$ rpki-client -vvf rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft File: mTXGObPDUdvtWyk5lPcvgUzPm6k.mft (raw, json) Hash identifier: HPT9Bx7tnn9tLvHwTATmGaTvayoplOlNb7hpFp6AmSg= Subject key identifier: BE:15:33:74:5C:B7:81:E6:1C:D9:91:B8:AC:67:6D:C7:29:7F:C6:48 Authority key identifier: 99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 Certificate issuer: /CN=A9195D93/serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Certificate serial: 21A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft Manifest number: 2190 Signing time: Sat 14 Jun 2025 15:52:45 +0000 Manifest this update: Sat 14 Jun 2025 15:52:45 +0000 Manifest next update: Sat 21 Jun 2025 15:52:45 +0000 Files and hashes: 1: mTXGObPDUdvtWyk5lPcvgUzPm6k.crl (hash: iauitnxkE9wBcAZt8bBc6/hoVDh07VfgsYzgsD4xafc=) 2: 5D2D29A2966D11EA96C50E81C4F9AE02.roa (hash: xq1A/DwEya72JUauXcCDXoZyXlE8M2olRWGCrYUUkIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8617 (0x21a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195D93, serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Validity Not Before: Jun 14 15:52:45 2025 GMT Not After : Jun 21 15:52:45 2025 GMT Subject: CN=684d9acd-5a0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:04:c5:69:19:4d:fb:f7:6b:bc:33:70:67:66: 08:d3:10:7d:ff:a5:18:4c:9a:80:f2:82:d3:93:56: a3:da:36:98:de:35:bb:5b:58:33:62:3f:a0:04:6a: d8:9a:7f:22:3f:61:ad:1a:09:62:e7:a4:a1:37:99: fd:fb:ae:74:36:4c:07:fa:2f:c0:0a:ee:26:4d:95: fd:04:d3:e0:b7:0e:5c:f9:d6:45:d6:b4:17:9c:9d: 5f:88:71:43:2a:0b:a3:8d:4b:e6:82:d9:70:94:91: 23:76:b9:70:6c:81:75:56:89:86:55:4a:7c:f3:38: c5:c2:b3:a3:59:39:28:86:36:0d:01:97:4a:7e:9c: 82:22:99:a9:75:0f:b3:87:ce:4b:7f:f4:92:90:70: 4d:37:04:94:de:9d:13:8f:48:53:be:95:d2:cb:73: 70:85:d5:18:18:c2:35:14:89:ba:6d:d4:ee:be:62: f7:ad:1a:fd:21:82:87:61:ae:67:f0:6f:c1:23:28: 57:08:10:bb:80:a5:54:b7:5f:a4:24:9c:88:7f:e2: b2:39:f1:89:e5:fd:55:a3:76:e3:73:e9:ad:4e:0a: 16:c0:fe:10:a6:e0:be:a5:c1:37:b1:89:66:1d:99: 85:b1:4c:58:50:e0:cc:b9:dc:ba:87:8e:db:c3:86: 2c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:15:33:74:5C:B7:81:E6:1C:D9:91:B8:AC:67:6D:C7:29:7F:C6:48 X509v3 Authority Key Identifier: keyid:99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:12:9f:e0:f0:1c:09:1e:0f:03:ca:13:f4:be:bd:33:23:a1: 4d:8c:08:55:ce:ff:d0:99:70:04:f6:76:ba:b4:4d:bf:5d:b8: 7d:cd:cc:87:e5:b8:5f:2e:1a:bd:39:17:9b:b0:01:01:9c:45: b6:b7:d4:c8:18:07:90:ac:92:5c:61:68:14:51:39:b2:dc:fc: 97:b2:b7:9a:46:12:db:f4:e8:7d:5c:6e:d0:aa:54:ad:2a:03: 22:34:78:29:3b:ed:e4:d8:5f:92:f4:c2:5a:fe:7a:0f:4a:b7: 6e:13:e3:3d:19:03:eb:39:03:48:0f:26:89:c0:8e:7d:d6:cf: b0:6e:9c:f4:00:92:65:90:2c:c3:bf:b9:1f:e7:10:7f:34:9b: 3a:f7:75:af:ca:1d:dc:da:96:1a:df:d3:fd:d2:72:e9:15:20: d5:4a:fd:f0:1d:10:90:c0:4b:f0:ae:92:3b:16:16:8c:d7:a9: 41:68:49:06:25:de:82:cc:7a:89:bb:5a:f8:5f:1e:a4:bf:19: 17:23:ab:60:f1:04:e9:4f:c7:c0:d6:cc:57:78:24:62:25:04: dc:e0:69:95:d8:f7:8a:8c:53:b0:a4:65:96:b5:c1:a7:1c:36: 59:66:1c:45:f9:e6:5c:57:fa:3e:e5:19:4c:27:74:44:95:61: 47:ac:98:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVEOTMxMTAvBgNVBAUTKDk5MzVDNjM5QjNDMzUxREJFRDVCMjkzOTk0RjcyRjgx NENDRjlCQTkwHhcNMjUwNjE0MTU1MjQ1WhcNMjUwNjIxMTU1MjQ1WjAYMRYwFAYD VQQDEw02ODRkOWFjZC01YTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9wTFaRlN+/drvDNwZ2YI0xB9/6UYTJqA8oLTk1aj2jaY3jW7W1gzYj+gBGrY mn8iP2GtGgli56ShN5n9+650NkwH+i/ACu4mTZX9BNPgtw5c+dZF1rQXnJ1fiHFD KgujjUvmgtlwlJEjdrlwbIF1VomGVUp88zjFwrOjWTkohjYNAZdKfpyCIpmpdQ+z h85Lf/SSkHBNNwSU3p0Tj0hTvpXSy3NwhdUYGMI1FIm6bdTuvmL3rRr9IYKHYa5n 8G/BIyhXCBC7gKVUt1+kJJyIf+KyOfGJ5f1Vo3bjc+mtTgoWwP4QpuC+pcE3sYlm HZmFsUxYUODMudy6h47bw4YspwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4VM3Rc t4HmHNmRuKxnbccpf8ZIMB8GA1UdIwQYMBaAFJk1xjmzw1Hb7VspOZT3L4FMz5up MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUQ5My81QzEwQTgxMERD NUQxMUU1QjMyNTQ1MkVDNEY5QUUwMi9tVFhHT2JQRFVkdnRXeWs1bFBjdmdVelBt NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21UWEdPYlBEVWR2dFd5azVsUGN2Z1V6UG02ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUQ5My81QzEwQTgxMERDNUQxMUU1QjMyNTQ1MkVDNEY5QUUwMi9tVFhHT2JQRFVk dnRXeWs1bFBjdmdVelBtNmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVEp/g8BwJHg8DyhP0vr0zI6FNjAhVzv/QmXAE9na6tE2/Xbh9zcyH 5bhfLhq9ORebsAEBnEW2t9TIGAeQrJJcYWgUUTmy3PyXsreaRhLb9Oh9XG7QqlSt KgMiNHgpO+3k2F+S9MJa/noPSrduE+M9GQPrOQNIDyaJwI591s+wbpz0AJJlkCzD v7kf5xB/NJs693Wvyh3c2pYa39P90nLpFSDVSv3wHRCQwEvwrpI7FhaM16lBaEkG Jd6CzHqJu1r4Xx6kvxkXI6tg8QTpT8fA1sxXeCRiJQTc4GmV2PeKjFOwpGWWtcGn HDZZZhxF+eZcV/o+5RlMJ3RElWFHrJhh -----END CERTIFICATE-----Generated at Sun Jun 15 10:24:44 2025 by rpki-client