$ rpki-client -vvf rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft File: T4QeODPgrG_hvu69ABI10VKOzno.mft (raw, json) Hash identifier: muJ09MCCAT+uIehIrl51e5Pb1uOclui6sVSBLJ1j5gs= Subject key identifier: E1:1A:2D:DF:93:1F:AD:0E:AD:17:5A:3C:22:EC:DA:70:CB:8C:05:77 Authority key identifier: 4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A Certificate issuer: /CN=A913AF6A/serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft Manifest number: 0128 Signing time: Sat 09 Aug 2025 05:00:08 +0000 Manifest this update: Sat 09 Aug 2025 05:00:07 +0000 Manifest next update: Sat 16 Aug 2025 05:00:07 +0000 Files and hashes: 1: T4QeODPgrG_hvu69ABI10VKOzno.crl (hash: Yl9UyEvVRrSULVJoW6lDibniXroHqIQfolZQcA1qA+I=) 2: 658B1AC8AE4711EE8C130419C4F9AE02.roa (hash: pBuyb8tUeoDi0BGNU1PyCW1Le78/gB9wiXHTRO2r0pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AF6A, serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Validity Not Before: Aug 9 05:00:07 2025 GMT Not After : Aug 16 05:00:07 2025 GMT Subject: CN=6896d5d8-715b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b3:d0:8b:a2:b0:9b:af:66:8b:cb:7f:35:ae: fc:44:1d:89:66:90:25:64:ce:6c:70:16:f8:a9:fa: 98:1b:a9:40:e3:b8:b3:5e:42:d3:19:4f:e3:f7:20: 75:d4:04:9f:a7:b3:29:96:45:8c:fb:22:18:e8:72: 6e:24:f5:f0:ec:4d:e6:73:3e:c9:a1:53:1b:56:5a: fa:3f:26:b0:6f:c8:90:74:ff:b2:94:86:bb:fc:79: 78:ba:81:80:b8:08:72:35:f4:10:89:72:25:1b:53: 07:46:b9:3f:a6:0f:8a:52:1d:9e:fb:4a:a3:33:8d: 44:1b:cd:12:5d:f8:8e:06:55:23:d1:28:cc:cb:6f: 88:97:a5:ca:b9:75:07:30:e8:ec:0b:04:31:9d:71: dc:2a:a1:79:3a:3c:fe:9c:f3:4a:8e:ab:b9:83:3c: ee:d8:f1:4d:3e:24:22:a1:11:01:da:c9:e4:2d:6a: ac:d2:57:5e:8c:b2:17:7d:bd:9e:3d:a0:60:f3:3c: 1a:9e:95:c0:c4:e0:a3:70:a4:6f:3d:17:9d:42:aa: 05:ce:29:97:65:a9:50:57:42:0c:e6:30:e4:dd:47: 80:05:24:d9:1a:f0:43:25:0f:ec:a7:2b:b1:a0:ba: 93:5d:c8:24:c7:a7:69:4b:1a:09:b8:3a:16:37:06: 93:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:1A:2D:DF:93:1F:AD:0E:AD:17:5A:3C:22:EC:DA:70:CB:8C:05:77 X509v3 Authority Key Identifier: keyid:4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:49:0b:43:14:8a:c0:39:26:07:ed:2e:93:65:01:cc:17:81: 48:da:86:91:15:c8:74:59:43:02:e1:67:c7:15:73:e4:5c:b3: 6d:d0:c2:84:7b:df:98:75:72:95:83:ad:a1:c2:b7:72:e5:af: 5e:eb:5e:04:fd:b6:60:9a:bc:af:df:ce:04:ec:d2:13:cb:ae: e6:8b:2f:14:2f:33:6b:a9:f4:0e:01:33:87:fe:49:3d:3a:44: 33:4b:5e:a0:2e:d5:52:40:3b:5b:95:8b:14:16:32:23:71:88: ed:33:10:82:a7:4f:47:c5:22:3a:86:93:37:c0:fe:bc:8a:12: 53:44:f0:38:33:2f:08:01:9f:de:d5:9c:30:b8:73:6a:e2:b1: 34:cc:92:ce:d6:48:fa:6e:6d:4f:d1:f2:fa:c3:63:95:f9:b8: 9d:ae:26:5e:08:6c:0c:e7:cf:87:85:09:5e:c6:1a:2d:85:20: bc:b9:29:6e:9d:50:1b:f2:20:10:48:75:43:6f:53:7f:82:0d: 0c:35:b3:7a:96:89:8f:98:e4:d8:d4:f0:a0:86:0d:af:65:15: ec:79:67:4c:c4:74:92:ec:25:34:ea:6e:c9:e6:5b:58:cd:8c: 87:06:76:a7:97:3f:85:47:e4:0d:3e:be:4a:72:1f:3e:37:6a: 16:4b:70:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FGNkExMTAvBgNVBAUTKDRGODQxRTM4MzNFMEFDNkZFMUJFRUVCRDAwMTIzNUQx NTI4RUNFN0EwHhcNMjUwODA5MDUwMDA3WhcNMjUwODE2MDUwMDA3WjAYMRYwFAYD VQQDEw02ODk2ZDVkOC03MTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrPQi6Kwm69mi8t/Na78RB2JZpAlZM5scBb4qfqYG6lA47izXkLTGU/j9yB1 1ASfp7MplkWM+yIY6HJuJPXw7E3mcz7JoVMbVlr6Pyawb8iQdP+ylIa7/Hl4uoGA uAhyNfQQiXIlG1MHRrk/pg+KUh2e+0qjM41EG80SXfiOBlUj0SjMy2+Il6XKuXUH MOjsCwQxnXHcKqF5Ojz+nPNKjqu5gzzu2PFNPiQioREB2snkLWqs0ldejLIXfb2e PaBg8zwanpXAxOCjcKRvPRedQqoFzimXZalQV0IM5jDk3UeABSTZGvBDJQ/spyux oLqTXcgkx6dpSxoJuDoWNwaT1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEaLd+T H60OrRdaPCLs2nDLjAV3MB8GA1UdIwQYMBaAFE+EHjgz4Kxv4b7uvQASNdFSjs56 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUY2QS84MzdDRDM0NkFF NDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JHX2h2dTY5QUJJMTBWS096 bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1Q0UWVPRFBnckdfaHZ1NjlBQkkxMFZLT3puby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUY2QS84MzdDRDM0NkFFNDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JH X2h2dTY5QUJJMTBWS096bm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjSQtDFIrAOSYH7S6TZQHMF4FI2oaRFch0WUMC4WfHFXPkXLNt0MKE e9+YdXKVg62hwrdy5a9e614E/bZgmryv384E7NITy67miy8ULzNrqfQOATOH/kk9 OkQzS16gLtVSQDtblYsUFjIjcYjtMxCCp09HxSI6hpM3wP68ihJTRPA4My8IAZ/e 1ZwwuHNq4rE0zJLO1kj6bm1P0fL6w2OV+bidriZeCGwM58+HhQlexhothSC8uSlu nVAb8iAQSHVDb1N/gg0MNbN6lomPmOTY1PCghg2vZRXseWdMxHSS7CU06m7J5ltY zYyHBnanlz+FR+QNPr5Kch8+N2oWS3CU -----END CERTIFICATE-----Generated at Sun Aug 10 21:01:30 2025 by rpki-client