$ rpki-client -vvf rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft File: Tcfii1RvKgtTjozfgy2aofN8yOQ.mft (raw, json) Hash identifier: /XwO1uXo6WOMjD779yQ1Exm5kCK67fkvr++90zesFh8= Subject key identifier: 9B:20:53:26:C0:9F:47:F3:AB:52:72:74:61:BE:0C:C3:82:71:8F:77 Authority key identifier: 4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 Certificate issuer: /CN=A91423C1/serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft Manifest number: A0 Signing time: Fri 05 Sep 2025 04:34:51 +0000 Manifest this update: Fri 05 Sep 2025 04:34:50 +0000 Manifest next update: Fri 12 Sep 2025 04:34:50 +0000 Files and hashes: 1: Tcfii1RvKgtTjozfgy2aofN8yOQ.crl (hash: C13X05L07biuq61ASwksAvJ8Z/ma4v7ezHaM/tNE1AQ=) 2: 3E9ACB6EE29611EFAE82780AC4F9AE02.roa (hash: wyEjofnc8ole0121WyuEbUERePWJfuYpn1FXolEHMnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423C1, serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4 Validity Not Before: Sep 5 04:34:50 2025 GMT Not After : Sep 12 04:34:50 2025 GMT Subject: CN=68ba686b-abc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6e:87:d1:df:f1:a0:6a:35:d9:b5:e5:7c:4c: 0c:e3:89:7d:80:5f:54:24:25:23:aa:92:4f:4b:fc: e9:50:8f:a6:75:27:7c:38:8b:9c:56:2f:4d:30:28: 26:f9:ac:22:57:1b:3e:38:0b:df:08:fe:75:da:79: aa:e4:62:45:65:01:1f:fc:b4:0c:b1:67:8a:c2:18: b8:00:e1:6c:91:2a:f8:6e:2f:7a:c0:ab:4a:94:b4: 44:b2:53:7f:01:e0:4d:61:35:e4:32:a0:13:6f:cd: 7a:95:ab:fd:00:02:d1:93:51:b8:b1:9e:1c:95:92: 5a:ab:99:85:5e:bc:51:de:ef:c6:c9:c2:b1:5d:91: 2e:7b:a8:e6:6c:79:0d:3a:0a:d4:b6:c0:0e:f8:00: d9:cf:a5:4f:13:93:5e:fb:24:7d:23:93:93:57:19: a0:88:5b:61:de:cd:5d:fb:74:20:60:a0:00:88:a4: 2d:5d:ca:88:1f:b5:de:d1:6a:f3:9b:8d:8d:01:04: b1:6b:3b:35:b8:32:be:1f:32:f9:03:12:4d:02:a1: a1:5f:36:07:39:c5:af:ea:12:16:a1:0d:eb:b6:09: 7f:cc:af:71:05:30:e4:c8:b7:c7:bf:48:56:cb:70: 30:2f:c2:4b:df:cd:65:7e:61:d4:af:15:4a:8e:2d: be:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:20:53:26:C0:9F:47:F3:AB:52:72:74:61:BE:0C:C3:82:71:8F:77 X509v3 Authority Key Identifier: keyid:4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:0b:e0:e5:45:7d:80:ff:17:59:a6:2e:09:6a:77:0a:ee:fa: b0:71:c2:86:9f:6f:42:56:23:d2:fd:a1:7f:51:80:5f:ca:7e: 8d:19:77:ed:86:fa:27:99:d1:53:4c:9c:44:bf:03:40:e9:df: b8:5d:df:b0:c6:0f:23:fc:f6:00:83:15:44:c1:40:40:f8:c8: 2b:73:22:57:98:b4:25:d7:ff:ea:d3:d4:c3:82:04:4f:65:0b: 05:65:a1:be:9e:5a:35:ae:4d:eb:0a:a1:1c:26:e6:54:72:ce: 64:76:bb:b2:9d:f7:ab:c1:12:03:30:8a:d0:86:1a:6d:c4:78: 61:ff:7d:5e:a0:90:fd:b5:35:c1:38:6d:b2:24:63:c0:29:96: 8e:08:b0:fe:fa:9f:2d:2d:ad:1e:50:0c:db:70:4c:15:56:03: 84:4b:99:58:0f:fe:b9:40:47:c1:cb:e7:2c:ef:63:8c:43:a3: fb:8b:6a:0d:7e:b8:fc:1a:ed:8a:47:1b:4a:1e:2d:c5:a5:f2: 90:f7:db:c9:ff:d6:95:6a:09:7f:64:c0:a2:87:3a:98:d1:7f: 30:e0:c0:85:e9:75:ab:7a:33:94:d4:cc:07:cb:67:9e:0e:23: 31:61:c7:72:9a:9e:9a:9f:c2:ca:8e:17:de:b6:1f:43:95:d4: 51:ad:6e:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzQzExMTAvBgNVBAUTKDREQzdFMjhCNTQ2RjJBMEI1MzhFOENERjgzMkQ5QUEx RjM3Q0M4RTQwHhcNMjUwOTA1MDQzNDUwWhcNMjUwOTEyMDQzNDUwWjAYMRYwFAYD VQQDEw02OGJhNjg2Yi1hYmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3m6H0d/xoGo12bXlfEwM44l9gF9UJCUjqpJPS/zpUI+mdSd8OIucVi9NMCgm +awiVxs+OAvfCP512nmq5GJFZQEf/LQMsWeKwhi4AOFskSr4bi96wKtKlLREslN/ AeBNYTXkMqATb816lav9AALRk1G4sZ4clZJaq5mFXrxR3u/GycKxXZEue6jmbHkN OgrUtsAO+ADZz6VPE5Ne+yR9I5OTVxmgiFth3s1d+3QgYKAAiKQtXcqIH7Xe0Wrz m42NAQSxazs1uDK+HzL5AxJNAqGhXzYHOcWv6hIWoQ3rtgl/zK9xBTDkyLfHv0hW y3AwL8JL381lfmHUrxVKji2+/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsgUybA n0fzq1JydGG+DMOCcY93MB8GA1UdIwQYMBaAFE3H4otUbyoLU46M34MtmqHzfMjk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjNDMS9EMDMyMEVGOEJG NEYxMUVGQkNGNjg5NDRDNEY5QUUwMi9UY2ZpaTFSdktndFRqb3pmZ3kyYW9mTjh5 T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RjZmlpMVJ2S2d0VGpvemZneTJhb2ZOOHlPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjNDMS9EMDMyMEVGOEJGNEYxMUVGQkNGNjg5NDRDNEY5QUUwMi9UY2ZpaTFSdktn dFRqb3pmZ3kyYW9mTjh5T1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGC+DlRX2A/xdZpi4JancK7vqwccKGn29CViPS/aF/UYBfyn6NGXft hvonmdFTTJxEvwNA6d+4Xd+wxg8j/PYAgxVEwUBA+MgrcyJXmLQl1//q09TDggRP ZQsFZaG+nlo1rk3rCqEcJuZUcs5kdruynferwRIDMIrQhhptxHhh/31eoJD9tTXB OG2yJGPAKZaOCLD++p8tLa0eUAzbcEwVVgOES5lYD/65QEfBy+cs72OMQ6P7i2oN frj8Gu2KRxtKHi3FpfKQ99vJ/9aVagl/ZMCihzqY0X8w4MCF6XWrejOU1MwHy2ee DiMxYcdymp6an8LKjhfeth9DldRRrW70 -----END CERTIFICATE-----Generated at Sat Sep 6 21:10:12 2025 by rpki-client