$ rpki-client -vvf rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft File: TfrxJZm8ip9x2mCrOSDgofQBWOU.mft (raw, json) Hash identifier: OMkqWxurI1JSlXQpSiY9ZTNFKCbIAKzzSSOS3R6uAHs= Subject key identifier: E0:AA:B0:23:0E:7C:6A:45:3E:8B:11:5D:4F:AE:59:0D:E9:61:4B:49 Authority key identifier: 4D:FA:F1:25:99:BC:8A:9F:71:DA:60:AB:39:20:E0:A1:F4:01:58:E5 Certificate issuer: /CN=A9186249/serialNumber=4DFAF12599BC8A9F71DA60AB3920E0A1F40158E5 Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TfrxJZm8ip9x2mCrOSDgofQBWOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft Manifest number: 0117 Signing time: Sat 09 Aug 2025 05:19:53 +0000 Manifest this update: Sat 09 Aug 2025 05:19:53 +0000 Manifest next update: Sat 16 Aug 2025 05:19:53 +0000 Files and hashes: 1: TfrxJZm8ip9x2mCrOSDgofQBWOU.crl (hash: 3jMYJakZFVDy+cdq5GX3b05J7r5jUd8cj/ToXl1ef/g=) 2: E7780BD6D17411EE87F7325DC4F9AE02.roa (hash: 2EzfaEZcvEqdfL3o4m+mh66hiNoNCrlQkH2IaWK10g8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.crl rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TfrxJZm8ip9x2mCrOSDgofQBWOU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186249, serialNumber=4DFAF12599BC8A9F71DA60AB3920E0A1F40158E5 Validity Not Before: Aug 9 05:19:53 2025 GMT Not After : Aug 16 05:19:53 2025 GMT Subject: CN=6896da79-1014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4f:b9:28:a0:d1:4f:5d:33:73:b8:a8:30:47: 80:6a:01:6c:ac:c9:d3:ae:90:5e:cd:24:59:5b:90: 54:bf:b1:a4:68:3a:4b:03:35:04:22:1c:e1:06:40: de:7b:2e:41:a7:6e:bd:f4:ac:e6:75:b1:63:e1:40: d2:5d:7d:9b:16:20:fb:39:75:98:ba:bb:db:d5:88: 8d:69:e0:2a:e2:c8:a8:45:b1:18:93:bb:6a:05:83: 42:66:fa:1f:77:f3:85:d5:15:f3:e4:c1:d5:c2:8e: 31:e5:65:8c:fd:e2:8f:94:7d:68:50:0d:f2:05:b4: b3:87:70:3b:7f:d3:6b:ea:fe:3b:2a:5f:a1:77:d6: b4:62:d8:19:11:55:89:9e:c3:4b:b2:77:eb:3d:60: c6:a0:18:a2:7f:d9:02:2e:35:df:a4:4e:6f:79:73: d8:e8:e7:a1:cc:95:1d:75:d1:de:a7:d6:e4:7c:7f: f3:1a:68:1b:b2:a0:f0:04:cd:2f:91:8b:96:d1:31: c0:3c:de:7b:e1:5a:0c:83:46:63:a4:81:ed:68:b0: 43:3d:8d:89:85:58:47:5e:08:99:10:a6:e3:15:79: d7:bd:d1:02:be:11:41:54:55:99:79:af:25:6b:c0: ea:3e:11:fd:6f:80:30:d8:45:28:55:a8:69:fb:b3: c9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:AA:B0:23:0E:7C:6A:45:3E:8B:11:5D:4F:AE:59:0D:E9:61:4B:49 X509v3 Authority Key Identifier: keyid:4D:FA:F1:25:99:BC:8A:9F:71:DA:60:AB:39:20:E0:A1:F4:01:58:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TfrxJZm8ip9x2mCrOSDgofQBWOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:66:bc:7c:03:f0:0a:72:2e:ca:9a:e9:ec:a2:d4:30:8d:29: 0c:d6:f5:e1:47:07:f6:da:9e:68:ed:83:de:a8:ff:d9:cb:20: c4:2c:95:cb:45:55:6b:39:68:a1:b9:3f:06:00:a0:dd:e1:2e: 91:c1:8f:bc:6a:f0:f0:7b:b1:53:80:f1:06:90:65:d3:fc:20: 16:ec:1a:1c:2a:13:82:61:de:5a:63:2f:93:fe:30:7a:ef:f8: 70:1d:b9:0c:48:4b:10:de:08:db:33:ff:09:3b:b9:9c:54:1e: 46:b7:db:71:85:5c:f8:bf:eb:0b:9d:32:2d:bf:ab:0b:c3:10: 58:6d:60:cf:b4:a2:08:17:6d:f7:f3:ed:63:a3:56:a3:d0:5d: e1:a5:2b:28:03:35:e5:ef:a4:82:d1:2b:d5:79:2e:37:ef:05: 58:9a:5a:76:4d:73:fd:c0:8d:43:89:fc:f1:48:df:49:82:a8: cc:4d:57:00:1d:9e:71:61:d9:0a:70:16:fd:70:12:ef:54:f4: 77:36:fa:17:a3:29:73:59:fd:17:af:cf:9d:c5:22:7c:f3:86: 2a:7a:cd:41:c1:79:18:68:e9:ba:81:36:19:ad:cb:6d:c4:d2: 9d:fa:cc:3d:a1:9f:5e:93:cb:2f:ba:c2:c8:85:c6:a3:27:c1: bb:ac:1c:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyNDkxMTAvBgNVBAUTKDRERkFGMTI1OTlCQzhBOUY3MURBNjBBQjM5MjBFMEEx RjQwMTU4RTUwHhcNMjUwODA5MDUxOTUzWhcNMjUwODE2MDUxOTUzWjAYMRYwFAYD VQQDEw02ODk2ZGE3OS0xMDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0+5KKDRT10zc7ioMEeAagFsrMnTrpBezSRZW5BUv7GkaDpLAzUEIhzhBkDe ey5Bp2699KzmdbFj4UDSXX2bFiD7OXWYurvb1YiNaeAq4sioRbEYk7tqBYNCZvof d/OF1RXz5MHVwo4x5WWM/eKPlH1oUA3yBbSzh3A7f9Nr6v47Kl+hd9a0YtgZEVWJ nsNLsnfrPWDGoBiif9kCLjXfpE5veXPY6OehzJUdddHep9bkfH/zGmgbsqDwBM0v kYuW0THAPN574VoMg0ZjpIHtaLBDPY2JhVhHXgiZEKbjFXnXvdECvhFBVFWZea8l a8DqPhH9b4Aw2EUoVahp+7PJ+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCqsCMO fGpFPosRXU+uWQ3pYUtJMB8GA1UdIwQYMBaAFE368SWZvIqfcdpgqzkg4KH0AVjl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjI0OS85ODcyNkQ2RUQx NzAxMUVFQTYxNTFDNERDNEY5QUUwMi9UZnJ4SlptOGlwOXgybUNyT1NEZ29mUUJX T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RmcnhKWm04aXA5eDJtQ3JPU0Rnb2ZRQldPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjI0OS85ODcyNkQ2RUQxNzAxMUVFQTYxNTFDNERDNEY5QUUwMi9UZnJ4SlptOGlw OXgybUNyT1NEZ29mUUJXT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbZrx8A/AKci7KmunsotQwjSkM1vXhRwf22p5o7YPeqP/ZyyDELJXL RVVrOWihuT8GAKDd4S6RwY+8avDwe7FTgPEGkGXT/CAW7BocKhOCYd5aYy+T/jB6 7/hwHbkMSEsQ3gjbM/8JO7mcVB5Gt9txhVz4v+sLnTItv6sLwxBYbWDPtKIIF233 8+1jo1aj0F3hpSsoAzXl76SC0SvVeS437wVYmlp2TXP9wI1DifzxSN9JgqjMTVcA HZ5xYdkKcBb9cBLvVPR3NvoXoylzWf0Xr8+dxSJ884Yqes1BwXkYaOm6gTYZrctt xNKd+sw9oZ9ek8svusLIhcajJ8G7rBw8 -----END CERTIFICATE-----Generated at Sat Aug 9 15:19:09 2025 by rpki-client