$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: C69Mx3lTsKYwOTN0kyIBfsrAHdzo1cEJ3N6puBOkgxw= Subject key identifier: 06:8A:DD:A1:69:A0:92:37:FE:00:8D:48:C8:7F:FB:B1:4E:1B:5E:CF Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 0A5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 0A55 Signing time: Thu 04 Sep 2025 19:55:53 +0000 Manifest this update: Thu 04 Sep 2025 19:55:52 +0000 Manifest next update: Thu 11 Sep 2025 19:55:52 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: AI6G+yjjWq9+7SEOGasl3fVAJQkMuuIMajFLLdo0w50=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: 3RxABu3KC/9hSKHYQMzVVe4gdoAQgiDaudG41V9QJ3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 19:55:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2653 (0xa5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309, serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: Sep 4 19:55:52 2025 GMT Not After : Sep 11 19:55:52 2025 GMT Subject: CN=68b9eec8-cd15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:2c:dc:b0:23:10:5f:a9:5a:d8:ce:f2:22:2b: 83:a4:50:72:a1:9c:e6:3b:3d:4b:98:e8:8e:f4:e3: 88:80:28:53:e0:87:70:69:70:e5:6d:0f:41:f7:51: 2e:ec:dc:fc:36:cf:a3:f3:65:65:d0:9a:3b:7e:c1: e2:64:fb:46:19:af:f2:2e:49:e9:2b:b0:7e:5f:66: 26:ab:b0:18:7a:16:d5:89:26:dc:69:55:79:0f:e6: 05:c3:54:b2:b8:3a:87:14:61:51:10:7b:ff:bc:92: 18:3e:dd:b2:69:2a:b7:39:61:ca:10:50:a0:b0:e2: 99:a6:93:2f:34:e6:d3:88:19:a9:30:ed:8e:89:e8: ff:8f:83:4d:5a:12:67:d9:6b:37:56:ff:6e:eb:db: 17:8f:fe:56:89:ea:da:e0:d1:62:27:37:89:66:57: 86:08:54:c1:ec:69:a7:e4:55:94:cf:eb:4a:48:c7: 3d:14:80:25:e9:fb:e0:bb:93:71:da:d1:79:01:0c: af:7a:db:b9:93:c5:c3:73:7d:a7:33:dc:21:b1:72: be:43:2f:99:cc:c5:1a:65:2a:29:e4:40:ef:33:48: 7b:a2:53:f6:e4:5f:95:93:07:44:9a:11:58:7a:b0: 57:1f:ce:33:4f:59:9c:a8:14:c8:04:7a:75:9d:cf: b5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:8A:DD:A1:69:A0:92:37:FE:00:8D:48:C8:7F:FB:B1:4E:1B:5E:CF X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:91:ed:50:c2:44:ab:a1:03:cb:2a:c7:f3:7d:fa:c4:96:8d: 6c:af:ae:29:37:f2:53:96:e9:e3:b6:39:ea:93:51:9b:ac:6d: fe:89:a8:0a:06:b0:2e:f2:1e:25:53:ad:d4:bd:8f:9c:4f:17: 42:61:a0:1e:2c:0c:4f:ed:f3:32:c0:ef:78:fd:7c:ec:ef:b4: e2:74:cd:34:1c:a0:58:af:33:b3:05:5b:69:bc:5b:61:02:dd: 11:cd:a5:62:d1:b5:32:11:6c:eb:65:15:c9:98:37:9a:68:27: c5:06:bc:43:0c:b2:3e:b7:70:40:89:f2:ff:d7:23:03:c2:76: 90:e6:fc:9d:a4:a3:f0:bf:79:f8:35:fa:c8:87:9c:8b:d6:bb: 31:fe:0c:62:ab:bd:4e:72:fa:cf:85:00:2d:3e:5d:53:de:8e: 17:0c:9c:39:e3:58:3e:33:92:83:62:df:f5:41:a6:d6:be:55: d2:b5:0e:f3:5e:78:7c:0b:8c:47:fb:2f:f5:69:e5:94:fc:f2: 83:59:87:a3:0e:20:70:fd:20:da:23:c0:70:c6:8a:ab:e7:64: 4b:d9:30:2c:d5:8f:80:b0:56:03:75:8f:01:98:5b:a9:bf:85: 74:86:ec:bd:f2:da:bf:ac:15:30:63:5e:23:09:87:bb:e3:42: 8a:bf:83:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjUwOTA0MTk1NTUyWhcNMjUwOTExMTk1NTUyWjAYMRYwFAYD VQQDEw02OGI5ZWVjOC1jZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnCzcsCMQX6la2M7yIiuDpFByoZzmOz1LmOiO9OOIgChT4IdwaXDlbQ9B91Eu 7Nz8Ns+j82Vl0Jo7fsHiZPtGGa/yLknpK7B+X2Ymq7AYehbViSbcaVV5D+YFw1Sy uDqHFGFREHv/vJIYPt2yaSq3OWHKEFCgsOKZppMvNObTiBmpMO2Oiej/j4NNWhJn 2Ws3Vv9u69sXj/5Wiera4NFiJzeJZleGCFTB7Gmn5FWUz+tKSMc9FIAl6fvgu5Nx 2tF5AQyvetu5k8XDc32nM9whsXK+Qy+ZzMUaZSop5EDvM0h7olP25F+VkwdEmhFY erBXH84zT1mcqBTIBHp1nc+1wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAaK3aFp oJI3/gCNSMh/+7FOG17PMB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDke1QwkSroQPLKsfzffrElo1sr64pN/JTlunjtjnqk1GbrG3+iagK BrAu8h4lU63UvY+cTxdCYaAeLAxP7fMywO94/Xzs77TidM00HKBYrzOzBVtpvFth At0RzaVi0bUyEWzrZRXJmDeaaCfFBrxDDLI+t3BAifL/1yMDwnaQ5vydpKPwv3n4 NfrIh5yL1rsx/gxiq71OcvrPhQAtPl1T3o4XDJw541g+M5KDYt/1QabWvlXStQ7z Xnh8C4xH+y/1aeWU/PKDWYejDiBw/SDaI8Bwxoqr52RL2TAs1Y+AsFYDdY8BmFup v4V0huy98tq/rBUwY14jCYe740KKv4OA -----END CERTIFICATE-----Generated at Sat Sep 6 11:49:58 2025 by rpki-client