$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft File: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft (raw, json) Hash identifier: oZnukr3fhb1pptUucgmXQp4qcbsSOEmKaOM5hXD0QEo= Subject key identifier: B5:7A:2E:AD:C2:D3:2B:9D:EC:D8:69:5F:4D:6B:FD:E2:D0:96:CB:B4 Authority key identifier: 4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 Certificate issuer: /CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft Manifest number: B2 Signing time: Tue 05 Aug 2025 06:38:49 +0000 Manifest this update: Tue 05 Aug 2025 06:38:48 +0000 Manifest next update: Tue 12 Aug 2025 06:38:48 +0000 Files and hashes: 1: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl (hash: npiWQ+TbJddU0VO6YaFxlIxtV8QO/iimcBQKB2ELeVU=) 2: 4E9597086B5C11EFABB11F60C4F9AE02.roa (hash: qpNZ0Lm7ohL4bDYSXZ5HFsKxSW3wfA050YYCOcr+GtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 06:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Validity Not Before: Aug 5 06:38:48 2025 GMT Not After : Aug 12 06:38:48 2025 GMT Subject: CN=6891a6f8-ab59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a3:79:2a:2f:5e:21:c6:d0:a7:4c:8c:2a:45: 96:fe:55:0f:ed:85:61:df:1b:60:46:ce:20:93:84: b5:9e:96:f5:e1:94:5e:ce:86:d6:dd:66:4d:2e:73: 12:8d:f6:48:bc:81:0b:d3:aa:cd:29:23:36:f0:bd: 31:9d:55:97:f0:d8:29:0d:b4:aa:1d:44:4e:02:ce: 45:59:8c:86:a6:5a:16:4c:d2:f3:c3:fc:df:88:67: 54:8e:c4:ef:5c:85:bd:e0:6b:00:3a:3f:07:96:a5: 07:c9:24:c7:01:3c:b6:26:88:5f:b1:79:fe:f5:ee: 2e:46:25:e8:f6:6d:d9:c7:ac:44:9b:9d:7b:27:a3: bb:09:04:45:e9:97:f8:5e:44:cd:34:83:cc:1c:82: 3b:92:d7:da:a2:3d:bc:80:e7:12:ba:c7:3e:35:54: 79:c2:10:0f:07:79:1a:fb:cc:9e:af:8c:b4:ce:87: 3e:98:8f:bc:a7:85:d9:f5:53:e8:db:79:3e:75:e7: 31:8e:23:34:35:c5:07:84:25:f5:11:28:19:a8:49: 29:d0:5f:0a:46:10:42:b3:15:e5:5b:de:37:fa:a6: f5:d3:71:dd:5f:71:5d:7f:3e:a0:46:0e:cb:64:ee: 34:88:e7:5c:91:46:bb:f4:8d:b9:28:56:ba:52:49: 94:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:7A:2E:AD:C2:D3:2B:9D:EC:D8:69:5F:4D:6B:FD:E2:D0:96:CB:B4 X509v3 Authority Key Identifier: keyid:4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:b6:c8:3a:eb:ac:86:86:d9:33:23:6f:c3:78:07:41:d4:af: 83:48:47:73:8f:90:14:be:3c:e5:85:e1:32:16:05:3b:a4:28: 85:89:1f:39:8b:1b:3c:f4:a1:50:e9:fa:75:da:13:0f:72:b6: bb:b0:73:fd:b2:13:dd:5c:4e:aa:07:08:ee:13:64:6e:af:43: 59:c3:40:c5:a9:20:be:4a:40:8b:b8:73:78:63:48:d2:ab:97: 5a:fa:aa:22:ad:f7:ef:28:93:27:f5:26:c1:a0:8e:c4:f4:ce: 4b:ee:40:90:e2:77:2b:19:e4:1f:0d:7b:0a:4a:4c:a0:d5:0f: c8:32:85:1e:17:59:cf:38:93:09:79:a8:12:dd:5a:2a:88:bd: 8f:a2:e8:f5:67:e6:a5:f5:0e:f1:47:37:d0:f9:bb:df:c6:80: a4:70:60:e8:41:4e:69:ce:64:c2:fa:04:ca:87:ad:bb:4b:17: 9a:be:1a:be:38:ef:b4:18:32:5d:17:a3:5b:3f:55:9a:30:a2: 5b:58:51:a8:6d:b3:91:c7:d2:69:7a:40:b2:6f:4c:e7:03:00: d4:9b:8b:4a:a4:28:ef:92:1d:bf:33:42:42:bc:7e:22:6d:8b: e2:67:4a:ea:16:e1:f8:ff:3b:84:51:57:48:c8:fc:be:3d:59: 27:e8:89:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDRFN0VEOTUxQzRGODlGMTFGMTk0NDY4RUE4MTU0NEQ3 MzM1RTRGNTkwHhcNMjUwODA1MDYzODQ4WhcNMjUwODEyMDYzODQ4WjAYMRYwFAYD VQQDEw02ODkxYTZmOC1hYjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6N5Ki9eIcbQp0yMKkWW/lUP7YVh3xtgRs4gk4S1npb14ZRezobW3WZNLnMS jfZIvIEL06rNKSM28L0xnVWX8NgpDbSqHUROAs5FWYyGploWTNLzw/zfiGdUjsTv XIW94GsAOj8HlqUHySTHATy2JohfsXn+9e4uRiXo9m3Zx6xEm517J6O7CQRF6Zf4 XkTNNIPMHII7ktfaoj28gOcSusc+NVR5whAPB3ka+8yer4y0zoc+mI+8p4XZ9VPo 23k+decxjiM0NcUHhCX1ESgZqEkp0F8KRhBCsxXlW943+qb103HdX3Fdfz6gRg7L ZO40iOdckUa79I25KFa6UkmUEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLV6Lq3C 0yud7NhpX01r/eLQlsu0MB8GA1UdIwQYMBaAFE5+2VHE+J8R8ZRGjqgVRNczXk9Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GMTRFRUQ5ODZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54SHhsRWFPcUJWRTF6TmVU MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuN1pVY1Q0bnhIeGxFYU9xQlZFMXpOZVQxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkM4Ri9GMTRFRUQ5ODZCNUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54 SHhsRWFPcUJWRTF6TmVUMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXtsg666yGhtkzI2/DeAdB1K+DSEdzj5AUvjzlheEyFgU7pCiFiR85 ixs89KFQ6fp12hMPcra7sHP9shPdXE6qBwjuE2Rur0NZw0DFqSC+SkCLuHN4Y0jS q5da+qoirffvKJMn9SbBoI7E9M5L7kCQ4ncrGeQfDXsKSkyg1Q/IMoUeF1nPOJMJ eagS3VoqiL2Pouj1Z+al9Q7xRzfQ+bvfxoCkcGDoQU5pzmTC+gTKh627Sxeavhq+ OO+0GDJdF6NbP1WaMKJbWFGobbORx9JpekCyb0znAwDUm4tKpCjvkh2/M0JCvH4i bYviZ0rqFuH4/zuEUVdIyPy+PVkn6InV -----END CERTIFICATE-----Generated at Wed Aug 6 14:09:57 2025 by rpki-client