$ rpki-client -vvf rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft File: tdRsD3W7vyQRKYrr0rVitaqV7Go.mft (raw, json) Hash identifier: jmk5fNdZpbuBQLCmf+kla42puOjbu/WgWgLY5uWp1wo= Subject key identifier: 22:37:9F:83:BD:2C:80:02:93:7F:95:11:BD:EC:D1:24:8E:B3:7C:C5 Authority key identifier: B5:D4:6C:0F:75:BB:BF:24:11:29:8A:EB:D2:B5:62:B5:AA:95:EC:6A Certificate issuer: /CN=A919C230/serialNumber=B5D46C0F75BBBF2411298AEBD2B562B5AA95EC6A Certificate serial: 0AAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft Manifest number: 0A9C Signing time: Thu 18 Sep 2025 19:47:33 +0000 Manifest this update: Thu 18 Sep 2025 19:47:33 +0000 Manifest next update: Thu 25 Sep 2025 19:47:33 +0000 Files and hashes: 1: tdRsD3W7vyQRKYrr0rVitaqV7Go.crl (hash: XCQORb2/f4C1aRFIkpuqszoFw6LzbzJMWi608AbK8Z4=) 2: 1429DACC099B11ED8A62781AC4F9AE02.roa (hash: yEtb/oBRu+Pt3DfxSeSuNm69CyCHMTAD09+IpcdOyrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.crl rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2733 (0xaad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C230, serialNumber=B5D46C0F75BBBF2411298AEBD2B562B5AA95EC6A Validity Not Before: Sep 18 19:47:33 2025 GMT Not After : Sep 25 19:47:33 2025 GMT Subject: CN=68cc61d5-cb24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:37:1c:4a:aa:0f:c7:42:fc:e6:16:a3:14:2a: ee:c5:b6:61:41:81:c5:84:7a:8b:6c:6b:94:51:8f: a1:f0:13:22:f1:cf:09:f5:88:88:4e:53:d8:16:30: d3:83:45:b4:79:46:17:aa:e6:69:e0:5a:7e:a4:2c: 54:6f:00:21:1b:7e:46:b6:6d:0d:f8:b6:d1:e3:93: 34:b1:f0:70:d3:9f:14:fb:7d:9a:ac:a2:e3:01:ed: 4d:a7:28:d8:b5:f9:60:0b:f1:e2:d0:c2:cf:3c:7c: 57:a9:12:fc:71:a9:70:2e:44:b8:db:39:7a:4a:55: aa:ca:4a:85:3b:27:0b:61:b1:91:ef:cc:8b:ca:19: a5:6d:c7:66:73:75:29:cf:8e:2f:8c:0b:16:74:b8: 31:59:e7:46:68:cd:42:03:a4:9c:18:7d:f2:d0:cd: 60:3b:12:f1:64:6f:ad:11:35:4d:43:92:17:2c:bb: 40:8c:99:fe:51:12:ff:7f:e0:6c:fe:23:96:65:f6: 72:c4:50:c2:ad:59:56:68:84:8f:75:75:9d:5d:0a: 90:fc:a6:50:4b:0e:f0:6f:a4:93:d2:e4:a8:3b:e0: 7e:99:0a:7e:e3:99:d5:e6:de:79:52:74:a9:1f:fc: 0d:5b:4c:f9:56:b5:b8:e6:18:ef:e7:02:cb:fc:3b: ad:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:37:9F:83:BD:2C:80:02:93:7F:95:11:BD:EC:D1:24:8E:B3:7C:C5 X509v3 Authority Key Identifier: keyid:B5:D4:6C:0F:75:BB:BF:24:11:29:8A:EB:D2:B5:62:B5:AA:95:EC:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:1f:05:fd:a9:23:2f:dd:b8:3e:37:da:98:77:4a:3b:84:97: 65:dd:2d:a2:9c:53:4c:c0:63:fb:f9:ea:ee:8c:18:a9:69:08: 44:bd:8b:19:71:34:1a:a7:45:e4:74:b2:e3:da:b1:e9:30:f6: 62:05:b1:89:9d:df:f8:de:0c:f6:35:ce:af:70:aa:60:23:ca: 0e:2e:62:27:ce:ae:c0:84:d8:7b:1d:67:32:2b:73:18:e6:f3: dd:96:e6:9d:4c:01:74:a7:16:c1:6a:21:dc:e2:ec:b3:c9:b1: 59:c3:90:5c:ce:e3:2a:98:d4:47:4d:ab:1d:f0:19:26:2a:7b: 67:86:b1:ee:5a:a0:f1:69:22:87:53:d9:31:9e:d0:d4:8d:0d: 4e:28:7b:31:f6:85:a6:eb:bd:72:c2:46:39:8c:80:99:57:0c: 34:0a:5d:dc:9c:ee:4f:64:6e:aa:61:68:1f:2b:4b:50:aa:90: 3f:6c:53:53:bb:a9:3c:da:d0:0e:15:5b:56:ce:22:76:1c:d1: 51:3d:76:b2:40:c9:db:ed:53:4b:c7:54:19:58:af:32:b4:d8: 21:6d:6c:91:58:bf:93:ef:b2:c3:a2:24:3f:39:01:70:db:24: 48:f0:18:d4:d7:b2:ff:6f:ac:02:5d:87:de:d5:30:e3:34:65: 4a:7f:2c:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMyMzAxMTAvBgNVBAUTKEI1RDQ2QzBGNzVCQkJGMjQxMTI5OEFFQkQyQjU2MkI1 QUE5NUVDNkEwHhcNMjUwOTE4MTk0NzMzWhcNMjUwOTI1MTk0NzMzWjAYMRYwFAYD VQQDEw02OGNjNjFkNS1jYjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3zccSqoPx0L85hajFCruxbZhQYHFhHqLbGuUUY+h8BMi8c8J9YiITlPYFjDT g0W0eUYXquZp4Fp+pCxUbwAhG35Gtm0N+LbR45M0sfBw058U+32arKLjAe1NpyjY tflgC/Hi0MLPPHxXqRL8calwLkS42zl6SlWqykqFOycLYbGR78yLyhmlbcdmc3Up z44vjAsWdLgxWedGaM1CA6ScGH3y0M1gOxLxZG+tETVNQ5IXLLtAjJn+URL/f+Bs /iOWZfZyxFDCrVlWaISPdXWdXQqQ/KZQSw7wb6ST0uSoO+B+mQp+45nV5t55UnSp H/wNW0z5VrW45hjv5wLL/DutvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCI3n4O9 LIACk3+VEb3s0SSOs3zFMB8GA1UdIwQYMBaAFLXUbA91u78kESmK69K1YrWqlexq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzIzMC8yOTU0QUJEQzY1 NEUxMUVBOTBDNjM1ODBDNEY5QUUwMi90ZFJzRDNXN3Z5UVJLWXJyMHJWaXRhcVY3 R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RkUnNEM1c3dnlRUktZcnIwclZpdGFxVjdHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzIzMC8yOTU0QUJEQzY1NEUxMUVBOTBDNjM1ODBDNEY5QUUwMi90ZFJzRDNXN3Z5 UVJLWXJyMHJWaXRhcVY3R28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/HwX9qSMv3bg+N9qYd0o7hJdl3S2inFNMwGP7+erujBipaQhEvYsZ cTQap0XkdLLj2rHpMPZiBbGJnd/43gz2Nc6vcKpgI8oOLmInzq7AhNh7HWcyK3MY 5vPdluadTAF0pxbBaiHc4uyzybFZw5BczuMqmNRHTasd8BkmKntnhrHuWqDxaSKH U9kxntDUjQ1OKHsx9oWm671ywkY5jICZVww0Cl3cnO5PZG6qYWgfK0tQqpA/bFNT u6k82tAOFVtWziJ2HNFRPXayQMnb7VNLx1QZWK8ytNghbWyRWL+T77LDoiQ/OQFw 2yRI8BjU17L/b6wCXYfe1TDjNGVKfyy/ -----END CERTIFICATE-----Generated at Thu Sep 18 20:53:20 2025 by rpki-client