$ rpki-client -vvf rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft File: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft (raw, json) Hash identifier: hx5ZuKwOae1G7ajrZWBdFA2baE3uqVcZ9fqkwj0wuwo= Subject key identifier: 15:04:57:D9:57:34:EA:6A:7C:AD:89:85:72:CB:D6:CE:4C:D6:CC:CB Authority key identifier: 4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A Certificate issuer: /CN=A9130138/serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A Certificate serial: 039A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft Manifest number: 037E Signing time: Sun 07 Sep 2025 01:19:10 +0000 Manifest this update: Sun 07 Sep 2025 01:19:09 +0000 Manifest next update: Sun 14 Sep 2025 01:19:09 +0000 Files and hashes: 1: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl (hash: xh9w1nYQl+nwcbmSrHWLcWcdQEZDS+M1ooGypMioVTM=) 2: 6D3CF65A134311EEA2AF3B1EC4F9AE02.roa (hash: TGtBMLjAQZMZJ1khWN0b0rXwvGwxupeZB+kuz4CTJXg=) 3: 5E0B2804158811EEA0660D12C4F9AE02.roa (hash: L2Pd8jB/i+ABeqpyLFwMSDyc47P9cj5jXqAEMCEAC1Q=) 4: 2A616414808A11EF813A8343C4F9AE02.roa (hash: 7hic6UONO0B455KhpL0YJRnN6Tw5oyNjErH5A+IJRxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 01:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 922 (0x39a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130138, serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A Validity Not Before: Sep 7 01:19:09 2025 GMT Not After : Sep 14 01:19:09 2025 GMT Subject: CN=68bcdd8e-b199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0b:3e:36:6e:26:9d:9e:ed:c6:12:e5:71:d2: 55:9d:de:c2:a3:2c:6e:3e:fc:35:f9:21:9e:b0:bc: c4:1a:61:a3:fb:55:2e:51:da:57:3b:d2:54:f0:9e: 28:11:e8:46:f9:e0:9a:56:8e:3b:f5:9a:6c:bb:f2: b4:3b:b6:0d:2a:66:aa:c2:5b:ee:47:33:d8:c3:78: ca:77:94:b3:0f:d4:78:79:83:ba:52:92:41:be:e4: 52:88:be:26:ee:43:5e:bd:f2:72:3d:a9:52:13:43: 5e:fb:d2:2e:96:f5:0a:b9:d7:ec:f7:a6:e2:71:8e: 61:bb:55:52:9b:14:e4:27:d8:1e:2d:2a:4e:10:48: 0a:33:17:e7:ce:75:95:48:91:52:35:a5:6e:e8:57: 0a:21:84:04:9e:db:f7:6c:83:13:50:7c:1d:3e:ce: ca:48:4c:f1:61:84:ed:f5:e4:08:be:5d:ee:11:2f: 6b:ea:66:d6:8e:79:eb:e8:50:96:f6:e3:24:32:36: 23:04:8d:c9:4d:c7:49:23:ff:00:75:c8:8f:02:9f: ce:37:a1:55:1e:79:7e:84:c0:75:f2:f4:12:6d:9e: 65:b9:33:a2:64:e3:d0:d9:a4:d0:67:91:c9:bd:de: 87:d8:ab:ac:56:16:57:48:09:17:3b:54:e9:07:0c: 68:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:04:57:D9:57:34:EA:6A:7C:AD:89:85:72:CB:D6:CE:4C:D6:CC:CB X509v3 Authority Key Identifier: keyid:4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:8b:60:9e:6f:5f:14:66:f4:a1:f7:d4:26:ce:80:d4:84:e7: cd:c1:35:ee:c5:7f:73:22:51:f2:8b:ec:94:1f:ad:9f:57:3f: ec:6b:37:d3:b6:f6:6a:69:a8:9c:39:98:b4:0c:19:f0:da:04: 8c:38:bc:bd:e6:1c:15:e3:66:15:a3:ea:0f:47:5f:ae:fa:51: 1f:97:bc:f2:75:b1:33:96:a0:ae:4b:8b:9c:62:7d:9f:b7:b4: 58:43:81:19:15:61:c4:4b:77:ba:a1:63:dc:e8:61:81:a8:c9: 1c:84:93:86:6e:2a:b9:37:f8:39:ad:68:91:96:20:b1:7d:af: b4:62:90:27:69:fb:0f:2d:af:5b:6a:de:c5:7b:1a:fc:92:e3: 4d:6c:e0:a8:a5:85:fc:38:33:99:de:a9:79:fa:62:f2:ed:ed: 1e:ba:b8:24:34:70:12:2a:82:63:ae:7f:c9:32:f4:61:8f:30: 2c:69:9f:fd:43:58:f5:c7:df:d5:b0:93:16:eb:65:ab:86:a3: 36:f6:68:82:b7:de:e3:44:e6:7a:77:3c:04:86:07:3f:30:d2: 7e:d5:d2:e3:da:bc:bc:a3:7e:23:0d:d9:b5:95:f2:f7:8a:73: ca:d0:b7:8b:37:eb:87:71:e0:35:5b:02:f2:d8:d7:7d:99:01: fd:85:64:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxMzgxMTAvBgNVBAUTKDRFODFFMEY2QTgzQURDMkFENTIzMjY2NEE5NTREMjY3 Q0I0M0Q5MEEwHhcNMjUwOTA3MDExOTA5WhcNMjUwOTE0MDExOTA5WjAYMRYwFAYD VQQDEw02OGJjZGQ4ZS1iMTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuws+Nm4mnZ7txhLlcdJVnd7CoyxuPvw1+SGesLzEGmGj+1UuUdpXO9JU8J4o EehG+eCaVo479Zpsu/K0O7YNKmaqwlvuRzPYw3jKd5SzD9R4eYO6UpJBvuRSiL4m 7kNevfJyPalSE0Ne+9IulvUKudfs96bicY5hu1VSmxTkJ9geLSpOEEgKMxfnznWV SJFSNaVu6FcKIYQEntv3bIMTUHwdPs7KSEzxYYTt9eQIvl3uES9r6mbWjnnr6FCW 9uMkMjYjBI3JTcdJI/8AdciPAp/ON6FVHnl+hMB18vQSbZ5luTOiZOPQ2aTQZ5HJ vd6H2KusVhZXSAkXO1TpBwxoZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUEV9lX NOpqfK2JhXLL1s5M1szLMB8GA1UdIwQYMBaAFE6B4PaoOtwq1SMmZKlU0mfLQ9kK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDEzOC82M0E0RDFCQ0M0 N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjNDclZJeVprcVZUU1o4dEQy UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RvSGc5cWc2M0NyVkl5WmtxVlRTWjh0RDJRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDEzOC82M0E0RDFCQ0M0N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjND clZJeVprcVZUU1o4dEQyUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANi2Ceb18UZvSh99QmzoDUhOfNwTXuxX9zIlHyi+yUH62fVz/sazfT tvZqaaicOZi0DBnw2gSMOLy95hwV42YVo+oPR1+u+lEfl7zydbEzlqCuS4ucYn2f t7RYQ4EZFWHES3e6oWPc6GGBqMkchJOGbiq5N/g5rWiRliCxfa+0YpAnafsPLa9b at7Fexr8kuNNbOCopYX8ODOZ3ql5+mLy7e0eurgkNHASKoJjrn/JMvRhjzAsaZ/9 Q1j1x9/VsJMW62WrhqM29miCt97jROZ6dzwEhgc/MNJ+1dLj2ry8o34jDdm1lfL3 inPK0LeLN+uHceA1WwLy2Nd9mQH9hWSb -----END CERTIFICATE-----Generated at Mon Sep 8 03:38:19 2025 by rpki-client