$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft File: tNIXk5onUZOOB2WaeUiFqciEGRk.mft (raw, json) Hash identifier: DVYJsV+5K0zKnXWxdlWtYpdlW3BCfHNHOi+zaEmqFFI= Subject key identifier: FC:EB:78:41:F5:17:69:E9:12:89:05:D5:4E:B3:DA:83:9B:5A:CA:A1 Authority key identifier: B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 Certificate issuer: /CN=A9145B13/serialNumber=B4D217939A2751938E07659A794885A9C8841919 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft Manifest number: 88 Signing time: Sat 23 Aug 2025 06:50:24 +0000 Manifest this update: Sat 23 Aug 2025 06:50:24 +0000 Manifest next update: Sat 30 Aug 2025 06:50:24 +0000 Files and hashes: 1: tNIXk5onUZOOB2WaeUiFqciEGRk.crl (hash: As8vkhPuTyXzlbpqW1eoq4Td+ATjrjmSgr+8/X6mU+U=) 2: 793486E0C11A11EF99C19012C4F9AE02.roa (hash: pawwhpt8xl4Jm5tUlNLFvNNRwT1g8ks5JKIz2Wod4KM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:50:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B13, serialNumber=B4D217939A2751938E07659A794885A9C8841919 Validity Not Before: Aug 23 06:50:24 2025 GMT Not After : Aug 30 06:50:24 2025 GMT Subject: CN=68a964b0-a4ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a0:6c:72:77:5d:a3:f5:11:21:e3:6b:19:d9: 17:62:3f:b4:04:1c:d0:a9:24:46:50:c1:c2:a2:a1: 3b:38:e8:95:1e:ce:27:b6:68:c6:de:8a:ff:5a:ae: a4:9b:88:8b:6c:b0:b5:28:b1:e3:0e:a3:2f:81:81: ec:5b:e9:50:f6:bd:71:79:98:7d:bf:6f:0a:e2:68: e7:54:a3:b9:f8:17:64:b5:46:b5:85:ff:17:58:1c: ea:f1:8f:b9:93:78:d4:d6:93:67:b4:4f:0c:f0:e2: 5d:37:a1:e5:56:95:17:11:43:36:9a:b1:e3:52:1a: 32:6f:e8:34:0a:ff:dd:30:c4:46:93:17:44:5f:5e: a4:7e:f1:52:96:50:21:d3:a9:85:1d:0d:94:e5:d8: 9e:7f:d8:38:63:99:09:03:2f:59:12:3b:1a:ab:21: dc:93:a2:25:88:13:c6:9b:d5:c2:16:00:22:56:10: 51:06:22:60:76:1f:89:f3:ba:be:8d:28:fd:93:ea: b7:fb:eb:27:98:e7:27:0e:e9:8e:52:21:a1:31:2e: 31:6d:de:81:ed:b6:68:29:8b:5d:c3:c7:ac:7d:65: 0a:c7:25:92:73:34:85:c4:9f:b7:78:d5:83:a7:39: bb:d0:74:fc:8c:a4:86:64:7a:ac:b5:93:d1:26:c8: 1d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:EB:78:41:F5:17:69:E9:12:89:05:D5:4E:B3:DA:83:9B:5A:CA:A1 X509v3 Authority Key Identifier: keyid:B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:2b:93:79:4f:2d:1e:23:2d:d2:57:97:ee:71:e5:a1:84:10: 0d:ef:2d:e1:47:22:dc:74:ae:8b:ce:cc:f3:2b:ad:25:bf:90: 6f:f2:00:e6:31:a4:32:8e:51:c5:e1:3c:ab:05:09:ae:cd:fe: db:6f:e8:b6:6f:3c:51:c5:40:2d:dc:bb:d7:af:d5:2d:a2:4c: a8:e0:52:35:30:9a:e2:4c:6e:b6:04:31:a2:11:ca:7b:8c:ac: 52:23:c4:e3:43:a8:54:55:d8:4f:d6:63:1f:be:7d:4d:e5:52: ca:2e:e7:c3:a6:c6:f8:74:e1:aa:53:a2:72:40:9b:20:55:4a: d6:15:25:9e:2d:92:60:3a:e7:e4:92:aa:ab:ab:6c:b1:1e:80: a3:d5:2b:3a:c1:d9:e1:ee:5c:c9:fa:07:51:46:50:8a:c2:d6: 5a:63:f3:95:de:ba:a7:72:11:9f:8a:12:8d:e2:04:ad:ce:3a: 5b:da:d4:33:32:82:c8:e1:8b:5f:99:8b:3b:90:63:f7:c5:19: 26:5a:44:3f:45:5c:db:8e:e6:7a:c7:6b:25:13:5a:56:ef:55: cf:b0:58:c8:24:ee:33:ca:bf:8a:76:66:f9:cb:59:e3:ad:ca: 41:fc:37:ec:4d:ad:ca:84:cf:7c:c6:9f:42:73:e2:de:a0:00: 9c:35:9a:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCMTMxMTAvBgNVBAUTKEI0RDIxNzkzOUEyNzUxOTM4RTA3NjU5QTc5NDg4NUE5 Qzg4NDE5MTkwHhcNMjUwODIzMDY1MDI0WhcNMjUwODMwMDY1MDI0WjAYMRYwFAYD VQQDEw02OGE5NjRiMC1hNGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aBscnddo/URIeNrGdkXYj+0BBzQqSRGUMHCoqE7OOiVHs4ntmjG3or/Wq6k m4iLbLC1KLHjDqMvgYHsW+lQ9r1xeZh9v28K4mjnVKO5+BdktUa1hf8XWBzq8Y+5 k3jU1pNntE8M8OJdN6HlVpUXEUM2mrHjUhoyb+g0Cv/dMMRGkxdEX16kfvFSllAh 06mFHQ2U5dief9g4Y5kJAy9ZEjsaqyHck6IliBPGm9XCFgAiVhBRBiJgdh+J87q+ jSj9k+q3++snmOcnDumOUiGhMS4xbd6B7bZoKYtdw8esfWUKxyWSczSFxJ+3eNWD pzm70HT8jKSGZHqstZPRJsgdIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzreEH1 F2npEokF1U6z2oObWsqhMB8GA1UdIwQYMBaAFLTSF5OaJ1GTjgdlmnlIhanIhBkZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUIxMy81MEJEMjMwRUIx MjgxMUVGQjc1MEE1MkJDNEY5QUUwMi90TklYazVvblVaT09CMldhZVVpRnFjaUVH UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROSVhrNW9uVVpPT0IyV2FlVWlGcWNpRUdSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUIxMy81MEJEMjMwRUIxMjgxMUVGQjc1MEE1MkJDNEY5QUUwMi90TklYazVvblVa T09CMldhZVVpRnFjaUVHUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnK5N5Ty0eIy3SV5fuceWhhBAN7y3hRyLcdK6LzszzK60lv5Bv8gDm MaQyjlHF4TyrBQmuzf7bb+i2bzxRxUAt3LvXr9Utokyo4FI1MJriTG62BDGiEcp7 jKxSI8TjQ6hUVdhP1mMfvn1N5VLKLufDpsb4dOGqU6JyQJsgVUrWFSWeLZJgOufk kqqrq2yxHoCj1Ss6wdnh7lzJ+gdRRlCKwtZaY/OV3rqnchGfihKN4gStzjpb2tQz MoLI4YtfmYs7kGP3xRkmWkQ/RVzbjuZ6x2slE1pW71XPsFjIJO4zyr+Kdmb5y1nj rcpB/DfsTa3KhM98xp9Cc+LeoACcNZqR -----END CERTIFICATE-----Generated at Sat Aug 23 16:45:31 2025 by rpki-client