$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft File: -S21ujUS5Gp82_tLNRS9b_hcjz0.mft (raw, json) Hash identifier: 3Tw1BLojVFQnDmFMMroztETcYP1tm1br6PmipK92wNw= Subject key identifier: D2:B9:26:04:A4:9F:14:5B:B6:99:47:A2:E8:A7:51:BC:20:F8:9F:16 Authority key identifier: F9:2D:B5:BA:35:12:E4:6A:7C:DB:FB:4B:35:14:BD:6F:F8:5C:8F:3D Certificate issuer: /CN=A9131A30/serialNumber=F92DB5BA3512E46A7CDBFB4B3514BD6FF85C8F3D Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-S21ujUS5Gp82_tLNRS9b_hcjz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft Manifest number: 0117 Signing time: Tue 05 Aug 2025 05:20:35 +0000 Manifest this update: Tue 05 Aug 2025 05:20:34 +0000 Manifest next update: Tue 12 Aug 2025 05:20:34 +0000 Files and hashes: 1: -S21ujUS5Gp82_tLNRS9b_hcjz0.crl (hash: dANbd/Yn9g6jO7Va/1lwcfc8Ro3YF4RlealvLssLgio=) 2: C3CCADD2CAF211EEBA58E81EC4F9AE02.roa (hash: 78U/w57PvT+FVEdRzkbgRL49bNVYISozUZOyQlDFcE4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.crl rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-S21ujUS5Gp82_tLNRS9b_hcjz0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 05:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A30, serialNumber=F92DB5BA3512E46A7CDBFB4B3514BD6FF85C8F3D Validity Not Before: Aug 5 05:20:34 2025 GMT Not After : Aug 12 05:20:34 2025 GMT Subject: CN=689194a2-ddd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:99:fd:86:f7:4e:33:c6:18:ae:c3:c8:3b:f7: 49:fc:41:cf:c7:da:cf:83:8b:24:da:85:17:2a:0c: 79:a1:f3:93:5c:d3:b7:4f:f4:5f:51:5e:f9:a0:44: 63:c0:5a:3e:2e:61:97:d8:0f:40:f9:9a:2d:5c:06: ac:c4:8f:c4:86:e6:54:1e:fb:e5:5d:93:74:ca:7c: 39:1f:53:ca:fb:7b:5d:e2:dc:f2:46:2d:6d:e8:4d: 55:fd:23:74:72:50:1b:48:74:4c:96:59:73:36:16: 72:7e:0d:c6:44:2c:79:23:92:d9:33:a0:a0:55:f2: 76:11:3e:20:1f:62:2a:62:44:6f:ad:5f:36:4b:9c: 37:a5:34:c8:a9:6a:63:00:16:7a:a7:6f:8b:72:3f: 85:0b:ad:0a:1e:21:95:a0:4e:8e:a7:76:67:f3:26: 27:0c:a0:b6:bd:e1:0a:50:c1:1c:c4:51:b2:94:4f: 96:47:33:d1:2d:d7:9b:42:fb:d1:65:bb:87:e5:f3: 77:19:3f:e9:cb:46:02:03:ab:f1:e1:02:83:de:f7: 79:c6:11:40:51:b3:89:b4:e7:89:a2:8a:f1:05:2c: 54:9a:f3:fc:3b:c1:15:19:2c:14:ae:de:81:c0:cb: 64:94:65:df:72:05:e3:16:4b:38:9c:dd:02:b3:88: be:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B9:26:04:A4:9F:14:5B:B6:99:47:A2:E8:A7:51:BC:20:F8:9F:16 X509v3 Authority Key Identifier: keyid:F9:2D:B5:BA:35:12:E4:6A:7C:DB:FB:4B:35:14:BD:6F:F8:5C:8F:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-S21ujUS5Gp82_tLNRS9b_hcjz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:71:21:b7:52:62:8f:f0:1c:c2:7c:4d:d4:85:0b:e0:b2:61: 02:d5:a3:52:d3:48:6d:4e:aa:e0:e2:f5:f7:67:c6:30:9a:f4: f4:be:aa:3f:2e:46:9f:9f:e4:77:c7:9d:18:f9:32:1f:fa:9d: a9:f4:c5:bb:7a:2b:8f:e8:60:73:eb:a3:08:dc:70:43:60:92: 25:65:20:e3:d3:fd:9d:36:9c:a5:12:2c:a9:e9:c8:8c:31:45: 6b:c4:e6:44:19:43:53:92:04:d1:98:40:59:5a:be:7c:ce:65: e3:25:a1:67:36:f0:79:a4:a2:c9:14:cf:ba:25:76:b6:30:fd: fe:7c:47:05:9a:40:9b:10:24:22:fc:84:65:1e:54:1e:11:aa: 2a:08:0f:7f:48:b5:e5:f3:9d:8f:07:00:ef:19:d5:79:85:90: 94:35:d6:c4:ce:1b:e9:7e:e3:6d:85:2f:db:69:de:04:75:94: de:a8:9b:c6:e0:8b:22:43:eb:7e:cf:fb:7c:38:d9:05:12:e1: 76:05:33:f0:60:c1:b5:15:a3:9d:9e:0b:58:06:78:4e:f8:8f: 10:41:43:76:14:25:05:c7:ac:7f:c5:66:c3:71:71:80:a4:dd: 13:f9:9a:b6:2b:aa:5e:52:ff:f1:84:0a:6e:73:03:ab:83:e6: 16:e5:3e:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMzAxMTAvBgNVBAUTKEY5MkRCNUJBMzUxMkU0NkE3Q0RCRkI0QjM1MTRCRDZG Rjg1QzhGM0QwHhcNMjUwODA1MDUyMDM0WhcNMjUwODEyMDUyMDM0WjAYMRYwFAYD VQQDEw02ODkxOTRhMi1kZGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5n9hvdOM8YYrsPIO/dJ/EHPx9rPg4sk2oUXKgx5ofOTXNO3T/RfUV75oERj wFo+LmGX2A9A+ZotXAasxI/EhuZUHvvlXZN0ynw5H1PK+3td4tzyRi1t6E1V/SN0 clAbSHRMlllzNhZyfg3GRCx5I5LZM6CgVfJ2ET4gH2IqYkRvrV82S5w3pTTIqWpj ABZ6p2+Lcj+FC60KHiGVoE6Op3Zn8yYnDKC2veEKUMEcxFGylE+WRzPRLdebQvvR ZbuH5fN3GT/py0YCA6vx4QKD3vd5xhFAUbOJtOeJoorxBSxUmvP8O8EVGSwUrt6B wMtklGXfcgXjFks4nN0Cs4i+wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNK5JgSk nxRbtplHouinUbwg+J8WMB8GA1UdIwQYMBaAFPkttbo1EuRqfNv7SzUUvW/4XI89 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEzMC80QjdBMTg2QUNB RjIxMUVFQUNEQjJFMUVDNEY5QUUwMi8tUzIxdWpVUzVHcDgyX3RMTlJTOWJfaGNq ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1TMjF1alVTNUdwODJfdExOUlM5Yl9oY2p6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEzMC80QjdBMTg2QUNBRjIxMUVFQUNEQjJFMUVDNEY5QUUwMi8tUzIxdWpVUzVH cDgyX3RMTlJTOWJfaGNqejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgcSG3UmKP8BzCfE3UhQvgsmEC1aNS00htTqrg4vX3Z8YwmvT0vqo/ Lkafn+R3x50Y+TIf+p2p9MW7eiuP6GBz66MI3HBDYJIlZSDj0/2dNpylEiyp6ciM MUVrxOZEGUNTkgTRmEBZWr58zmXjJaFnNvB5pKLJFM+6JXa2MP3+fEcFmkCbECQi /IRlHlQeEaoqCA9/SLXl852PBwDvGdV5hZCUNdbEzhvpfuNthS/bad4EdZTeqJvG 4IsiQ+t+z/t8ONkFEuF2BTPwYMG1FaOdngtYBnhO+I8QQUN2FCUFx6x/xWbDcXGA pN0T+Zq2K6peUv/xhApucwOrg+YW5T5p -----END CERTIFICATE-----Generated at Thu Aug 7 00:43:52 2025 by rpki-client