$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: IYhNnbThORPGQcoXsT7cMj6b9qcC7BtnufE5GEj+fxY= Subject key identifier: 26:8E:70:5D:C1:81:DF:E1:C3:A2:EE:65:2B:59:A8:26:2D:AD:B8:29 Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 106A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 102E Signing time: Fri 22 Aug 2025 17:35:46 +0000 Manifest this update: Fri 22 Aug 2025 17:35:46 +0000 Manifest next update: Fri 29 Aug 2025 17:35:46 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: xlyxJg/0kmaLpD3YifufwdXWvWfP5LQuvojDt0EWjV0=) 2: 64BBCC50909D11ED9EA9867FC4F9AE02.roa (hash: JcjF+/6kCZJ48Z0DWV35F84UCZas+SRfWJwuoffcQww=) 3: EE63EB2A59A611F0959E0C63C4F9AE02.roa (hash: GsLnRLdogxstpaApcoyc6Zg1nnApMAJYYma2C41kKMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4202 (0x106a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: Aug 22 17:35:46 2025 GMT Not After : Aug 29 17:35:46 2025 GMT Subject: CN=68a8aa72-2020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:28:1f:04:66:40:df:aa:04:49:90:f7:88:37: c1:f9:6b:ec:50:14:cd:e4:f8:87:e3:17:cc:0d:f4: 2a:3a:b2:c7:57:fb:16:43:6b:5b:e8:50:aa:f0:0c: 0f:f2:0b:4a:ae:82:d8:c4:23:f4:0a:f9:88:ca:ae: f7:57:b5:3f:af:dc:18:8f:1a:0a:81:b4:31:27:48: 9b:20:76:b0:cd:25:62:24:20:e7:07:03:9e:e1:99: 73:a3:f3:bb:31:3b:96:eb:9c:74:60:dd:96:3f:af: 38:c7:6f:49:c3:f9:8d:e3:99:ec:42:6d:ae:05:78: 4a:0a:bc:04:af:d3:3f:82:ed:cb:08:91:9f:1c:b0: 64:19:5c:d4:af:4a:2f:34:eb:d7:b4:98:9f:98:a3: 8e:5c:9c:e8:5c:0b:74:4c:7c:e9:58:7e:73:f2:8b: 25:cb:9c:c9:4d:08:8d:99:99:e1:82:6f:e7:a0:26: 7e:c1:b1:fe:66:8f:e4:23:c3:a2:51:16:07:04:95: 84:01:d9:64:c8:d6:a7:5b:4c:b4:a1:48:fe:c9:3f: df:ee:98:a9:e6:58:2a:1a:70:84:9d:9f:69:35:80: 6b:21:13:de:7c:c2:06:8d:b3:0e:a3:21:9d:19:93: 18:ef:72:73:0e:b1:03:58:03:aa:c7:98:83:d6:25: 16:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:8E:70:5D:C1:81:DF:E1:C3:A2:EE:65:2B:59:A8:26:2D:AD:B8:29 X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:6d:19:97:55:d0:8e:3e:91:20:3d:f3:e5:a0:ee:8b:f8:55: 4f:ca:0b:c3:fa:27:ec:5f:0a:dd:ea:28:1d:b6:b3:c5:e9:e7: ca:c7:51:a2:cf:77:f2:30:13:c4:86:36:18:b0:52:ea:e9:53: ce:6e:ca:ed:63:49:a7:0c:9b:e0:c5:65:9a:96:f6:d9:bf:a8: c0:a7:74:d3:4c:71:50:f9:7a:8d:fc:00:a5:8f:51:36:2b:54: c3:60:3e:6b:cc:8c:5f:53:f6:e2:01:6c:a8:7d:79:d0:a4:19: 6e:c7:50:19:bf:b4:19:81:5e:db:da:6d:07:80:61:ac:d1:e8: 30:3c:8c:80:37:4f:ce:06:b9:cb:35:6e:65:77:ca:a4:97:ad: 7e:63:61:89:96:dc:1d:12:ca:e3:b7:b5:df:81:1f:ab:8e:26: 1d:fb:da:e0:4b:33:b4:3c:75:d3:b3:83:73:f0:e4:f9:b3:ba: bd:0d:b9:99:ac:85:6f:00:a9:71:4f:26:0a:62:17:d9:14:6e: 54:df:4a:d5:73:37:52:89:bf:68:57:b8:05:0b:9d:b3:69:81: da:9e:18:d5:cf:b6:12:80:2b:c6:ad:dc:25:ff:cf:7c:8b:44: c1:82:ca:fc:b5:df:7a:28:34:6d:4f:b5:64:79:f8:ab:1a:f7: 4d:f4:e1:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjUwODIyMTczNTQ2WhcNMjUwODI5MTczNTQ2WjAYMRYwFAYD VQQDEw02OGE4YWE3Mi0yMDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SgfBGZA36oESZD3iDfB+WvsUBTN5PiH4xfMDfQqOrLHV/sWQ2tb6FCq8AwP 8gtKroLYxCP0CvmIyq73V7U/r9wYjxoKgbQxJ0ibIHawzSViJCDnBwOe4Zlzo/O7 MTuW65x0YN2WP684x29Jw/mN45nsQm2uBXhKCrwEr9M/gu3LCJGfHLBkGVzUr0ov NOvXtJifmKOOXJzoXAt0THzpWH5z8osly5zJTQiNmZnhgm/noCZ+wbH+Zo/kI8Oi URYHBJWEAdlkyNanW0y0oUj+yT/f7pip5lgqGnCEnZ9pNYBrIRPefMIGjbMOoyGd GZMY73JzDrEDWAOqx5iD1iUWYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaOcF3B gd/hw6LuZStZqCYtrbgpMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLbRmXVdCOPpEgPfPloO6L+FVPygvD+ifsXwrd6igdtrPF6efKx1Gi z3fyMBPEhjYYsFLq6VPObsrtY0mnDJvgxWWalvbZv6jAp3TTTHFQ+XqN/AClj1E2 K1TDYD5rzIxfU/biAWyofXnQpBlux1AZv7QZgV7b2m0HgGGs0egwPIyAN0/OBrnL NW5ld8qkl61+Y2GJltwdEsrjt7XfgR+rjiYd+9rgSzO0PHXTs4Nz8OT5s7q9DbmZ rIVvAKlxTyYKYhfZFG5U30rVczdSib9oV7gFC52zaYHanhjVz7YSgCvGrdwl/898 i0TBgsr8td96KDRtT7VkefirGvdN9OGG -----END CERTIFICATE-----Generated at Sun Aug 24 00:56:22 2025 by rpki-client