$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft File: tnwkXksr7q0jwfBd0w_5B32HuOY.mft (raw, json) Hash identifier: eaI8a8K8V2cDoKkfoLOuVRDKglxlyFasJmOae1gXyU0= Subject key identifier: 59:9D:90:97:B8:A8:71:14:79:96:EB:B2:33:17:5A:2B:72:96:84:91 Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 12D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft Manifest number: 12CD Signing time: Thu 18 Sep 2025 17:12:37 +0000 Manifest this update: Thu 18 Sep 2025 17:12:37 +0000 Manifest next update: Thu 25 Sep 2025 17:12:37 +0000 Files and hashes: 1: tnwkXksr7q0jwfBd0w_5B32HuOY.crl (hash: OYG9Hb48d+PiJaTOHzOGd7m+xSDOTd89++MuXFCuhIg=) 2: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (hash: OXXzoi8LLX55gX/DfWbkzrbLh+Han7QgMUGkYSwbpGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4821 (0x12d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7, serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: Sep 18 17:12:37 2025 GMT Not After : Sep 25 17:12:37 2025 GMT Subject: CN=68cc3d85-1dd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:79:84:40:ab:a8:d0:f1:fc:1e:42:9b:cc:0c: 38:d1:22:5c:68:37:43:d3:2c:0a:c2:62:d4:a5:34: e7:10:d3:4c:15:4d:30:dd:d2:46:0f:d6:4e:bc:fd: fd:c1:ea:38:a1:cb:89:3b:04:5f:ce:d0:07:83:8e: 32:0a:4e:fa:27:95:05:63:26:90:98:d2:07:0a:29: 25:fd:72:e6:fe:ac:39:ca:3b:e5:dd:90:b9:29:84: 45:69:c4:3f:ac:dc:ee:17:12:e6:e2:72:3a:86:2b: c0:29:14:c3:4e:3e:6e:ce:a6:a0:70:fa:0e:bb:b8: fb:6d:f3:8e:88:5e:bb:82:d9:ea:f7:e7:23:4c:db: 02:ae:7b:ce:18:0d:61:89:e0:8c:b1:e9:40:5a:a2: 4c:a2:c8:80:41:a0:56:15:0e:63:6b:fc:d2:5f:80: 5c:a4:a5:32:5e:c7:ac:ff:19:cb:39:fb:6c:b3:b2: 50:75:95:45:9a:4d:53:a6:8a:ba:c1:60:f1:a2:4f: e4:3b:0b:24:8e:65:6c:6e:8a:14:35:fe:88:ba:f0: c7:cf:9e:06:4e:0c:50:6b:21:2d:2b:b6:ef:c4:f0: 9c:ce:7f:72:ed:71:93:28:2b:16:22:8a:9c:ae:2b: e4:18:b5:58:94:50:8d:87:98:a0:97:6c:5d:54:83: 14:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:9D:90:97:B8:A8:71:14:79:96:EB:B2:33:17:5A:2B:72:96:84:91 X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:58:77:06:d6:c3:bf:46:ef:2e:d0:6f:5c:23:3f:42:d0:b8: fb:d5:e2:42:94:9a:90:46:52:91:36:c8:64:6a:60:01:2a:39: be:82:d7:28:0b:d5:0a:58:0d:d5:d0:78:df:4a:d6:1c:ae:55: a1:09:41:3d:71:b9:35:cf:af:45:bd:ac:60:3c:d9:9f:db:d3: 38:7c:12:a0:ab:ce:22:5f:cb:85:68:04:c8:b5:e5:80:f0:de: 0d:0b:ec:42:a0:35:12:ca:34:72:dc:85:cc:9e:eb:36:78:43: 08:0a:fa:da:53:aa:d7:62:09:f5:2f:90:cd:39:78:be:7d:7f: 73:92:ae:40:d0:fe:e3:c3:60:5b:cb:7c:3e:50:47:93:77:fb: c6:2d:17:93:1a:2c:99:b4:c1:3e:33:94:20:a7:f7:2a:4a:ad: b3:28:fa:bf:89:81:fb:5e:74:47:a2:99:81:34:54:d9:5e:39: ef:78:f8:83:78:7c:77:f1:84:77:70:85:be:1d:ad:0a:af:22: 6e:3b:10:d6:69:c9:71:2b:43:e5:b9:08:43:d0:9f:ab:77:06: e2:22:d8:df:94:28:0e:42:c3:72:1e:95:d8:4d:37:87:ba:4f: a7:ce:31:1d:df:32:ab:79:e9:9a:e3:49:d6:3f:26:d4:7c:1a: 79:87:c3:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjUwOTE4MTcxMjM3WhcNMjUwOTI1MTcxMjM3WjAYMRYwFAYD VQQDEw02OGNjM2Q4NS0xZGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6HmEQKuo0PH8HkKbzAw40SJcaDdD0ywKwmLUpTTnENNMFU0w3dJGD9ZOvP39 weo4ocuJOwRfztAHg44yCk76J5UFYyaQmNIHCikl/XLm/qw5yjvl3ZC5KYRFacQ/ rNzuFxLm4nI6hivAKRTDTj5uzqagcPoOu7j7bfOOiF67gtnq9+cjTNsCrnvOGA1h ieCMselAWqJMosiAQaBWFQ5ja/zSX4BcpKUyXses/xnLOftss7JQdZVFmk1Tpoq6 wWDxok/kOwskjmVsbooUNf6IuvDHz54GTgxQayEtK7bvxPCczn9y7XGTKCsWIoqc rivkGLVYlFCNh5igl2xdVIMUEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFmdkJe4 qHEUeZbrsjMXWityloSRMB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZDNy9DODU2RDZDNEM2QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdx MGp3ZkJkMHdfNUIzMkh1T1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmWHcG1sO/Ru8u0G9cIz9C0Lj71eJClJqQRlKRNshkamABKjm+gtco C9UKWA3V0HjfStYcrlWhCUE9cbk1z69FvaxgPNmf29M4fBKgq84iX8uFaATIteWA 8N4NC+xCoDUSyjRy3IXMnus2eEMICvraU6rXYgn1L5DNOXi+fX9zkq5A0P7jw2Bb y3w+UEeTd/vGLReTGiyZtME+M5Qgp/cqSq2zKPq/iYH7XnRHopmBNFTZXjnvePiD eHx38YR3cIW+Ha0KryJuOxDWaclxK0PluQhD0J+rdwbiItjflCgOQsNyHpXYTTeH uk+nzjEd3zKreema40nWPybUfBp5h8Mj -----END CERTIFICATE-----Generated at Thu Sep 18 23:29:41 2025 by rpki-client