$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: uNBS342awk6u0Z43bcUh08ZSXyCI94ib1ffD5SwhpNk= Subject key identifier: 58:11:3D:97:70:5D:F6:C4:4B:82:B2:AF:F3:E0:BE:AD:74:D2:BE:C2 Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 1061 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 1026 Signing time: Sun 10 Aug 2025 17:29:05 +0000 Manifest this update: Sun 10 Aug 2025 17:29:04 +0000 Manifest next update: Sun 17 Aug 2025 17:29:04 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: kjYsjkiuSbvoPNK77EYc8eTODXzDZ3FQWd2kteE3cXM=) 2: 64BBCC50909D11ED9EA9867FC4F9AE02.roa (hash: xg099yR4eAC7wbvaBb8dUHM2paW9Jui6a4WnYhNuuAw=) 3: EE63EB2A59A611F0959E0C63C4F9AE02.roa (hash: GsLnRLdogxstpaApcoyc6Zg1nnApMAJYYma2C41kKMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4193 (0x1061) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: Aug 10 17:29:04 2025 GMT Not After : Aug 17 17:29:04 2025 GMT Subject: CN=6898d6e1-c552 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:9f:74:41:7c:9f:d8:d4:8f:c6:30:ad:56:db: 21:f0:5b:d4:fc:c3:f3:83:c2:e2:fb:8e:47:61:28: c3:5d:99:42:4c:33:69:91:5b:a1:d5:ba:e0:e2:7f: 8a:4c:66:55:d3:a2:50:42:5b:3c:8a:f7:52:3b:19: 18:4b:db:3e:22:a5:9a:3d:94:f0:b3:c5:01:26:24: 15:19:df:db:93:0f:e4:7e:34:d0:4c:91:5e:01:7f: 6e:bc:c6:75:49:28:88:3d:71:0f:8f:52:c5:26:83: ba:b8:4e:56:20:01:80:6e:1f:f5:5b:ee:5a:8f:0a: e4:25:df:1f:13:af:75:c1:63:4c:c0:11:22:60:37: e8:85:9c:a8:cf:15:80:30:bf:1c:62:48:89:ef:61: d8:b5:6c:3b:bf:84:03:79:ea:2d:c8:80:22:ee:73: e4:55:03:20:95:a2:fd:2f:b1:83:f1:d0:86:0d:4a: 0d:ba:04:27:90:75:da:e3:9a:3c:39:93:0e:f0:a5: 35:eb:3a:62:a7:f7:0d:4e:0c:13:07:98:65:63:8f: 7e:a7:ca:56:d9:90:c9:79:34:77:da:91:86:6a:4c: 37:c0:d2:0c:b1:99:7a:2a:ab:4e:20:05:63:30:50: 74:73:09:ca:b6:f7:e3:40:f3:4c:7d:f7:bd:1a:de: 94:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:11:3D:97:70:5D:F6:C4:4B:82:B2:AF:F3:E0:BE:AD:74:D2:BE:C2 X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:32:b9:9d:d5:58:4a:32:6d:66:12:49:4e:07:93:15:ad:9c: a4:28:3c:29:86:5c:be:7b:e4:96:1f:41:34:36:62:a7:bd:1f: 38:4f:ca:2e:29:df:52:60:ce:e1:91:3d:cb:bb:fb:ed:f5:7f: 58:91:0b:b9:9e:42:64:44:00:b0:cc:97:89:ed:da:70:93:b9: 6d:a4:29:b5:44:5a:ac:68:c9:1b:1b:99:99:38:f9:b6:32:7e: b5:96:09:96:62:4d:57:d9:03:0b:79:4c:a4:59:1a:c0:55:e7: 36:6a:77:ec:8e:42:46:57:04:81:b2:28:78:33:b4:e2:fe:e8: b8:e6:00:99:41:57:da:3a:66:39:9b:61:35:b9:9b:27:52:27: 64:47:d5:be:a8:55:0e:7b:6d:42:6f:91:39:ef:08:b2:70:78: 27:88:97:2b:cd:e1:e2:fc:4d:2d:78:a8:c6:d4:b8:97:50:4c: 6e:1c:1d:f1:82:d3:d1:21:7b:21:6d:21:33:d0:64:37:61:de: 2b:43:35:07:0a:b6:88:07:0f:f9:ba:0f:b6:4a:20:7c:96:f7: 94:d5:52:8d:20:c7:8d:b1:3e:6a:4d:32:20:23:2b:d8:55:b6: 2e:80:17:45:b2:f6:e5:9b:89:f2:d0:ac:ee:8e:13:ce:27:45: 0a:8b:af:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjUwODEwMTcyOTA0WhcNMjUwODE3MTcyOTA0WjAYMRYwFAYD VQQDEw02ODk4ZDZlMS1jNTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8J90QXyf2NSPxjCtVtsh8FvU/MPzg8Li+45HYSjDXZlCTDNpkVuh1brg4n+K TGZV06JQQls8ivdSOxkYS9s+IqWaPZTws8UBJiQVGd/bkw/kfjTQTJFeAX9uvMZ1 SSiIPXEPj1LFJoO6uE5WIAGAbh/1W+5ajwrkJd8fE691wWNMwBEiYDfohZyozxWA ML8cYkiJ72HYtWw7v4QDeeotyIAi7nPkVQMglaL9L7GD8dCGDUoNugQnkHXa45o8 OZMO8KU16zpip/cNTgwTB5hlY49+p8pW2ZDJeTR32pGGakw3wNIMsZl6KqtOIAVj MFB0cwnKtvfjQPNMffe9Gt6UPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgRPZdw XfbES4Kyr/Pgvq100r7CMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdMrmd1VhKMm1mEklOB5MVrZykKDwphly+e+SWH0E0NmKnvR84T8ou Kd9SYM7hkT3Lu/vt9X9YkQu5nkJkRACwzJeJ7dpwk7ltpCm1RFqsaMkbG5mZOPm2 Mn61lgmWYk1X2QMLeUykWRrAVec2anfsjkJGVwSBsih4M7Ti/ui45gCZQVfaOmY5 m2E1uZsnUidkR9W+qFUOe21Cb5E57wiycHgniJcrzeHi/E0teKjG1LiXUExuHB3x gtPRIXshbSEz0GQ3Yd4rQzUHCraIBw/5ug+2SiB8lveU1VKNIMeNsT5qTTIgIyvY VbYugBdFsvblm4ny0KzujhPOJ0UKi6+Q -----END CERTIFICATE-----Generated at Mon Aug 11 02:09:46 2025 by rpki-client