61:03:3b:e9:24:d9:9f:b6:8d:0e:6e:bb:65:81:6b: 0a:30:9e:89:ad:53:87:d9:5f:dd:0a:82:9c:f4:d8: 47:58:ff:94:66:9b:d6:10:9f:77:0f:cc:33:60:91: 12:f1:70:a3:5f:8d:9c:cf:5b:79:21:d2:14:6b:33: e7:57:2e:54:2b:58:f3:8e:80:2d:e1:69:3e:a5:e4: 59:5c:8c:1f:2e:6b:87:fb:67:7e:9b:bc:f2:d2:2a: 6e:18:3a:30:b3:34:f3:13:31:c9:37:18:20:8a:2f: 0b:4d:8d:a9:ef:78:af:f5:35:f1:b6:e7:92:c6:bf: bd:86:a9:6f:ce:fe:49:2d:b4:98:1c:77:b9:b6:6e: ac:ca:8f:52:ef:9b:b9:cf:c8:fb:18:32:f8:7f:be: 57:f3:e4:aa:47:67:a6:2b:0a:ae:f5:c2:bf:8e:c1: f7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A7:34:08:75:2E:2A:FC:E3:65:95:A5:33:AE:AB:E7:0B:2A:AB:2B X509v3 Authority Key Identifier: keyid:FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:bc:09:61:4f:ef:b7:56:de:ac:8f:bc:c8:2b:21:b6:01:56: 00:ca:7f:40:51:33:55:f1:04:47:4f:6a:e5:21:97:54:4c:7f: d8:32:f3:09:74:4c:09:b3:0a:8c:20:45:0c:ba:36:e0:34:70: 50:97:9d:0d:23:88:53:bf:ae:49:56:0f:51:2b:e9:32:00:f1: 76:10:d1:d7:53:a2:c6:ac:78:e4:e2:c8:46:b7:79:bf:e6:de: ea:0b:91:26:02:4b:f1:2c:82:b1:e6:64:4c:34:8b:12:69:fd: 8e:e6:a1:00:5e:ae:27:83:ca:74:e4:8e:ca:e6:6e:e1:ca:da: 45:34:fd:92:b3:73:a5:39:ca:62:02:9c:82:bd:36:e3:42:16: af:4b:00:f9:81:53:3c:42:e2:8d:ba:fd:99:b5:80:68:59:f6: 74:4b:74:a4:ce:d3:c5:67:7a:a3:54:0f:75:56:29:61:d0:dd: 69:b7:34:b1:2a:df:e5:60:b7:94:4c:b0:0f:c3:0f:d9:93:a2: e9:38:d2:c5:d7:b2:40:1c:22:cb:bb:9e:89:b9:c4:d3:98:60: 34:dc:26:b1:18:6b:4f:a9:04:1c:97:55:24:93:85:6b:5d:a3: 97:e4:55:2f:35:0a:5f:8b:e4:8e:f6:11:6a:ca:b0:c0:96:8d: b1:c8:a9:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEOTUxMTAvBgNVBAUTKEZFRDgxNzJGOEE5NUEzNTIwMkQ1MUM2Rjc1RkE5NDdE RTg0NEY0Q0QwHhcNMjUwNzAxMDU0NTIzWhcNMjUwNzA4MDU0NTIzWjAYMRYwFAYD VQQDEw02ODYzNzVmMy02NWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudMj7tvTRWrfjzrL64Yxb45Ma6aUWoqxCi7d4PKU9tDPu6+ZV4tm/LUIitbA QXjDUtQNHH3zsNIVtJoAnBDD0vU8220MZ1Qlvc9x4RV9SSsD9CSkalqPAndhAzvp JNmfto0ObrtlgWsKMJ6JrVOH2V/dCoKc9NhHWP+UZpvWEJ93D8wzYJES8XCjX42c z1t5IdIUazPnVy5UK1jzjoAt4Wk+peRZXIwfLmuH+2d+m7zy0ipuGDowszTzEzHJ Nxggii8LTY2p73iv9TXxtueSxr+9hqlvzv5JLbSYHHe5tm6syo9S75u5z8j7GDL4 f75X8+SqR2emKwqu9cK/jsH3ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKnNAh1 Lir842WVpTOuq+cLKqsrMB8GA1UdIwQYMBaAFP7YFy+KlaNSAtUcb3X6lH3oRPTN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQ5NS80OEVEMjk2QUUw NjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8xSUMxUnh2ZGZxVWZlaEU5 TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190Z1hMNHFWbzFJQzFSeHZkZnFVZmVoRTlNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQ5NS80OEVEMjk2QUUwNjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8x SUMxUnh2ZGZxVWZlaEU5TTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkvAlhT++3Vt6sj7zIKyG2AVYAyn9AUTNV8QRHT2rlIZdUTH/YMvMJ dEwJswqMIEUMujbgNHBQl50NI4hTv65JVg9RK+kyAPF2ENHXU6LGrHjk4shGt3m/ 5t7qC5EmAkvxLIKx5mRMNIsSaf2O5qEAXq4ng8p05I7K5m7hytpFNP2Ss3OlOcpi ApyCvTbjQhavSwD5gVM8QuKNuv2ZtYBoWfZ0S3SkztPFZ3qjVA91Vilh0N1ptzSx Kt/lYLeUTLAPww/Zk6LpONLF17JAHCLLu56JucTTmGA03CaxGGtPqQQcl1Ukk4Vr XaOX5FUvNQpfi+SO9hFqyrDAlo2xyKkQ -----END CERTIFICATE-----Generated at Thu Jul 3 06:09:07 2025 by rpki-client