$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft File: tDxOPTL5W1BV0E_cAfhRljfImm8.mft (raw, json) Hash identifier: VpIiHN8683gmwWlZ5yEace1qXWc5g8Zb1QMseaRbzgI= Subject key identifier: 9C:F8:8E:51:87:26:D8:BB:48:8E:E8:48:7B:EB:39:2C:13:07:B2:5C Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft Manifest number: DC Signing time: Fri 05 Sep 2025 05:56:27 +0000 Manifest this update: Fri 05 Sep 2025 05:56:27 +0000 Manifest next update: Fri 12 Sep 2025 05:56:27 +0000 Files and hashes: 1: tDxOPTL5W1BV0E_cAfhRljfImm8.crl (hash: EQzldUBvqaBBeS6olINqc0GDOjGe7+KPSk9dPaK91HA=) 2: 858870583D0A11EF829DCE39C4F9AE02.roa (hash: RTDmiAUTa+6e7BNeD1q7cr5hG3t1MJJWblXaDUXHJew=) 3: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (hash: ZlBqKGquKmDZSHNnRJSZITSYuAIz8r1LwmFTYmRFcj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73, serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Validity Not Before: Sep 5 05:56:27 2025 GMT Not After : Sep 12 05:56:27 2025 GMT Subject: CN=68ba7b8b-63ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:0c:57:6f:b0:70:50:f9:f1:b1:16:0f:bf:33: 35:40:39:40:ad:58:a6:54:5e:cc:44:3b:02:ec:31: 53:7b:d8:92:19:a1:bc:69:e5:d6:f1:c3:b2:03:bf: 4d:b5:57:3c:4f:79:53:65:cc:9a:c2:46:07:80:37: 0f:79:e3:46:db:10:fd:32:56:83:e4:7e:27:0f:a3: 54:b8:f3:a0:68:49:80:c5:e7:f6:2f:ab:1e:bc:2c: b5:bc:fd:62:a3:48:2a:71:75:52:ae:1c:59:93:a1: 2c:98:f5:12:a1:c8:d3:f2:8b:9b:80:88:d7:b2:20: 86:b7:f0:8d:6c:8b:ae:6d:d2:fd:4f:35:02:7d:9b: 88:4e:21:17:13:94:43:32:64:3c:b0:90:67:6d:56: e9:60:1a:ed:6c:6a:eb:32:dd:5a:10:ce:23:8c:db: a7:89:8a:b2:e3:8b:fc:8a:97:9d:37:bb:03:15:f4: 0d:25:63:90:16:35:2e:9c:4f:e5:8a:98:04:25:f4: d8:9c:bf:a6:8f:32:da:3e:52:01:e5:63:18:14:1c: 36:ed:b0:ae:e1:86:42:8f:c9:5c:91:3c:c4:dd:83: b5:f2:eb:81:87:c2:db:69:72:53:a8:64:19:8d:3d: 14:fb:38:b8:39:c4:5c:df:3c:a6:1c:b9:ea:ff:4a: 8f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:F8:8E:51:87:26:D8:BB:48:8E:E8:48:7B:EB:39:2C:13:07:B2:5C X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:c9:c2:16:a3:d2:af:93:52:3e:87:f5:65:e1:7d:de:cf:b5: ca:4a:75:b7:35:52:d3:cd:73:5a:9f:dd:f0:b5:42:65:9b:49: 69:cc:78:ec:59:98:77:35:e2:13:07:67:ea:3e:7f:f8:9b:f1: f9:33:08:d9:2f:79:da:de:86:8c:80:10:3b:c1:40:4d:0b:06: 31:1b:a5:48:6b:5e:66:0b:33:bd:fd:79:7a:83:52:0f:29:a6: 87:f8:42:12:38:e6:74:04:0d:3d:b4:7d:1c:69:57:da:7c:89: 95:55:a8:47:56:cf:c2:90:73:50:7c:1c:70:17:9a:5a:78:97: 33:5c:d1:4f:09:52:59:e4:ea:92:f6:fc:48:69:5a:1b:84:72: 63:b7:a8:db:0e:bc:36:cf:23:23:12:d3:03:5e:38:3a:93:5f: 81:39:c9:78:00:50:c8:7f:fb:a5:e1:e7:0d:a7:e0:ef:2e:56: 09:7f:c3:84:eb:b8:1d:d3:36:b0:14:c6:87:e7:ea:91:95:f2: c1:44:32:28:32:ab:fc:cf:c9:2e:b4:f6:c5:b5:d9:9b:83:ba: b7:d6:94:71:c1:51:c4:39:b4:c2:2f:51:d9:01:05:49:b8:6a: 10:4c:8d:ad:01:32:d9:70:47:5d:3b:09:a2:6d:ac:f3:35:ea: f5:b5:b1:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGNzMxMTAvBgNVBAUTKEI0M0M0RTNEMzJGOTVCNTA1NUQwNEZEQzAxRjg1MTk2 MzdDODlBNkYwHhcNMjUwOTA1MDU1NjI3WhcNMjUwOTEyMDU1NjI3WjAYMRYwFAYD VQQDEw02OGJhN2I4Yi02M2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnwxXb7BwUPnxsRYPvzM1QDlArVimVF7MRDsC7DFTe9iSGaG8aeXW8cOyA79N tVc8T3lTZcyawkYHgDcPeeNG2xD9MlaD5H4nD6NUuPOgaEmAxef2L6sevCy1vP1i o0gqcXVSrhxZk6EsmPUSocjT8oubgIjXsiCGt/CNbIuubdL9TzUCfZuITiEXE5RD MmQ8sJBnbVbpYBrtbGrrMt1aEM4jjNuniYqy44v8ipedN7sDFfQNJWOQFjUunE/l ipgEJfTYnL+mjzLaPlIB5WMYFBw27bCu4YZCj8lckTzE3YO18uuBh8LbaXJTqGQZ jT0U+zi4OcRc3zymHLnq/0qPLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJz4jlGH Jti7SI7oSHvrOSwTB7JcMB8GA1UdIwQYMBaAFLQ8Tj0y+VtQVdBP3AH4UZY3yJpv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUY3My82REYwRTEwODNE MDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcxQlYwRV9jQWZoUmxqZklt bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1tOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUY3My82REYwRTEwODNEMDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcx QlYwRV9jQWZoUmxqZkltbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJycIWo9Kvk1I+h/Vl4X3ez7XKSnW3NVLTzXNan93wtUJlm0lpzHjs WZh3NeITB2fqPn/4m/H5MwjZL3na3oaMgBA7wUBNCwYxG6VIa15mCzO9/Xl6g1IP KaaH+EISOOZ0BA09tH0caVfafImVVahHVs/CkHNQfBxwF5paeJczXNFPCVJZ5OqS 9vxIaVobhHJjt6jbDrw2zyMjEtMDXjg6k1+BOcl4AFDIf/ul4ecNp+DvLlYJf8OE 67gd0zawFMaH5+qRlfLBRDIoMqv8z8kutPbFtdmbg7q31pRxwVHEObTCL1HZAQVJ uGoQTI2tATLZcEddOwmibazzNer1tbG6 -----END CERTIFICATE-----Generated at Sat Sep 6 15:15:14 2025 by rpki-client