$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft File: tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft (raw, json) Hash identifier: E7ZHVOwQuu0XYorWCNc/lvSAYJZjxhS3GrytHolYNpI= Subject key identifier: 22:07:D5:0F:C7:31:D4:A9:55:AE:F6:F0:26:63:0C:FD:91:CB:46:B1 Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft Manifest number: 0130 Signing time: Sat 23 Aug 2025 04:42:40 +0000 Manifest this update: Sat 23 Aug 2025 04:42:40 +0000 Manifest next update: Sat 30 Aug 2025 04:42:40 +0000 Files and hashes: 1: tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl (hash: FuenN2gc2ESwN3LqCLmSPTgliTFknOmkkQWkpfEbkyo=) 2: 4074E5EA7B1D11EFB5696E45C4F9AE02.roa (hash: 1SdPp/miyItNAEGeBSAKuJFOP+wIUKHiHtHU72zXu1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:42:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: Aug 23 04:42:40 2025 GMT Not After : Aug 30 04:42:40 2025 GMT Subject: CN=68a946c0-9c8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:07:96:48:b2:93:e0:15:25:77:5b:5c:cb:a5: c5:89:9e:bb:98:6d:b2:82:d2:b4:ee:c5:07:9a:53: 68:a6:cc:7d:1b:50:fe:ed:94:0e:e2:5d:a2:cd:f1: 23:e8:2f:57:18:3f:c6:44:cb:fb:7e:0a:38:c3:98: a6:17:3a:94:c8:00:42:97:df:91:c0:9f:04:24:7d: f0:d8:d1:d3:97:40:7f:d4:62:60:46:58:62:3d:fb: c1:5d:62:68:c5:69:a1:bb:6b:de:a6:29:ca:f6:41: 06:f3:d4:68:c4:4d:3d:d5:4e:76:cb:1f:8c:f5:ea: 3a:3a:7b:eb:73:36:7a:43:2d:0c:1c:5c:a7:7f:a8: 84:7c:dd:89:84:18:47:81:48:3b:10:ab:d2:37:ea: 42:4a:57:7f:e5:5d:7d:b0:f6:d9:51:ce:39:a1:dc: 74:5d:27:27:d8:68:66:d6:eb:03:53:df:e2:c2:14: 2d:ec:ac:75:bb:d4:ad:65:6c:95:53:c2:ef:a1:06: 5b:9f:17:c3:65:ea:da:65:07:2c:90:a1:48:ee:29: 74:e6:f4:c2:66:46:44:61:0f:a4:7e:e5:db:a8:a2: a9:fd:07:40:d4:d5:a6:bc:b2:ca:65:28:78:95:f1: 51:2a:78:99:6d:a7:29:f2:fc:58:2b:9e:e8:b6:fe: d0:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:07:D5:0F:C7:31:D4:A9:55:AE:F6:F0:26:63:0C:FD:91:CB:46:B1 X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:06:b1:85:28:24:53:08:cf:e5:d9:87:ef:14:d1:7d:f5:4d: bf:2a:ef:ad:81:40:03:51:6f:c0:34:21:c5:cb:f6:c8:14:d5: a8:82:bd:ad:9f:9d:c5:77:b9:52:32:f3:8d:68:ba:70:e5:ba: 3e:c5:74:4e:75:af:5d:09:07:47:0d:59:ef:dd:73:c8:11:23: 4e:b6:cb:f8:bb:cc:14:f0:4d:8c:13:b0:f6:e2:65:ce:b9:26: 85:a4:84:bd:09:0e:c0:71:9b:db:34:a0:ed:e7:e1:dc:4d:ba: 78:30:b5:56:ce:ad:b9:3a:fb:39:01:0a:5f:c2:7d:76:8e:23: 52:18:9a:c1:93:07:db:a6:e2:94:d8:cd:62:08:5c:00:b7:f4: a9:ed:82:91:8a:3a:02:28:33:10:92:a4:cd:2a:32:9d:ba:20: 50:15:59:b9:f1:08:a6:73:fb:0d:4f:da:7b:82:f4:c9:70:f2: e9:13:25:5f:59:7f:de:7e:48:5f:03:22:c2:08:a4:8b:8c:a9: 18:77:60:c1:6e:81:1b:0e:5b:62:26:ea:34:84:c8:6a:c9:2f: 9c:f1:06:6a:0d:43:19:12:64:d7:28:e1:54:c5:58:9d:cb:0c: 86:97:05:42:33:7d:5c:44:91:6b:1e:6d:cf:68:03:ce:53:69: 25:c0:2b:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjUwODIzMDQ0MjQwWhcNMjUwODMwMDQ0MjQwWjAYMRYwFAYD VQQDEw02OGE5NDZjMC05YzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnweWSLKT4BUld1tcy6XFiZ67mG2ygtK07sUHmlNopsx9G1D+7ZQO4l2izfEj 6C9XGD/GRMv7fgo4w5imFzqUyABCl9+RwJ8EJH3w2NHTl0B/1GJgRlhiPfvBXWJo xWmhu2vepinK9kEG89RoxE091U52yx+M9eo6OnvrczZ6Qy0MHFynf6iEfN2JhBhH gUg7EKvSN+pCSld/5V19sPbZUc45odx0XScn2Ghm1usDU9/iwhQt7Kx1u9StZWyV U8LvoQZbnxfDZeraZQcskKFI7il05vTCZkZEYQ+kfuXbqKKp/QdA1NWmvLLKZSh4 lfFRKniZbacp8vxYK57otv7QXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIH1Q/H MdSpVa728CZjDP2Ry0axMB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCRC8zNTcwREYyRUIxMTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFk SzVQeXcxSEtzazBWQnFyQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKBrGFKCRTCM/l2YfvFNF99U2/Ku+tgUADUW/ANCHFy/bIFNWogr2t n53Fd7lSMvONaLpw5bo+xXROda9dCQdHDVnv3XPIESNOtsv4u8wU8E2ME7D24mXO uSaFpIS9CQ7AcZvbNKDt5+HcTbp4MLVWzq25Ovs5AQpfwn12jiNSGJrBkwfbpuKU 2M1iCFwAt/Sp7YKRijoCKDMQkqTNKjKduiBQFVm58Qimc/sNT9p7gvTJcPLpEyVf WX/efkhfAyLCCKSLjKkYd2DBboEbDltiJuo0hMhqyS+c8QZqDUMZEmTXKOFUxVid ywyGlwVCM31cRJFrHm3PaAPOU2klwCsM -----END CERTIFICATE-----Generated at Sat Aug 23 16:35:34 2025 by rpki-client