$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft File: tYgfusqd6_Rspghj0pd8U_3WwZA.mft (raw, json) Hash identifier: Iy6Aw82GsfQ8rYt5ZgxUOo/FN7vEjbCfmDyKhUG7Opk= Subject key identifier: 25:57:44:9B:B1:D2:FD:26:07:52:96:E2:F8:79:B1:F8:35:94:81:F4 Authority key identifier: B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 Certificate issuer: /CN=A9188D2D/serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft Manifest number: 01E0 Signing time: Thu 07 Aug 2025 03:06:36 +0000 Manifest this update: Thu 07 Aug 2025 03:06:35 +0000 Manifest next update: Thu 14 Aug 2025 03:06:35 +0000 Files and hashes: 1: tYgfusqd6_Rspghj0pd8U_3WwZA.crl (hash: NjfoOZTScrHdX7LfxOOb2aVM84iHZJftcm47EHiXLM8=) 2: D9D943568FFC11ED9776CB38C4F9AE02.roa (hash: CAQTwJ95TZU81HKb4Y7lVQbfnRcyYnVzCOwyM749MwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 03:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D2D, serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Validity Not Before: Aug 7 03:06:35 2025 GMT Not After : Aug 14 03:06:35 2025 GMT Subject: CN=6894183b-a457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:98:df:cf:8c:89:86:1c:22:4d:93:f5:f1:fb: 40:99:13:8c:ed:3f:4b:8f:f2:1b:b5:a0:3d:bf:c2: 35:21:e6:97:18:dc:64:86:b5:9d:ba:0d:81:fc:fb: d2:51:2b:77:87:b0:08:99:68:4c:d0:1c:dd:5a:77: 7e:91:3a:88:ad:c7:09:9e:0c:0b:ec:c3:27:0c:e8: 26:94:c5:9c:6b:42:0f:25:81:d4:44:60:b5:40:a8: ba:02:dd:03:66:4d:57:75:23:af:3f:3d:9a:bc:82: 24:8b:e3:12:e8:c7:2a:ba:bd:de:aa:e0:af:c2:29: b4:b4:57:48:4e:0c:65:cd:a7:a1:19:51:f9:39:ea: bd:30:9a:8f:3c:8e:f5:c2:1f:d0:f9:9e:a0:03:45: 5d:6c:d8:e5:69:d7:c4:3e:ef:30:80:b0:0c:87:ff: cd:c7:85:a2:60:e0:0d:f0:87:be:13:0a:a9:e7:9f: 6a:13:48:4f:54:3b:f1:6a:57:8a:d2:7a:71:47:4c: 5a:6f:ce:ed:4d:ef:84:eb:a4:49:8f:b0:26:6b:5c: 0b:e7:3c:64:5e:77:21:72:fc:6e:2f:01:84:9a:66: 64:71:1c:bc:ef:dd:ad:e9:59:f5:23:9b:ca:f4:45: 83:4f:ea:fb:ab:98:94:12:25:74:cf:87:8e:65:1c: 5c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:57:44:9B:B1:D2:FD:26:07:52:96:E2:F8:79:B1:F8:35:94:81:F4 X509v3 Authority Key Identifier: keyid:B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:59:11:50:00:4a:d0:ed:7b:57:e7:46:96:da:5f:6c:01:f3: 29:b4:a6:54:ff:15:ee:49:6f:e0:3e:71:59:49:5b:31:43:f7: 12:8f:31:b2:fc:3b:b2:6e:2a:34:57:0d:99:d7:7f:6f:d9:d8: 75:67:c2:17:14:ce:f9:23:3c:8c:fd:76:4c:24:21:71:ca:98: d9:d8:d4:46:2f:8a:16:0d:c8:2e:50:b1:76:91:4f:89:19:2c: 0e:56:38:ef:3b:da:4d:c8:cd:0e:f5:a8:d2:1f:3e:dc:c3:53: 7f:43:21:56:59:97:08:7d:9a:11:24:67:cc:7a:32:39:00:53: e9:74:b3:c1:f1:9a:05:1b:54:8c:ed:59:5c:61:66:ed:35:a6: 4f:41:f1:0e:d4:3c:84:bc:53:e7:13:40:0b:1f:e6:94:66:ff: be:e9:97:58:7a:f7:68:ed:8e:94:39:e4:ca:cf:11:37:ee:38: 30:cb:54:0a:5c:66:5f:f6:4d:62:4b:1b:ff:20:05:8f:f7:cb: 58:cb:0d:8e:22:be:b0:a6:f1:4a:e3:ab:12:f8:60:0f:05:ef: fb:ba:16:45:f7:e6:fd:2a:ea:a0:62:d8:5c:4f:25:64:2d:69: c4:3b:24:28:d9:b4:89:36:96:8d:44:76:96:4d:73:9a:89:f4: d3:67:f6:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEMkQxMTAvBgNVBAUTKEI1ODgxRkJBQ0E5REVCRjQ2Q0E2MDg2M0QyOTc3QzUz RkRENkMxOTAwHhcNMjUwODA3MDMwNjM1WhcNMjUwODE0MDMwNjM1WjAYMRYwFAYD VQQDEw02ODk0MTgzYi1hNDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpjfz4yJhhwiTZP18ftAmROM7T9Lj/IbtaA9v8I1IeaXGNxkhrWdug2B/PvS USt3h7AImWhM0BzdWnd+kTqIrccJngwL7MMnDOgmlMWca0IPJYHURGC1QKi6At0D Zk1XdSOvPz2avIIki+MS6Mcqur3equCvwim0tFdITgxlzaehGVH5Oeq9MJqPPI71 wh/Q+Z6gA0VdbNjladfEPu8wgLAMh//Nx4WiYOAN8Ie+Ewqp559qE0hPVDvxaleK 0npxR0xab87tTe+E66RJj7Ama1wL5zxkXnchcvxuLwGEmmZkcRy8792t6Vn1I5vK 9EWDT+r7q5iUEiV0z4eOZRxcbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCVXRJux 0v0mB1KW4vh5sfg1lIH0MB8GA1UdIwQYMBaAFLWIH7rKnev0bKYIY9KXfFP91sGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQyRC9BMDY4MkEwNDhG RjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZfUnNwZ2hqMHBkOFVfM1d3 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZZ2Z1c3FkNl9Sc3BnaGowcGQ4VV8zV3daQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEQyRC9BMDY4MkEwNDhGRjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZf UnNwZ2hqMHBkOFVfM1d3WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1WRFQAErQ7XtX50aW2l9sAfMptKZU/xXuSW/gPnFZSVsxQ/cSjzGy /Duybio0Vw2Z139v2dh1Z8IXFM75IzyM/XZMJCFxypjZ2NRGL4oWDcguULF2kU+J GSwOVjjvO9pNyM0O9ajSHz7cw1N/QyFWWZcIfZoRJGfMejI5AFPpdLPB8ZoFG1SM 7VlcYWbtNaZPQfEO1DyEvFPnE0ALH+aUZv++6ZdYevdo7Y6UOeTKzxE37jgwy1QK XGZf9k1iSxv/IAWP98tYyw2OIr6wpvFK46sS+GAPBe/7uhZF9+b9KuqgYthcTyVk LWnEOyQo2bSJNpaNRHaWTXOaifTTZ/Yj -----END CERTIFICATE-----Generated at Fri Aug 8 13:11:32 2025 by rpki-client