$ rpki-client -vvf rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft File: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft (raw, json) Hash identifier: 7/IrtjKpP53p03PD264L3DDoV+LjYZWxco3OufV6Txc= Subject key identifier: E6:79:97:78:66:72:7E:37:8E:B5:38:D1:10:77:61:A0:94:D8:74:50 Authority key identifier: 4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A Certificate issuer: /CN=A9130138/serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A Certificate serial: 037B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft Manifest number: 0362 Signing time: Sat 19 Jul 2025 01:25:15 +0000 Manifest this update: Sat 19 Jul 2025 01:25:14 +0000 Manifest next update: Sat 26 Jul 2025 01:25:14 +0000 Files and hashes: 1: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl (hash: UkJkvV2F8PpDf0C9vXYWDn2dztW9j9rIcg2/NOwOthM=) 2: 6D3CF65A134311EEA2AF3B1EC4F9AE02.roa (hash: UBiYNqcmtBfIzuh2rKChQRqBKv4o6kiL3PCKwJHHiWM=) 3: 5E0B2804158811EEA0660D12C4F9AE02.roa (hash: 5vOwA9yYve8Rd0veqkKYknGLc6ONCvBt3X45gfOUijw=) 4: 2A616414808A11EF813A8343C4F9AE02.roa (hash: SPcUKAYBAtziUJsb1+HLmMDC9dz+I+2POCJimexdaR4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:25:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 891 (0x37b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130138, serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A Validity Not Before: Jul 19 01:25:14 2025 GMT Not After : Jul 26 01:25:14 2025 GMT Subject: CN=687af3fa-1270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1b:61:4c:99:71:e7:fa:4b:cc:28:fa:a3:7c: 61:69:7b:a0:04:57:4b:58:17:60:fc:91:c7:04:4e: 0a:d6:49:04:e7:ec:93:37:85:04:6b:e3:c6:04:2c: 50:ca:72:c5:b6:4a:56:22:8c:6e:11:9e:7c:5d:51: 45:1c:6c:7f:ee:2a:8f:3a:ff:2e:14:59:ec:e7:6d: 29:ea:fe:3c:ca:ce:68:7b:f5:a1:a2:a9:71:e3:ce: 2a:bd:a1:b7:c8:ba:cd:29:8c:94:bf:51:1e:32:50: ee:08:61:3c:0b:4e:7e:c3:70:5b:a9:70:3d:61:80: d6:cd:9a:03:16:75:f9:10:22:ce:4d:83:fb:e6:d9: 5f:27:f7:bc:ac:81:27:ca:12:e7:89:91:6a:73:75: 06:f6:fd:e9:d3:77:3a:4f:e8:01:2f:e2:8c:dd:1e: 15:26:da:f1:ba:d2:73:4b:6d:af:06:b5:1e:d5:8a: c7:e4:1a:ed:01:57:24:18:84:88:40:1b:54:1b:fd: b8:2c:99:5c:7a:63:9b:d5:23:45:07:d7:34:61:68: 26:ac:be:23:b0:86:77:d8:7f:9a:aa:21:df:90:c5: ac:2e:5d:bd:0f:2e:cf:58:e5:cb:09:02:87:b7:3c: 2f:4b:8b:74:57:40:50:f4:4f:7f:a4:ad:1d:f2:9b: 80:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:79:97:78:66:72:7E:37:8E:B5:38:D1:10:77:61:A0:94:D8:74:50 X509v3 Authority Key Identifier: keyid:4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:9c:d8:60:9e:02:11:9b:cf:fc:25:04:2d:46:0b:19:6f:d2: a7:f0:a8:cc:98:78:b6:e7:ee:a6:52:83:86:28:d0:5d:2f:8b: 74:82:54:05:5e:3d:93:50:6f:d4:57:7f:0e:bb:44:0e:1c:94: a2:9b:2a:18:5b:a5:32:be:62:ef:67:a4:49:18:a1:95:ba:f9: aa:c8:9c:43:82:f0:51:17:bd:68:3e:3e:6e:ec:a0:42:4e:cf: 3e:5c:79:27:3c:ac:57:dd:33:c2:8e:8e:f7:ee:f7:2f:0b:7b: 14:34:7c:41:08:8a:6d:12:6b:3a:f7:bb:02:88:18:5f:dd:4e: eb:15:a1:56:e1:ce:ea:92:98:92:5f:9c:b5:9f:84:5d:d1:e3: 9c:cc:dc:d8:5d:1a:67:52:87:c0:fd:f8:76:68:70:bd:7c:0f: f3:a3:2a:7d:10:dd:29:e7:28:29:02:53:b4:52:c4:bf:16:7b: 8a:cc:af:ff:95:34:b8:f0:c7:73:2c:39:5d:ed:bb:03:c1:92: d9:6b:99:22:3b:ec:44:15:fd:c1:c9:98:cf:82:ea:f8:2b:27: a3:e1:53:98:dc:53:1e:50:47:52:44:6f:3d:54:7a:21:ed:c0: 87:6c:1a:21:85:e7:d1:ab:d7:c8:53:46:9c:6e:6c:ea:2a:1b: cd:79:24:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxMzgxMTAvBgNVBAUTKDRFODFFMEY2QTgzQURDMkFENTIzMjY2NEE5NTREMjY3 Q0I0M0Q5MEEwHhcNMjUwNzE5MDEyNTE0WhcNMjUwNzI2MDEyNTE0WjAYMRYwFAYD VQQDEw02ODdhZjNmYS0xMjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRthTJlx5/pLzCj6o3xhaXugBFdLWBdg/JHHBE4K1kkE5+yTN4UEa+PGBCxQ ynLFtkpWIoxuEZ58XVFFHGx/7iqPOv8uFFns520p6v48ys5oe/Whoqlx484qvaG3 yLrNKYyUv1EeMlDuCGE8C05+w3BbqXA9YYDWzZoDFnX5ECLOTYP75tlfJ/e8rIEn yhLniZFqc3UG9v3p03c6T+gBL+KM3R4VJtrxutJzS22vBrUe1YrH5BrtAVckGISI QBtUG/24LJlcemOb1SNFB9c0YWgmrL4jsIZ32H+aqiHfkMWsLl29Dy7PWOXLCQKH tzwvS4t0V0BQ9E9/pK0d8puA/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZ5l3hm cn43jrU40RB3YaCU2HRQMB8GA1UdIwQYMBaAFE6B4PaoOtwq1SMmZKlU0mfLQ9kK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDEzOC82M0E0RDFCQ0M0 N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjNDclZJeVprcVZUU1o4dEQy UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RvSGc5cWc2M0NyVkl5WmtxVlRTWjh0RDJRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDEzOC82M0E0RDFCQ0M0N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjND clZJeVprcVZUU1o4dEQyUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGnNhgngIRm8/8JQQtRgsZb9Kn8KjMmHi25+6mUoOGKNBdL4t0glQF Xj2TUG/UV38Ou0QOHJSimyoYW6UyvmLvZ6RJGKGVuvmqyJxDgvBRF71oPj5u7KBC Ts8+XHknPKxX3TPCjo737vcvC3sUNHxBCIptEms697sCiBhf3U7rFaFW4c7qkpiS X5y1n4Rd0eOczNzYXRpnUofA/fh2aHC9fA/zoyp9EN0p5ygpAlO0UsS/FnuKzK// lTS48MdzLDld7bsDwZLZa5kiO+xEFf3ByZjPgur4Kyej4VOY3FMeUEdSRG89VHoh 7cCHbBohhefRq9fIU0acbmzqKhvNeSTF -----END CERTIFICATE-----Generated at Sun Jul 20 03:52:18 2025 by rpki-client