$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft File: tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft (raw, json) Hash identifier: zY6lim5KCYS49zG4Lx7CyB3+kHBfIkhDH1PfOfmbzmM= Subject key identifier: 02:E5:ED:70:18:E8:F5:53:22:A2:8B:26:33:B2:2F:BC:7B:4A:DA:00 Authority key identifier: B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C Certificate issuer: /CN=A9131711/serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft Manifest number: 0122 Signing time: Sat 23 Aug 2025 04:54:48 +0000 Manifest this update: Sat 23 Aug 2025 04:54:48 +0000 Manifest next update: Sat 30 Aug 2025 04:54:48 +0000 Files and hashes: 1: tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl (hash: Wb/zR3FA1e+6zpQNJdmlMlsu5iZaW0Tyt2Qukh6J950=) 2: B2B006BAE3E911EEB845B268C4F9AE02.roa (hash: fj5an6uMsWFMPTZr6PrKep91XRX3rQER6UmH0deptJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Validity Not Before: Aug 23 04:54:48 2025 GMT Not After : Aug 30 04:54:48 2025 GMT Subject: CN=68a94998-7d15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:2d:b0:9e:e3:e6:07:9e:91:11:aa:40:dc:8c: e3:de:71:de:3e:51:0e:df:73:1d:9e:00:85:aa:19: a6:b9:dd:69:b5:1f:d0:ea:ac:da:65:18:b1:14:38: a3:2b:4c:88:e2:f3:1c:f1:5f:e0:1b:d3:8d:83:f3: 47:62:60:bb:bc:9b:76:9a:90:f7:63:70:4b:c9:a8: f0:44:c2:30:5f:bc:7a:2e:41:32:61:80:39:c3:cd: 49:91:14:45:cf:96:8a:ba:2b:47:7c:c4:7e:de:05: 70:d6:a1:63:84:e3:fe:40:61:85:93:4d:af:b3:24: d6:0e:bf:26:be:2a:8a:41:56:2d:d9:b6:78:30:88: 82:a3:e2:a2:1a:33:88:ab:99:9a:6d:d8:17:6c:84: 2e:9d:17:b8:cd:65:73:7e:75:5d:2e:b2:38:65:06: a2:f1:a6:98:63:62:9b:80:c2:86:93:8e:7f:66:41: 12:0a:34:37:5b:40:58:2d:48:79:39:43:2c:aa:5f: 6f:9d:60:84:37:f2:88:4f:b1:13:ef:4f:14:da:31: bc:50:bb:a8:ad:6d:02:48:5f:e0:76:96:fe:58:b6: f0:02:e8:83:3c:8a:65:05:5d:be:e3:08:40:2f:ac: 92:de:d6:5a:04:55:ea:48:34:0b:b8:25:3b:02:6e: f1:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:E5:ED:70:18:E8:F5:53:22:A2:8B:26:33:B2:2F:BC:7B:4A:DA:00 X509v3 Authority Key Identifier: keyid:B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:0d:c1:19:92:8e:33:d1:81:2f:ce:46:12:4b:ba:78:67:1d: 6e:5a:95:15:fb:88:d5:55:78:9f:c9:92:85:c6:38:8f:7c:bd: cf:3e:81:e6:a7:23:88:b1:a0:df:2b:64:96:9a:77:f9:81:03: d8:8c:9d:2a:44:89:a8:48:d3:c4:72:38:a0:f8:10:28:59:9a: 85:3c:52:01:f2:aa:7e:0c:0b:a9:09:bf:39:82:38:69:12:7d: 4e:14:29:ae:dd:9b:63:e0:49:0b:00:8d:87:6c:ce:24:f1:05: 5d:58:6e:5f:39:7a:2d:b4:4f:1a:97:7d:b2:0d:5e:48:97:8e: e8:c9:08:27:c2:b5:76:bb:41:5b:e4:ca:60:24:8c:f0:2f:eb: 97:75:36:32:b5:aa:a7:78:0d:b3:b5:78:91:87:1b:62:c7:6f: 9e:83:73:13:1b:65:0c:44:3e:0b:08:c6:22:cc:72:f4:50:2d: aa:6e:b1:d1:8d:d4:14:c1:c6:72:bd:d1:10:1f:63:1c:91:ea: 98:93:48:8b:76:7c:1b:5a:1d:0e:7b:0d:45:3d:e8:f4:2f:fb: bf:20:ec:d5:ae:77:46:42:f6:f4:35:8c:35:bf:e3:d6:c9:ad: 58:79:cb:db:db:64:ef:e9:e8:97:68:14:91:d0:c5:a2:5d:4f: 08:30:e7:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEI1N0IyMDdGMEUxQzFCQTg3M0EwNzkzNTgyQzdBODEz NDA5ODY3NEMwHhcNMjUwODIzMDQ1NDQ4WhcNMjUwODMwMDQ1NDQ4WjAYMRYwFAYD VQQDEw02OGE5NDk5OC03ZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7i2wnuPmB56REapA3Izj3nHePlEO33MdngCFqhmmud1ptR/Q6qzaZRixFDij K0yI4vMc8V/gG9ONg/NHYmC7vJt2mpD3Y3BLyajwRMIwX7x6LkEyYYA5w81JkRRF z5aKuitHfMR+3gVw1qFjhOP+QGGFk02vsyTWDr8mviqKQVYt2bZ4MIiCo+KiGjOI q5mabdgXbIQunRe4zWVzfnVdLrI4ZQai8aaYY2KbgMKGk45/ZkESCjQ3W0BYLUh5 OUMsql9vnWCEN/KIT7ET708U2jG8ULuorW0CSF/gdpb+WLbwAuiDPIplBV2+4whA L6yS3tZaBFXqSDQLuCU7Am7x7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALl7XAY 6PVTIqKLJjOyL7x7StoAMB8GA1UdIwQYMBaAFLV7IH8OHBuoc6B5NYLHqBNAmGdM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS85RkREMkRBMEM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2aHpvSGsxZ3Nlb0UwQ1la MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RYc2dmdzRjRzZoem9IazFnc2VvRTBDWVowdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS85RkREMkRBMEM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2 aHpvSGsxZ3Nlb0UwQ1laMHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7DcEZko4z0YEvzkYSS7p4Zx1uWpUV+4jVVXifyZKFxjiPfL3PPoHm pyOIsaDfK2SWmnf5gQPYjJ0qRImoSNPEcjig+BAoWZqFPFIB8qp+DAupCb85gjhp En1OFCmu3Ztj4EkLAI2HbM4k8QVdWG5fOXottE8al32yDV5Il47oyQgnwrV2u0Fb 5MpgJIzwL+uXdTYytaqneA2ztXiRhxtix2+eg3MTG2UMRD4LCMYizHL0UC2qbrHR jdQUwcZyvdEQH2MckeqYk0iLdnwbWh0Oew1FPej0L/u/IOzVrndGQvb0NYw1v+PW ya1Yecvb22Tv6eiXaBSR0MWiXU8IMOcl -----END CERTIFICATE-----Generated at Sat Aug 23 19:35:56 2025 by rpki-client