$ rpki-client -vvf rpki.apnic.net/member_repository/A9131181/AA087F7A0B7911F0BB99ED6AC4F9AE02/tIOfT8P47fy9ItoaeZ2GWs_gMl8.mft File: tIOfT8P47fy9ItoaeZ2GWs_gMl8.mft (raw, json) Hash identifier: X4b+jpAQxScvWR/H3386fghTx9iTb8usguLguphRow8= Subject key identifier: D4:BC:14:3E:00:B7:7D:61:D6:A6:8E:09:DE:6A:96:5D:D2:5D:FC:58 Authority key identifier: B4:83:9F:4F:C3:F8:ED:FC:BD:22:DA:1A:79:9D:86:5A:CF:E0:32:5F Certificate issuer: /CN=A9131181/serialNumber=B4839F4FC3F8EDFCBD22DA1A799D865ACFE0325F Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIOfT8P47fy9ItoaeZ2GWs_gMl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131181/AA087F7A0B7911F0BB99ED6AC4F9AE02/tIOfT8P47fy9ItoaeZ2GWs_gMl8.mft Manifest number: 3C Signing time: Sat 19 Jul 2025 07:49:28 +0000 Manifest this update: Sat 19 Jul 2025 07:49:28 +0000 Manifest next update: Sat 26 Jul 2025 07:49:28 +0000 Files and hashes: 1: tIOfT8P47fy9ItoaeZ2GWs_gMl8.crl (hash: jww0avKARKN3kRRKkhAUqFWUiDZ9CaGsn0IX4bWD7GM=) 2: AD57493E0B7B11F09EB3322EC4F9AE02.roa (hash: OwduiWmYFtEig81kPfdDRhJbko4w3+s4usceEwZWT2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131181/AA087F7A0B7911F0BB99ED6AC4F9AE02/tIOfT8P47fy9ItoaeZ2GWs_gMl8.crl rsync://rpki.apnic.net/member_repository/A9131181/AA087F7A0B7911F0BB99ED6AC4F9AE02/tIOfT8P47fy9ItoaeZ2GWs_gMl8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIOfT8P47fy9ItoaeZ2GWs_gMl8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:49:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131181, serialNumber=B4839F4FC3F8EDFCBD22DA1A799D865ACFE0325F Validity Not Before: Jul 19 07:49:28 2025 GMT Not After : Jul 26 07:49:28 2025 GMT Subject: CN=687b4e08-66b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9c:dd:e5:6d:20:19:77:a3:f6:4b:bc:69:17: 6b:f2:9d:5f:c2:f7:d6:8c:dc:60:64:c5:db:6c:e7: 53:76:eb:24:13:fe:75:d9:5b:fc:c5:85:7d:ea:dc: 82:49:d8:29:2d:fc:29:58:55:d9:94:42:37:25:16: 96:74:fd:f2:3d:3e:df:9f:9c:0f:f8:14:dd:73:c4: 47:13:20:70:b2:ef:fc:da:75:b6:35:d2:95:91:73: 5a:15:93:35:f0:1e:25:df:bd:fd:32:80:c0:53:a3: 29:cd:d9:c7:55:d9:4f:a2:59:e3:47:33:e9:12:4d: 44:6e:cd:f6:8c:e1:42:f4:fd:4f:81:6f:fc:0a:c7: b1:5f:99:6a:36:fd:29:59:10:f8:e2:16:1c:10:39: a6:e6:41:78:31:9b:94:bd:c5:c6:6e:87:08:ea:5b: c4:08:3e:ac:8e:2f:b7:27:cc:a7:17:e2:04:cf:5f: 8d:59:0b:85:06:4a:c9:36:09:94:70:f3:17:51:53: 5c:c9:8c:91:1d:9a:d1:58:4a:bc:0c:33:d0:97:4b: 4c:70:31:01:9a:14:1a:0e:8b:d7:e0:29:68:d7:e8: 56:d3:da:8e:fb:7b:a3:79:9e:30:63:08:73:6e:0b: a9:3d:54:a4:6f:2f:47:93:10:e0:09:17:68:e4:39: 7c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:BC:14:3E:00:B7:7D:61:D6:A6:8E:09:DE:6A:96:5D:D2:5D:FC:58 X509v3 Authority Key Identifier: keyid:B4:83:9F:4F:C3:F8:ED:FC:BD:22:DA:1A:79:9D:86:5A:CF:E0:32:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131181/AA087F7A0B7911F0BB99ED6AC4F9AE02/tIOfT8P47fy9ItoaeZ2GWs_gMl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIOfT8P47fy9ItoaeZ2GWs_gMl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131181/AA087F7A0B7911F0BB99ED6AC4F9AE02/tIOfT8P47fy9ItoaeZ2GWs_gMl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:23:fe:07:76:d8:cf:b1:e5:24:39:db:52:01:f5:53:23:c6: 89:e6:6e:d9:3d:69:01:2c:65:56:85:29:04:e9:39:e8:4f:23: 10:8b:eb:bf:af:21:05:63:e6:20:87:4a:67:61:ad:df:fd:3b: 59:ea:87:9e:f4:cb:08:4d:80:5d:57:33:ff:d9:1b:40:b5:a3: ad:c3:d6:84:3c:e7:ec:bb:75:dc:ab:0a:56:01:d1:4d:bf:dd: 6f:e0:2a:4f:80:24:b0:8a:e3:7d:9e:45:48:5b:10:20:55:6b: 91:f9:d5:d4:8d:38:20:6d:85:3d:0a:99:d2:d1:a2:d5:a2:f1: c6:3a:6c:e6:76:01:c5:0d:55:fe:04:14:9b:28:81:e0:47:21: bb:8a:77:83:dc:5c:57:24:7d:fe:c3:5c:44:89:19:f8:de:f8: 98:4d:41:5e:c6:2c:96:18:ae:ef:61:5c:ea:b1:3b:45:30:f2: bb:45:10:5f:64:86:eb:4f:56:fa:6e:cb:db:69:cf:fa:34:de: 30:81:f7:94:62:08:19:1c:40:1f:83:3e:a8:82:7d:87:c2:a0: 5b:28:36:9c:db:84:e2:a0:26:54:94:e7:ba:c5:e1:23:c3:50: eb:5c:af:e9:16:14:b8:b9:2f:07:45:a8:d0:84:fa:81:31:2a: ba:3f:dc:c7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MTE4MTExMC8GA1UEBRMoQjQ4MzlGNEZDM0Y4RURGQ0JEMjJEQTFBNzk5RDg2NUFD RkUwMzI1RjAeFw0yNTA3MTkwNzQ5MjhaFw0yNTA3MjYwNzQ5MjhaMBgxFjAUBgNV BAMTDTY4N2I0ZTA4LTY2YjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCnN3lbSAZd6P2S7xpF2vynV/C99aM3GBkxdts51N26yQT/nXZW/zFhX3q3IJJ 2Ckt/ClYVdmUQjclFpZ0/fI9Pt+fnA/4FN1zxEcTIHCy7/zadbY10pWRc1oVkzXw HiXfvf0ygMBToynN2cdV2U+iWeNHM+kSTURuzfaM4UL0/U+Bb/wKx7FfmWo2/SlZ EPjiFhwQOabmQXgxm5S9xcZuhwjqW8QIPqyOL7cnzKcX4gTPX41ZC4UGSsk2CZRw 8xdRU1zJjJEdmtFYSrwMM9CXS0xwMQGaFBoOi9fgKWjX6FbT2o77e6N5njBjCHNu C6k9VKRvL0eTEOAJF2jkOXxHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1LwUPgC3 fWHWpo4J3mqWXdJd/FgwHwYDVR0jBBgwFoAUtIOfT8P47fy9ItoaeZ2GWs/gMl8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMxMTgxL0FBMDg3RjdBMEI3 OTExRjBCQjk5RUQ2QUM0RjlBRTAyL3RJT2ZUOFA0N2Z5OUl0b2FlWjJHV3NfZ01s OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdElPZlQ4UDQ3Znk5SXRvYWVaMkdXc19nTWw4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMx MTgxL0FBMDg3RjdBMEI3OTExRjBCQjk5RUQ2QUM0RjlBRTAyL3RJT2ZUOFA0N2Z5 OUl0b2FlWjJHV3NfZ01sOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABUj/gd22M+x5SQ521IB9VMjxonmbtk9aQEsZVaFKQTpOehPIxCL67+v IQVj5iCHSmdhrd/9O1nqh570ywhNgF1XM//ZG0C1o63D1oQ85+y7ddyrClYB0U2/ 3W/gKk+AJLCK432eRUhbECBVa5H51dSNOCBthT0KmdLRotWi8cY6bOZ2AcUNVf4E FJsogeBHIbuKd4PcXFckff7DXESJGfje+JhNQV7GLJYYru9hXOqxO0Uw8rtFEF9k hutPVvpuy9tpz/o03jCB95RiCBkcQB+DPqiCfYfCoFsoNpzbhOKgJlSU57rF4SPD UOtcr+kWFLi5LwdFqNCE+oExKro/3Mc= -----END CERTIFICATE-----Generated at Sun Jul 20 07:52:00 2025 by rpki-client