$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft File: tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft (raw, json) Hash identifier: OyiJ/nOzUqu8SJCcQOU2wc4602AvT6RGQcujNEvwvX8= Subject key identifier: 1A:BC:69:7E:4A:25:4C:8D:D1:D5:6D:3A:53:1B:91:79:97:3A:3E:34 Authority key identifier: B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C Certificate issuer: /CN=A9131711/serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft Manifest number: 0101 Signing time: Thu 19 Jun 2025 04:31:45 +0000 Manifest this update: Thu 19 Jun 2025 04:31:45 +0000 Manifest next update: Thu 26 Jun 2025 04:31:45 +0000 Files and hashes: 1: tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl (hash: IdkYLu/xhJnKoHggtopAwkMPey+b1O7nD0+tgn/hbUg=) 2: B2B006BAE3E911EEB845B268C4F9AE02.roa (hash: fj5an6uMsWFMPTZr6PrKep91XRX3rQER6UmH0deptJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Validity Not Before: Jun 19 04:31:45 2025 GMT Not After : Jun 26 04:31:45 2025 GMT Subject: CN=685392b1-3e01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b0:3c:d8:de:b8:c1:15:2b:ed:57:69:d0:38: d1:be:e8:82:3d:d7:90:4e:06:83:3c:d0:0b:e3:71: 07:46:24:2a:16:b4:70:a2:08:b8:78:31:f0:84:27: b0:bd:b1:7f:20:2f:9a:02:3e:a8:1d:bb:21:a2:7a: e5:5f:4a:86:7b:09:94:b7:0a:b0:0b:3d:0f:db:22: e4:e6:54:ab:5a:ba:89:f4:9b:c2:cf:2e:a1:de:80: 67:18:00:71:5e:d9:02:02:a1:29:58:ab:92:e3:b5: c7:72:ab:86:05:c6:b2:18:14:fc:6f:4a:b8:07:20: bb:58:c3:4d:ad:74:34:ae:0c:89:88:ff:45:f5:82: 90:d2:44:8e:e3:11:38:89:af:e2:c1:aa:97:ff:c0: d9:9f:3c:35:13:05:0c:b8:ba:da:1e:87:83:9b:1a: 0b:93:e8:81:97:f7:0c:ae:21:2e:c3:09:e0:16:75: 6d:a1:e1:e0:ca:ca:a0:47:92:6f:ca:0b:b2:cd:1f: d8:31:7b:54:eb:0c:10:38:ff:1c:61:6d:77:f8:5e: 39:e6:6a:c9:93:a0:3e:33:f2:55:ec:b6:f0:2b:31: 73:4d:da:c3:02:9d:f3:74:66:43:f5:df:5b:54:1e: 2b:e7:62:17:63:08:39:c2:d3:73:e1:b1:23:61:6e: 14:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:BC:69:7E:4A:25:4C:8D:D1:D5:6D:3A:53:1B:91:79:97:3A:3E:34 X509v3 Authority Key Identifier: keyid:B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:ec:28:d5:42:21:c3:94:9e:5b:fc:b0:dc:9d:1b:8b:30:d4: da:00:ed:78:32:43:6c:98:ac:d1:1e:d2:dd:fb:e1:23:e5:79: 57:f5:c0:b2:f6:42:5f:d3:5c:40:e9:ec:18:65:f7:e3:f2:87: 0f:3d:8d:a3:f7:a2:3f:68:ee:be:a8:a8:64:03:e9:98:29:87: eb:0e:d6:0e:f9:1c:70:69:31:31:d1:34:9d:0a:24:8f:8d:63: 80:1c:49:be:45:79:7a:0c:9f:01:d4:e8:cd:ac:87:c8:8e:27: ea:86:f2:58:00:a0:aa:f2:c5:79:85:db:a8:6e:e3:00:64:2d: 7f:3e:54:7c:31:45:20:c6:9d:8e:6b:11:5a:77:ed:2a:fb:6b: 48:82:72:fe:65:84:e7:23:a3:7b:be:8b:f8:5e:6c:cd:f1:1d: fe:06:60:a2:97:85:65:fb:91:9c:84:2e:f8:9c:65:0e:33:28: a8:49:4f:bc:2c:a0:c3:66:e5:43:28:f5:7e:ab:b9:f0:65:8b: c8:46:af:2e:d6:75:8a:a1:c4:09:24:ba:65:31:18:86:11:f4: 1c:7f:d7:9f:a1:8e:dd:73:3c:f3:79:81:a9:30:fa:fa:42:33: e1:16:e6:16:56:0f:f7:1f:62:56:87:b3:c1:a4:bb:92:d8:ce: b8:2c:7d:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEI1N0IyMDdGMEUxQzFCQTg3M0EwNzkzNTgyQzdBODEz NDA5ODY3NEMwHhcNMjUwNjE5MDQzMTQ1WhcNMjUwNjI2MDQzMTQ1WjAYMRYwFAYD VQQDEw02ODUzOTJiMS0zZTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4LA82N64wRUr7Vdp0DjRvuiCPdeQTgaDPNAL43EHRiQqFrRwogi4eDHwhCew vbF/IC+aAj6oHbshonrlX0qGewmUtwqwCz0P2yLk5lSrWrqJ9JvCzy6h3oBnGABx XtkCAqEpWKuS47XHcquGBcayGBT8b0q4ByC7WMNNrXQ0rgyJiP9F9YKQ0kSO4xE4 ia/iwaqX/8DZnzw1EwUMuLraHoeDmxoLk+iBl/cMriEuwwngFnVtoeHgysqgR5Jv yguyzR/YMXtU6wwQOP8cYW13+F455mrJk6A+M/JV7LbwKzFzTdrDAp3zdGZD9d9b VB4r52IXYwg5wtNz4bEjYW4UiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBq8aX5K JUyN0dVtOlMbkXmXOj40MB8GA1UdIwQYMBaAFLV7IH8OHBuoc6B5NYLHqBNAmGdM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS85RkREMkRBMEM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2aHpvSGsxZ3Nlb0UwQ1la MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RYc2dmdzRjRzZoem9IazFnc2VvRTBDWVowdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS85RkREMkRBMEM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2 aHpvSGsxZ3Nlb0UwQ1laMHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA37CjVQiHDlJ5b/LDcnRuLMNTaAO14MkNsmKzRHtLd++Ej5XlX9cCy 9kJf01xA6ewYZffj8ocPPY2j96I/aO6+qKhkA+mYKYfrDtYO+RxwaTEx0TSdCiSP jWOAHEm+RXl6DJ8B1OjNrIfIjifqhvJYAKCq8sV5hduobuMAZC1/PlR8MUUgxp2O axFad+0q+2tIgnL+ZYTnI6N7vov4XmzN8R3+BmCil4Vl+5GchC74nGUOMyioSU+8 LKDDZuVDKPV+q7nwZYvIRq8u1nWKocQJJLplMRiGEfQcf9efoY7dczzzeYGpMPr6 QjPhFuYWVg/3H2JWh7PBpLuS2M64LH1l -----END CERTIFICATE-----Generated at Thu Jun 19 23:43:00 2025 by rpki-client