$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft File: tNIXk5onUZOOB2WaeUiFqciEGRk.mft (raw, json) Hash identifier: 8J5mzZ0LwICGqPzwnQ2TekuDQ4RpCkr7bFdlksDqLmg= Subject key identifier: 68:2F:5C:10:90:05:20:E3:29:94:C7:75:07:25:B3:3F:ED:04:FC:6E Authority key identifier: B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 Certificate issuer: /CN=A9145B13/serialNumber=B4D217939A2751938E07659A794885A9C8841919 Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft Manifest number: 95 Signing time: Wed 17 Sep 2025 07:08:47 +0000 Manifest this update: Wed 17 Sep 2025 07:08:47 +0000 Manifest next update: Wed 24 Sep 2025 07:08:47 +0000 Files and hashes: 1: tNIXk5onUZOOB2WaeUiFqciEGRk.crl (hash: KyosCAq+WNvklyK6v098Pd4IJGqy7GqLr8hcwra5eiw=) 2: 793486E0C11A11EF99C19012C4F9AE02.roa (hash: pawwhpt8xl4Jm5tUlNLFvNNRwT1g8ks5JKIz2Wod4KM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:08:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B13, serialNumber=B4D217939A2751938E07659A794885A9C8841919 Validity Not Before: Sep 17 07:08:47 2025 GMT Not After : Sep 24 07:08:47 2025 GMT Subject: CN=68ca5e7f-8f23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:55:a7:33:96:dd:0c:c9:8b:54:38:17:dd:34: 05:23:1e:1d:76:8a:1d:c3:4b:5a:9f:be:c8:46:79: f6:b5:0b:a4:7d:ac:56:96:db:f7:28:86:ef:78:19: 32:56:90:dc:ef:d0:b5:81:e9:7c:eb:0a:e9:0f:47: 2f:a5:f9:17:ed:33:1c:d8:e4:17:ef:bf:b3:7f:30: 2b:90:1f:80:23:a2:e5:57:ff:46:f8:11:bb:35:77: fc:bd:fe:87:77:59:58:77:07:75:06:46:29:a1:86: c6:df:cc:6b:08:ea:62:ea:6b:78:70:a1:ec:40:24: 3a:d1:4e:2a:e8:e3:89:da:37:82:9f:15:ad:0f:d8: 76:b1:62:9c:a4:1f:82:29:10:0c:79:b0:68:6b:19: 0f:2a:9f:81:af:d3:66:89:47:3e:be:8c:b1:70:32: 80:0b:0a:82:5f:29:c6:8f:dc:f8:50:e1:40:da:97: 42:d9:f1:96:65:0a:3b:6d:ac:ea:50:6a:e0:16:a3: 38:83:fa:5a:bd:43:e9:d8:1d:58:58:5a:18:b4:bf: b9:8c:71:1d:3b:b9:6c:d3:02:a5:79:8c:ef:be:38: fa:63:78:1a:14:cf:a1:c8:c0:2f:44:ed:99:03:42: 71:06:5a:14:38:e6:f6:62:8c:43:0c:bf:f6:b3:cc: 72:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:2F:5C:10:90:05:20:E3:29:94:C7:75:07:25:B3:3F:ED:04:FC:6E X509v3 Authority Key Identifier: keyid:B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:18:68:4a:9e:a2:a2:f8:98:1c:42:af:f7:2b:9c:11:f1:bd: 1c:a9:c7:21:04:ba:b6:8a:e0:68:e4:77:a1:d4:2d:bf:4a:52: af:e0:6e:99:61:18:8e:76:3b:7e:59:a8:8f:04:32:14:5e:21: 53:45:96:0d:8a:51:14:98:bb:b8:8c:d0:74:3d:9f:43:99:f3: 46:cd:83:6a:3e:07:1b:fd:38:6e:82:1a:b7:f5:f3:ab:d2:ab: e9:06:38:a5:13:3f:a1:e3:46:81:db:f8:ea:fb:5c:5e:18:b7: ec:26:a1:05:7f:2a:e0:29:99:30:30:89:a7:ab:29:83:83:cd: c8:93:79:2d:20:8f:8b:84:87:22:3b:ed:b5:aa:66:72:dc:05: e0:4f:f6:23:40:98:e2:29:31:b7:b1:de:c7:22:48:84:4d:95: 01:79:f0:91:32:d5:7d:8c:a8:fd:74:55:a0:0d:25:d2:35:f3: 9e:5f:6a:4c:09:53:d7:31:20:c6:56:83:4d:03:c4:cf:fa:b0: 2e:5d:a6:bb:02:c5:dc:a1:87:3f:c8:39:69:b1:58:00:74:0d: 1e:9c:b7:ce:aa:9f:b4:b6:a8:43:ba:be:72:0c:09:26:f2:a2: bc:9f:c2:b6:d0:c8:65:65:c8:94:3e:cb:d6:40:89:cd:96:7d: 11:bf:0c:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCMTMxMTAvBgNVBAUTKEI0RDIxNzkzOUEyNzUxOTM4RTA3NjU5QTc5NDg4NUE5 Qzg4NDE5MTkwHhcNMjUwOTE3MDcwODQ3WhcNMjUwOTI0MDcwODQ3WjAYMRYwFAYD VQQDEw02OGNhNWU3Zi04ZjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01WnM5bdDMmLVDgX3TQFIx4ddoodw0tan77IRnn2tQukfaxWltv3KIbveBky VpDc79C1gel86wrpD0cvpfkX7TMc2OQX77+zfzArkB+AI6LlV/9G+BG7NXf8vf6H d1lYdwd1BkYpoYbG38xrCOpi6mt4cKHsQCQ60U4q6OOJ2jeCnxWtD9h2sWKcpB+C KRAMebBoaxkPKp+Br9NmiUc+voyxcDKACwqCXynGj9z4UOFA2pdC2fGWZQo7bazq UGrgFqM4g/pavUPp2B1YWFoYtL+5jHEdO7ls0wKleYzvvjj6Y3gaFM+hyMAvRO2Z A0JxBloUOOb2YoxDDL/2s8xyKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgvXBCQ BSDjKZTHdQclsz/tBPxuMB8GA1UdIwQYMBaAFLTSF5OaJ1GTjgdlmnlIhanIhBkZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUIxMy81MEJEMjMwRUIx MjgxMUVGQjc1MEE1MkJDNEY5QUUwMi90TklYazVvblVaT09CMldhZVVpRnFjaUVH UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROSVhrNW9uVVpPT0IyV2FlVWlGcWNpRUdSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUIxMy81MEJEMjMwRUIxMjgxMUVGQjc1MEE1MkJDNEY5QUUwMi90TklYazVvblVa T09CMldhZVVpRnFjaUVHUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcGGhKnqKi+JgcQq/3K5wR8b0cqcchBLq2iuBo5Heh1C2/SlKv4G6Z YRiOdjt+WaiPBDIUXiFTRZYNilEUmLu4jNB0PZ9DmfNGzYNqPgcb/Thughq39fOr 0qvpBjilEz+h40aB2/jq+1xeGLfsJqEFfyrgKZkwMImnqymDg83Ik3ktII+LhIci O+21qmZy3AXgT/YjQJjiKTG3sd7HIkiETZUBefCRMtV9jKj9dFWgDSXSNfOeX2pM CVPXMSDGVoNNA8TP+rAuXaa7AsXcoYc/yDlpsVgAdA0enLfOqp+0tqhDur5yDAkm 8qK8n8K20MhlZciUPsvWQInNln0Rvwx9 -----END CERTIFICATE-----Generated at Fri Sep 19 00:33:16 2025 by rpki-client