$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft File: tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft (raw, json) Hash identifier: SQoUU9wW9F83Oi9NCqM5Cg42I+3jqWEaST6tQ4LKqHY= Subject key identifier: BE:92:0C:6A:D7:14:67:95:A0:84:1E:06:0F:52:85:93:80:20:0A:E7 Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft Manifest number: 0136 Signing time: Wed 03 Sep 2025 04:58:50 +0000 Manifest this update: Wed 03 Sep 2025 04:58:50 +0000 Manifest next update: Wed 10 Sep 2025 04:58:50 +0000 Files and hashes: 1: tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl (hash: s5MeJ+7sJ5xLr4pNtXr0awVabyWYpivFQK7ViFoEQhY=) 2: 4074E5EA7B1D11EFB5696E45C4F9AE02.roa (hash: 1SdPp/miyItNAEGeBSAKuJFOP+wIUKHiHtHU72zXu1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 04:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: Sep 3 04:58:50 2025 GMT Not After : Sep 10 04:58:50 2025 GMT Subject: CN=68b7cb0a-2908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cb:49:3c:91:e0:e8:6e:a2:c9:00:21:73:ce: 3a:11:75:a8:03:44:87:e8:27:68:f8:0d:54:dc:cc: a8:f1:22:6a:be:36:25:d3:4f:d4:f8:78:cd:bd:53: 90:54:56:c1:7c:17:3b:a4:53:25:4f:e3:4e:47:17: 38:1b:34:98:fc:d7:f0:bd:24:55:bd:93:3b:c2:82: eb:e6:2d:41:27:12:9f:af:69:37:bc:32:d4:a0:f8: 41:ac:17:0d:01:54:f6:88:46:66:db:4d:31:5e:1b: de:24:6e:86:fe:4e:a0:9f:82:0d:f0:bf:49:79:89: 25:2a:4b:00:30:18:70:7a:91:4e:78:7b:29:20:d2: ea:43:6d:9e:09:c1:57:a3:ca:eb:1e:ca:ba:8f:d3: 82:71:b9:99:e9:18:06:44:21:81:35:44:70:23:f4: d9:1b:a9:5d:65:5b:85:1a:c9:ea:a7:45:c4:94:0c: 10:1f:7e:98:bf:a0:30:56:d3:b0:70:1c:2d:fb:dd: 16:b9:c6:d1:3b:aa:1a:0c:9d:44:58:19:42:60:6f: 52:46:ac:d3:37:0c:de:5e:2c:9d:66:91:39:c8:95: a6:c8:5d:de:a3:2f:55:db:8f:cd:50:a9:cd:16:d6: 24:49:2c:d0:0e:55:0b:fc:52:b1:de:c4:a5:e2:81: d9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:92:0C:6A:D7:14:67:95:A0:84:1E:06:0F:52:85:93:80:20:0A:E7 X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:c8:30:77:49:51:db:d6:07:70:ee:2c:a9:a2:21:79:04:88: 49:e5:8a:8f:94:8c:e1:46:be:71:ed:5a:ef:ad:6d:b9:33:a1: 85:63:c8:5c:88:88:5f:e8:96:08:71:02:aa:de:58:0a:79:13: b4:e9:7c:1f:03:78:2a:d1:8b:d4:a5:34:46:ef:af:e8:8f:b7: 73:40:d9:98:1c:fb:1c:e9:70:51:ec:51:88:58:09:61:57:1e: 0e:ed:7c:98:5c:22:5d:f8:24:2b:4b:8f:98:e1:01:e5:55:2f: 4c:2a:cd:96:63:f0:5a:ea:10:2c:7f:45:d6:92:c0:30:90:b4: 78:ac:95:70:8f:01:32:d5:93:2b:ed:39:ef:bf:0a:44:7a:d7: dd:eb:b4:68:f6:93:ba:ed:11:75:eb:72:51:f7:88:99:21:b8: fa:a8:80:68:3d:d6:3d:fe:a5:c3:be:64:29:6c:e9:8b:24:93: 45:a0:23:6d:70:dd:55:9a:d8:2a:48:67:bb:ba:de:bc:37:39: c1:d4:ff:21:90:39:76:36:92:1d:81:87:4e:ed:7b:8c:00:96: b5:10:81:05:68:c5:8e:fc:8b:b3:82:52:bb:6a:e4:7a:d4:e3: e6:cc:6f:a0:22:22:f6:42:22:f4:fd:5b:e8:41:b0:84:2c:41: a3:77:df:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjUwOTAzMDQ1ODUwWhcNMjUwOTEwMDQ1ODUwWjAYMRYwFAYD VQQDEw02OGI3Y2IwYS0yOTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvctJPJHg6G6iyQAhc846EXWoA0SH6Cdo+A1U3Myo8SJqvjYl00/U+HjNvVOQ VFbBfBc7pFMlT+NORxc4GzSY/NfwvSRVvZM7woLr5i1BJxKfr2k3vDLUoPhBrBcN AVT2iEZm200xXhveJG6G/k6gn4IN8L9JeYklKksAMBhwepFOeHspINLqQ22eCcFX o8rrHsq6j9OCcbmZ6RgGRCGBNURwI/TZG6ldZVuFGsnqp0XElAwQH36Yv6AwVtOw cBwt+90WucbRO6oaDJ1EWBlCYG9SRqzTNwzeXiydZpE5yJWmyF3eoy9V24/NUKnN FtYkSSzQDlUL/FKx3sSl4oHZxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6SDGrX FGeVoIQeBg9ShZOAIArnMB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCRC8zNTcwREYyRUIxMTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFk SzVQeXcxSEtzazBWQnFyQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/yDB3SVHb1gdw7iypoiF5BIhJ5YqPlIzhRr5x7VrvrW25M6GFY8hc iIhf6JYIcQKq3lgKeRO06XwfA3gq0YvUpTRG76/oj7dzQNmYHPsc6XBR7FGIWAlh Vx4O7XyYXCJd+CQrS4+Y4QHlVS9MKs2WY/Ba6hAsf0XWksAwkLR4rJVwjwEy1ZMr 7TnvvwpEetfd67Ro9pO67RF163JR94iZIbj6qIBoPdY9/qXDvmQpbOmLJJNFoCNt cN1VmtgqSGe7ut68NznB1P8hkDl2NpIdgYdO7XuMAJa1EIEFaMWO/IuzglK7auR6 1OPmzG+gIiL2QiL0/VvoQbCELEGjd99z -----END CERTIFICATE-----Generated at Thu Sep 4 14:01:12 2025 by rpki-client