$ rpki-client -vvf rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft File: tJhXdJtDHfMjL417C4OVpy_9GEk.mft (raw, json) Hash identifier: KMb14W+FkRviBinQCspZ2JXC6Zcw9cOO8LX/IUTz08o= Subject key identifier: 9C:7A:E2:16:7F:B2:67:44:87:11:35:89:3D:AD:BF:87:05:E8:5F:74 Authority key identifier: B4:98:57:74:9B:43:1D:F3:23:2F:8D:7B:0B:83:95:A7:2F:FD:18:49 Certificate issuer: /CN=A918E293/serialNumber=B49857749B431DF3232F8D7B0B8395A72FFD1849 Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJhXdJtDHfMjL417C4OVpy_9GEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft Manifest number: 018C Signing time: Sat 09 Aug 2025 03:53:06 +0000 Manifest this update: Sat 09 Aug 2025 03:53:05 +0000 Manifest next update: Sat 16 Aug 2025 03:53:05 +0000 Files and hashes: 1: tJhXdJtDHfMjL417C4OVpy_9GEk.crl (hash: UpOtQkcvRkKGW2x0AAgLIvZch7c071HvC0yUfpwIq0I=) 2: D865F69A233111EE813C5D26C4F9AE02.roa (hash: Lb0hJu9MZe6wLWtHrKtqcwpP08rypBWIlAZybLR4Lp0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.crl rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJhXdJtDHfMjL417C4OVpy_9GEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E293, serialNumber=B49857749B431DF3232F8D7B0B8395A72FFD1849 Validity Not Before: Aug 9 03:53:05 2025 GMT Not After : Aug 16 03:53:05 2025 GMT Subject: CN=6896c622-2049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:81:7a:f5:f3:19:08:65:ae:8e:6b:72:ea:01: 9b:82:95:4a:84:d0:7f:09:a1:4a:c6:0d:ac:25:79: ef:39:53:2d:3b:ed:23:b6:4c:f0:36:16:3c:40:2e: 0d:16:9d:02:a8:52:53:6b:35:ed:0b:96:d5:35:62: 47:e5:e0:e1:c6:bc:eb:30:34:16:07:06:64:40:6d: e3:35:f1:05:c3:48:2d:4a:ed:67:71:6c:39:d3:99: 85:07:75:bd:1d:81:16:84:40:a7:15:0b:80:3f:46: b3:84:b4:cc:c4:c5:71:e9:45:be:2e:54:64:bd:92: be:47:a0:41:5d:bb:58:66:3b:76:c4:b0:99:a6:da: d1:56:37:7c:16:7c:e6:13:3b:38:2b:2d:61:68:ff: c9:e9:0c:c0:e0:08:f6:d5:63:4e:cb:fa:b4:4e:53: 6f:ff:54:d9:48:c2:7f:f7:bf:46:0a:6a:43:3d:ce: 50:29:c6:7e:c5:92:8f:b1:a0:cc:a1:de:9d:75:78: 04:0c:54:e8:92:88:95:4b:a6:e9:de:03:44:e8:31: 8a:ea:e5:53:07:98:d6:cd:dc:b9:72:31:56:8d:7a: 22:3f:7d:61:9b:c4:cd:7c:34:b9:ce:45:22:b0:e2: 2b:a1:11:95:a8:07:23:2b:51:c9:ec:ca:63:ea:50: c5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:7A:E2:16:7F:B2:67:44:87:11:35:89:3D:AD:BF:87:05:E8:5F:74 X509v3 Authority Key Identifier: keyid:B4:98:57:74:9B:43:1D:F3:23:2F:8D:7B:0B:83:95:A7:2F:FD:18:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJhXdJtDHfMjL417C4OVpy_9GEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:36:26:49:5b:93:be:0b:17:71:3f:f5:60:96:f2:c3:e0:1b: 57:66:ae:d3:4f:66:0f:e9:b7:ae:e5:38:9b:6d:3f:56:0c:a9: 6d:e2:f0:48:c0:0d:33:00:e1:b3:d0:f2:1e:21:05:d1:f4:c5: 1f:c1:e4:28:3f:1b:9c:c1:09:4f:b4:3c:e0:59:c1:70:50:f6: 77:83:04:db:c9:71:f9:f7:53:96:62:76:60:6f:a2:17:c7:05: 51:91:e0:4e:ad:ff:43:e5:96:6b:14:16:76:34:8f:1e:79:eb: 2f:f6:52:a3:86:9c:aa:8a:1f:a8:b3:c9:32:75:65:fc:a9:a4: af:db:3a:0e:4b:b7:40:7c:de:41:fe:02:35:8a:7c:3e:1f:2e: e6:b0:df:53:8a:8a:80:32:42:a5:71:e2:81:cd:a8:28:83:16: 73:a1:b7:51:11:28:99:16:bf:41:dc:f0:3c:92:d0:39:93:c9: 27:8b:b7:eb:0d:92:1c:a4:8d:d2:c2:22:3d:0f:55:21:8d:fc: d2:4d:67:1d:1e:14:80:e6:4f:dd:19:05:f7:d4:d5:35:cd:61: cc:a6:a2:69:b3:1b:d2:9f:55:4e:22:48:8e:d5:78:83:b2:da: f9:31:8c:d5:77:d3:38:52:ac:03:b7:d0:19:03:da:e3:fd:e6: 97:00:72:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyOTMxMTAvBgNVBAUTKEI0OTg1Nzc0OUI0MzFERjMyMzJGOEQ3QjBCODM5NUE3 MkZGRDE4NDkwHhcNMjUwODA5MDM1MzA1WhcNMjUwODE2MDM1MzA1WjAYMRYwFAYD VQQDEw02ODk2YzYyMi0yMDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYF69fMZCGWujmty6gGbgpVKhNB/CaFKxg2sJXnvOVMtO+0jtkzwNhY8QC4N Fp0CqFJTazXtC5bVNWJH5eDhxrzrMDQWBwZkQG3jNfEFw0gtSu1ncWw505mFB3W9 HYEWhECnFQuAP0azhLTMxMVx6UW+LlRkvZK+R6BBXbtYZjt2xLCZptrRVjd8Fnzm Ezs4Ky1haP/J6QzA4Aj21WNOy/q0TlNv/1TZSMJ/979GCmpDPc5QKcZ+xZKPsaDM od6ddXgEDFTokoiVS6bp3gNE6DGK6uVTB5jWzdy5cjFWjXoiP31hm8TNfDS5zkUi sOIroRGVqAcjK1HJ7Mpj6lDFUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJx64hZ/ smdEhxE1iT2tv4cF6F90MB8GA1UdIwQYMBaAFLSYV3SbQx3zIy+NewuDlacv/RhJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTI5My8yODQxRDkyRTE3 REMxMUVFODg4MDRBNzFDNEY5QUUwMi90SmhYZEp0REhmTWpMNDE3QzRPVnB5XzlH RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RKaFhkSnRESGZNakw0MTdDNE9WcHlfOUdFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTI5My8yODQxRDkyRTE3REMxMUVFODg4MDRBNzFDNEY5QUUwMi90SmhYZEp0REhm TWpMNDE3QzRPVnB5XzlHRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaNiZJW5O+CxdxP/VglvLD4BtXZq7TT2YP6beu5TibbT9WDKlt4vBI wA0zAOGz0PIeIQXR9MUfweQoPxucwQlPtDzgWcFwUPZ3gwTbyXH591OWYnZgb6IX xwVRkeBOrf9D5ZZrFBZ2NI8eeesv9lKjhpyqih+os8kydWX8qaSv2zoOS7dAfN5B /gI1inw+Hy7msN9TioqAMkKlceKBzagogxZzobdRESiZFr9B3PA8ktA5k8kni7fr DZIcpI3SwiI9D1UhjfzSTWcdHhSA5k/dGQX31NU1zWHMpqJpsxvSn1VOIkiO1XiD str5MYzVd9M4UqwDt9AZA9rj/eaXAHJn -----END CERTIFICATE-----Generated at Sun Aug 10 18:52:14 2025 by rpki-client