$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft File: aTyLTLomsG0s-roPm-TTffDd_z0.mft (raw, json) Hash identifier: Lb1KMtl0wa08SlRFxwNOVnhaurKuKcP0AZropXHLpmo= Subject key identifier: 5E:96:E5:B5:71:CE:C2:7D:9B:50:0C:5E:39:74:FA:8B:98:A0:C6:3D Authority key identifier: 69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D Certificate issuer: /CN=A911ABF4/serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft Manifest number: 1889 Signing time: Fri 08 Aug 2025 17:47:38 +0000 Manifest this update: Fri 08 Aug 2025 17:47:38 +0000 Manifest next update: Fri 15 Aug 2025 17:47:38 +0000 Files and hashes: 1: aTyLTLomsG0s-roPm-TTffDd_z0.crl (hash: 7/6vdUX6kwcuXbmaFLzxNOWKmkUxflbm5Jgajf273iQ=) 2: A5A4E4866D3611F08FF30A86C4F9AE02.roa (hash: 9IEVEed/qQg7h6mrT8ekMyn0JnXizeeUHJOjRag0rxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABF4, serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Validity Not Before: Aug 8 17:47:38 2025 GMT Not After : Aug 15 17:47:38 2025 GMT Subject: CN=6896383a-242b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d2:aa:a7:92:35:09:2d:b4:c9:82:56:cc:92: 99:67:1a:fc:b6:0e:1c:80:0a:ea:5c:cf:c5:0b:65: 0b:20:ab:30:25:a2:2a:68:b8:11:98:8f:c4:ce:1d: c5:ad:ee:fd:0e:d8:f6:33:25:2c:fb:f1:9f:b6:54: c1:f1:62:36:5e:a7:76:ef:8a:7a:dd:ef:a9:2f:84: 2b:92:75:7d:eb:6c:28:8c:2f:49:06:3e:63:ca:a2: be:24:66:ee:cd:17:23:86:fc:e7:d1:81:25:dc:aa: 5e:a6:06:02:0d:34:98:4c:22:88:41:1d:43:6e:60: 21:2b:6b:1b:84:ee:97:ee:07:a2:df:80:ee:a6:f4: 96:7e:51:60:8f:d0:5f:18:12:28:09:7a:6d:03:2f: 93:b0:74:54:fa:72:68:66:d3:8a:14:8b:2a:85:7d: 24:26:07:ee:c6:09:3e:d1:d7:7c:99:54:29:f8:b3: fe:41:03:de:18:75:be:16:74:49:07:96:d2:0c:bd: 9e:fa:8c:87:7b:d8:c7:b7:2a:e1:67:2b:25:7a:5a: 8f:0d:b7:4f:bf:55:4f:5c:46:53:c2:62:87:bf:f2: ed:f8:90:fa:b4:c6:90:a4:63:4b:a7:f4:6a:64:ea: c8:ac:54:0a:da:ae:de:20:fe:9a:39:49:40:8e:c6: b7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:96:E5:B5:71:CE:C2:7D:9B:50:0C:5E:39:74:FA:8B:98:A0:C6:3D X509v3 Authority Key Identifier: keyid:69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:10:07:3f:92:84:e3:0f:fd:10:11:83:5b:7a:6a:7f:1d:4c: 98:5d:63:f4:b4:26:66:c2:91:96:53:62:a4:5e:cc:4b:34:40: 63:86:01:79:ec:fb:e8:cd:68:54:16:0b:a8:70:1b:a8:dc:0f: 5c:79:a7:af:20:8d:5d:7c:14:50:2f:e8:cc:ef:67:68:21:fe: 5e:4d:f2:a6:4d:2c:19:e3:85:cb:d3:d0:e7:cb:13:af:27:f8: 6d:8a:cc:3f:a6:e1:46:00:8e:e6:97:df:9c:a0:33:a7:99:67: 3c:14:a6:21:20:27:be:ff:79:44:26:2c:26:bc:b3:2a:f1:6f: 95:ec:ea:e2:5b:5b:84:83:76:38:a9:ab:41:81:3c:90:f7:40: 67:4a:80:99:34:4f:15:e7:a5:e8:38:0b:b8:76:c3:fa:62:33: 84:04:fa:3f:85:34:4f:b8:bf:f4:22:c5:7c:c9:54:2b:09:cf: 4b:0b:28:d1:fc:35:d3:11:51:8a:63:c7:60:d3:62:4f:23:6e: a1:49:7b:13:58:cc:96:a8:e2:48:0a:4a:9c:7f:ef:73:ef:ab: a2:2e:b2:61:46:77:53:b3:0a:02:4f:e5:d3:51:27:bb:2d:2b: fc:8d:dc:f3:b7:bd:bb:93:85:f2:4a:3e:38:45:89:ec:88:cf: 53:4f:8a:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCRjQxMTAvBgNVBAUTKDY5M0M4QjRDQkEyNkIwNkQyQ0ZBQkEwRjlCRTREMzdE RjBEREZGM0QwHhcNMjUwODA4MTc0NzM4WhcNMjUwODE1MTc0NzM4WjAYMRYwFAYD VQQDEw02ODk2MzgzYS0yNDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9Kqp5I1CS20yYJWzJKZZxr8tg4cgArqXM/FC2ULIKswJaIqaLgRmI/Ezh3F re79Dtj2MyUs+/GftlTB8WI2Xqd274p63e+pL4QrknV962wojC9JBj5jyqK+JGbu zRcjhvzn0YEl3KpepgYCDTSYTCKIQR1DbmAhK2sbhO6X7gei34DupvSWflFgj9Bf GBIoCXptAy+TsHRU+nJoZtOKFIsqhX0kJgfuxgk+0dd8mVQp+LP+QQPeGHW+FnRJ B5bSDL2e+oyHe9jHtyrhZyslelqPDbdPv1VPXEZTwmKHv/Lt+JD6tMaQpGNLp/Rq ZOrIrFQK2q7eIP6aOUlAjsa3cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6W5bVx zsJ9m1AMXjl0+ouYoMY9MB8GA1UdIwQYMBaAFGk8i0y6JrBtLPq6D5vk033w3f89 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJGNC9FQTg3MTg1Qzcy MUIxMUU5QkI3NDgxNTBDNEY5QUUwMi9hVHlMVExvbXNHMHMtcm9QbS1UVGZmRGRf ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUeUxUTG9tc0cwcy1yb1BtLVRUZmZEZF96MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUJGNC9FQTg3MTg1QzcyMUIxMUU5QkI3NDgxNTBDNEY5QUUwMi9hVHlMVExvbXNH MHMtcm9QbS1UVGZmRGRfejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJEAc/koTjD/0QEYNbemp/HUyYXWP0tCZmwpGWU2KkXsxLNEBjhgF5 7PvozWhUFguocBuo3A9ceaevII1dfBRQL+jM72doIf5eTfKmTSwZ44XL09DnyxOv J/htisw/puFGAI7ml9+coDOnmWc8FKYhICe+/3lEJiwmvLMq8W+V7OriW1uEg3Y4 qatBgTyQ90BnSoCZNE8V56XoOAu4dsP6YjOEBPo/hTRPuL/0IsV8yVQrCc9LCyjR /DXTEVGKY8dg02JPI26hSXsTWMyWqOJICkqcf+9z76uiLrJhRndTswoCT+XTUSe7 LSv8jdzzt727k4XySj44RYnsiM9TT4po -----END CERTIFICATE-----Generated at Sat Aug 9 14:27:44 2025 by rpki-client