$ rpki-client -vvf rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft File: TDZeNqZHnY6wtQ2Q820dexnvhNM.mft (raw, json) Hash identifier: MjHahuS0kXDS06hAK1CD1rPSxzCvWzn8fmpy3y8nJx0= Subject key identifier: 3C:51:5A:50:08:29:1F:BB:F4:7A:53:E4:99:B0:B2:36:04:F8:3C:53 Authority key identifier: 4C:36:5E:36:A6:47:9D:8E:B0:B5:0D:90:F3:6D:1D:7B:19:EF:84:D3 Certificate issuer: /CN=A9135B49/serialNumber=4C365E36A6479D8EB0B50D90F36D1D7B19EF84D3 Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDZeNqZHnY6wtQ2Q820dexnvhNM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft Manifest number: 0117 Signing time: Sat 23 Aug 2025 05:26:15 +0000 Manifest this update: Sat 23 Aug 2025 05:26:15 +0000 Manifest next update: Sat 30 Aug 2025 05:26:15 +0000 Files and hashes: 1: TDZeNqZHnY6wtQ2Q820dexnvhNM.crl (hash: APXLy7MhFQzO6POPRK/7xeEs+DgXLnZdFIkMYXeRvRE=) 2: 59E4E2A415BA11F084EFBB7CC4F9AE02.roa (hash: HZDyu1joYX+dxKnFptiA5xky7OHNJkIOKQTmsVfZf5A=) 3: 26B79D64E9FE11EF8751AE17C4F9AE02.roa (hash: VTVe81N4pW9ER21bMKt6sFjbfFvf/H+A7jZRhppZ5sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.crl rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDZeNqZHnY6wtQ2Q820dexnvhNM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135B49, serialNumber=4C365E36A6479D8EB0B50D90F36D1D7B19EF84D3 Validity Not Before: Aug 23 05:26:15 2025 GMT Not After : Aug 30 05:26:15 2025 GMT Subject: CN=68a950f7-96dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3e:2e:cf:90:9e:80:3d:1d:1d:de:95:07:96: 8b:e4:a5:4b:45:8e:4e:2f:3f:a9:0f:a0:a2:0c:11: 11:1e:11:ae:24:7b:c1:9f:e7:99:20:b8:c7:5c:8b: 6a:72:18:1d:0e:bc:0a:80:33:05:23:12:2c:22:32: 76:bd:53:8d:e1:75:b6:49:22:b9:a5:8f:5e:d6:3e: e7:d9:02:0a:4b:ab:b1:e8:e3:ee:7b:89:02:5f:63: 81:96:da:f9:a9:4f:31:a1:18:4e:27:eb:c7:68:b9: 8c:26:b5:85:91:5d:f8:26:39:39:8b:9f:4b:7c:f8: eb:85:46:42:81:2d:4d:af:b4:d6:4a:29:74:62:ee: 3b:7d:be:32:87:a3:69:0d:85:de:69:52:5c:a6:12: 17:1f:c4:81:da:b9:29:2f:f4:e7:d3:3d:ac:de:de: b0:48:09:78:a9:5d:76:0b:0a:8f:28:90:cb:aa:7e: 20:56:df:78:bf:a3:ed:9b:09:79:39:c6:26:00:6a: cc:07:07:bd:2e:33:82:f1:3c:2c:4d:3c:a4:9e:be: ae:78:72:b9:80:ca:7b:94:a4:a8:c9:59:6f:fa:6d: 02:a2:d5:13:b9:df:be:4f:4a:8e:6d:e7:f4:79:c7: df:7a:8c:5c:a6:5f:21:c4:59:14:41:92:07:e9:fe: be:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:51:5A:50:08:29:1F:BB:F4:7A:53:E4:99:B0:B2:36:04:F8:3C:53 X509v3 Authority Key Identifier: keyid:4C:36:5E:36:A6:47:9D:8E:B0:B5:0D:90:F3:6D:1D:7B:19:EF:84:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDZeNqZHnY6wtQ2Q820dexnvhNM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:09:a8:2b:60:fe:d3:b5:6d:38:2d:98:c8:38:fb:f5:00:bd: d5:43:f6:be:f7:c8:f8:a8:80:d3:e1:4a:14:87:63:ad:65:a5: f3:c9:24:a2:89:85:99:e5:bf:e4:3d:a6:f0:18:0c:45:f8:df: aa:3f:c9:30:54:40:2d:da:5e:51:27:5a:78:25:f5:66:41:ef: bd:2e:5a:e8:11:0d:9d:5d:c3:f4:c7:72:01:2f:c8:58:00:6a: 0d:83:cc:18:43:e1:8a:bf:77:81:60:3a:e6:9b:ac:06:e4:7f: 40:49:b2:9f:50:28:8f:c9:66:73:d5:76:9f:a6:b5:2d:2d:ae: 1a:14:5d:33:75:d8:7e:49:af:f8:34:dd:33:9c:89:83:02:59: 2d:e9:c5:50:fe:e3:be:8b:2f:b1:37:ff:4c:09:81:8a:66:c7: e3:ea:2f:6f:06:0b:ea:1f:e0:30:4c:79:1d:fc:78:0d:d0:f4: 21:99:8d:a1:59:5d:6f:2a:59:70:ff:3e:40:f1:b1:e4:9e:8e: 0a:ad:32:ba:f8:8f:ff:c5:48:aa:02:03:2a:82:d9:f4:20:7f: 24:60:43:30:be:53:eb:4d:ab:c4:8e:77:46:9d:3b:e2:80:f2: fc:4e:af:b4:b9:5b:45:31:8a:7a:59:09:c5:f9:7c:38:d3:1f: a3:b4:97:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVCNDkxMTAvBgNVBAUTKDRDMzY1RTM2QTY0NzlEOEVCMEI1MEQ5MEYzNkQxRDdC MTlFRjg0RDMwHhcNMjUwODIzMDUyNjE1WhcNMjUwODMwMDUyNjE1WjAYMRYwFAYD VQQDEw02OGE5NTBmNy05NmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtD4uz5CegD0dHd6VB5aL5KVLRY5OLz+pD6CiDBERHhGuJHvBn+eZILjHXItq chgdDrwKgDMFIxIsIjJ2vVON4XW2SSK5pY9e1j7n2QIKS6ux6OPue4kCX2OBltr5 qU8xoRhOJ+vHaLmMJrWFkV34Jjk5i59LfPjrhUZCgS1Nr7TWSil0Yu47fb4yh6Np DYXeaVJcphIXH8SB2rkpL/Tn0z2s3t6wSAl4qV12CwqPKJDLqn4gVt94v6Ptmwl5 OcYmAGrMBwe9LjOC8TwsTTyknr6ueHK5gMp7lKSoyVlv+m0CotUTud++T0qObef0 ecffeoxcpl8hxFkUQZIH6f6+9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDxRWlAI KR+79HpT5JmwsjYE+DxTMB8GA1UdIwQYMBaAFEw2XjamR52OsLUNkPNtHXsZ74TT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUI0OS81MzE4QTEwODEy MDExMUVGQURDODUzNDVDNEY5QUUwMi9URFplTnFaSG5ZNnd0UTJRODIwZGV4bnZo Tk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1REWmVOcVpIblk2d3RRMlE4MjBkZXhudmhOTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUI0OS81MzE4QTEwODEyMDExMUVGQURDODUzNDVDNEY5QUUwMi9URFplTnFaSG5Z Nnd0UTJRODIwZGV4bnZoTk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQCagrYP7TtW04LZjIOPv1AL3VQ/a+98j4qIDT4UoUh2OtZaXzySSi iYWZ5b/kPabwGAxF+N+qP8kwVEAt2l5RJ1p4JfVmQe+9LlroEQ2dXcP0x3IBL8hY AGoNg8wYQ+GKv3eBYDrmm6wG5H9ASbKfUCiPyWZz1XafprUtLa4aFF0zddh+Sa/4 NN0znImDAlkt6cVQ/uO+iy+xN/9MCYGKZsfj6i9vBgvqH+AwTHkd/HgN0PQhmY2h WV1vKllw/z5A8bHkno4KrTK6+I//xUiqAgMqgtn0IH8kYEMwvlPrTavEjndGnTvi gPL8Tq+0uVtFMYp6WQnF+Xw40x+jtJcp -----END CERTIFICATE-----Generated at Sat Aug 23 19:41:59 2025 by rpki-client