$ rpki-client -vvf rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft File: tNHFfu7y2pEKr3lGCpvLIab80v0.mft (raw, json) Hash identifier: nhX/adSDg3QIR+GlnYvbkr/9cgugfB6gwC0IQQXKniQ= Subject key identifier: A4:A6:4A:D1:16:A7:D7:39:9B:8C:1C:8D:FD:54:D1:E0:42:CB:F3:BA Authority key identifier: B4:D1:C5:7E:EE:F2:DA:91:0A:AF:79:46:0A:9B:CB:21:A6:FC:D2:FD Certificate issuer: /CN=A916A033/serialNumber=B4D1C57EEEF2DA910AAF79460A9BCB21A6FCD2FD Certificate serial: 0778 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNHFfu7y2pEKr3lGCpvLIab80v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft Manifest number: 076C Signing time: Mon 04 Aug 2025 21:56:12 +0000 Manifest this update: Mon 04 Aug 2025 21:56:12 +0000 Manifest next update: Mon 11 Aug 2025 21:56:12 +0000 Files and hashes: 1: tNHFfu7y2pEKr3lGCpvLIab80v0.crl (hash: P6YatYRPfbDgOSzNttSLogV3bQ95U/GXbkdPxYARlcw=) 2: EB0FEBAA295811EBB519AC70C4F9AE02.roa (hash: 23TiuLPxAaSrXTY2xFHwDsaNfyE9NetpuIlQb209liA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.crl rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNHFfu7y2pEKr3lGCpvLIab80v0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 21:56:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1912 (0x778) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A033, serialNumber=B4D1C57EEEF2DA910AAF79460A9BCB21A6FCD2FD Validity Not Before: Aug 4 21:56:12 2025 GMT Not After : Aug 11 21:56:12 2025 GMT Subject: CN=68912c7c-5928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a9:84:56:8b:60:95:e7:0e:cc:5c:43:5a:67: 91:c2:98:28:24:ce:00:69:fb:1f:40:19:84:81:d6: 6e:93:06:54:e5:d7:47:5f:7f:0f:38:2c:2c:6a:ed: 46:5f:73:d7:da:9c:28:7b:33:1b:b6:aa:b9:0f:3e: 40:13:3d:2e:c3:7f:3c:1f:36:21:0a:aa:4d:52:42: 67:c2:81:0e:fb:7a:f9:93:80:46:9d:ce:e7:f8:ca: 23:0d:55:cd:18:8f:4b:7e:e4:70:95:18:00:8e:69: d6:5f:18:45:3c:d1:69:bf:99:17:bb:b9:83:a2:e7: 81:a7:43:0e:5d:eb:ef:cc:cb:04:45:c8:c9:f2:02: 0e:4b:da:ac:3c:75:61:60:6b:4e:49:58:af:e6:d1: 3d:08:e6:66:a2:fb:9e:aa:07:97:e0:a2:2c:4d:56: 80:59:8c:d7:34:26:96:73:3e:3c:72:f3:92:db:10: c0:f6:a3:6b:eb:a5:29:c5:d2:a7:1e:1c:ef:14:60: 65:80:e9:0e:9e:3c:27:b9:cc:34:28:47:00:27:5e: 08:79:f4:19:ac:5d:60:3d:cd:fb:f5:32:a6:5b:63: 92:0a:6c:a2:db:1c:b0:97:98:a3:ef:3e:a3:04:a1: 13:c3:aa:61:ba:da:37:66:fc:07:83:11:29:98:97: 13:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:A6:4A:D1:16:A7:D7:39:9B:8C:1C:8D:FD:54:D1:E0:42:CB:F3:BA X509v3 Authority Key Identifier: keyid:B4:D1:C5:7E:EE:F2:DA:91:0A:AF:79:46:0A:9B:CB:21:A6:FC:D2:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNHFfu7y2pEKr3lGCpvLIab80v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:0f:7e:81:b3:cc:58:2f:2b:28:85:2f:cb:03:ff:bd:86:f1: 5c:5f:85:ff:dc:0f:f5:51:55:05:4f:1e:c8:aa:75:a0:e5:11: 5f:11:21:46:e0:b8:b2:74:15:4a:90:d8:36:6b:78:0a:30:aa: 0b:4f:2e:47:0a:8f:5e:9e:55:be:36:20:1b:a9:48:eb:f2:97: 51:ae:71:5b:7b:17:ff:1c:ea:df:38:6c:bd:0a:84:46:73:57: 7f:a7:07:85:e5:ce:f8:90:4b:e4:af:3c:c5:a4:6a:69:06:2f: bc:8f:03:15:2b:11:4d:16:30:25:46:42:fc:b1:5a:f6:54:81: 3d:56:22:16:94:10:62:03:21:96:3e:51:b7:2b:6c:7b:b6:e9: 8e:4a:e9:27:37:d4:c2:f0:5d:af:61:cd:45:f0:c4:1c:65:e8: 7e:75:10:9f:af:cf:e7:a4:50:f9:22:9d:b4:74:69:b5:a8:c9: 01:92:8e:bc:cc:15:46:bc:f6:75:06:7f:03:60:10:14:6f:a4: 6e:5b:cb:38:c8:b3:b0:c1:b9:9d:5c:d8:91:38:40:e5:73:d2: ed:a9:f3:4a:b3:87:f7:d3:22:5b:cb:a5:1d:f4:ea:4c:e2:df: 21:17:5d:b6:65:2c:9a:95:4e:40:2d:85:80:b5:64:cf:f3:79: 39:f1:f6:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwMzMxMTAvBgNVBAUTKEI0RDFDNTdFRUVGMkRBOTEwQUFGNzk0NjBBOUJDQjIx QTZGQ0QyRkQwHhcNMjUwODA0MjE1NjEyWhcNMjUwODExMjE1NjEyWjAYMRYwFAYD VQQDEw02ODkxMmM3Yy01OTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtamEVotglecOzFxDWmeRwpgoJM4AafsfQBmEgdZukwZU5ddHX38POCwsau1G X3PX2pwoezMbtqq5Dz5AEz0uw388HzYhCqpNUkJnwoEO+3r5k4BGnc7n+MojDVXN GI9LfuRwlRgAjmnWXxhFPNFpv5kXu7mDoueBp0MOXevvzMsERcjJ8gIOS9qsPHVh YGtOSViv5tE9COZmovueqgeX4KIsTVaAWYzXNCaWcz48cvOS2xDA9qNr66UpxdKn HhzvFGBlgOkOnjwnucw0KEcAJ14IefQZrF1gPc379TKmW2OSCmyi2xywl5ij7z6j BKETw6phuto3ZvwHgxEpmJcTVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSmStEW p9c5m4wcjf1U0eBCy/O6MB8GA1UdIwQYMBaAFLTRxX7u8tqRCq95RgqbyyGm/NL9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTAzMy84QkFFOEI4ODI5 NEIxMUVCQTBCQzkwMkZDNEY5QUUwMi90TkhGZnU3eTJwRUtyM2xHQ3B2TElhYjgw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROSEZmdTd5MnBFS3IzbEdDcHZMSWFiODB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTAzMy84QkFFOEI4ODI5NEIxMUVCQTBCQzkwMkZDNEY5QUUwMi90TkhGZnU3eTJw RUtyM2xHQ3B2TElhYjgwdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUD36Bs8xYLysohS/LA/+9hvFcX4X/3A/1UVUFTx7IqnWg5RFfESFG 4LiydBVKkNg2a3gKMKoLTy5HCo9enlW+NiAbqUjr8pdRrnFbexf/HOrfOGy9CoRG c1d/pweF5c74kEvkrzzFpGppBi+8jwMVKxFNFjAlRkL8sVr2VIE9ViIWlBBiAyGW PlG3K2x7tumOSuknN9TC8F2vYc1F8MQcZeh+dRCfr8/npFD5Ip20dGm1qMkBko68 zBVGvPZ1Bn8DYBAUb6RuW8s4yLOwwbmdXNiROEDlc9LtqfNKs4f30yJby6Ud9OpM 4t8hF122ZSyalU5ALYWAtWTP83k58fay -----END CERTIFICATE-----Generated at Wed Aug 6 10:12:52 2025 by rpki-client