$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: PjjwVp8xXBmsnCVUK2e6tYX0uzj+ghtFBJHKEHsenGk= Subject key identifier: 09:24:97:21:C7:BF:83:96:DE:97:ED:EA:58:EC:03:70:61:20:0C:4F Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 1044 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 100D Signing time: Wed 02 Jul 2025 17:41:35 +0000 Manifest this update: Wed 02 Jul 2025 17:41:35 +0000 Manifest next update: Wed 09 Jul 2025 17:41:34 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: Yv+usj/WC/WjOrzzN6J+0dpz4bkHv4XPsQlyO2W02Kg=) 2: 64BBCC50909D11ED9EA9867FC4F9AE02.roa (hash: xg099yR4eAC7wbvaBb8dUHM2paW9Jui6a4WnYhNuuAw=) 3: B38547B48C1811ED95522F3EC4F9AE02.roa (hash: wSjpeH4wi579ImWNOEWEbvFQXzrSCXT7+49/306hMSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:41:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4164 (0x1044) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: Jul 2 17:41:35 2025 GMT Not After : Jul 9 17:41:34 2025 GMT Subject: CN=68656f4f-291b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cc:e1:82:fc:bd:2d:7e:1f:57:df:09:d8:93: be:0e:fa:42:a5:bd:75:f9:d7:c3:1f:46:f6:d8:2c: f8:1c:1d:96:45:17:5b:38:5b:a3:8f:95:6f:31:12: a7:13:9f:06:a2:0d:fa:77:b6:20:b7:98:ff:eb:a6: e1:69:f1:98:5d:db:68:0e:2f:22:b5:ab:dc:99:25: bb:59:5f:8a:e0:de:b4:3e:3d:2e:cb:60:3f:b1:68: 53:96:9f:64:6f:fe:de:75:95:ad:d2:42:f9:ad:fd: 07:43:30:7f:89:4b:17:46:39:2b:ea:90:72:2b:9f: 2d:f5:6f:35:e5:80:73:0b:46:a8:fc:2d:9b:b0:fa: 71:95:45:69:6a:e0:e1:49:24:54:14:67:75:f0:0f: 3a:86:63:36:2e:75:09:14:ca:41:47:87:68:bc:0e: e6:e6:b2:13:1d:46:14:15:bb:95:85:79:13:b7:f7: eb:75:b4:11:b6:ff:28:48:32:7e:d5:ca:c4:8d:bb: a4:56:5d:c4:e9:95:34:de:22:26:91:b7:3b:32:72: 89:72:b9:bc:be:28:3f:aa:18:c4:e0:1d:4c:3a:4f: 64:7d:9d:4d:6e:8a:62:bf:58:fb:c7:f3:f2:ef:1c: bc:1b:1d:bb:96:ff:37:db:c3:15:09:70:fb:48:ef: a9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:24:97:21:C7:BF:83:96:DE:97:ED:EA:58:EC:03:70:61:20:0C:4F X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:9b:38:ba:79:ca:91:28:e7:f2:9d:5c:26:7a:32:fe:24:cf: fc:0f:28:76:63:f1:87:00:83:32:b4:5a:d1:49:c2:d3:99:40: c2:88:aa:27:68:8c:60:59:5a:52:90:e0:7d:2f:84:9a:b2:34: 57:dd:b1:95:6b:9e:15:8a:0c:d8:50:20:9b:1d:b6:d6:b1:cc: b4:fa:c6:bd:a2:b9:43:2b:0c:bb:17:74:be:8e:12:d1:c1:fd: 71:3b:e4:00:5d:53:ce:51:06:e0:22:a3:72:75:96:ce:d4:77: d4:ce:b0:b0:eb:d8:98:7b:b7:d3:3f:a9:d7:79:26:d6:8e:47: ac:e6:3d:e9:4f:fb:ec:1b:25:90:74:09:10:f7:7f:12:75:60: 9b:b4:db:a5:12:f8:9e:5f:d0:c0:57:b8:61:0c:62:8c:ae:c3: ed:b6:f0:72:56:25:77:f7:15:bd:e9:de:e8:2e:fa:84:4f:83: bb:57:2b:27:dd:c7:13:af:a7:52:29:db:ea:1c:fe:33:76:d9: fc:ec:65:75:30:f4:b7:51:2e:8c:cb:ee:f8:82:00:0c:47:2c: 32:64:0b:94:94:d3:bc:a4:4f:7f:80:28:cc:48:e4:bd:eb:b4: 07:da:8f:9b:04:b3:af:6a:29:df:87:59:55:38:b1:c0:c4:0d: 1a:ac:8d:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjUwNzAyMTc0MTM1WhcNMjUwNzA5MTc0MTM0WjAYMRYwFAYD VQQDEw02ODY1NmY0Zi0yOTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0szhgvy9LX4fV98J2JO+DvpCpb11+dfDH0b22Cz4HB2WRRdbOFujj5VvMRKn E58Gog36d7Ygt5j/66bhafGYXdtoDi8itavcmSW7WV+K4N60Pj0uy2A/sWhTlp9k b/7edZWt0kL5rf0HQzB/iUsXRjkr6pByK58t9W815YBzC0ao/C2bsPpxlUVpauDh SSRUFGd18A86hmM2LnUJFMpBR4dovA7m5rITHUYUFbuVhXkTt/frdbQRtv8oSDJ+ 1crEjbukVl3E6ZU03iImkbc7MnKJcrm8vig/qhjE4B1MOk9kfZ1Nbopiv1j7x/Py 7xy8Gx27lv8328MVCXD7SO+prwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkklyHH v4OW3pft6ljsA3BhIAxPMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5mzi6ecqRKOfynVwmejL+JM/8Dyh2Y/GHAIMytFrRScLTmUDCiKon aIxgWVpSkOB9L4SasjRX3bGVa54VigzYUCCbHbbWscy0+sa9orlDKwy7F3S+jhLR wf1xO+QAXVPOUQbgIqNydZbO1HfUzrCw69iYe7fTP6nXeSbWjkes5j3pT/vsGyWQ dAkQ938SdWCbtNulEvieX9DAV7hhDGKMrsPttvByViV39xW96d7oLvqET4O7Vysn 3ccTr6dSKdvqHP4zdtn87GV1MPS3US6My+74ggAMRywyZAuUlNO8pE9/gCjMSOS9 67QH2o+bBLOvainfh1lVOLHAxA0arI03 -----END CERTIFICATE-----Generated at Fri Jul 4 01:30:18 2025 by rpki-client