$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft File: tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft (raw, json) Hash identifier: xunzgpdyUX265sutzRVKSvFUFSZ5q1gv4o++bT2aUR4= Subject key identifier: ED:6B:98:E7:E4:27:33:26:38:FF:78:A4:22:FC:C9:3D:76:90:03:D2 Authority key identifier: B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C Certificate issuer: /CN=A9131711/serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft Manifest number: 0129 Signing time: Fri 05 Sep 2025 05:03:57 +0000 Manifest this update: Fri 05 Sep 2025 05:03:57 +0000 Manifest next update: Fri 12 Sep 2025 05:03:57 +0000 Files and hashes: 1: tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl (hash: Z30d8KlQqBcgeQYMYq2aDhTseuAwMYORuOJtzjqad5k=) 2: B2B006BAE3E911EEB845B268C4F9AE02.roa (hash: fj5an6uMsWFMPTZr6PrKep91XRX3rQER6UmH0deptJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:03:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Validity Not Before: Sep 5 05:03:57 2025 GMT Not After : Sep 12 05:03:57 2025 GMT Subject: CN=68ba6f3d-329c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e4:49:6f:5e:5a:11:d7:40:c3:90:0c:da:52: a6:8b:63:04:63:75:05:f1:cf:ab:cc:7c:90:8a:ee: 07:34:9f:59:cd:b1:75:79:09:65:50:7d:34:24:f3: d1:48:2e:b7:82:ec:04:9c:0b:54:9f:02:e3:e8:fe: b0:f5:b7:ee:1d:51:47:96:f2:2c:2a:1f:65:80:4f: c1:69:5d:b4:d5:c1:12:b3:21:e3:72:9c:e0:d5:0e: 88:43:bc:9c:a0:6e:9a:16:e0:c5:6b:2e:64:81:d0: 57:1a:7c:79:6f:c6:ec:24:c8:a7:b9:de:fe:f2:f0: 87:42:61:ee:5e:38:18:14:03:8b:04:e6:b7:5d:e7: bd:85:5e:0c:2f:7c:f4:f4:ef:ff:41:8d:68:af:85: 24:9d:0d:f5:91:42:bb:45:5e:c4:6f:f4:1f:ee:fe: 9c:e1:46:50:5e:a7:2e:48:ad:b7:83:df:8d:e7:4f: 1c:f2:29:a5:df:95:2e:19:a5:87:9b:ca:1a:29:c7: 12:c3:2e:75:f2:05:74:a5:53:7c:39:d2:ad:f3:cd: 76:2b:37:cf:f9:c6:c9:49:5a:17:73:28:3a:6b:26: e4:39:16:1f:2b:e0:ee:a6:ac:a2:23:be:4a:2f:0f: bf:81:6c:12:37:6d:d9:ca:c0:29:32:17:bd:7d:40: 1f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:6B:98:E7:E4:27:33:26:38:FF:78:A4:22:FC:C9:3D:76:90:03:D2 X509v3 Authority Key Identifier: keyid:B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:b7:32:0a:31:76:3f:62:37:6e:1a:00:4f:38:25:17:02:ac: d9:f0:6c:1d:8b:0c:14:c1:e9:36:c3:ea:05:19:29:d0:59:42: f0:76:9e:b9:c1:4a:23:2f:83:ae:55:61:e0:2b:a0:54:07:2f: 3e:4c:64:62:d7:31:43:93:cf:0a:61:8c:f1:71:26:69:2f:3c: a1:04:ac:c1:4b:43:1e:41:1b:48:61:ae:77:2b:a1:92:ef:d2: 23:9e:03:a2:82:81:16:5e:b4:fa:e8:f7:a3:be:3f:2f:be:e2: c5:d4:26:91:5c:c0:5d:fa:c5:07:77:82:d6:42:f5:81:cf:d9: fe:e2:1d:96:59:75:ae:3e:58:9f:18:65:8e:1a:0f:1a:94:3b: 7f:09:40:75:1e:55:09:73:75:6e:c3:4f:04:4d:7b:6d:1f:8e: f6:f9:ab:9c:bd:88:5c:de:a7:df:85:17:dd:dd:40:a0:b4:56: 4b:0b:8a:ae:c6:a9:e4:ad:f5:90:93:f9:76:33:6c:bb:0c:82: e8:da:1d:a9:a2:ca:22:d1:c9:7e:63:bd:54:cd:d3:06:2e:ed: c7:5f:bf:7d:15:28:9d:7b:32:8b:55:98:4c:3c:52:a6:21:8e: 14:43:a1:ff:21:98:a4:e3:79:4d:11:a4:c3:53:27:4c:64:12: ee:18:af:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEI1N0IyMDdGMEUxQzFCQTg3M0EwNzkzNTgyQzdBODEz NDA5ODY3NEMwHhcNMjUwOTA1MDUwMzU3WhcNMjUwOTEyMDUwMzU3WjAYMRYwFAYD VQQDEw02OGJhNmYzZC0zMjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6+RJb15aEddAw5AM2lKmi2MEY3UF8c+rzHyQiu4HNJ9ZzbF1eQllUH00JPPR SC63guwEnAtUnwLj6P6w9bfuHVFHlvIsKh9lgE/BaV201cESsyHjcpzg1Q6IQ7yc oG6aFuDFay5kgdBXGnx5b8bsJMinud7+8vCHQmHuXjgYFAOLBOa3Xee9hV4ML3z0 9O//QY1or4UknQ31kUK7RV7Eb/Qf7v6c4UZQXqcuSK23g9+N508c8iml35UuGaWH m8oaKccSwy518gV0pVN8OdKt8812KzfP+cbJSVoXcyg6aybkORYfK+DupqyiI75K Lw+/gWwSN23ZysApMhe9fUAfRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1rmOfk JzMmOP94pCL8yT12kAPSMB8GA1UdIwQYMBaAFLV7IH8OHBuoc6B5NYLHqBNAmGdM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS85RkREMkRBMEM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2aHpvSGsxZ3Nlb0UwQ1la MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RYc2dmdzRjRzZoem9IazFnc2VvRTBDWVowdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS85RkREMkRBMEM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2 aHpvSGsxZ3Nlb0UwQ1laMHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFtzIKMXY/YjduGgBPOCUXAqzZ8GwdiwwUwek2w+oFGSnQWULwdp65 wUojL4OuVWHgK6BUBy8+TGRi1zFDk88KYYzxcSZpLzyhBKzBS0MeQRtIYa53K6GS 79IjngOigoEWXrT66Pejvj8vvuLF1CaRXMBd+sUHd4LWQvWBz9n+4h2WWXWuPlif GGWOGg8alDt/CUB1HlUJc3Vuw08ETXttH472+aucvYhc3qffhRfd3UCgtFZLC4qu xqnkrfWQk/l2M2y7DILo2h2posoi0cl+Y71UzdMGLu3HX799FSidezKLVZhMPFKm IY4UQ6H/IZik43lNEaTDUydMZBLuGK+A -----END CERTIFICATE-----Generated at Sat Sep 6 21:07:31 2025 by rpki-client