$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft File: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft (raw, json) Hash identifier: 0Pbr7gUlGzidKZh4emoArA1X5GDawVxGqi8UStR9F5E= Subject key identifier: 5C:0F:E5:4E:6F:04:56:A7:EF:B0:16:7A:5A:57:9E:95:CF:4F:48:BC Authority key identifier: 4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B Certificate issuer: /CN=A916C4BC/serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Certificate serial: 0462 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft Manifest number: 045E Signing time: Thu 12 Jun 2025 23:44:22 +0000 Manifest this update: Thu 12 Jun 2025 23:44:21 +0000 Manifest next update: Thu 19 Jun 2025 23:44:21 +0000 Files and hashes: 1: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl (hash: MJEcl1FSeySAspBX4LGuBtJwa5uCVIHpqNdByZKRFtQ=) 2: F593443851B011ECB5188E24C4F9AE02.roa (hash: CA35rH85+j+YJMr1xe8QwPujExClO3AIGNQ5xuf0vDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:44:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1122 (0x462) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4BC, serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Validity Not Before: Jun 12 23:44:21 2025 GMT Not After : Jun 19 23:44:21 2025 GMT Subject: CN=684b6656-7319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4a:36:c8:7b:e9:5c:a5:49:ae:a8:b2:05:72: b7:a5:cf:fa:b4:99:c4:22:3c:d5:2a:9a:1b:6a:48: 98:66:aa:61:32:37:7f:9c:f2:a9:50:72:6f:e4:a0: 28:b5:1e:c9:75:20:4e:cc:2f:e1:2a:eb:fe:a1:c2: 19:cd:3e:d2:36:33:6f:53:3e:b8:39:8a:7e:0e:a8: 98:a8:bc:ea:94:05:0a:02:44:db:0f:54:7f:c9:34: bc:7f:aa:4b:f9:45:7f:ac:6b:0b:b3:66:ee:36:28: 62:67:d6:7a:2f:92:7b:24:8e:58:3c:26:e7:3e:2b: 4c:bd:2f:d3:b7:0a:4b:86:9a:55:a4:29:ac:44:64: 3c:27:48:e9:af:5f:91:c8:a1:09:01:c8:51:94:a9: 6e:f9:5a:63:2e:bb:5d:0a:11:29:d8:3c:84:81:d1: 63:e6:c3:c6:44:d6:1f:33:49:4a:fa:a3:c7:01:da: a0:1e:bc:75:af:7c:cc:e8:83:21:b8:b4:4f:67:ec: 71:a0:f9:7f:cd:26:8a:48:18:6b:13:bd:52:a8:27: 68:1a:8e:e5:e7:a1:1f:6d:08:7f:81:2e:84:c0:3f: eb:a0:06:74:b5:07:2c:ad:60:d9:5a:5b:e6:08:68: 1c:4b:21:4e:a0:ff:a7:33:f9:8a:00:41:6e:46:1b: d2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0F:E5:4E:6F:04:56:A7:EF:B0:16:7A:5A:57:9E:95:CF:4F:48:BC X509v3 Authority Key Identifier: keyid:4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:a8:8b:6a:21:b4:ab:2a:f8:a3:8f:79:95:21:f4:b6:98:32: 69:fb:32:81:d6:7c:6a:23:42:6c:92:87:5b:c7:5d:b4:f4:f2: 1e:9d:a9:a0:ef:32:f5:20:71:9a:f7:a4:f6:bb:cb:2e:5f:05: b3:56:a3:cf:c4:f3:62:e4:b8:f0:cc:78:0a:1b:98:a5:e5:ad: 66:4f:08:df:16:5c:97:ce:81:89:cf:b4:f2:a5:a3:ad:a5:1a: 4b:05:73:9b:b3:9a:94:b4:29:ea:02:7f:7d:5a:44:08:98:29: 13:e7:e8:38:ff:9b:60:1f:48:1e:48:07:32:15:09:2f:a2:59: f0:40:6c:fa:7b:3f:0a:d5:af:31:9b:25:bd:5d:7e:c6:86:52: 35:2c:4b:82:7e:8b:88:ff:ea:9d:04:bb:c9:b4:24:08:86:ab: 76:bf:da:df:92:03:7b:c3:7c:75:ce:bf:05:cd:65:fc:b8:12: 40:75:55:3d:9d:5c:46:91:be:e0:f2:88:6b:b4:0d:ac:27:bd: 20:04:33:e5:3d:80:95:b1:f4:f9:94:a2:4c:3e:7a:1d:27:32: 27:eb:bf:e5:d4:e4:7d:0d:76:99:95:d2:a0:d0:7c:39:65:be: 04:61:4c:b0:db:2a:5b:bd:c0:d7:3c:ff:bf:bb:66:7d:51:0e: 00:35:a0:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0QkMxMTAvBgNVBAUTKDRERkVDMzQzN0M5MEJGNDE0RDA1MTg4QjQ4MkM3ODQ4 RTZGMzE2MUIwHhcNMjUwNjEyMjM0NDIxWhcNMjUwNjE5MjM0NDIxWjAYMRYwFAYD VQQDEw02ODRiNjY1Ni03MzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEo2yHvpXKVJrqiyBXK3pc/6tJnEIjzVKpobakiYZqphMjd/nPKpUHJv5KAo tR7JdSBOzC/hKuv+ocIZzT7SNjNvUz64OYp+DqiYqLzqlAUKAkTbD1R/yTS8f6pL +UV/rGsLs2buNihiZ9Z6L5J7JI5YPCbnPitMvS/TtwpLhppVpCmsRGQ8J0jpr1+R yKEJAchRlKlu+VpjLrtdChEp2DyEgdFj5sPGRNYfM0lK+qPHAdqgHrx1r3zM6IMh uLRPZ+xxoPl/zSaKSBhrE71SqCdoGo7l56EfbQh/gS6EwD/roAZ0tQcsrWDZWlvm CGgcSyFOoP+nM/mKAEFuRhvSEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwP5U5v BFan77AWelpXnpXPT0i8MB8GA1UdIwQYMBaAFE3+w0N8kL9BTQUYi0gseEjm8xYb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRCQy9BOTcwQjJFQzUx QUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYwRk5CUmlMU0N4NFNPYnpG aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RmN0RRM3lRdjBGTkJSaUxTQ3g0U09iekZocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRCQy9BOTcwQjJFQzUxQUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYw Rk5CUmlMU0N4NFNPYnpGaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0qItqIbSrKvijj3mVIfS2mDJp+zKB1nxqI0Jskodbx1209PIenamg 7zL1IHGa96T2u8suXwWzVqPPxPNi5LjwzHgKG5il5a1mTwjfFlyXzoGJz7TypaOt pRpLBXObs5qUtCnqAn99WkQImCkT5+g4/5tgH0geSAcyFQkvolnwQGz6ez8K1a8x myW9XX7GhlI1LEuCfouI/+qdBLvJtCQIhqt2v9rfkgN7w3x1zr8FzWX8uBJAdVU9 nVxGkb7g8ohrtA2sJ70gBDPlPYCVsfT5lKJMPnodJzIn67/l1OR9DXaZldKg0Hw5 Zb4EYUyw2ypbvcDXPP+/u2Z9UQ4ANaD4 -----END CERTIFICATE-----Generated at Sat Jun 14 18:48:41 2025 by rpki-client