$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: zmu/qQgPdGh14qfLz86MYCA5tX9KmYuV47eIftMNF0c= Subject key identifier: 7E:B4:8D:E0:B7:D9:54:D2:86:EA:CB:99:59:0A:5C:84:43:4A:CB:6C Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 0A50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 0A48 Signing time: Sun 10 Aug 2025 19:44:21 +0000 Manifest this update: Sun 10 Aug 2025 19:44:21 +0000 Manifest next update: Sun 17 Aug 2025 19:44:21 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: AOaHEMCihDMG9UVtY5VtkKDxOCAopQJNFSGsXtFwvNg=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: 3RxABu3KC/9hSKHYQMzVVe4gdoAQgiDaudG41V9QJ3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2640 (0xa50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309, serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: Aug 10 19:44:21 2025 GMT Not After : Aug 17 19:44:21 2025 GMT Subject: CN=6898f695-a193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:47:a1:3e:73:e3:f2:6e:7a:5b:17:b8:4a:54: 0d:dd:52:77:a6:eb:fc:8b:17:16:ae:a9:37:b1:34: d7:cc:a9:6c:ff:53:26:ce:99:2b:3f:28:f7:52:04: 8f:7c:77:58:74:4d:c8:b8:28:61:e9:cf:9e:9a:21: 4f:34:f6:79:d1:b8:f4:3d:d4:ed:41:05:53:f2:38: b7:2f:fa:c9:67:97:5f:c4:e4:59:d8:ac:76:58:83: ca:7a:ec:26:06:49:37:7e:a4:c6:20:96:85:66:3b: 73:64:d5:38:23:50:d8:43:6e:50:03:25:85:db:33: e7:21:53:a2:f3:cd:93:c4:cd:26:e2:d3:8b:ec:90: f0:93:4c:ab:4d:c8:0e:71:3d:11:3f:0b:e9:8e:26: 8b:c2:8f:2d:dd:a0:e0:c1:9a:3a:9a:73:8b:6b:cf: bf:85:36:b3:89:66:7b:e6:6f:f2:5c:45:ae:5f:ad: 34:4b:5e:77:02:60:90:22:91:4c:34:7b:b6:7e:ad: c8:d5:18:24:f2:35:0a:38:4b:e6:d4:e7:22:fc:d8: cd:77:19:2d:cd:0d:44:0e:84:90:40:55:e8:6c:97: 7c:de:41:c4:32:a1:fb:32:15:72:7a:b6:92:ae:6f: 07:5f:5f:71:02:af:c3:fe:03:31:ca:5e:f9:b6:8e: 6f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:B4:8D:E0:B7:D9:54:D2:86:EA:CB:99:59:0A:5C:84:43:4A:CB:6C X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:b4:90:f6:9e:d9:ab:88:0d:de:3b:32:18:53:be:6c:04:3c: 77:9b:fe:0b:a3:1f:a4:60:1d:5f:9a:b8:d6:ae:83:c8:35:47: ec:15:7b:4d:46:72:8c:9c:6f:b1:be:92:96:0e:2a:c7:a5:af: 6b:dd:13:c4:7f:f5:bf:7c:27:fd:cc:fe:d6:c9:b4:c7:98:7c: 42:07:92:73:43:02:30:83:95:49:d4:b8:65:fd:c8:f3:53:c4: 63:c9:94:d0:44:44:93:a8:9e:89:d8:22:9f:e3:d6:4e:04:ab: ef:86:91:25:4c:cd:f6:9b:77:59:73:57:35:a9:16:51:aa:ce: 70:8f:3f:ce:cd:e0:31:a3:75:84:f6:fd:9b:96:2a:82:76:2d: ed:ab:3a:76:85:02:0f:5a:1b:3f:56:ae:c1:f4:99:2e:8f:c0: c3:91:17:71:8f:53:d5:be:51:3b:ee:7f:f3:57:21:f8:18:34: 72:8b:b4:ff:5e:e8:63:4c:55:5c:d0:c9:8a:2a:e6:a9:87:ef: 80:d0:6f:49:df:bc:8d:42:90:18:43:a4:1d:fe:b2:c4:bf:2b: 66:af:ea:4d:e8:d6:05:89:6e:26:f6:7b:8d:5c:2c:20:ea:52: b4:c3:e1:f3:82:80:7d:73:d8:0e:a9:aa:61:ca:18:9d:f2:b5: 5a:52:cd:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjUwODEwMTk0NDIxWhcNMjUwODE3MTk0NDIxWjAYMRYwFAYD VQQDEw02ODk4ZjY5NS1hMTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2UehPnPj8m56Wxe4SlQN3VJ3puv8ixcWrqk3sTTXzKls/1MmzpkrPyj3UgSP fHdYdE3IuChh6c+emiFPNPZ50bj0PdTtQQVT8ji3L/rJZ5dfxORZ2Kx2WIPKeuwm Bkk3fqTGIJaFZjtzZNU4I1DYQ25QAyWF2zPnIVOi882TxM0m4tOL7JDwk0yrTcgO cT0RPwvpjiaLwo8t3aDgwZo6mnOLa8+/hTaziWZ75m/yXEWuX600S153AmCQIpFM NHu2fq3I1Rgk8jUKOEvm1Oci/NjNdxktzQ1EDoSQQFXobJd83kHEMqH7MhVyeraS rm8HX19xAq/D/gMxyl75to5vLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH60jeC3 2VTShurLmVkKXIRDSstsMB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxtJD2ntmriA3eOzIYU75sBDx3m/4Lox+kYB1fmrjWroPINUfsFXtN RnKMnG+xvpKWDirHpa9r3RPEf/W/fCf9zP7WybTHmHxCB5JzQwIwg5VJ1Lhl/cjz U8RjyZTQRESTqJ6J2CKf49ZOBKvvhpElTM32m3dZc1c1qRZRqs5wjz/OzeAxo3WE 9v2bliqCdi3tqzp2hQIPWhs/Vq7B9Jkuj8DDkRdxj1PVvlE77n/zVyH4GDRyi7T/ XuhjTFVc0MmKKuaph++A0G9J37yNQpAYQ6Qd/rLEvytmr+pN6NYFiW4m9nuNXCwg 6lK0w+HzgoB9c9gOqaphyhid8rVaUs18 -----END CERTIFICATE-----Generated at Sun Aug 10 21:07:28 2025 by rpki-client