$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft File: tNIXk5onUZOOB2WaeUiFqciEGRk.mft (raw, json) Hash identifier: QpKBjLaGCmD5luIzdLD6Ts2FmBpzCfho4yBWhL8jRXg= Subject key identifier: 18:90:6A:C9:3B:3D:C1:D0:14:91:ED:57:3F:C0:26:C7:F5:17:FE:67 Authority key identifier: B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 Certificate issuer: /CN=A9145B13/serialNumber=B4D217939A2751938E07659A794885A9C8841919 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft Manifest number: 6D Signing time: Tue 01 Jul 2025 07:41:42 +0000 Manifest this update: Tue 01 Jul 2025 07:41:41 +0000 Manifest next update: Tue 08 Jul 2025 07:41:41 +0000 Files and hashes: 1: tNIXk5onUZOOB2WaeUiFqciEGRk.crl (hash: rqqmnr0Z50pdc5MX/vgbeXOVY73BtES1zKmaU9T5TOg=) 2: 793486E0C11A11EF99C19012C4F9AE02.roa (hash: pawwhpt8xl4Jm5tUlNLFvNNRwT1g8ks5JKIz2Wod4KM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B13, serialNumber=B4D217939A2751938E07659A794885A9C8841919 Validity Not Before: Jul 1 07:41:41 2025 GMT Not After : Jul 8 07:41:41 2025 GMT Subject: CN=68639136-c296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9c:3d:9b:c0:d5:e9:de:77:93:95:fc:1c:18: 68:7c:e7:f9:4d:fe:e4:cc:23:79:87:2c:af:c5:47: 28:29:24:fa:ba:41:ea:cd:44:57:b4:bc:cc:ee:a1: f7:f5:bf:55:a1:35:4e:5b:01:13:91:77:9d:9f:e6: 02:5c:42:f0:09:8b:cf:f8:ac:93:7c:42:7d:d7:12: 9e:97:13:5f:ca:f9:73:29:14:02:5d:b7:0f:a6:e3: 15:9a:a9:d4:da:fa:c0:26:d2:94:59:74:1e:72:75: d5:b7:ad:83:ff:1d:8e:29:bd:2a:e5:d9:7b:fb:33: 5f:2e:2d:7b:b1:91:f4:38:57:52:9c:9d:41:7b:b3: d9:15:0c:08:a9:85:00:85:74:59:c2:da:cd:f5:43: 55:12:67:cc:47:ed:d9:2f:13:31:eb:d1:46:38:3c: 57:53:6a:d1:90:b0:9a:67:87:68:5e:6a:73:ac:d1: ed:72:ea:5a:4a:31:7c:70:14:4a:57:21:c7:71:65: d7:88:93:37:ca:1c:8e:ad:95:db:2e:78:07:06:ca: 23:14:bb:67:3d:d4:e3:0e:e2:36:ef:98:56:ce:ee: d2:d8:e6:c3:12:35:be:5c:60:e9:e5:56:2c:a6:a0: dd:59:1e:9c:e9:5e:e5:c7:35:3a:89:1d:dc:5c:7a: 0a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:90:6A:C9:3B:3D:C1:D0:14:91:ED:57:3F:C0:26:C7:F5:17:FE:67 X509v3 Authority Key Identifier: keyid:B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:00:4b:22:96:a8:bc:99:52:c5:7e:a2:0e:73:e9:f6:38:83: c0:4f:a1:b7:5d:d3:15:e8:42:50:71:4d:65:f3:af:b2:a6:53: b1:64:4d:3d:4e:5d:33:79:1b:ef:7d:3e:1b:d2:56:6a:8a:37: 81:08:4d:23:2d:fd:3c:1a:ac:36:95:06:d7:bc:5d:2e:06:66: 3e:77:fb:51:a8:39:4b:b0:a5:e1:63:29:c4:50:55:f4:58:72: 1c:0e:55:00:66:1f:10:0e:ef:3e:cb:3a:e2:57:16:a9:5d:ef: 87:dc:fc:51:8b:92:ac:7f:2b:a0:01:bd:24:35:ba:38:98:ea: 4b:bb:e6:88:8d:06:49:e1:a6:28:5b:f7:ae:ce:a5:96:43:ae: 41:17:76:ed:44:52:24:9e:04:46:bd:ea:e6:94:bc:ef:00:c2: b3:44:7a:16:f2:ea:84:20:72:59:19:c2:77:59:d4:8e:db:40: 97:ba:da:c8:7e:b5:e9:70:55:76:3c:3f:9d:45:b9:10:f1:21: e1:be:1e:bd:20:cf:4a:03:ed:55:77:86:34:a6:16:92:4d:41: 1c:c4:65:93:e2:10:83:4a:72:e7:bb:79:24:1c:7a:3d:91:d1: f7:4e:ca:40:98:d2:c6:00:79:25:b4:63:b1:b4:84:e4:4a:b4: 2f:7e:ac:4b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUIxMzExMC8GA1UEBRMoQjREMjE3OTM5QTI3NTE5MzhFMDc2NTlBNzk0ODg1QTlD ODg0MTkxOTAeFw0yNTA3MDEwNzQxNDFaFw0yNTA3MDgwNzQxNDFaMBgxFjAUBgNV BAMTDTY4NjM5MTM2LWMyOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbnD2bwNXp3neTlfwcGGh85/lN/uTMI3mHLK/FRygpJPq6QerNRFe0vMzuoff1 v1WhNU5bARORd52f5gJcQvAJi8/4rJN8Qn3XEp6XE1/K+XMpFAJdtw+m4xWaqdTa +sAm0pRZdB5yddW3rYP/HY4pvSrl2Xv7M18uLXuxkfQ4V1KcnUF7s9kVDAiphQCF dFnC2s31Q1USZ8xH7dkvEzHr0UY4PFdTatGQsJpnh2heanOs0e1y6lpKMXxwFEpX IcdxZdeIkzfKHI6tldsueAcGyiMUu2c91OMO4jbvmFbO7tLY5sMSNb5cYOnlViym oN1ZHpzpXuXHNTqJHdxcegoXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGJBqyTs9 wdAUke1XP8Amx/UX/mcwHwYDVR0jBBgwFoAUtNIXk5onUZOOB2WaeUiFqciEGRkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1QjEzLzUwQkQyMzBFQjEy ODExRUZCNzUwQTUyQkM0RjlBRTAyL3ROSVhrNW9uVVpPT0IyV2FlVWlGcWNpRUdS ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdE5JWGs1b25VWk9PQjJXYWVVaUZxY2lFR1JrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 QjEzLzUwQkQyMzBFQjEyODExRUZCNzUwQTUyQkM0RjlBRTAyL3ROSVhrNW9uVVpP T0IyV2FlVWlGcWNpRUdSay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADgASyKWqLyZUsV+og5z6fY4g8BPobdd0xXoQlBxTWXzr7KmU7FkTT1O XTN5G+99PhvSVmqKN4EITSMt/TwarDaVBte8XS4GZj53+1GoOUuwpeFjKcRQVfRY chwOVQBmHxAO7z7LOuJXFqld74fc/FGLkqx/K6ABvSQ1ujiY6ku75oiNBknhpihb 967OpZZDrkEXdu1EUiSeBEa96uaUvO8AwrNEehby6oQgclkZwndZ1I7bQJe62sh+ telwVXY8P51FuRDxIeG+Hr0gz0oD7VV3hjSmFpJNQRzEZZPiEINKcue7eSQcej2R 0fdOykCY0sYAeSW0Y7G0hORKtC9+rEs= -----END CERTIFICATE-----Generated at Wed Jul 2 12:24:51 2025 by rpki-client