$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft File: tnwkXksr7q0jwfBd0w_5B32HuOY.mft (raw, json) Hash identifier: YMq8xdd9rJvuxNbsFPN5lzCPCf66/loXPksWdCK4YGA= Subject key identifier: 0A:88:3F:7E:F6:ED:46:D9:6C:D4:E6:F7:85:C3:46:7C:5E:56:15:96 Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 12A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft Manifest number: 129A Signing time: Sat 14 Jun 2025 17:01:37 +0000 Manifest this update: Sat 14 Jun 2025 17:01:36 +0000 Manifest next update: Sat 21 Jun 2025 17:01:36 +0000 Files and hashes: 1: tnwkXksr7q0jwfBd0w_5B32HuOY.crl (hash: 5lkvshllWu43NjJ6ot7plSZ5smwGZHP1tnCacz6nAoY=) 2: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (hash: n2FBgQHuh988fwkOcnAooQ/jXQmiLgbdWeucP9Cz7sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4769 (0x12a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7, serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: Jun 14 17:01:36 2025 GMT Not After : Jun 21 17:01:36 2025 GMT Subject: CN=684daaf1-abb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b3:3b:61:b4:d5:32:d0:ba:30:0d:10:b8:2f: a9:f4:ac:b3:1c:ac:f5:be:c5:b2:2c:9b:8d:d6:62: eb:28:f8:24:7d:24:34:e7:0c:15:58:8e:1f:65:67: ef:5a:4a:df:01:53:1a:c0:3a:55:ee:6f:06:92:14: d3:bd:d3:56:e8:10:18:5e:61:50:75:e8:eb:f8:ed: c1:8e:6a:e7:e3:48:53:7e:be:79:6d:58:92:ed:d2: e2:70:8c:fd:8f:1a:e9:01:f7:ab:99:75:67:e4:fb: bc:94:4f:02:84:93:e5:6b:bc:9c:d2:2d:db:83:0d: 74:54:ec:45:ef:cb:d3:ec:ee:4d:f6:10:ee:e4:46: a8:80:8a:60:c3:5c:2e:34:0a:c0:19:2d:e5:42:8d: dd:b1:c6:df:b8:34:d5:16:46:bc:47:37:3f:03:a7: 22:4d:b2:12:74:df:4b:e4:c2:7c:c4:2a:63:38:d4: e5:48:28:b6:64:43:e0:2c:bf:50:f3:a0:d4:e0:0d: 0a:30:b6:9b:d1:59:02:d7:fe:85:61:1c:e3:b0:3b: 9e:c1:76:c0:05:5e:01:8a:53:83:b0:97:8e:c6:2f: c8:e6:af:e4:76:cb:7b:5e:88:65:ab:3a:2b:39:63: 15:01:bd:53:61:37:96:5c:5a:a0:f1:20:ba:46:cb: 09:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:88:3F:7E:F6:ED:46:D9:6C:D4:E6:F7:85:C3:46:7C:5E:56:15:96 X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:c2:10:c4:9c:ba:07:41:55:b5:b5:5c:7b:d6:dc:a6:01:43: e4:7f:aa:ed:e8:3d:ed:cd:b1:49:07:50:03:6b:25:d8:1c:37: b4:31:1d:36:7c:38:72:b5:68:62:1e:1b:ae:38:e6:99:5d:80: c5:9a:1f:6a:69:9b:69:3c:3e:ad:c4:0a:0e:9b:9a:f2:15:af: aa:19:98:ce:39:67:cc:c9:28:c4:be:bb:61:d4:13:64:7a:ed: d3:e5:68:44:a2:99:c7:17:46:c9:5b:38:48:0e:b1:12:0a:17: 1a:bf:fd:f0:71:4d:79:ad:7f:16:95:ed:87:18:77:a5:af:06: df:c4:a2:36:0d:66:27:00:f5:d8:f7:50:4d:0a:60:92:19:7f: cb:45:b1:de:8c:1d:b0:fc:91:ec:f4:25:23:13:7a:ff:9f:85: 76:d9:ee:c9:ae:d6:db:9f:2f:15:56:cf:d3:b7:e0:89:ba:de: 24:49:0c:58:b5:df:c3:e7:57:ff:5e:11:2e:2b:d8:2f:99:12: 93:c5:f5:2d:f3:e7:71:a8:81:6e:25:f6:b0:5a:17:8d:06:97: 25:21:62:de:c1:f7:ab:c2:53:77:b3:5d:87:3a:52:4e:93:5e: c6:38:37:c9:7f:85:bc:32:4f:5e:40:c8:55:51:39:09:5a:8f: f6:db:cb:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjUwNjE0MTcwMTM2WhcNMjUwNjIxMTcwMTM2WjAYMRYwFAYD VQQDEw02ODRkYWFmMS1hYmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLM7YbTVMtC6MA0QuC+p9KyzHKz1vsWyLJuN1mLrKPgkfSQ05wwVWI4fZWfv WkrfAVMawDpV7m8GkhTTvdNW6BAYXmFQdejr+O3Bjmrn40hTfr55bViS7dLicIz9 jxrpAfermXVn5Pu8lE8ChJPla7yc0i3bgw10VOxF78vT7O5N9hDu5EaogIpgw1wu NArAGS3lQo3dscbfuDTVFka8Rzc/A6ciTbISdN9L5MJ8xCpjONTlSCi2ZEPgLL9Q 86DU4A0KMLab0VkC1/6FYRzjsDuewXbABV4BilODsJeOxi/I5q/kdst7Xohlqzor OWMVAb1TYTeWXFqg8SC6RssJ3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqIP372 7UbZbNTm94XDRnxeVhWWMB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZDNy9DODU2RDZDNEM2QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdx MGp3ZkJkMHdfNUIzMkh1T1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTwhDEnLoHQVW1tVx71tymAUPkf6rt6D3tzbFJB1ADayXYHDe0MR02 fDhytWhiHhuuOOaZXYDFmh9qaZtpPD6txAoOm5ryFa+qGZjOOWfMySjEvrth1BNk eu3T5WhEopnHF0bJWzhIDrESChcav/3wcU15rX8Wle2HGHelrwbfxKI2DWYnAPXY 91BNCmCSGX/LRbHejB2w/JHs9CUjE3r/n4V22e7Jrtbbny8VVs/Tt+CJut4kSQxY td/D51f/XhEuK9gvmRKTxfUt8+dxqIFuJfawWheNBpclIWLewferwlN3s12HOlJO k17GODfJf4W8Mk9eQMhVUTkJWo/228sa -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:21 2025 by rpki-client