$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft File: tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft (raw, json) Hash identifier: hQI+m1bXMq9cvBFB9aNcv1RNKM2zMLh+6bR8quOWAnc= Subject key identifier: 1D:B6:6B:B8:7E:32:DB:40:AF:02:F0:A1:84:F0:B0:93:15:AA:FF:D7 Authority key identifier: B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C Certificate issuer: /CN=A9131711/serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft Manifest number: 011B Signing time: Sat 09 Aug 2025 05:14:59 +0000 Manifest this update: Sat 09 Aug 2025 05:14:58 +0000 Manifest next update: Sat 16 Aug 2025 05:14:58 +0000 Files and hashes: 1: tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl (hash: QPxFOKZS8Y5GZo/RwuPfmADim91bHwq6r2Y7AoeKRwY=) 2: B2B006BAE3E911EEB845B268C4F9AE02.roa (hash: fj5an6uMsWFMPTZr6PrKep91XRX3rQER6UmH0deptJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Validity Not Before: Aug 9 05:14:58 2025 GMT Not After : Aug 16 05:14:58 2025 GMT Subject: CN=6896d953-2305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c4:7f:2a:df:31:80:b9:42:bc:24:45:b6:e8: a5:ed:93:a7:6f:7c:12:31:93:36:75:ac:67:7e:1a: dc:07:d3:17:91:27:94:3a:0f:67:3e:d4:1e:af:50: e6:3c:1b:e4:b6:47:37:62:f0:d8:b8:19:75:3b:fc: a1:b1:63:17:ee:4e:1a:c6:90:b0:2c:27:87:63:c2: 5e:ff:39:b0:06:38:09:3d:33:17:d9:6f:fc:07:50: 60:59:f7:85:c6:6b:31:8c:2b:73:91:ff:8a:32:1a: e4:70:87:15:49:ba:c6:cf:85:96:2b:f7:ba:e3:81: e9:3c:30:23:bb:bf:f0:a6:fd:e3:03:9a:ef:a6:3d: 74:17:64:b1:a5:af:b8:40:56:62:ac:5f:43:f4:45: 46:26:26:17:8e:e7:bf:3f:27:b6:cb:5a:73:0c:93: a4:7e:bb:36:4e:f3:5a:9c:ab:ea:02:29:71:98:5d: b5:f9:23:87:c8:fc:37:ba:71:46:52:69:47:f5:5a: 77:88:cd:fd:df:0d:9e:0d:23:bd:45:d3:89:70:22: ba:c8:b0:29:f8:ad:81:6e:ba:3f:2f:80:f3:d6:5c: 4e:43:53:74:61:84:4a:95:4d:19:35:2b:95:2b:7d: d6:e1:e9:5a:48:6c:9e:66:6c:b8:10:39:66:69:d3: 3b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:B6:6B:B8:7E:32:DB:40:AF:02:F0:A1:84:F0:B0:93:15:AA:FF:D7 X509v3 Authority Key Identifier: keyid:B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:82:3d:4f:3f:48:b9:9d:78:f7:d9:57:86:81:42:28:c6:57: b5:0d:f0:51:47:aa:37:b5:cc:88:16:17:61:d7:4f:ed:f8:a9: b5:24:ed:d4:7f:86:39:f9:86:9c:58:0f:4d:be:bf:47:91:fd: 9b:2d:09:03:c4:e8:e8:9a:11:3c:99:17:5b:9b:d0:a5:0e:b6: 78:a9:f1:8a:ca:12:4f:85:bb:5d:89:71:63:5a:2a:b9:d1:33: 13:ef:bb:fa:d8:0d:90:31:86:cf:96:4f:e6:90:d6:32:1b:90: 03:91:72:8b:6d:6a:98:c4:95:fd:15:b3:e6:ee:1b:54:fc:7f: f5:1d:ca:7d:58:41:37:05:23:9d:7c:01:c2:d7:c3:41:3e:4b: 4c:4d:5c:a7:a4:b4:40:c5:a2:86:81:2c:11:19:a9:93:8e:cc: de:5b:6c:06:92:e0:f7:ce:00:41:f0:60:e2:4e:ed:a3:59:38: c6:25:26:bf:a3:ed:88:88:b2:c0:ee:f8:b0:a9:46:6a:21:0c: 7a:35:3c:dc:16:d9:62:b0:35:d7:84:dc:8d:84:c6:01:72:58: a4:91:84:f6:64:0b:31:38:3a:0c:75:5f:19:22:9c:d3:bd:33: cc:37:e1:90:56:fd:26:b7:a1:92:58:77:9c:9b:3d:f1:bd:43: 01:32:ad:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEI1N0IyMDdGMEUxQzFCQTg3M0EwNzkzNTgyQzdBODEz NDA5ODY3NEMwHhcNMjUwODA5MDUxNDU4WhcNMjUwODE2MDUxNDU4WjAYMRYwFAYD VQQDEw02ODk2ZDk1My0yMzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycR/Kt8xgLlCvCRFtuil7ZOnb3wSMZM2daxnfhrcB9MXkSeUOg9nPtQer1Dm PBvktkc3YvDYuBl1O/yhsWMX7k4axpCwLCeHY8Je/zmwBjgJPTMX2W/8B1BgWfeF xmsxjCtzkf+KMhrkcIcVSbrGz4WWK/e644HpPDAju7/wpv3jA5rvpj10F2Sxpa+4 QFZirF9D9EVGJiYXjue/Pye2y1pzDJOkfrs2TvNanKvqAilxmF21+SOHyPw3unFG UmlH9Vp3iM393w2eDSO9RdOJcCK6yLAp+K2Bbro/L4Dz1lxOQ1N0YYRKlU0ZNSuV K33W4elaSGyeZmy4EDlmadM77QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB22a7h+ MttArwLwoYTwsJMVqv/XMB8GA1UdIwQYMBaAFLV7IH8OHBuoc6B5NYLHqBNAmGdM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS85RkREMkRBMEM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2aHpvSGsxZ3Nlb0UwQ1la MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RYc2dmdzRjRzZoem9IazFnc2VvRTBDWVowdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS85RkREMkRBMEM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2 aHpvSGsxZ3Nlb0UwQ1laMHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAngj1PP0i5nXj32VeGgUIoxle1DfBRR6o3tcyIFhdh10/t+Km1JO3U f4Y5+YacWA9Nvr9Hkf2bLQkDxOjomhE8mRdbm9ClDrZ4qfGKyhJPhbtdiXFjWiq5 0TMT77v62A2QMYbPlk/mkNYyG5ADkXKLbWqYxJX9FbPm7htU/H/1Hcp9WEE3BSOd fAHC18NBPktMTVynpLRAxaKGgSwRGamTjszeW2wGkuD3zgBB8GDiTu2jWTjGJSa/ o+2IiLLA7viwqUZqIQx6NTzcFtlisDXXhNyNhMYBclikkYT2ZAsxODoMdV8ZIpzT vTPMN+GQVv0mt6GSWHecmz3xvUMBMq1e -----END CERTIFICATE-----Generated at Mon Aug 11 01:47:36 2025 by rpki-client