$ rpki-client -vvf rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft File: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft (raw, json) Hash identifier: gTk7r1mjz0LvvW27CjIu0ruFo+yseZbCN4JW5mY6oM0= Subject key identifier: 8A:CC:86:56:54:23:3F:2C:54:98:52:BF:AA:2E:78:71:0F:EF:F7:66 Authority key identifier: D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 Certificate issuer: /CN=A919608D/serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Certificate serial: 10EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft Manifest number: 10D0 Signing time: Sun 10 Aug 2025 17:18:36 +0000 Manifest this update: Sun 10 Aug 2025 17:18:35 +0000 Manifest next update: Sun 17 Aug 2025 17:18:35 +0000 Files and hashes: 1: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl (hash: h761wxg53JOC9BexqR+8F7qG2FHN5Ui8fJo8IgHaIi0=) 2: 0E17B1AE78F511EC83E56014C4F9AE02.roa (hash: lCmO2moRnEyFjHn2T0RrSpJHfoRMsDo8flibJ/q1im8=) 3: 0D0B79E478F511EC83E56014C4F9AE02.roa (hash: tpKBG2KlXfT/Zt122B62y1RWSYubHmXeyHELnt2EtS4=) 4: 1ED5B13E30C111ECBB5A4116C4F9AE02.roa (hash: IHi+IFG70AY+pGCPcqa0F+qxqcr2LZY1LLXZfYW/jkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4331 (0x10eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919608D, serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Validity Not Before: Aug 10 17:18:35 2025 GMT Not After : Aug 17 17:18:35 2025 GMT Subject: CN=6898d46b-5f0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1f:08:68:05:a4:6f:0d:89:67:c3:30:60:35: 26:8b:cb:00:20:d1:10:4b:73:a2:83:05:02:e8:e5: 22:13:39:ec:c9:dc:53:e7:90:3e:76:1c:d0:6e:4d: 0b:51:4b:c2:3d:e9:5c:52:e6:5b:04:2b:0f:da:ca: 96:ce:d5:41:c8:21:a9:9d:b3:18:cd:5e:05:39:a8: 58:e8:a5:14:6d:f3:3d:cf:f2:e2:f0:a9:1d:58:a3: 55:55:c9:16:09:87:e2:f9:18:3b:5a:d5:81:25:13: 13:cf:b5:c5:34:2e:b4:be:ca:39:3a:3a:88:98:05: b2:dd:fa:51:57:84:8b:20:07:01:0a:5e:dd:de:68: 52:13:cc:ea:1c:97:d0:b2:cb:46:fd:eb:1b:e8:f5: e2:55:76:2b:26:a6:c6:42:dc:bf:25:c5:f6:8b:d8: e5:c6:80:0d:38:6c:18:1e:34:06:d1:91:d6:67:34: 77:33:f9:85:b0:52:32:42:04:f3:65:40:5d:e4:e8: 57:ab:4e:02:61:d9:15:9c:13:29:a7:e2:b7:52:fd: f2:da:e1:e9:d6:51:f0:fc:4c:95:06:85:1e:ae:66: 05:0b:0c:3b:d9:72:4b:b7:b1:e3:bf:37:69:d9:68: 22:56:e9:82:b1:b6:33:33:2c:06:e1:ad:94:0a:97: de:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:CC:86:56:54:23:3F:2C:54:98:52:BF:AA:2E:78:71:0F:EF:F7:66 X509v3 Authority Key Identifier: keyid:D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:52:c3:49:31:e6:cf:fa:49:9d:41:69:41:7a:bd:9c:91:11: d5:2d:1d:34:2e:2b:3b:61:5b:7c:52:7d:97:aa:0c:7c:8c:32: 9e:64:fe:35:2c:61:de:44:2e:9c:be:7e:9a:4b:b0:2c:cc:8c: 88:13:d4:ba:02:88:24:39:a2:a4:7c:8a:39:9c:43:09:3b:06: 98:73:fc:f1:a9:36:e2:1a:f8:46:af:10:05:e0:f2:d7:35:70: aa:d8:d4:6d:90:fe:4d:ff:a3:93:42:c2:70:de:96:0f:6e:84: 8f:2e:d4:4f:bb:25:88:6d:a9:f2:e0:98:90:12:41:49:f6:1e: 23:2d:70:8e:ee:c0:cd:e0:a8:8c:f0:3c:a1:91:b0:64:7d:d1: 98:c9:c4:28:50:01:ac:87:2c:f0:5c:ba:2b:c8:c0:f2:5e:6b: 8e:b8:28:6f:14:67:2e:f7:63:5f:4b:ea:6f:1a:4f:f6:57:97: 30:d1:78:46:e9:eb:45:cc:3b:53:d1:5f:f8:fd:db:d3:c5:64: 96:3e:f2:37:2f:d6:b3:cb:41:b5:e4:40:8a:5f:f6:93:94:87: bd:ba:05:c7:e3:3e:70:e0:33:de:52:a0:dd:25:81:70:df:dd: 64:24:d0:2a:9b:75:ad:42:68:8f:b6:42:08:6b:4f:61:d6:d3: 11:ec:e8:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYwOEQxMTAvBgNVBAUTKEQyRDgwODA0OUE0NkVENzk3QzIxRjlGNjAyNTIzNDU2 NDYzMUIzRjkwHhcNMjUwODEwMTcxODM1WhcNMjUwODE3MTcxODM1WjAYMRYwFAYD VQQDEw02ODk4ZDQ2Yi01ZjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArR8IaAWkbw2JZ8MwYDUmi8sAINEQS3OigwUC6OUiEznsydxT55A+dhzQbk0L UUvCPelcUuZbBCsP2sqWztVByCGpnbMYzV4FOahY6KUUbfM9z/Li8KkdWKNVVckW CYfi+Rg7WtWBJRMTz7XFNC60vso5OjqImAWy3fpRV4SLIAcBCl7d3mhSE8zqHJfQ sstG/esb6PXiVXYrJqbGQty/JcX2i9jlxoANOGwYHjQG0ZHWZzR3M/mFsFIyQgTz ZUBd5OhXq04CYdkVnBMpp+K3Uv3y2uHp1lHw/EyVBoUermYFCww72XJLt7Hjvzdp 2WgiVumCsbYzMywG4a2UCpfe6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrMhlZU Iz8sVJhSv6oueHEP7/dmMB8GA1UdIwQYMBaAFNLYCASaRu15fCH59gJSNFZGMbP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjA4RC84MTA3M0EzMDI4 NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdYbDhJZm4yQWxJMFZrWXhz X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB0Z0lCSnBHN1hsOElmbjJBbEkwVmtZeHNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjA4RC84MTA3M0EzMDI4NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdY bDhJZm4yQWxJMFZrWXhzX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3UsNJMebP+kmdQWlBer2ckRHVLR00Lis7YVt8Un2Xqgx8jDKeZP41 LGHeRC6cvn6aS7AszIyIE9S6AogkOaKkfIo5nEMJOwaYc/zxqTbiGvhGrxAF4PLX NXCq2NRtkP5N/6OTQsJw3pYPboSPLtRPuyWIbany4JiQEkFJ9h4jLXCO7sDN4KiM 8DyhkbBkfdGYycQoUAGshyzwXLoryMDyXmuOuChvFGcu92NfS+pvGk/2V5cw0XhG 6etFzDtT0V/4/dvTxWSWPvI3L9azy0G15ECKX/aTlIe9ugXH4z5w4DPeUqDdJYFw 391kJNAqm3WtQmiPtkIIa09h1tMR7Oh/ -----END CERTIFICATE-----Generated at Mon Aug 11 13:53:57 2025 by rpki-client