$ rpki-client -vvf rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft File: mTXGObPDUdvtWyk5lPcvgUzPm6k.mft (raw, json) Hash identifier: Vi4C0D1/JA3JFdcLCfF6kcKbxJ23WudI/Eu/epRpYPY= Subject key identifier: F3:73:80:6D:A1:F3:09:4F:13:42:4A:20:59:49:16:CA:8C:99:25:E3 Authority key identifier: 99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 Certificate issuer: /CN=A9195D93/serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Certificate serial: 21BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft Manifest number: 21A1 Signing time: Fri 18 Jul 2025 16:00:49 +0000 Manifest this update: Fri 18 Jul 2025 16:00:49 +0000 Manifest next update: Fri 25 Jul 2025 16:00:49 +0000 Files and hashes: 1: mTXGObPDUdvtWyk5lPcvgUzPm6k.crl (hash: NhLO4ibF+ace9gipDn+k//e/nn5ECYYIRwvOlWVpfK4=) 2: 5D2D29A2966D11EA96C50E81C4F9AE02.roa (hash: xq1A/DwEya72JUauXcCDXoZyXlE8M2olRWGCrYUUkIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8634 (0x21ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195D93, serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Validity Not Before: Jul 18 16:00:49 2025 GMT Not After : Jul 25 16:00:49 2025 GMT Subject: CN=687a6fb1-d62f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:3b:72:63:fd:d2:c8:8e:e3:67:ea:b9:49:f2: c4:f4:49:aa:a2:f6:34:22:02:55:06:3a:9a:2b:a5: 7c:8b:81:33:b4:f8:ff:7f:77:e8:b0:4c:7b:cf:32: e6:80:6b:cc:13:23:c9:eb:dc:2b:00:cd:32:1b:f7: 62:c7:19:cd:4a:cb:19:7b:39:63:30:65:61:e1:7c: 8c:49:b8:9b:48:b1:5c:11:8c:86:21:06:2e:a8:a9: 6d:80:c6:3d:8c:d6:3f:45:05:e2:0b:c7:7e:bd:88: bc:4a:35:61:a8:ad:ac:fc:b5:8b:da:a7:39:c1:8e: 29:64:bc:1b:3b:7f:b8:95:c3:a6:2f:1e:6a:6d:98: f3:0e:f4:aa:02:28:cc:03:51:99:1b:bb:65:26:cc: 7d:1d:24:13:b2:f9:05:74:74:33:00:ab:09:10:da: b0:1c:fc:be:fb:47:a7:bb:75:b4:e2:c4:2c:19:c3: dd:dd:67:24:18:8b:3e:4a:76:65:dd:b9:fe:5b:30: 0d:2f:fd:82:3e:34:3a:dd:5c:de:f4:d0:11:3d:e4: fd:d2:19:cf:23:ef:73:12:d3:b8:42:db:56:2a:15: 13:7a:6a:cc:6d:8c:69:81:fd:c2:2f:6f:8d:0a:1d: 78:14:f3:c8:9e:ce:d1:bd:8f:a6:37:a5:dc:43:d0: b4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:73:80:6D:A1:F3:09:4F:13:42:4A:20:59:49:16:CA:8C:99:25:E3 X509v3 Authority Key Identifier: keyid:99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:c9:68:3d:4e:4b:dd:91:75:a5:d8:83:b8:9f:ed:4b:01:40: d5:5e:18:a4:27:e9:0e:db:47:ba:5f:bd:15:97:79:45:2d:ab: d4:ec:ac:07:73:99:c2:19:1c:80:57:d5:26:5a:37:a6:61:b5: bd:b1:6e:06:ba:6b:57:fc:0c:02:6c:7c:46:0a:5b:94:1c:69: 96:78:bd:51:a2:45:6d:6e:7d:ac:1e:1d:d8:b5:0b:b3:db:00: 85:7c:b3:40:28:5f:68:63:f1:39:09:20:4b:30:e2:03:94:ad: 7a:76:b8:c5:06:e6:8b:65:ff:d0:4e:25:b4:de:93:4d:16:7d: b4:97:2a:ac:ad:05:b0:b9:a8:6b:8c:80:6a:3b:52:3e:e2:e0: 6c:f2:6e:d9:9c:6c:d9:48:39:a7:2a:58:19:da:5d:f2:74:66: 40:b5:63:4d:43:76:6f:ad:dc:7b:3c:d2:38:0f:b6:cb:32:58: 77:73:1e:5c:07:09:3d:f0:79:1a:c5:6f:f9:8f:ab:6d:f6:5e: a7:4c:49:53:66:50:97:d6:c1:e5:4a:f0:a2:63:67:ca:6d:16: f7:0a:3b:4b:2a:36:eb:77:da:42:d3:8a:4d:ac:43:9e:a7:f7: dc:e9:54:ad:c2:1c:1b:13:96:6f:6e:b0:80:c3:0b:ce:ae:1c: ca:1e:23:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVEOTMxMTAvBgNVBAUTKDk5MzVDNjM5QjNDMzUxREJFRDVCMjkzOTk0RjcyRjgx NENDRjlCQTkwHhcNMjUwNzE4MTYwMDQ5WhcNMjUwNzI1MTYwMDQ5WjAYMRYwFAYD VQQDEw02ODdhNmZiMS1kNjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnjtyY/3SyI7jZ+q5SfLE9EmqovY0IgJVBjqaK6V8i4EztPj/f3fosEx7zzLm gGvMEyPJ69wrAM0yG/dixxnNSssZezljMGVh4XyMSbibSLFcEYyGIQYuqKltgMY9 jNY/RQXiC8d+vYi8SjVhqK2s/LWL2qc5wY4pZLwbO3+4lcOmLx5qbZjzDvSqAijM A1GZG7tlJsx9HSQTsvkFdHQzAKsJENqwHPy++0enu3W04sQsGcPd3WckGIs+SnZl 3bn+WzANL/2CPjQ63Vze9NARPeT90hnPI+9zEtO4QttWKhUTemrMbYxpgf3CL2+N Ch14FPPIns7RvY+mN6XcQ9C04wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNzgG2h 8wlPE0JKIFlJFsqMmSXjMB8GA1UdIwQYMBaAFJk1xjmzw1Hb7VspOZT3L4FMz5up MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUQ5My81QzEwQTgxMERD NUQxMUU1QjMyNTQ1MkVDNEY5QUUwMi9tVFhHT2JQRFVkdnRXeWs1bFBjdmdVelBt NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21UWEdPYlBEVWR2dFd5azVsUGN2Z1V6UG02ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUQ5My81QzEwQTgxMERDNUQxMUU1QjMyNTQ1MkVDNEY5QUUwMi9tVFhHT2JQRFVk dnRXeWs1bFBjdmdVelBtNmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1yWg9TkvdkXWl2IO4n+1LAUDVXhikJ+kO20e6X70Vl3lFLavU7KwH c5nCGRyAV9UmWjemYbW9sW4GumtX/AwCbHxGCluUHGmWeL1RokVtbn2sHh3YtQuz 2wCFfLNAKF9oY/E5CSBLMOIDlK16drjFBuaLZf/QTiW03pNNFn20lyqsrQWwuahr jIBqO1I+4uBs8m7ZnGzZSDmnKlgZ2l3ydGZAtWNNQ3Zvrdx7PNI4D7bLMlh3cx5c Bwk98HkaxW/5j6tt9l6nTElTZlCX1sHlSvCiY2fKbRb3CjtLKjbrd9pC04pNrEOe p/fc6VStwhwbE5ZvbrCAwwvOrhzKHiMs -----END CERTIFICATE-----Generated at Sun Jul 20 16:50:58 2025 by rpki-client