$ rpki-client -vvf rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft File: TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft (raw, json) Hash identifier: f5oMKPjZna8OZlpEFN4VPRXuZL3ps+D3M5RnweTrhkw= Subject key identifier: 40:D0:9E:DB:02:75:27:4E:C8:83:48:59:0E:AC:89:1E:47:7F:CF:75 Authority key identifier: 4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 Certificate issuer: /CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft Manifest number: 0191 Signing time: Sat 09 Aug 2025 03:50:53 +0000 Manifest this update: Sat 09 Aug 2025 03:50:52 +0000 Manifest next update: Sat 16 Aug 2025 03:50:52 +0000 Files and hashes: 1: TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl (hash: pPkw/S2UbtEV9JbBupLjCZEVa9SDhUpSYDgRPHTV5ok=) 2: 5EAB725014A211EEA889E832C4F9AE02.roa (hash: mX0oS42d4Afnuz1c6BL0lN1MWESAc87z/AqUedcAt4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D271, serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Validity Not Before: Aug 9 03:50:52 2025 GMT Not After : Aug 16 03:50:52 2025 GMT Subject: CN=6896c59c-8e91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:41:5e:2a:1a:9b:bc:6f:5d:90:0f:21:3c:21: 79:ce:6d:ec:cf:f2:5e:58:60:d9:05:3a:8c:f1:c7: 02:a7:f9:22:e4:a6:fc:0a:12:e1:d6:b8:2d:73:15: 1c:5c:0b:18:36:f5:77:47:0a:65:a5:db:26:88:fa: 76:e5:4b:85:b4:61:7b:71:86:6d:c0:68:e2:b5:2b: fb:d4:63:23:a6:cf:57:38:d2:86:e4:22:05:94:48: ba:a2:a2:84:38:f9:10:ec:28:fe:38:ff:7a:d5:a3: 1b:49:89:ba:a6:8b:94:9f:32:2a:74:91:d7:c8:50: 5c:56:50:50:58:fa:e3:88:96:89:e6:22:f3:97:bc: a7:c7:52:f8:c0:e9:8e:fe:b7:04:0d:1a:ef:37:17: 9e:5c:38:af:32:89:ef:a0:84:e6:75:10:f2:0f:af: 72:d4:63:8b:32:2c:40:b8:be:e8:e0:8d:30:a7:d3: e5:ba:d5:80:83:41:50:a0:2f:c0:fd:fb:8d:26:12: 49:c7:70:10:9e:78:e1:70:db:bb:43:31:50:6b:7f: e4:f1:2b:15:3a:12:60:b6:e6:5b:ba:24:79:5c:51: cd:f8:74:85:0e:93:52:eb:45:ca:7d:dd:ef:d5:71: 27:6b:22:52:7a:4c:9a:1e:10:b7:4c:d3:a6:54:5e: d0:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D0:9E:DB:02:75:27:4E:C8:83:48:59:0E:AC:89:1E:47:7F:CF:75 X509v3 Authority Key Identifier: keyid:4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:b9:9e:56:45:3e:84:e3:02:52:a4:11:33:f7:f2:95:a3:00: 59:a5:fe:1e:b5:33:33:b1:97:20:d0:66:d6:38:09:0c:68:92: a6:29:7e:6e:62:90:50:7f:29:09:f7:b1:5d:22:13:62:4f:22: 77:20:08:9c:c1:05:3f:a9:39:ab:1a:ab:88:ad:62:0d:42:cd: 36:9d:59:71:f9:53:48:4d:e3:3c:6f:d2:20:71:a4:42:03:89: a3:18:a5:e2:65:cd:2d:5f:a8:fd:84:3f:f8:5a:a5:34:49:20: 12:dd:63:95:8c:ff:06:53:41:b2:df:85:13:38:06:f1:93:c5: 8d:5d:c9:39:28:fa:52:4c:3a:db:86:45:d8:5f:63:f7:d8:55: 91:53:91:9b:1e:fe:83:bb:4f:fe:69:0c:91:13:26:21:c9:d1: 44:4a:df:19:d0:ef:13:77:d7:c9:88:0a:8a:9c:cd:99:70:1d: ba:57:6b:0d:ee:e3:5c:76:ec:f8:8d:fc:f8:94:29:56:27:1b: 40:31:c5:bc:e8:7b:e4:5c:0a:83:0b:13:60:7c:4c:20:43:16: 30:3d:6b:df:52:ef:43:46:38:44:d8:25:ae:8f:de:80:88:dd: cc:67:a7:06:ae:b2:45:cd:53:f3:28:f8:8a:d5:dd:0b:fb:0f: 46:90:3a:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNzExMTAvBgNVBAUTKDRDRUVFRTZEMzY2M0MxM0ZEODJFOTMxREFDNjlGMTcw NDZGQzk5QjMwHhcNMjUwODA5MDM1MDUyWhcNMjUwODE2MDM1MDUyWjAYMRYwFAYD VQQDEw02ODk2YzU5Yy04ZTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9UFeKhqbvG9dkA8hPCF5zm3sz/JeWGDZBTqM8ccCp/ki5Kb8ChLh1rgtcxUc XAsYNvV3RwplpdsmiPp25UuFtGF7cYZtwGjitSv71GMjps9XONKG5CIFlEi6oqKE OPkQ7Cj+OP961aMbSYm6pouUnzIqdJHXyFBcVlBQWPrjiJaJ5iLzl7ynx1L4wOmO /rcEDRrvNxeeXDivMonvoITmdRDyD69y1GOLMixAuL7o4I0wp9PlutWAg0FQoC/A /fuNJhJJx3AQnnjhcNu7QzFQa3/k8SsVOhJgtuZbuiR5XFHN+HSFDpNS60XKfd3v 1XEnayJSekyaHhC3TNOmVF7Q3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDQntsC dSdOyINIWQ6siR5Hf891MB8GA1UdIwQYMBaAFEzu7m02Y8E/2C6THaxp8XBG/Jmz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI3MS8yODE0RjBERTEx QjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandUX1lMcE1kckdueGNFYjht Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RPN3ViVFpqd1RfWUxwTWRyR254Y0ViOG1iTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI3MS8yODE0RjBERTExQjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandU X1lMcE1kckdueGNFYjhtYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFuZ5WRT6E4wJSpBEz9/KVowBZpf4etTMzsZcg0GbWOAkMaJKmKX5u YpBQfykJ97FdIhNiTyJ3IAicwQU/qTmrGquIrWINQs02nVlx+VNITeM8b9IgcaRC A4mjGKXiZc0tX6j9hD/4WqU0SSAS3WOVjP8GU0Gy34UTOAbxk8WNXck5KPpSTDrb hkXYX2P32FWRU5GbHv6Du0/+aQyREyYhydFESt8Z0O8Td9fJiAqKnM2ZcB26V2sN 7uNcduz4jfz4lClWJxtAMcW86HvkXAqDCxNgfEwgQxYwPWvfUu9DRjhE2CWuj96A iN3MZ6cGrrJFzVPzKPiK1d0L+w9GkDo6 -----END CERTIFICATE-----Generated at Mon Aug 11 04:11:20 2025 by rpki-client