$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft File: tDxOPTL5W1BV0E_cAfhRljfImm8.mft (raw, json) Hash identifier: Ja3f6LZFFTT18B05O8v+1jG5Q1yD2am1dTFJSmb3rAs= Subject key identifier: 86:3A:7F:5C:47:82:A7:9E:07:02:E3:52:E8:F2:77:C3:FA:8C:67:75 Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft Manifest number: D5 Signing time: Sat 23 Aug 2025 05:46:26 +0000 Manifest this update: Sat 23 Aug 2025 05:46:25 +0000 Manifest next update: Sat 30 Aug 2025 05:46:25 +0000 Files and hashes: 1: tDxOPTL5W1BV0E_cAfhRljfImm8.crl (hash: 1DIad35pUioNuGAszPqxQy48KU8ZjwBUlBWACnh8JYI=) 2: 858870583D0A11EF829DCE39C4F9AE02.roa (hash: RTDmiAUTa+6e7BNeD1q7cr5hG3t1MJJWblXaDUXHJew=) 3: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (hash: ZlBqKGquKmDZSHNnRJSZITSYuAIz8r1LwmFTYmRFcj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:46:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73, serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Validity Not Before: Aug 23 05:46:25 2025 GMT Not After : Aug 30 05:46:25 2025 GMT Subject: CN=68a955b1-0b7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:49:37:0a:36:fd:a9:88:bc:df:1c:9a:34:62: c7:e5:7d:0b:16:3a:ad:20:61:07:25:05:3d:4e:72: cf:c2:02:f3:1b:7e:75:ad:e4:c6:e9:6a:bc:13:e1: 0e:48:7c:99:be:92:b4:9b:35:06:6d:59:a7:9f:80: fa:f3:57:e9:93:27:68:26:bc:23:7d:64:2a:eb:22: c4:19:b4:7d:0e:62:50:df:73:bc:26:50:33:70:ac: 98:52:83:09:d4:3d:9e:eb:c3:f4:7f:c4:28:4f:2b: f3:d1:9b:1e:27:4e:d0:a6:d7:d9:3e:d0:94:16:72: eb:9a:75:5c:05:eb:7a:7b:5c:be:d2:54:d5:48:29: 80:7b:a0:22:75:08:c3:0b:e2:06:0b:e1:24:66:49: cf:b4:ee:e0:77:7c:10:6c:f3:91:6a:ff:72:08:4f: 29:9b:f1:11:a7:3d:bb:64:22:32:e2:d3:43:63:19: 7f:6f:a2:b9:11:9a:0b:28:15:a3:78:bc:ab:7d:5e: 2e:28:3c:7a:f7:bc:3c:7f:de:cb:83:88:08:9f:af: bf:d3:0f:b4:27:45:c5:2c:f8:f3:87:b7:59:a9:f1: d3:6e:bb:57:0a:5d:3c:a1:44:9a:89:c2:6d:4a:a0: 76:50:83:f2:6b:b6:51:46:62:c1:19:a3:4a:a9:31: b2:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:3A:7F:5C:47:82:A7:9E:07:02:E3:52:E8:F2:77:C3:FA:8C:67:75 X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:68:8a:c7:89:77:94:39:31:c5:a4:70:88:41:1c:e3:d0:8f: da:2e:e4:a9:07:cf:e5:f8:53:90:2d:ea:a7:49:3d:31:23:b5: ae:50:3d:8a:ef:bb:4b:0f:f9:65:aa:fc:98:46:ce:dc:dc:0f: 0a:79:af:69:15:67:2f:99:70:53:e0:3b:25:11:0c:41:6e:e4: b8:b3:80:81:99:2d:eb:6f:21:8a:42:3c:00:ca:b5:cc:45:b0: 3b:13:06:95:e9:3b:de:2c:86:6b:61:3c:4a:71:7e:ef:2e:ea: c4:8c:51:7b:ce:c4:22:24:f2:f7:df:50:a1:05:d1:61:cd:e0: 4f:01:85:ce:f2:ce:ed:c3:22:82:7b:17:89:16:cd:8d:99:07: 53:0c:3d:78:ce:a9:b4:2d:82:74:82:63:27:a9:e7:ff:7b:4d: 67:f9:8a:02:71:26:5b:1a:47:f6:50:7c:89:2c:a9:66:c7:5e: 41:81:65:ef:45:e8:9d:41:ad:fb:b0:1f:a2:03:b9:43:a7:e2: e3:a1:ce:33:b4:de:52:ae:4b:e7:bd:e7:15:83:86:bb:51:34: 9f:ef:22:11:dd:44:90:98:ba:84:05:b3:36:7c:cf:3d:17:62: ae:f5:0f:8e:7e:06:66:90:af:d8:bd:46:ac:10:0f:3e:0f:f6: 66:57:34:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGNzMxMTAvBgNVBAUTKEI0M0M0RTNEMzJGOTVCNTA1NUQwNEZEQzAxRjg1MTk2 MzdDODlBNkYwHhcNMjUwODIzMDU0NjI1WhcNMjUwODMwMDU0NjI1WjAYMRYwFAYD VQQDEw02OGE5NTViMS0wYjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmUk3Cjb9qYi83xyaNGLH5X0LFjqtIGEHJQU9TnLPwgLzG351reTG6Wq8E+EO SHyZvpK0mzUGbVmnn4D681fpkydoJrwjfWQq6yLEGbR9DmJQ33O8JlAzcKyYUoMJ 1D2e68P0f8QoTyvz0ZseJ07QptfZPtCUFnLrmnVcBet6e1y+0lTVSCmAe6AidQjD C+IGC+EkZknPtO7gd3wQbPORav9yCE8pm/ERpz27ZCIy4tNDYxl/b6K5EZoLKBWj eLyrfV4uKDx697w8f97Lg4gIn6+/0w+0J0XFLPjzh7dZqfHTbrtXCl08oUSaicJt SqB2UIPya7ZRRmLBGaNKqTGy7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIY6f1xH gqeeBwLjUujyd8P6jGd1MB8GA1UdIwQYMBaAFLQ8Tj0y+VtQVdBP3AH4UZY3yJpv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUY3My82REYwRTEwODNE MDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcxQlYwRV9jQWZoUmxqZklt bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1tOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUY3My82REYwRTEwODNEMDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcx QlYwRV9jQWZoUmxqZkltbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbaIrHiXeUOTHFpHCIQRzj0I/aLuSpB8/l+FOQLeqnST0xI7WuUD2K 77tLD/llqvyYRs7c3A8Kea9pFWcvmXBT4DslEQxBbuS4s4CBmS3rbyGKQjwAyrXM RbA7EwaV6TveLIZrYTxKcX7vLurEjFF7zsQiJPL331ChBdFhzeBPAYXO8s7twyKC exeJFs2NmQdTDD14zqm0LYJ0gmMnqef/e01n+YoCcSZbGkf2UHyJLKlmx15BgWXv ReidQa37sB+iA7lDp+Ljoc4ztN5SrkvnvecVg4a7UTSf7yIR3USQmLqEBbM2fM89 F2Ku9Q+OfgZmkK/YvUasEA8+D/ZmVzRS -----END CERTIFICATE-----Generated at Sat Aug 23 19:34:55 2025 by rpki-client