$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: 0HIouaumvNBNtP2LJGIuXD6FyUTJxb6m/DLIEcoE3JM= Subject key identifier: 63:46:4C:06:50:63:BE:C1:68:E6:D7:E7:48:07:EF:1D:2F:C5:14:71 Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 1057 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 101C Signing time: Tue 22 Jul 2025 17:38:08 +0000 Manifest this update: Tue 22 Jul 2025 17:38:07 +0000 Manifest next update: Tue 29 Jul 2025 17:38:07 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: uS2p/z3HDrLvtt8SU7n+jcNlOSAkvma6i4Mm/mzqf0I=) 2: 64BBCC50909D11ED9EA9867FC4F9AE02.roa (hash: xg099yR4eAC7wbvaBb8dUHM2paW9Jui6a4WnYhNuuAw=) 3: EE63EB2A59A611F0959E0C63C4F9AE02.roa (hash: GsLnRLdogxstpaApcoyc6Zg1nnApMAJYYma2C41kKMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 17:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4183 (0x1057) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: Jul 22 17:38:07 2025 GMT Not After : Jul 29 17:38:07 2025 GMT Subject: CN=687fcc80-1124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ce:75:9e:32:17:13:8d:0a:9e:89:ff:ff:13: 2d:4e:3a:3d:d1:3c:1d:91:cd:20:8f:e9:f7:31:e9: 5d:57:40:7e:b3:67:dc:e7:d5:ad:aa:13:9b:db:f4: 36:33:73:e4:db:13:d3:35:1d:10:57:d6:1c:07:80: 93:78:72:2d:f8:b4:7f:ca:8d:2c:46:c8:a7:3e:e8: ef:ee:cc:f7:98:e2:b0:33:c5:83:31:b0:9a:9e:87: 03:fa:bc:a6:56:dd:1e:0d:42:2a:1d:e2:bf:d8:3b: 8c:81:46:cb:58:c8:30:6c:79:18:34:84:28:e5:e5: a8:2a:2d:3b:54:f9:5c:1c:4d:47:3f:26:d0:31:70: 19:63:8a:ae:9c:9d:a4:3c:d7:90:f7:e5:4f:93:d9: 8c:b0:b4:a3:65:d6:8a:aa:b0:a9:b4:4a:98:3a:9e: 77:69:f9:2f:81:63:b7:e6:9c:ab:58:bb:a5:81:43: 43:f5:78:72:cd:a5:91:d6:b6:2a:7a:33:fa:4c:4f: 7e:ec:3d:4a:d2:fa:a2:cc:f7:58:7e:1a:e8:1e:01: d5:88:7e:7f:6a:00:56:c5:4b:a4:cd:b7:06:8b:a9: b6:a7:6c:22:01:7d:79:08:b1:74:0e:ce:d3:f1:a9: e4:83:de:86:08:4a:6e:a6:30:5e:44:ce:4e:0e:9c: 90:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:46:4C:06:50:63:BE:C1:68:E6:D7:E7:48:07:EF:1D:2F:C5:14:71 X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:33:16:c1:49:83:ef:b4:46:2b:fa:bc:8f:8a:db:14:99:95: ab:55:b8:bc:54:c8:5b:b4:d4:be:f2:59:a3:aa:e2:4a:31:71: 0f:28:40:4a:d3:b4:3f:23:1f:e7:1a:06:b4:d5:09:bf:bc:60: b7:61:ef:80:b8:56:0c:aa:56:51:e7:07:9d:4c:dc:63:7b:1a: 42:48:75:91:e2:4c:a0:ed:47:26:d6:cd:cb:94:6b:83:c6:08: f8:fe:7e:ea:c4:7c:7f:36:74:fb:81:e3:bb:ef:d0:bb:00:7b: 60:de:62:53:54:f8:41:46:3e:1e:22:2e:e8:23:fc:87:94:33: 16:d9:34:ea:d3:b4:68:62:2a:18:9e:30:5c:3d:44:9c:11:19: 0b:f6:a7:b5:b3:c9:f8:a6:09:ba:aa:1e:06:31:89:7c:40:f3: d7:47:ca:e4:1d:f2:58:92:26:41:a0:1f:91:69:8a:62:73:21: 74:ad:c3:fa:98:03:73:07:7d:b3:39:64:3d:9c:ab:c1:bc:b0: a8:83:76:a6:f6:5e:d8:6f:a8:b5:8f:16:12:56:8b:86:88:54: 3e:d3:b6:3a:8f:6a:ab:03:56:35:b8:eb:a4:84:2a:ee:d0:db: a1:d4:b7:ea:54:f3:1b:4f:2e:b5:12:cb:cb:4f:21:dc:46:00: ee:a0:14:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjUwNzIyMTczODA3WhcNMjUwNzI5MTczODA3WjAYMRYwFAYD VQQDEw02ODdmY2M4MC0xMTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsc51njIXE40Knon//xMtTjo90Twdkc0gj+n3MeldV0B+s2fc59WtqhOb2/Q2 M3Pk2xPTNR0QV9YcB4CTeHIt+LR/yo0sRsinPujv7sz3mOKwM8WDMbCanocD+rym Vt0eDUIqHeK/2DuMgUbLWMgwbHkYNIQo5eWoKi07VPlcHE1HPybQMXAZY4qunJ2k PNeQ9+VPk9mMsLSjZdaKqrCptEqYOp53afkvgWO35pyrWLulgUND9XhyzaWR1rYq ejP6TE9+7D1K0vqizPdYfhroHgHViH5/agBWxUukzbcGi6m2p2wiAX15CLF0Ds7T 8ankg96GCEpupjBeRM5ODpyQbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGNGTAZQ Y77BaObX50gH7x0vxRRxMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACMxbBSYPvtEYr+ryPitsUmZWrVbi8VMhbtNS+8lmjquJKMXEPKEBK 07Q/Ix/nGga01Qm/vGC3Ye+AuFYMqlZR5wedTNxjexpCSHWR4kyg7Ucm1s3LlGuD xgj4/n7qxHx/NnT7geO779C7AHtg3mJTVPhBRj4eIi7oI/yHlDMW2TTq07RoYioY njBcPUScERkL9qe1s8n4pgm6qh4GMYl8QPPXR8rkHfJYkiZBoB+RaYpicyF0rcP6 mANzB32zOWQ9nKvBvLCog3am9l7Yb6i1jxYSVouGiFQ+07Y6j2qrA1Y1uOukhCru 0Nuh1LfqVPMbTy61EsvLTyHcRgDuoBR5 -----END CERTIFICATE-----Generated at Wed Jul 23 23:30:48 2025 by rpki-client