$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft File: tYgfusqd6_Rspghj0pd8U_3WwZA.mft (raw, json) Hash identifier: xInsNmvAaxEDcGLqD3Hux0valziLwxOULiZD7kCm2bU= Subject key identifier: 74:6F:8A:FD:17:DD:8F:2D:9A:51:E6:4A:A0:FE:1C:C6:A5:0E:04:A6 Authority key identifier: B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 Certificate issuer: /CN=A9188D2D/serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft Manifest number: 01C6 Signing time: Tue 17 Jun 2025 02:04:40 +0000 Manifest this update: Tue 17 Jun 2025 02:04:40 +0000 Manifest next update: Tue 24 Jun 2025 02:04:40 +0000 Files and hashes: 1: tYgfusqd6_Rspghj0pd8U_3WwZA.crl (hash: m0ZCSBpO5XI7sbjfUTNlYLnTun/BBod+H++ER6PGObA=) 2: D9D943568FFC11ED9776CB38C4F9AE02.roa (hash: CAQTwJ95TZU81HKb4Y7lVQbfnRcyYnVzCOwyM749MwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:04:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D2D, serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Validity Not Before: Jun 17 02:04:40 2025 GMT Not After : Jun 24 02:04:40 2025 GMT Subject: CN=6850cd38-1142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f1:e7:90:01:08:f4:c6:e3:4b:6b:d3:eb:a3: a2:40:e8:f9:97:4d:3f:47:31:23:69:dd:ca:c8:85: d0:f3:a0:5c:6b:9b:4f:be:6d:06:9c:5f:75:be:53: 42:07:b2:f5:11:e2:51:e6:52:e0:76:a0:1e:aa:06: ec:23:a4:70:31:12:e5:d8:81:c1:8f:0d:6d:a4:72: 70:b6:9a:d2:c0:bb:32:28:88:8a:8b:32:0c:1b:1b: e0:79:fb:b5:2f:9d:09:a2:15:bd:6c:de:5a:e9:91: ec:a9:9c:19:c8:30:8e:35:57:e2:6d:98:33:76:3c: 37:6c:af:f1:4c:eb:7e:0f:09:67:6d:b6:72:6f:67: 63:cc:c0:86:49:99:f1:c6:0a:3f:2e:bb:5f:b5:92: 04:2a:18:a3:1b:8c:ee:96:e8:7b:26:88:78:84:68: ba:fb:ea:78:f3:19:85:cd:5a:07:9b:17:96:00:8c: bb:94:35:e0:3a:16:89:ad:85:bd:72:b0:80:64:37: 0f:5d:1e:b0:7b:2b:f8:71:f4:01:ff:13:dc:fe:4a: 55:b6:b4:f3:e0:cf:9e:f7:10:c5:a0:f2:d8:4c:f4: be:4b:9e:26:e3:c9:7b:96:0b:3d:70:32:df:23:c5: cc:c3:0a:90:7a:51:00:19:47:79:24:33:c9:85:25: 9a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:6F:8A:FD:17:DD:8F:2D:9A:51:E6:4A:A0:FE:1C:C6:A5:0E:04:A6 X509v3 Authority Key Identifier: keyid:B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:a7:87:87:51:4e:49:fa:6b:2f:0f:a0:83:1a:bc:6c:b5:dc: da:22:c1:86:52:83:bf:86:ae:51:90:5b:92:d4:9b:57:d6:26: f7:ae:43:ac:37:cd:a0:c3:34:77:57:df:33:ed:7c:fd:3e:e8: 1c:5f:36:1b:73:00:f6:7d:7a:08:df:f7:16:45:72:3c:a6:ca: 9f:f9:d7:8e:60:5d:b7:44:d7:69:55:dd:d2:bb:c2:6f:5b:76: 43:e9:55:f8:8a:f9:1c:a5:95:92:33:5d:fa:3d:b8:68:4a:d6: 05:17:5f:56:ac:79:57:b1:86:95:31:2e:5f:d4:39:fd:2b:56: 71:ff:a7:d6:66:89:45:7b:8d:66:aa:24:72:7b:dc:d3:ab:73: 35:35:a7:ce:5c:b6:90:65:26:cb:6f:a6:32:06:ff:0d:34:ab: e2:a8:b4:c0:f6:aa:db:5b:7e:f3:b0:83:1f:33:30:aa:c2:02: dc:ec:fc:b8:da:78:31:a1:9c:8c:3b:2b:e7:8e:21:12:c5:3f: d6:d5:f0:10:d0:18:5a:3c:ef:7a:48:0d:15:b7:a4:54:64:b0: 03:42:ff:45:c1:04:9a:01:d4:c9:b0:c6:dd:02:56:79:80:2b: 65:f9:80:46:f9:d1:7d:be:8c:20:d0:28:71:16:8b:eb:f7:32: 83:7f:6d:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEMkQxMTAvBgNVBAUTKEI1ODgxRkJBQ0E5REVCRjQ2Q0E2MDg2M0QyOTc3QzUz RkRENkMxOTAwHhcNMjUwNjE3MDIwNDQwWhcNMjUwNjI0MDIwNDQwWjAYMRYwFAYD VQQDEw02ODUwY2QzOC0xMTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/HnkAEI9MbjS2vT66OiQOj5l00/RzEjad3KyIXQ86Bca5tPvm0GnF91vlNC B7L1EeJR5lLgdqAeqgbsI6RwMRLl2IHBjw1tpHJwtprSwLsyKIiKizIMGxvgefu1 L50JohW9bN5a6ZHsqZwZyDCONVfibZgzdjw3bK/xTOt+DwlnbbZyb2djzMCGSZnx xgo/LrtftZIEKhijG4zuluh7Joh4hGi6++p48xmFzVoHmxeWAIy7lDXgOhaJrYW9 crCAZDcPXR6weyv4cfQB/xPc/kpVtrTz4M+e9xDFoPLYTPS+S54m48l7lgs9cDLf I8XMwwqQelEAGUd5JDPJhSWagwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRviv0X 3Y8tmlHmSqD+HMalDgSmMB8GA1UdIwQYMBaAFLWIH7rKnev0bKYIY9KXfFP91sGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQyRC9BMDY4MkEwNDhG RjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZfUnNwZ2hqMHBkOFVfM1d3 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZZ2Z1c3FkNl9Sc3BnaGowcGQ4VV8zV3daQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEQyRC9BMDY4MkEwNDhGRjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZf UnNwZ2hqMHBkOFVfM1d3WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdp4eHUU5J+msvD6CDGrxstdzaIsGGUoO/hq5RkFuS1JtX1ib3rkOs N82gwzR3V98z7Xz9PugcXzYbcwD2fXoI3/cWRXI8psqf+deOYF23RNdpVd3Su8Jv W3ZD6VX4ivkcpZWSM136PbhoStYFF19WrHlXsYaVMS5f1Dn9K1Zx/6fWZolFe41m qiRye9zTq3M1NafOXLaQZSbLb6YyBv8NNKviqLTA9qrbW37zsIMfMzCqwgLc7Py4 2ngxoZyMOyvnjiESxT/W1fAQ0BhaPO96SA0Vt6RUZLADQv9FwQSaAdTJsMbdAlZ5 gCtl+YBG+dF9vowg0ChxFovr9zKDf22S -----END CERTIFICATE-----Generated at Tue Jun 17 21:55:23 2025 by rpki-client