$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft File: tnwkXksr7q0jwfBd0w_5B32HuOY.mft (raw, json) Hash identifier: SQzRVbVt3UMuSVnoxU1KNVs/2FV6+c+cfHDn8hG65GU= Subject key identifier: 27:23:39:7B:4A:0B:D3:5A:22:E2:1D:10:81:08:E5:2A:65:44:00:FB Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 12BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft Manifest number: 12B7 Signing time: Sun 10 Aug 2025 17:03:52 +0000 Manifest this update: Sun 10 Aug 2025 17:03:52 +0000 Manifest next update: Sun 17 Aug 2025 17:03:52 +0000 Files and hashes: 1: tnwkXksr7q0jwfBd0w_5B32HuOY.crl (hash: bwPM/EKjpW47tMNr+TVr8hNNGGlj/Krt9PCjbJVzTco=) 2: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (hash: n2FBgQHuh988fwkOcnAooQ/jXQmiLgbdWeucP9Cz7sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4798 (0x12be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7, serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: Aug 10 17:03:52 2025 GMT Not After : Aug 17 17:03:52 2025 GMT Subject: CN=6898d0f8-f9ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e5:ab:6f:8d:c6:78:34:7e:05:22:5b:81:e3: a8:00:ca:f7:71:57:6d:7e:ea:9d:7e:29:b0:a3:e4: 5f:4d:9d:08:36:4b:bd:ed:53:e2:c5:5b:79:18:6e: 59:5f:dd:4b:06:02:72:2d:22:e9:6c:e4:c9:e0:2d: 60:d3:87:9b:76:a6:61:05:92:55:b8:44:38:b2:36: e8:d7:df:4e:fe:6c:5c:7f:c4:5c:ff:b0:6c:1a:37: 22:e1:36:88:fd:6d:88:a2:92:c0:04:1e:38:55:82: f6:2a:81:cb:15:4b:a8:79:1f:be:26:1e:05:e9:ec: 73:63:53:cb:27:c2:92:99:3b:02:81:98:c4:1e:56: 55:31:6e:70:be:4e:8a:4e:2d:84:13:00:10:d1:ce: 84:6a:5c:e3:d6:55:e4:e6:e2:f1:84:f0:22:b3:87: 13:71:c0:4d:99:fb:43:59:a6:40:24:ad:27:6c:15: ae:42:6c:d0:9c:5d:32:02:1d:34:b3:59:27:c9:a8: 8a:1c:6f:d1:25:a0:2e:af:a3:31:e3:17:ad:7e:7a: 0f:a2:d0:09:4d:e4:84:23:46:cc:c7:e7:4a:f4:02: 86:f5:ae:d6:6a:e7:25:76:57:23:48:85:1f:29:d2: 05:22:7a:61:ef:f0:05:f2:8d:f6:a9:33:22:5c:76: 8d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:23:39:7B:4A:0B:D3:5A:22:E2:1D:10:81:08:E5:2A:65:44:00:FB X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:f8:aa:66:7c:6c:cf:ff:3f:7e:d6:0e:2f:fe:5e:47:0b:96: 88:f8:25:51:94:a9:45:b6:b3:a9:34:2d:8c:5e:b4:07:8d:bd: 15:8b:5f:5a:c7:4a:33:fb:8a:ba:ee:96:07:eb:eb:34:e0:85: 5d:a9:c8:25:09:3a:3d:6f:99:9d:c3:9a:91:85:d3:36:37:78: f8:bd:ad:d0:e6:f8:19:46:8e:aa:84:f0:e4:34:3a:30:20:f7: 5d:52:41:a8:48:63:9e:1a:63:4d:90:b8:44:cb:8f:95:81:53: 66:71:b9:85:ad:8a:7c:6b:83:dc:8c:45:fc:a0:7a:c0:36:b9: 1f:01:48:ce:9b:71:5a:bd:99:6e:f7:0f:74:9a:20:84:e5:f1: 94:f6:2f:7a:57:62:80:13:ff:5a:5b:b9:f1:68:81:cb:0a:11: c3:b8:30:ce:7d:e9:91:89:0d:b8:e5:91:c8:5a:b1:eb:bd:f3: 05:eb:56:6d:b7:62:e3:ff:c9:77:7b:03:7c:41:9e:b0:3a:f4: 39:b6:ec:81:0e:02:32:09:9f:a4:b3:8e:89:da:22:9a:a4:44: f2:11:c8:6e:0b:41:08:7a:5a:43:c0:1a:e4:1d:ef:83:4f:aa: a5:a9:4d:57:66:ed:6a:96:08:7e:99:66:18:80:90:12:3c:9a: 0d:e8:50:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjUwODEwMTcwMzUyWhcNMjUwODE3MTcwMzUyWjAYMRYwFAYD VQQDEw02ODk4ZDBmOC1mOWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+Wrb43GeDR+BSJbgeOoAMr3cVdtfuqdfimwo+RfTZ0INku97VPixVt5GG5Z X91LBgJyLSLpbOTJ4C1g04ebdqZhBZJVuEQ4sjbo199O/mxcf8Rc/7BsGjci4TaI /W2IopLABB44VYL2KoHLFUuoeR++Jh4F6exzY1PLJ8KSmTsCgZjEHlZVMW5wvk6K Ti2EEwAQ0c6Ealzj1lXk5uLxhPAis4cTccBNmftDWaZAJK0nbBWuQmzQnF0yAh00 s1knyaiKHG/RJaAur6Mx4xetfnoPotAJTeSEI0bMx+dK9AKG9a7WaucldlcjSIUf KdIFInph7/AF8o32qTMiXHaNKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcjOXtK C9NaIuIdEIEI5SplRAD7MB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZDNy9DODU2RDZDNEM2QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdx MGp3ZkJkMHdfNUIzMkh1T1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS+KpmfGzP/z9+1g4v/l5HC5aI+CVRlKlFtrOpNC2MXrQHjb0Vi19a x0oz+4q67pYH6+s04IVdqcglCTo9b5mdw5qRhdM2N3j4va3Q5vgZRo6qhPDkNDow IPddUkGoSGOeGmNNkLhEy4+VgVNmcbmFrYp8a4PcjEX8oHrANrkfAUjOm3FavZlu 9w90miCE5fGU9i96V2KAE/9aW7nxaIHLChHDuDDOfemRiQ245ZHIWrHrvfMF61Zt t2Lj/8l3ewN8QZ6wOvQ5tuyBDgIyCZ+ks46J2iKapETyEchuC0EIelpDwBrkHe+D T6qlqU1XZu1qlgh+mWYYgJASPJoN6FAR -----END CERTIFICATE-----Generated at Mon Aug 11 09:36:54 2025 by rpki-client