$ rpki-client -vvf rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft File: TfrxJZm8ip9x2mCrOSDgofQBWOU.mft (raw, json) Hash identifier: HOZ2EHV4o+0dDFb/JW60gaV4K8qzBOB2Ksc+n+OdC3w= Subject key identifier: 2C:F3:75:3D:FB:46:62:45:29:05:A5:77:E0:62:23:BE:7C:24:1B:C8 Authority key identifier: 4D:FA:F1:25:99:BC:8A:9F:71:DA:60:AB:39:20:E0:A1:F4:01:58:E5 Certificate issuer: /CN=A9186249/serialNumber=4DFAF12599BC8A9F71DA60AB3920E0A1F40158E5 Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TfrxJZm8ip9x2mCrOSDgofQBWOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft Manifest number: FD Signing time: Thu 19 Jun 2025 04:36:26 +0000 Manifest this update: Thu 19 Jun 2025 04:36:25 +0000 Manifest next update: Thu 26 Jun 2025 04:36:25 +0000 Files and hashes: 1: TfrxJZm8ip9x2mCrOSDgofQBWOU.crl (hash: 7g/Vs72FmXtQLHXMp/7m3G6QoJZnurS8968GItIYoXo=) 2: E7780BD6D17411EE87F7325DC4F9AE02.roa (hash: 2EzfaEZcvEqdfL3o4m+mh66hiNoNCrlQkH2IaWK10g8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.crl rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TfrxJZm8ip9x2mCrOSDgofQBWOU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186249, serialNumber=4DFAF12599BC8A9F71DA60AB3920E0A1F40158E5 Validity Not Before: Jun 19 04:36:25 2025 GMT Not After : Jun 26 04:36:25 2025 GMT Subject: CN=685393c9-57b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ac:dc:90:82:11:8a:2c:64:32:45:c0:fd:77: 6e:f7:5f:ea:9a:2c:67:b8:ef:a4:39:db:ff:b8:94: 4a:44:d4:b2:e0:4a:af:1d:7e:9f:8f:d4:da:a5:6d: 9d:d7:58:07:cc:c1:75:69:d5:12:69:79:2b:ea:9c: 07:70:28:c2:cd:1e:c8:98:c8:ea:71:95:71:e2:33: 3e:cf:d8:18:e6:a1:9d:f0:a1:e2:ec:f9:ad:32:eb: 6d:07:0f:8b:27:c5:d0:c7:31:d5:40:03:2d:e9:8c: 99:05:26:d7:75:73:16:21:09:26:2c:ee:fb:89:cb: 8b:a0:a6:d4:75:e5:09:68:2a:40:27:b7:15:20:ab: c1:bd:60:ee:f9:75:48:70:92:8c:57:04:74:c6:89: ac:15:11:01:d1:68:df:3b:79:70:c9:1b:2e:6e:80: 34:20:ec:93:87:60:7a:ee:b5:c4:c0:86:73:fe:06: 2c:2d:c0:41:5d:ce:c8:35:fd:93:87:b8:3f:67:60: 93:c3:a7:40:c9:fe:4a:ea:1e:0c:62:c8:bf:bf:3d: c8:7e:1b:c1:13:b2:83:ce:84:2b:36:f3:85:c6:72: 05:82:91:32:20:5e:9a:43:f2:77:4b:7a:95:f6:49: 71:8c:c7:e5:e8:3b:73:77:90:a0:e4:42:88:b3:e5: 5b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:F3:75:3D:FB:46:62:45:29:05:A5:77:E0:62:23:BE:7C:24:1B:C8 X509v3 Authority Key Identifier: keyid:4D:FA:F1:25:99:BC:8A:9F:71:DA:60:AB:39:20:E0:A1:F4:01:58:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TfrxJZm8ip9x2mCrOSDgofQBWOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:d0:fd:61:81:b6:3b:b0:25:15:0a:76:ac:cd:2f:1a:09:22: 95:a0:9f:59:35:f4:30:4e:f5:f7:8b:59:25:67:37:dd:85:25: a9:19:4b:6b:de:bc:e6:18:4c:e6:bd:81:85:d8:87:53:c6:3d: c4:d9:14:48:99:af:66:8f:a2:54:86:b9:19:be:09:38:a5:8d: 5f:44:d0:86:fd:33:2d:05:4c:98:e4:18:0d:1a:e4:37:bc:d2: 2c:0f:3e:87:89:6f:14:b1:d8:30:05:bc:37:98:d4:ec:d7:07: c4:84:54:da:d3:a2:26:5c:8d:37:35:44:9c:c2:61:98:6f:b9: a0:fd:94:b5:ce:3c:d7:21:60:4c:11:22:01:46:48:17:da:c9: fe:8b:bd:40:dc:11:08:f5:2d:37:2f:a4:0b:f0:c8:f0:05:5e: 9f:24:b0:d3:0d:a9:4f:0e:65:1a:e2:29:c9:04:50:61:f6:b6: 60:90:8a:bd:38:0c:1a:b7:70:68:1a:c9:21:09:cf:4d:9e:f2: 52:2e:66:e3:3d:d2:ac:11:c7:cb:58:91:61:3b:62:81:08:3d: 9e:8a:37:34:4b:33:d2:bf:99:6d:1c:0a:fe:e1:80:ae:b3:bf: 7a:d3:35:f2:94:22:73:52:d5:0a:72:cf:f6:8d:8b:ae:e0:7c: 33:d1:49:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyNDkxMTAvBgNVBAUTKDRERkFGMTI1OTlCQzhBOUY3MURBNjBBQjM5MjBFMEEx RjQwMTU4RTUwHhcNMjUwNjE5MDQzNjI1WhcNMjUwNjI2MDQzNjI1WjAYMRYwFAYD VQQDEw02ODUzOTNjOS01N2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA16zckIIRiixkMkXA/Xdu91/qmixnuO+kOdv/uJRKRNSy4EqvHX6fj9TapW2d 11gHzMF1adUSaXkr6pwHcCjCzR7ImMjqcZVx4jM+z9gY5qGd8KHi7PmtMuttBw+L J8XQxzHVQAMt6YyZBSbXdXMWIQkmLO77icuLoKbUdeUJaCpAJ7cVIKvBvWDu+XVI cJKMVwR0xomsFREB0WjfO3lwyRsuboA0IOyTh2B67rXEwIZz/gYsLcBBXc7INf2T h7g/Z2CTw6dAyf5K6h4MYsi/vz3IfhvBE7KDzoQrNvOFxnIFgpEyIF6aQ/J3S3qV 9klxjMfl6Dtzd5Cg5EKIs+VbwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCzzdT37 RmJFKQWld+BiI758JBvIMB8GA1UdIwQYMBaAFE368SWZvIqfcdpgqzkg4KH0AVjl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjI0OS85ODcyNkQ2RUQx NzAxMUVFQTYxNTFDNERDNEY5QUUwMi9UZnJ4SlptOGlwOXgybUNyT1NEZ29mUUJX T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RmcnhKWm04aXA5eDJtQ3JPU0Rnb2ZRQldPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjI0OS85ODcyNkQ2RUQxNzAxMUVFQTYxNTFDNERDNEY5QUUwMi9UZnJ4SlptOGlw OXgybUNyT1NEZ29mUUJXT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCz0P1hgbY7sCUVCnaszS8aCSKVoJ9ZNfQwTvX3i1klZzfdhSWpGUtr 3rzmGEzmvYGF2IdTxj3E2RRIma9mj6JUhrkZvgk4pY1fRNCG/TMtBUyY5BgNGuQ3 vNIsDz6HiW8UsdgwBbw3mNTs1wfEhFTa06ImXI03NUScwmGYb7mg/ZS1zjzXIWBM ESIBRkgX2sn+i71A3BEI9S03L6QL8MjwBV6fJLDTDalPDmUa4inJBFBh9rZgkIq9 OAwat3BoGskhCc9NnvJSLmbjPdKsEcfLWJFhO2KBCD2eijc0SzPSv5ltHAr+4YCu s7960zXylCJzUtUKcs/2jYuu4Hwz0UkB -----END CERTIFICATE-----Generated at Thu Jun 19 08:19:26 2025 by rpki-client