$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft File: tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft (raw, json) Hash identifier: AGxYh+OOnbd2hmcwn8kIIogVR20MuB+peIBp9zKemOQ= Subject key identifier: D5:40:45:91:A9:AB:23:DC:DF:6E:B6:A4:AC:77:2C:56:AD:7F:28:11 Authority key identifier: B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C Certificate issuer: /CN=A9131711/serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft Manifest number: 0108 Signing time: Thu 03 Jul 2025 05:14:48 +0000 Manifest this update: Thu 03 Jul 2025 05:14:48 +0000 Manifest next update: Thu 10 Jul 2025 05:14:48 +0000 Files and hashes: 1: tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl (hash: S9w5bE3O1J7i32m54lc6Q6LoNWBAw7Vr11tZn1g5uzY=) 2: B2B006BAE3E911EEB845B268C4F9AE02.roa (hash: fj5an6uMsWFMPTZr6PrKep91XRX3rQER6UmH0deptJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Validity Not Before: Jul 3 05:14:48 2025 GMT Not After : Jul 10 05:14:48 2025 GMT Subject: CN=686611c8-a4db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:36:b6:d5:0a:2a:b0:ce:d6:1d:f8:a3:27:da: e0:28:c6:33:c0:e5:c7:77:80:b4:66:c7:ff:2a:ae: dd:b9:02:37:8e:73:b9:f7:f1:0b:3d:5c:9f:dd:fd: 4b:a9:30:f1:00:15:a5:79:1e:83:01:af:b3:9a:7b: 37:b4:da:0c:8d:86:e6:8d:e2:70:db:6a:26:f0:98: 8e:7e:4b:4b:36:7c:b8:f1:f1:05:1c:51:93:c4:ec: e6:12:0a:25:38:90:18:cd:91:9f:14:a2:11:dd:b4: 34:fc:ae:27:14:c9:42:1d:8b:73:3c:eb:ac:77:2d: d6:5c:ce:4b:94:36:d6:84:bc:a0:89:da:03:0b:77: 18:4b:c6:48:63:df:6d:d3:98:5c:bb:79:37:95:88: 69:dc:33:81:ce:79:af:f1:56:89:99:41:9e:72:5d: 9a:6b:fc:cb:29:66:24:ed:a8:78:e6:1f:98:18:66: 26:87:69:1f:b9:7f:cd:fd:f4:6d:50:6b:2e:70:46: b2:58:c5:9e:27:7b:9e:4e:f2:9c:86:b4:c1:14:7d: c4:78:a8:81:05:19:78:a1:a3:b5:fd:73:5b:4d:63: ff:1d:67:17:b4:f5:83:5a:6c:85:6f:2f:64:e3:4f: 81:56:2b:5a:ee:3b:4f:9e:3c:c3:b6:a6:dc:2c:2c: 4c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:40:45:91:A9:AB:23:DC:DF:6E:B6:A4:AC:77:2C:56:AD:7F:28:11 X509v3 Authority Key Identifier: keyid:B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:da:e6:05:f5:57:ea:46:d5:4a:04:f6:d7:c1:7b:9e:53:80: 82:3b:1a:e3:26:3a:c7:35:75:7e:f7:70:d2:75:fc:4a:ad:5c: 40:82:ac:b8:e4:7e:df:45:6d:fc:23:9c:75:c3:8b:b3:2d:e3: f8:d6:a7:07:7c:65:01:d6:d9:47:bc:3f:57:27:fd:04:7d:de: 1a:37:a6:8a:4d:67:79:34:6c:4f:34:ff:55:43:25:9a:da:b9: 9f:e8:a4:f3:e7:31:7b:83:c0:37:35:0e:e6:77:5a:b1:94:b8: e1:aa:ca:ce:91:92:16:5c:d6:9c:6f:2b:d3:e1:e4:1c:60:94: 2e:1b:ca:6a:92:07:14:85:80:2a:50:3d:3e:83:66:06:a5:7a: 83:14:20:f1:e2:d2:98:ba:0e:4f:57:22:9a:d9:26:b7:cc:fd: eb:e6:46:d1:35:1c:c9:3c:36:e4:c3:f5:66:3b:20:44:86:60: b7:6c:07:a4:08:bd:fd:5c:2e:29:78:e4:0a:c6:e8:81:65:df: 51:2f:09:82:93:b5:b6:f5:9c:fc:4a:1d:f1:f8:f7:50:08:ff: 51:5d:f3:14:98:07:fa:df:b7:41:de:c1:31:b2:0d:31:3a:5a: 0e:0a:fb:8e:79:62:2c:84:cb:b0:bf:c0:97:59:57:a1:ce:8c: 57:0a:30:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEI1N0IyMDdGMEUxQzFCQTg3M0EwNzkzNTgyQzdBODEz NDA5ODY3NEMwHhcNMjUwNzAzMDUxNDQ4WhcNMjUwNzEwMDUxNDQ4WjAYMRYwFAYD VQQDEw02ODY2MTFjOC1hNGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ta21QoqsM7WHfijJ9rgKMYzwOXHd4C0Zsf/Kq7duQI3jnO59/ELPVyf3f1L qTDxABWleR6DAa+zmns3tNoMjYbmjeJw22om8JiOfktLNny48fEFHFGTxOzmEgol OJAYzZGfFKIR3bQ0/K4nFMlCHYtzPOusdy3WXM5LlDbWhLygidoDC3cYS8ZIY99t 05hcu3k3lYhp3DOBznmv8VaJmUGecl2aa/zLKWYk7ah45h+YGGYmh2kfuX/N/fRt UGsucEayWMWeJ3ueTvKchrTBFH3EeKiBBRl4oaO1/XNbTWP/HWcXtPWDWmyFby9k 40+BVita7jtPnjzDtqbcLCxMnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVARZGp qyPc3262pKx3LFatfygRMB8GA1UdIwQYMBaAFLV7IH8OHBuoc6B5NYLHqBNAmGdM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS85RkREMkRBMEM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2aHpvSGsxZ3Nlb0UwQ1la MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RYc2dmdzRjRzZoem9IazFnc2VvRTBDWVowdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS85RkREMkRBMEM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2 aHpvSGsxZ3Nlb0UwQ1laMHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCh2uYF9VfqRtVKBPbXwXueU4CCOxrjJjrHNXV+93DSdfxKrVxAgqy4 5H7fRW38I5x1w4uzLeP41qcHfGUB1tlHvD9XJ/0Efd4aN6aKTWd5NGxPNP9VQyWa 2rmf6KTz5zF7g8A3NQ7md1qxlLjhqsrOkZIWXNacbyvT4eQcYJQuG8pqkgcUhYAq UD0+g2YGpXqDFCDx4tKYug5PVyKa2Sa3zP3r5kbRNRzJPDbkw/VmOyBEhmC3bAek CL39XC4peOQKxuiBZd9RLwmCk7W29Zz8Sh3x+PdQCP9RXfMUmAf637dB3sExsg0x OloOCvuOeWIshMuwv8CXWVehzoxXCjBK -----END CERTIFICATE-----Generated at Fri Jul 4 00:07:46 2025 by rpki-client