$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft File: tNIXk5onUZOOB2WaeUiFqciEGRk.mft (raw, json) Hash identifier: FcECKWERiAx+HMZDZK0njJFmUzcw1vwpDRs8yJSQ9mM= Subject key identifier: 60:8D:52:5F:6D:15:98:F0:53:11:F4:0D:F6:3E:1A:7A:CD:3F:16:CA Authority key identifier: B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 Certificate issuer: /CN=A9145B13/serialNumber=B4D217939A2751938E07659A794885A9C8841919 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft Manifest number: 77 Signing time: Mon 21 Jul 2025 06:59:35 +0000 Manifest this update: Mon 21 Jul 2025 06:59:35 +0000 Manifest next update: Mon 28 Jul 2025 06:59:35 +0000 Files and hashes: 1: tNIXk5onUZOOB2WaeUiFqciEGRk.crl (hash: WL54tluNFYpipWwBBEve+puE5LZKkTw8VKHbts5aCuA=) 2: 793486E0C11A11EF99C19012C4F9AE02.roa (hash: pawwhpt8xl4Jm5tUlNLFvNNRwT1g8ks5JKIz2Wod4KM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:59:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B13, serialNumber=B4D217939A2751938E07659A794885A9C8841919 Validity Not Before: Jul 21 06:59:35 2025 GMT Not After : Jul 28 06:59:35 2025 GMT Subject: CN=687de557-0b3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d0:c6:2f:bb:6a:a9:71:b2:5a:59:93:ea:dd: 32:28:b4:2b:cc:8d:f6:22:b6:24:12:77:d4:87:af: e7:14:ad:b3:b3:22:1d:5b:ef:8f:fc:bb:ff:c7:c4: cd:75:40:97:0c:6c:3d:74:0e:3a:7c:9a:6d:86:0c: b8:26:2a:8a:1b:53:a0:7f:1d:8b:86:8e:18:f7:a4: c6:c1:ae:27:c6:a2:be:70:2e:f9:1f:c8:85:69:85: 6c:f3:a8:fa:6d:c5:f8:3a:12:ed:c5:7f:ee:29:2d: d2:ec:12:e3:2e:b9:41:91:0c:ec:8e:ec:12:c8:3c: 00:e5:92:7d:60:aa:7c:6b:1c:7b:85:6f:d1:b4:c9: c6:ac:4d:db:ac:0b:d0:4e:d7:79:83:74:f2:24:26: b9:26:51:6c:80:dc:ae:a5:a2:64:12:62:c0:8d:88: 38:5e:00:d0:98:c9:c1:6f:bd:b6:11:85:84:46:1e: 88:4e:5e:55:39:06:fb:cd:a4:7c:f1:9a:63:77:34: a9:ac:ca:43:6e:c8:fa:99:0e:3d:61:de:88:66:43: 6e:a7:14:7c:3c:af:f8:d4:25:34:58:94:a7:32:06: 1f:1f:09:4a:01:68:09:09:94:94:88:ac:6e:85:24: 7a:21:d6:a2:1b:f5:5b:79:ec:1e:68:a6:1b:4a:64: 57:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:8D:52:5F:6D:15:98:F0:53:11:F4:0D:F6:3E:1A:7A:CD:3F:16:CA X509v3 Authority Key Identifier: keyid:B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:0f:44:96:23:5c:66:95:db:ae:a4:fa:3f:8e:08:9a:43:fb: 1e:d9:81:0e:fd:9e:97:20:f7:44:27:d4:93:7a:04:b7:1e:12: f4:f1:d6:1e:2e:b2:2e:3b:00:eb:d4:49:37:5d:97:4d:e8:19: b7:56:7b:35:9a:ba:04:8e:cd:66:72:22:20:8c:4d:bd:c9:36: 00:8a:f5:8f:00:a5:0d:92:65:21:15:a9:06:e2:39:f1:49:cb: 64:37:8f:f6:d4:ee:a8:96:90:83:af:d0:ee:19:e5:0a:c1:cc: 48:78:92:8e:7d:f0:a8:6c:62:48:15:20:63:ef:32:3d:6d:59: 00:23:fa:8e:d9:cd:53:31:b0:6b:e6:21:d2:2c:6f:e5:ab:e1: f7:3f:63:77:10:7d:75:55:28:da:64:58:21:32:59:32:e6:15: 68:2b:42:db:ec:e4:4e:32:d2:34:f9:3b:94:5d:0c:93:0b:cd: fe:92:74:e4:eb:ab:1e:d4:29:da:8f:53:de:c3:34:81:f1:3a: 85:18:3e:e8:8f:18:1f:7e:ac:f4:e8:06:26:04:d9:cc:61:3e: 2e:82:90:fc:86:a6:4c:56:99:86:c9:dd:74:a0:ed:7a:7c:84: ed:d6:ad:97:d3:db:63:d7:47:b6:a1:90:ba:6f:a1:fe:38:ec: 93:ff:57:ac -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUIxMzExMC8GA1UEBRMoQjREMjE3OTM5QTI3NTE5MzhFMDc2NTlBNzk0ODg1QTlD ODg0MTkxOTAeFw0yNTA3MjEwNjU5MzVaFw0yNTA3MjgwNjU5MzVaMBgxFjAUBgNV BAMTDTY4N2RlNTU3LTBiM2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC90MYvu2qpcbJaWZPq3TIotCvMjfYitiQSd9SHr+cUrbOzIh1b74/8u//HxM11 QJcMbD10Djp8mm2GDLgmKoobU6B/HYuGjhj3pMbBrifGor5wLvkfyIVphWzzqPpt xfg6Eu3Ff+4pLdLsEuMuuUGRDOyO7BLIPADlkn1gqnxrHHuFb9G0ycasTdusC9BO 13mDdPIkJrkmUWyA3K6lomQSYsCNiDheANCYycFvvbYRhYRGHohOXlU5BvvNpHzx mmN3NKmsykNuyPqZDj1h3ohmQ26nFHw8r/jUJTRYlKcyBh8fCUoBaAkJlJSIrG6F JHoh1qIb9Vt57B5ophtKZFc/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYI1SX20V mPBTEfQN9j4aes0/FsowHwYDVR0jBBgwFoAUtNIXk5onUZOOB2WaeUiFqciEGRkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1QjEzLzUwQkQyMzBFQjEy ODExRUZCNzUwQTUyQkM0RjlBRTAyL3ROSVhrNW9uVVpPT0IyV2FlVWlGcWNpRUdS ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdE5JWGs1b25VWk9PQjJXYWVVaUZxY2lFR1JrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 QjEzLzUwQkQyMzBFQjEyODExRUZCNzUwQTUyQkM0RjlBRTAyL3ROSVhrNW9uVVpP T0IyV2FlVWlGcWNpRUdSay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA4PRJYjXGaV266k+j+OCJpD+x7ZgQ79npcg90Qn1JN6BLceEvTx1h4u si47AOvUSTddl03oGbdWezWaugSOzWZyIiCMTb3JNgCK9Y8ApQ2SZSEVqQbiOfFJ y2Q3j/bU7qiWkIOv0O4Z5QrBzEh4ko598KhsYkgVIGPvMj1tWQAj+o7ZzVMxsGvm IdIsb+Wr4fc/Y3cQfXVVKNpkWCEyWTLmFWgrQtvs5E4y0jT5O5RdDJMLzf6SdOTr qx7UKdqPU97DNIHxOoUYPuiPGB9+rPToBiYE2cxhPi6CkPyGpkxWmYbJ3XSg7Xp8 hO3WrZfT22PXR7ahkLpvof447JP/V6w= -----END CERTIFICATE-----Generated at Mon Jul 21 12:36:35 2025 by rpki-client