$ rpki-client -vvf rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft File: rTu2A7FO-ybXFWgvsEE1Hsj502c.mft (raw, json) Hash identifier: cahcFArsh9woJE6vmxFa3TFUUM816u5n42BgkbPMplg= Subject key identifier: E5:1B:A5:E4:32:A1:A2:D9:5E:C3:2C:07:7C:6B:44:7D:66:36:8A:B3 Authority key identifier: AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 Certificate issuer: /CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Certificate serial: 12F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft Manifest number: 12D9 Signing time: Sat 06 Sep 2025 17:10:13 +0000 Manifest this update: Sat 06 Sep 2025 17:10:12 +0000 Manifest next update: Sat 13 Sep 2025 17:10:12 +0000 Files and hashes: 1: rTu2A7FO-ybXFWgvsEE1Hsj502c.crl (hash: VmvGW22jLlWQnn/8WFbDTt7ZXzmAImJcZ+g3X+qEb24=) 2: C31D6D082BA611EF82D8BF21C4F9AE02.roa (hash: cuFQqVlbEJ/udXRPZ56LOiAFU4p5XZPUOiRAjCCaxGQ=) 3: E4AFD636233211EE8737EE2AC4F9AE02.roa (hash: mehZcMjFb7HT3F1ePo3UBF+1EGoPOvu0R4233be/rFs=) 4: 4426B244F6A011EC8E197883C4F9AE02.roa (hash: tPqGcusMyqiuDoF3oCEh1MkgveCq5i4UTPc8YjbijQA=) 5: 403398AA233111EEAF768F66C4F9AE02.roa (hash: LFrmkrzanddJe0x2nUkwJLw/OhE7SJ+J+T3fYrc0q4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 17:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4857 (0x12f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191436, serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Validity Not Before: Sep 6 17:10:12 2025 GMT Not After : Sep 13 17:10:12 2025 GMT Subject: CN=68bc6af5-8431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:86:c9:46:26:59:d5:cb:97:c7:14:cd:99:1c: 3f:8b:24:e5:bd:c6:04:1c:7e:ba:5b:c7:e0:70:e6: f3:d0:df:7d:38:25:cb:fa:c9:75:ac:22:49:a7:0f: 1b:d7:c2:48:98:f5:37:1a:41:9a:68:59:2f:ca:fa: f8:b2:41:b3:e2:e5:75:72:04:7b:c8:39:e2:a1:94: d2:5a:27:f8:79:3b:c7:19:1a:7a:b3:5c:57:02:ae: 1c:75:e9:3c:f2:93:78:b5:0c:2e:7a:6b:cb:fe:11: c6:82:c6:ae:9e:f5:ff:bb:85:bb:cc:2e:fd:f7:cd: a8:33:91:01:c8:cb:db:ac:91:3f:ec:48:77:2e:86: b5:96:0a:52:09:82:10:dd:ba:67:7c:b2:7b:50:ba: 70:8f:17:71:e7:4a:8d:e9:02:5f:de:de:82:70:7b: a4:02:7e:af:9f:24:d6:8a:f7:2f:7b:5a:c0:c8:ee: 41:00:67:fd:20:7e:5f:7a:8d:93:fd:3f:bb:46:b0: a7:f4:c4:b9:95:22:5b:d6:32:46:1c:2c:b8:39:9f: 5b:4b:0a:c8:a8:0d:ba:95:c7:89:a0:96:34:e5:18: 43:bd:15:c6:e2:57:a5:19:25:fd:3c:2a:51:db:8d: 1d:2b:e9:a2:8e:e8:6e:d8:5f:aa:26:0d:9b:a2:1f: 43:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:1B:A5:E4:32:A1:A2:D9:5E:C3:2C:07:7C:6B:44:7D:66:36:8A:B3 X509v3 Authority Key Identifier: keyid:AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:59:b5:fa:26:2c:77:b7:1f:41:ea:a7:b9:52:4d:6c:82:df: bf:bb:26:d0:69:04:13:64:0c:15:ac:b0:0a:b1:6e:15:f3:42: 87:5d:ea:62:a3:c6:23:75:c0:e8:9e:1c:5e:cb:fa:9d:bd:1c: 46:7a:08:58:12:33:73:cb:d8:1f:f5:8c:0f:62:a4:89:f7:46: 0e:76:c7:83:00:5e:68:3c:f0:fb:5c:56:21:56:47:ec:e3:75: b6:0f:8e:81:bc:ff:8e:57:fd:47:6a:5c:3f:8d:03:24:c7:65: cc:a9:5d:08:0a:7a:a4:4b:20:f7:08:0e:34:ad:9c:8f:60:f5: 4a:b9:ae:c3:2d:1f:93:8e:46:37:1e:2c:aa:68:b3:8b:a2:8b: 4b:f1:f7:c7:88:6e:92:c2:44:e1:b7:4a:1e:55:9f:f5:45:82: 6a:fc:c0:6c:98:ba:f3:20:97:08:ef:9d:7e:22:4c:d0:87:51: e2:d3:07:17:b5:c5:1b:f2:7e:31:3f:b7:0b:cf:bc:9f:2e:dc: f8:16:74:d6:2a:51:90:17:68:dc:42:5c:c2:98:70:1b:90:d1: ad:a0:3c:60:6b:20:61:ce:7f:77:d4:56:48:01:cc:c8:94:78: 8a:89:2d:c6:8e:4c:c2:13:55:6e:ac:35:ec:48:06:b8:2d:e8: dd:73:0d:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE0MzYxMTAvBgNVBAUTKEFEM0JCNjAzQjE0RUZCMjZENzE1NjgyRkIwNDEzNTFF QzhGOUQzNjcwHhcNMjUwOTA2MTcxMDEyWhcNMjUwOTEzMTcxMDEyWjAYMRYwFAYD VQQDEw02OGJjNmFmNS04NDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYbJRiZZ1cuXxxTNmRw/iyTlvcYEHH66W8fgcObz0N99OCXL+sl1rCJJpw8b 18JImPU3GkGaaFkvyvr4skGz4uV1cgR7yDnioZTSWif4eTvHGRp6s1xXAq4cdek8 8pN4tQwuemvL/hHGgsaunvX/u4W7zC79982oM5EByMvbrJE/7Eh3Loa1lgpSCYIQ 3bpnfLJ7ULpwjxdx50qN6QJf3t6CcHukAn6vnyTWivcve1rAyO5BAGf9IH5feo2T /T+7RrCn9MS5lSJb1jJGHCy4OZ9bSwrIqA26lceJoJY05RhDvRXG4lelGSX9PCpR 240dK+mijuhu2F+qJg2boh9D5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUbpeQy oaLZXsMsB3xrRH1mNoqzMB8GA1UdIwQYMBaAFK07tgOxTvsm1xVoL7BBNR7I+dNn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTQzNi9BMzBCNUE0QUM3 OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15YlhGV2d2c0VFMUhzajUw MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JUdTJBN0ZPLXliWEZXZ3ZzRUUxSHNqNTAyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTQzNi9BMzBCNUE0QUM3OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15 YlhGV2d2c0VFMUhzajUwMmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSWbX6Jix3tx9B6qe5Uk1sgt+/uybQaQQTZAwVrLAKsW4V80KHXepi o8YjdcDonhxey/qdvRxGeghYEjNzy9gf9YwPYqSJ90YOdseDAF5oPPD7XFYhVkfs 43W2D46BvP+OV/1Halw/jQMkx2XMqV0ICnqkSyD3CA40rZyPYPVKua7DLR+TjkY3 HiyqaLOLootL8ffHiG6SwkTht0oeVZ/1RYJq/MBsmLrzIJcI751+IkzQh1Hi0wcX tcUb8n4xP7cLz7yfLtz4FnTWKlGQF2jcQlzCmHAbkNGtoDxgayBhzn931FZIAczI lHiKiS3GjkzCE1VurDXsSAa4Lejdcw3E -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:10 2025 by rpki-client