$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft File: _tgXL4qVo1IC1RxvdfqUfehE9M0.mft (raw, json) Hash identifier: lMpo4s0aoEWADo3/KCMRTsIAiQfV8CdAyT22xK8W3mc= Subject key identifier: 1F:58:18:5B:3F:7B:AE:99:31:34:C9:D7:66:25:65:96:2C:62:9A:BC Authority key identifier: FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD Certificate issuer: /CN=A9198D95/serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft Manifest number: ED Signing time: Thu 19 Jun 2025 04:41:04 +0000 Manifest this update: Thu 19 Jun 2025 04:41:03 +0000 Manifest next update: Thu 26 Jun 2025 04:41:03 +0000 Files and hashes: 1: _tgXL4qVo1IC1RxvdfqUfehE9M0.crl (hash: Fn32cNz6h9SofGvCj+U9/v9AfLfCHCf0nsUjM+NkLVg=) 2: 994A883AE06511EEA8CEC61EC4F9AE02.roa (hash: LjsOflVWx2ASLq3Z//t4WARlGyPly5HO69O4zsWdHy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:41:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D95, serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Validity Not Before: Jun 19 04:41:03 2025 GMT Not After : Jun 26 04:41:03 2025 GMT Subject: CN=685394e0-a9a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c0:92:a0:dd:33:e1:02:b2:56:63:be:53:20: 26:c8:0a:5b:59:ac:c7:ec:47:fa:16:e3:d1:25:a8: 39:d4:a8:6e:00:ae:4d:86:c1:41:e7:54:5c:be:45: a9:a0:79:0e:63:c2:b4:6d:9f:49:99:f3:0d:b8:b0: 6d:97:17:1c:43:58:6c:5d:51:a5:29:2b:5c:2d:b5: d0:d1:f4:62:62:75:5d:68:cc:1f:41:dd:3b:ca:2f: 27:a5:23:4d:16:be:ce:e2:56:64:4e:3a:63:f8:0b: 76:68:06:93:eb:a2:39:fe:74:6c:24:a1:cd:00:7d: ee:b2:44:81:3d:11:15:01:e7:81:d6:cf:7d:58:8a: eb:f7:90:15:cf:18:49:8b:fd:44:73:e5:9a:5d:ab: 1b:4d:09:c8:d3:f3:92:c3:cc:66:60:39:4a:21:84: ed:65:0d:6a:65:dd:6b:93:cb:9b:f8:08:7d:ca:92: 2e:f0:cf:02:52:3a:22:07:5c:f4:a5:bb:ee:16:58: e8:a5:75:69:bd:91:67:13:24:40:d1:21:10:c1:78: 58:a9:74:70:f8:b0:3c:23:48:89:c1:4a:ce:d9:f6: d7:5d:6a:1a:e6:f9:7e:d1:e0:ae:dc:87:75:fe:66: 54:f5:16:af:0d:c0:9f:25:b0:41:8e:d0:0f:fc:e1: 96:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:58:18:5B:3F:7B:AE:99:31:34:C9:D7:66:25:65:96:2C:62:9A:BC X509v3 Authority Key Identifier: keyid:FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:02:f7:f7:23:df:ca:7b:8a:fa:3b:2c:6e:4a:25:4d:43:9e: 12:33:5a:5e:71:dc:0f:5c:44:18:5f:af:15:2a:b4:33:93:9c: e7:cf:b3:34:5b:d7:7c:bc:35:77:3b:1d:59:19:8e:bf:d4:0c: 23:00:2f:35:d7:b1:5d:93:af:bc:fe:da:b1:1c:5c:4f:9c:cd: 16:fd:9c:34:3c:0a:3b:2d:e9:25:a3:df:00:9e:ba:94:07:2b: b5:91:1c:3c:ff:75:95:8d:d9:87:d2:af:0b:34:69:5c:eb:29: f6:b3:b3:f3:71:2d:6c:ad:a4:a5:ad:b1:ed:94:75:f4:1e:9f: c2:de:22:ca:86:7b:41:70:6f:fa:11:08:7e:08:c3:b4:c5:a7: ea:2c:99:69:f6:dc:df:24:56:a9:36:e6:ae:8b:3c:57:53:c0: 52:1b:e5:d4:78:85:00:97:e8:bf:38:25:8a:3a:8e:fa:de:e4: 9f:0c:2c:a3:ef:d9:3b:77:ce:e4:7e:72:cf:0f:6f:c2:3c:48: d0:4a:18:a4:fe:4a:4a:3e:6f:c6:a2:a7:3e:c2:89:f8:2f:6b: bd:aa:84:0e:82:f5:d3:27:ec:fd:27:37:53:a1:7c:d8:51:64: f4:fb:bb:20:ef:ee:8b:1f:44:5f:83:d3:f1:61:a1:ec:e8:23: 57:15:36:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEOTUxMTAvBgNVBAUTKEZFRDgxNzJGOEE5NUEzNTIwMkQ1MUM2Rjc1RkE5NDdE RTg0NEY0Q0QwHhcNMjUwNjE5MDQ0MTAzWhcNMjUwNjI2MDQ0MTAzWjAYMRYwFAYD VQQDEw02ODUzOTRlMC1hOWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMCSoN0z4QKyVmO+UyAmyApbWazH7Ef6FuPRJag51KhuAK5NhsFB51RcvkWp oHkOY8K0bZ9JmfMNuLBtlxccQ1hsXVGlKStcLbXQ0fRiYnVdaMwfQd07yi8npSNN Fr7O4lZkTjpj+At2aAaT66I5/nRsJKHNAH3uskSBPREVAeeB1s99WIrr95AVzxhJ i/1Ec+WaXasbTQnI0/OSw8xmYDlKIYTtZQ1qZd1rk8ub+Ah9ypIu8M8CUjoiB1z0 pbvuFljopXVpvZFnEyRA0SEQwXhYqXRw+LA8I0iJwUrO2fbXXWoa5vl+0eCu3Id1 /mZU9RavDcCfJbBBjtAP/OGWhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9YGFs/ e66ZMTTJ12YlZZYsYpq8MB8GA1UdIwQYMBaAFP7YFy+KlaNSAtUcb3X6lH3oRPTN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQ5NS80OEVEMjk2QUUw NjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8xSUMxUnh2ZGZxVWZlaEU5 TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190Z1hMNHFWbzFJQzFSeHZkZnFVZmVoRTlNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQ5NS80OEVEMjk2QUUwNjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8x SUMxUnh2ZGZxVWZlaEU5TTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiAvf3I9/Ke4r6OyxuSiVNQ54SM1pecdwPXEQYX68VKrQzk5znz7M0 W9d8vDV3Ox1ZGY6/1AwjAC8117Fdk6+8/tqxHFxPnM0W/Zw0PAo7Leklo98AnrqU Byu1kRw8/3WVjdmH0q8LNGlc6yn2s7PzcS1sraSlrbHtlHX0Hp/C3iLKhntBcG/6 EQh+CMO0xafqLJlp9tzfJFapNuauizxXU8BSG+XUeIUAl+i/OCWKOo763uSfDCyj 79k7d87kfnLPD2/CPEjQShik/kpKPm/Goqc+won4L2u9qoQOgvXTJ+z9JzdToXzY UWT0+7sg7+6LH0Rfg9PxYaHs6CNXFTbE -----END CERTIFICATE-----Generated at Fri Jun 20 03:24:54 2025 by rpki-client