$ rpki-client -vvf rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft File: rTu2A7FO-ybXFWgvsEE1Hsj502c.mft (raw, json) Hash identifier: sJJRSVDcJ+exhQqszdtzTzFOxeOfUAlEp4VznrqZYVI= Subject key identifier: 80:5F:3A:C8:62:02:CB:8F:00:FC:07:E6:DE:1D:16:33:0D:DB:3B:85 Authority key identifier: AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 Certificate issuer: /CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Certificate serial: 12E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft Manifest number: 12C1 Signing time: Tue 22 Jul 2025 17:13:41 +0000 Manifest this update: Tue 22 Jul 2025 17:13:40 +0000 Manifest next update: Tue 29 Jul 2025 17:13:40 +0000 Files and hashes: 1: rTu2A7FO-ybXFWgvsEE1Hsj502c.crl (hash: 4IuUNItGHWyzvLkKAuNq9mgs1SJRywTDnAP8CAn7Tck=) 2: C31D6D082BA611EF82D8BF21C4F9AE02.roa (hash: cuFQqVlbEJ/udXRPZ56LOiAFU4p5XZPUOiRAjCCaxGQ=) 3: E4AFD636233211EE8737EE2AC4F9AE02.roa (hash: mehZcMjFb7HT3F1ePo3UBF+1EGoPOvu0R4233be/rFs=) 4: 4426B244F6A011EC8E197883C4F9AE02.roa (hash: tPqGcusMyqiuDoF3oCEh1MkgveCq5i4UTPc8YjbijQA=) 5: 403398AA233111EEAF768F66C4F9AE02.roa (hash: LFrmkrzanddJe0x2nUkwJLw/OhE7SJ+J+T3fYrc0q4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 17:13:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4833 (0x12e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191436, serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Validity Not Before: Jul 22 17:13:40 2025 GMT Not After : Jul 29 17:13:40 2025 GMT Subject: CN=687fc6c5-60b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f3:bc:bd:8d:ed:92:08:40:b9:5c:77:7f:7a: ad:e1:b0:b8:dd:c3:21:7e:3f:92:5a:69:cd:79:e1: 5f:12:1e:2c:f6:22:0a:aa:e8:3b:b9:e3:7f:73:0b: 15:cb:81:b3:c8:10:fb:45:ed:46:eb:94:d2:cc:ed: bd:07:b5:8d:2f:01:c4:59:42:a6:4b:6e:51:14:b0: 3b:5f:78:bd:20:bf:3f:a9:6c:a6:e5:5d:78:51:9f: c6:a5:87:ff:6c:02:e2:ef:93:ef:12:97:60:05:f0: d3:ef:92:8d:57:27:22:ae:34:1c:f4:33:49:30:a9: 96:93:ec:91:6b:0b:67:f3:ef:0c:23:97:29:c6:72: 7c:8b:1b:86:81:21:34:3f:08:1e:c1:0a:50:83:07: c5:b6:a5:eb:2e:b0:07:77:e4:d4:dc:a5:83:35:b0: 8b:3c:4c:98:83:cb:4f:48:5b:5c:74:49:39:3b:0a: b0:d2:86:9b:80:3c:1a:c0:8a:b4:8b:d9:c1:63:da: 4c:47:ba:9e:d1:32:41:ae:fe:9f:2a:82:06:1d:cd: 53:fe:9b:3c:e0:0a:18:11:6e:c0:51:56:dc:87:fb: 05:11:29:25:53:9d:f3:07:72:5e:a9:99:74:bd:61: 3a:cc:21:90:93:26:a4:44:a5:7a:81:3f:ff:28:0d: 09:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:5F:3A:C8:62:02:CB:8F:00:FC:07:E6:DE:1D:16:33:0D:DB:3B:85 X509v3 Authority Key Identifier: keyid:AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:e4:3c:75:49:1c:9d:b5:21:98:9b:d1:69:cf:a0:5b:d4:a4: 87:13:d0:28:14:d2:fd:ba:f7:d4:f0:5e:2d:23:88:31:7b:d9: c8:67:20:97:df:58:a8:32:26:cd:d1:fc:ec:f2:aa:fe:e3:45: e1:35:9a:4c:fa:b0:44:b7:fd:67:1a:8d:c8:b5:19:76:1d:98: cb:99:a5:2e:50:21:61:6b:a1:cc:e6:cb:94:23:0f:31:0c:a9: 88:d2:18:ab:0c:b6:82:90:aa:b8:cb:da:ce:09:94:5d:44:a7: ef:db:2a:95:d9:17:54:1b:74:a9:69:28:66:82:7d:ad:83:d2: 04:dd:96:b8:37:d1:00:96:4a:33:c9:33:3f:fe:18:35:9f:06: 7f:c0:6a:4f:6d:e9:61:96:0a:0a:69:52:e0:d2:c5:57:20:98: 41:1b:ea:39:ed:0f:cc:18:60:68:4e:29:3e:4c:60:e0:55:19: e2:7b:53:ee:fc:4a:93:8b:7b:fd:4d:fe:ab:d0:6b:b8:06:48: c4:84:86:f2:5a:a2:3e:7d:66:58:06:25:05:96:7f:f4:15:98: ec:48:b0:60:db:be:47:b3:53:f1:f6:28:57:53:03:6f:da:8b: 75:19:31:70:3d:df:ab:dd:ad:dd:97:ac:3d:a5:81:07:a2:2e: b2:87:1c:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE0MzYxMTAvBgNVBAUTKEFEM0JCNjAzQjE0RUZCMjZENzE1NjgyRkIwNDEzNTFF QzhGOUQzNjcwHhcNMjUwNzIyMTcxMzQwWhcNMjUwNzI5MTcxMzQwWjAYMRYwFAYD VQQDEw02ODdmYzZjNS02MGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5fO8vY3tkghAuVx3f3qt4bC43cMhfj+SWmnNeeFfEh4s9iIKqug7ueN/cwsV y4GzyBD7Re1G65TSzO29B7WNLwHEWUKmS25RFLA7X3i9IL8/qWym5V14UZ/GpYf/ bALi75PvEpdgBfDT75KNVycirjQc9DNJMKmWk+yRawtn8+8MI5cpxnJ8ixuGgSE0 PwgewQpQgwfFtqXrLrAHd+TU3KWDNbCLPEyYg8tPSFtcdEk5Owqw0oabgDwawIq0 i9nBY9pMR7qe0TJBrv6fKoIGHc1T/ps84AoYEW7AUVbch/sFESklU53zB3JeqZl0 vWE6zCGQkyakRKV6gT//KA0J5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIBfOshi AsuPAPwH5t4dFjMN2zuFMB8GA1UdIwQYMBaAFK07tgOxTvsm1xVoL7BBNR7I+dNn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTQzNi9BMzBCNUE0QUM3 OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15YlhGV2d2c0VFMUhzajUw MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JUdTJBN0ZPLXliWEZXZ3ZzRUUxSHNqNTAyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTQzNi9BMzBCNUE0QUM3OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15 YlhGV2d2c0VFMUhzajUwMmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe5Dx1SRydtSGYm9Fpz6Bb1KSHE9AoFNL9uvfU8F4tI4gxe9nIZyCX 31ioMibN0fzs8qr+40XhNZpM+rBEt/1nGo3ItRl2HZjLmaUuUCFha6HM5suUIw8x DKmI0hirDLaCkKq4y9rOCZRdRKfv2yqV2RdUG3SpaShmgn2tg9IE3Za4N9EAlkoz yTM//hg1nwZ/wGpPbelhlgoKaVLg0sVXIJhBG+o57Q/MGGBoTik+TGDgVRnie1Pu /EqTi3v9Tf6r0Gu4BkjEhIbyWqI+fWZYBiUFln/0FZjsSLBg275Hs1Px9ihXUwNv 2ot1GTFwPd+r3a3dl6w9pYEHoi6yhxzM -----END CERTIFICATE-----Generated at Wed Jul 23 02:41:41 2025 by rpki-client