$ rpki-client -vvf rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft File: mTXGObPDUdvtWyk5lPcvgUzPm6k.mft (raw, json) Hash identifier: UbVX2a4C/Pva2SSthwssRDkm5+vX1Z97vLlwrkTPSqk= Subject key identifier: EA:80:7C:A6:58:37:D8:26:18:C8:39:10:22:6C:5E:3A:66:BA:DC:44 Authority key identifier: 99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 Certificate issuer: /CN=A9195D93/serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Certificate serial: 21C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft Manifest number: 21AD Signing time: Sun 10 Aug 2025 15:51:53 +0000 Manifest this update: Sun 10 Aug 2025 15:51:52 +0000 Manifest next update: Sun 17 Aug 2025 15:51:52 +0000 Files and hashes: 1: mTXGObPDUdvtWyk5lPcvgUzPm6k.crl (hash: wxUhG0ipCjigi0MW8BuD/WRmkR8fyx92zc5UqszdGyY=) 2: 5D2D29A2966D11EA96C50E81C4F9AE02.roa (hash: xq1A/DwEya72JUauXcCDXoZyXlE8M2olRWGCrYUUkIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8646 (0x21c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195D93, serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Validity Not Before: Aug 10 15:51:52 2025 GMT Not After : Aug 17 15:51:52 2025 GMT Subject: CN=6898c018-9738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:40:4b:a1:94:e0:48:46:0f:06:35:64:cf:9a: 47:68:64:ca:3a:57:ac:38:08:37:f6:83:51:60:06: ae:77:66:3e:8a:d1:33:4a:16:87:bb:11:f3:42:70: 60:6f:6d:3f:d9:27:e2:43:55:10:75:93:ad:4c:5e: 41:23:a6:26:12:3b:cc:08:1e:8e:6e:65:cc:94:8f: 5c:26:9a:51:a0:5f:a4:a0:e0:3c:9c:c7:5f:ea:cb: d2:a0:d6:56:f1:d6:86:78:be:7f:57:30:de:cb:0f: 99:ac:1d:b4:81:d3:55:8c:64:79:cc:39:78:08:6f: 0a:ec:92:07:47:5f:08:67:6f:98:d6:8a:90:cd:3f: 25:dc:c9:d9:40:0e:6a:95:5e:bd:7a:20:21:6b:aa: 78:cc:7b:52:d8:c3:cb:22:36:1b:ed:07:47:84:bd: de:b2:1a:d9:27:01:6c:8f:64:df:27:ab:e7:a1:cf: 41:df:df:7c:d7:6b:6c:51:f1:a4:47:e2:2d:78:a6: e3:1f:35:6b:4d:6b:f7:8b:8b:d9:3c:76:48:9f:16: a9:b3:1e:6a:33:fb:6e:c8:2f:b3:a2:43:65:56:76: 2f:66:9d:99:95:f8:bb:bf:cc:9f:70:e9:cd:08:dd: f6:93:f3:64:b2:c1:65:ac:8a:1c:61:e1:84:2c:bf: df:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:80:7C:A6:58:37:D8:26:18:C8:39:10:22:6C:5E:3A:66:BA:DC:44 X509v3 Authority Key Identifier: keyid:99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:6e:d2:51:d9:79:d4:2d:c8:c9:37:54:64:9c:d6:d8:0e:25: 50:d7:2a:50:29:d7:7b:4b:e0:89:4f:d4:8f:86:21:57:d5:d3: f4:b4:7b:2f:a2:2c:32:2e:16:e2:c7:e8:bc:4e:63:ce:b0:6a: a8:5d:b9:63:9f:d7:cf:69:7f:26:88:c3:c5:b1:83:9a:a0:4f: 4a:b7:ba:52:79:f0:46:69:91:eb:1d:87:ad:f9:21:2e:19:f0: 3b:5b:c9:50:29:34:9f:01:25:36:17:6d:ea:0b:b3:81:34:89: d9:86:8d:9f:ee:14:9f:11:08:1b:84:8c:8e:3d:96:9e:78:98: c0:a0:20:8e:70:a5:a4:fc:d7:1b:8a:45:95:6d:ab:8d:4d:dd: 35:ec:ad:18:29:59:2b:e3:54:6d:92:c3:6f:03:59:cc:63:63: 3c:2f:c2:f7:6f:7e:ba:0e:fe:76:80:4f:3b:01:fc:74:79:3a: 52:92:98:46:1b:6c:e0:af:98:07:97:e6:da:7d:dd:dd:6b:b9: 2b:13:30:f1:f3:ef:6f:bc:2d:78:b4:9f:3e:63:ad:bc:5d:ec: 01:ce:f0:57:c1:0d:9f:6a:ea:d0:3a:4a:fa:ed:53:32:2d:c9: 5d:76:37:e1:77:30:f7:42:54:3e:c5:e5:48:e7:b0:dc:e4:2e: ec:6e:38:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVEOTMxMTAvBgNVBAUTKDk5MzVDNjM5QjNDMzUxREJFRDVCMjkzOTk0RjcyRjgx NENDRjlCQTkwHhcNMjUwODEwMTU1MTUyWhcNMjUwODE3MTU1MTUyWjAYMRYwFAYD VQQDEw02ODk4YzAxOC05NzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEBLoZTgSEYPBjVkz5pHaGTKOlesOAg39oNRYAaud2Y+itEzShaHuxHzQnBg b20/2SfiQ1UQdZOtTF5BI6YmEjvMCB6ObmXMlI9cJppRoF+koOA8nMdf6svSoNZW 8daGeL5/VzDeyw+ZrB20gdNVjGR5zDl4CG8K7JIHR18IZ2+Y1oqQzT8l3MnZQA5q lV69eiAha6p4zHtS2MPLIjYb7QdHhL3eshrZJwFsj2TfJ6vnoc9B399812tsUfGk R+IteKbjHzVrTWv3i4vZPHZInxapsx5qM/tuyC+zokNlVnYvZp2Zlfi7v8yfcOnN CN32k/NkssFlrIocYeGELL/fDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOqAfKZY N9gmGMg5ECJsXjpmutxEMB8GA1UdIwQYMBaAFJk1xjmzw1Hb7VspOZT3L4FMz5up MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUQ5My81QzEwQTgxMERD NUQxMUU1QjMyNTQ1MkVDNEY5QUUwMi9tVFhHT2JQRFVkdnRXeWs1bFBjdmdVelBt NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21UWEdPYlBEVWR2dFd5azVsUGN2Z1V6UG02ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUQ5My81QzEwQTgxMERDNUQxMUU1QjMyNTQ1MkVDNEY5QUUwMi9tVFhHT2JQRFVk dnRXeWs1bFBjdmdVelBtNmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBybtJR2XnULcjJN1RknNbYDiVQ1ypQKdd7S+CJT9SPhiFX1dP0tHsv oiwyLhbix+i8TmPOsGqoXbljn9fPaX8miMPFsYOaoE9Kt7pSefBGaZHrHYet+SEu GfA7W8lQKTSfASU2F23qC7OBNInZho2f7hSfEQgbhIyOPZaeeJjAoCCOcKWk/Ncb ikWVbauNTd017K0YKVkr41RtksNvA1nMY2M8L8L3b366Dv52gE87Afx0eTpSkphG G2zgr5gHl+bafd3da7krEzDx8+9vvC14tJ8+Y628XewBzvBXwQ2faurQOkr67VMy LclddjfhdzD3QlQ+xeVI57Dc5C7sbjhM -----END CERTIFICATE-----Generated at Mon Aug 11 04:20:44 2025 by rpki-client