$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft File: t0ZCTjTomeFM0znQc7tfSRj9B4c.mft (raw, json) Hash identifier: V5wJdi2BiXKQ4BUTwCF7byC8Cy4N3j3KNqnoAjEGMQk= Subject key identifier: 39:92:8F:EA:15:14:1C:BF:B8:89:2C:1C:CD:81:AB:B5:D9:8D:D2:BE Authority key identifier: B7:46:42:4E:34:E8:99:E1:4C:D3:39:D0:73:BB:5F:49:18:FD:07:87 Certificate issuer: /CN=A91820CC/serialNumber=B746424E34E899E14CD339D073BB5F4918FD0787 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft Manifest number: 48 Signing time: Sat 09 Aug 2025 07:56:16 +0000 Manifest this update: Sat 09 Aug 2025 07:56:15 +0000 Manifest next update: Sat 16 Aug 2025 07:56:15 +0000 Files and hashes: 1: t0ZCTjTomeFM0znQc7tfSRj9B4c.crl (hash: xvSXGHWgiASUqLOA9f33wYnukaQnlb5nJ6vXk19EiIU=) 2: 675707260BDA11F0A768300AC4F9AE02.roa (hash: LFQa37q/cBpLbTU9VfVNZw79cN64ozdrBS9Unjdq4XE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.crl rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=B746424E34E899E14CD339D073BB5F4918FD0787 Validity Not Before: Aug 9 07:56:15 2025 GMT Not After : Aug 16 07:56:15 2025 GMT Subject: CN=6896ff1f-0094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5d:5c:a4:64:b4:6d:2f:15:65:7e:39:f4:94: 26:60:52:06:a4:46:73:df:16:01:72:b0:67:5c:b1: 4e:8d:ec:9a:23:c7:2e:37:9a:01:3e:97:a8:03:47: 3f:60:1a:9f:6b:a0:69:f0:31:10:1b:ff:14:3f:69: a9:af:f0:2b:5d:b0:a8:30:66:56:47:04:14:8d:03: 37:3e:74:94:3f:74:03:53:3b:ac:db:59:72:08:63: 44:6b:10:96:22:3c:eb:63:a7:76:7b:9b:d9:db:2e: 5c:c5:93:60:ed:01:79:ad:95:ff:68:75:2b:aa:94: 5a:18:ae:97:75:b9:1b:37:98:57:12:0a:17:ef:34: 04:e8:66:cb:b0:a2:7c:5d:e3:f1:41:23:59:94:fd: 4a:55:35:6d:bf:7c:0a:01:7f:96:2e:67:8a:91:93: 2f:40:d5:1f:15:ed:14:2a:bd:c9:fe:2c:1a:40:49: 4f:a1:19:ec:71:91:d9:02:3e:da:a0:ac:30:9f:ef: cf:b9:09:31:e0:2b:a5:e5:a4:a4:00:6b:ae:21:23: fb:7b:fb:83:3a:6e:b9:4f:30:9c:1c:65:e4:7b:41: 35:93:74:17:b0:03:9b:af:03:03:b2:d2:bc:90:57: 7f:28:ea:3a:8b:6a:29:ab:09:fa:68:85:c2:71:49: fa:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:92:8F:EA:15:14:1C:BF:B8:89:2C:1C:CD:81:AB:B5:D9:8D:D2:BE X509v3 Authority Key Identifier: keyid:B7:46:42:4E:34:E8:99:E1:4C:D3:39:D0:73:BB:5F:49:18:FD:07:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:9a:19:92:e5:8f:ee:69:f6:49:3d:83:9b:4b:58:a4:47:b0: 26:93:a1:54:ec:f7:11:4a:97:51:6e:e0:ae:28:a5:1f:6b:a5: 95:4e:a6:65:17:c0:e1:bc:55:81:85:49:b4:7a:1a:fe:70:87: 51:22:54:6e:52:a0:93:81:f5:32:3c:20:84:dd:31:ed:84:74: ff:48:d1:82:ad:07:64:08:77:69:21:91:36:b6:b9:0b:10:e4: 93:2e:42:bb:08:3b:0b:dc:28:c0:24:ff:63:41:7e:ee:d9:71: b7:9b:a5:66:54:ee:cf:32:ac:ef:96:85:72:94:8e:d1:4a:9e: 71:98:ae:dd:ef:25:b6:c7:a7:6b:1f:b2:0b:f8:5b:60:e8:ec: 08:d3:08:e7:c6:c7:cd:af:10:bb:4e:d5:fc:dc:40:22:67:16: 29:09:7f:b9:b2:ee:be:96:74:88:f1:24:ae:7d:17:47:48:aa: 56:b8:fe:c7:f7:68:fe:fe:5f:23:40:e7:35:17:e0:9f:8f:2e: 7c:b7:0b:b8:54:4a:e4:e3:24:5d:23:69:2d:5b:7a:e7:b4:da: 0f:f9:f4:51:aa:db:9f:6d:4e:b4:5d:57:72:5d:83:f5:94:b4: d9:1d:e5:fd:5c:b2:f0:f9:b3:f2:23:bb:54:16:34:5e:91:14: 02:36:3d:8c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoQjc0NjQyNEUzNEU4OTlFMTRDRDMzOUQwNzNCQjVGNDkx OEZEMDc4NzAeFw0yNTA4MDkwNzU2MTVaFw0yNTA4MTYwNzU2MTVaMBgxFjAUBgNV BAMTDTY4OTZmZjFmLTAwOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnXVykZLRtLxVlfjn0lCZgUgakRnPfFgFysGdcsU6N7Jojxy43mgE+l6gDRz9g Gp9roGnwMRAb/xQ/aamv8CtdsKgwZlZHBBSNAzc+dJQ/dANTO6zbWXIIY0RrEJYi POtjp3Z7m9nbLlzFk2DtAXmtlf9odSuqlFoYrpd1uRs3mFcSChfvNAToZsuwonxd 4/FBI1mU/UpVNW2/fAoBf5YuZ4qRky9A1R8V7RQqvcn+LBpASU+hGexxkdkCPtqg rDCf78+5CTHgK6XlpKQAa64hI/t7+4M6brlPMJwcZeR7QTWTdBewA5uvAwOy0ryQ V38o6jqLaimrCfpohcJxSfpTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOZKP6hUU HL+4iSwczYGrtdmN0r4wHwYDVR0jBBgwFoAUt0ZCTjTomeFM0znQc7tfSRj9B4cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDLzkzNkI0MzMyMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL3QwWkNUalRvbWVGTTB6blFjN3RmU1JqOUI0 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdDBaQ1RqVG9tZUZNMHpuUWM3dGZTUmo5QjRjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgy MENDLzkzNkI0MzMyMEJEOTExRjA4QzYwN0Y4N0M0RjlBRTAyL3QwWkNUalRvbWVG TTB6blFjN3RmU1JqOUI0Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADGaGZLlj+5p9kk9g5tLWKRHsCaToVTs9xFKl1Fu4K4opR9rpZVOpmUX wOG8VYGFSbR6Gv5wh1EiVG5SoJOB9TI8IITdMe2EdP9I0YKtB2QId2khkTa2uQsQ 5JMuQrsIOwvcKMAk/2NBfu7ZcbebpWZU7s8yrO+WhXKUjtFKnnGYrt3vJbbHp2sf sgv4W2Do7AjTCOfGx82vELtO1fzcQCJnFikJf7my7r6WdIjxJK59F0dIqla4/sf3 aP7+XyNA5zUX4J+PLny3C7hUSuTjJF0jaS1beue02g/59FGq259tTrRdV3Jdg/WU tNkd5f1csvD5s/Iju1QWNF6RFAI2PYw= -----END CERTIFICATE-----Generated at Sun Aug 10 18:16:24 2025 by rpki-client