$ rpki-client -vvf rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft File: Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft (raw, json) Hash identifier: Me1VINo1Y1RhiZqi16/04xDgHS2E9jGQfhqqLnKYckE= Subject key identifier: 7C:F2:86:90:18:A3:3D:7F:BF:F8:1A:B9:AB:67:9C:FC:0C:EF:F2:5B Authority key identifier: 4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 Certificate issuer: /CN=A91632D7/serialNumber=4E07378667EC79D53D650E524D1E8F98B08C28E1 Certificate serial: 0289 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft Manifest number: 027D Signing time: Fri 05 Sep 2025 02:04:44 +0000 Manifest this update: Fri 05 Sep 2025 02:04:44 +0000 Manifest next update: Fri 12 Sep 2025 02:04:44 +0000 Files and hashes: 1: Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl (hash: mvc3ChNhQEH9zbqyOfh4W8nW41FJRCQhj8adydGdNOM=) 2: 951A6E226D2E11F09539AE2BC4F9AE02.roa (hash: /9WwScNnwKtuTN07Iz2vc8yMRAg5E8y5OFcRZD0NbCM=) 3: 08B1833C1DE511F08883F35AC4F9AE02.roa (hash: qt/12QruPULSLrioUdGLIDziwQVI0MwcPO5Znz57Xok=) 4: 8696B3CA729111F0B120CD72C4F9AE02.roa (hash: ut+bDFNYD/cDGx/IefSywFEYVi8u+Nng1jjgZBD3c3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 02:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 649 (0x289) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91632D7, serialNumber=4E07378667EC79D53D650E524D1E8F98B08C28E1 Validity Not Before: Sep 5 02:04:44 2025 GMT Not After : Sep 12 02:04:44 2025 GMT Subject: CN=68ba453c-55f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:20:35:ec:60:8e:5b:89:b1:e2:6c:5c:21:ae: 38:c8:69:5c:8c:82:10:1d:e5:4c:e0:f2:f4:59:3d: 7b:b8:c1:f9:9e:ec:23:6a:45:02:e6:c5:53:79:6e: ed:33:47:f0:00:05:8d:8f:83:6e:2a:6d:d2:7d:05: b7:ab:16:45:b9:d1:42:98:fa:c1:72:77:3e:ab:d7: af:19:9a:c3:b9:ae:db:48:76:64:92:be:ef:8d:38: 3f:c2:39:ed:19:54:2f:7b:4f:d2:22:96:ca:a1:98: 76:af:b6:54:b2:72:79:76:37:02:20:32:66:cd:92: 00:a4:f2:4b:86:54:93:e6:94:e2:94:10:4f:e2:07: fd:1d:63:e6:65:64:9f:1e:12:08:18:39:71:94:e7: 14:70:5f:b3:51:47:be:ce:e5:0b:78:ea:83:9e:99: a6:f1:cc:b6:c2:2e:61:72:d5:de:5f:d8:c8:90:ea: 13:a0:33:0a:6a:84:28:48:1b:3e:66:b9:da:0f:f0: a3:ba:8c:f2:11:3f:65:53:15:3e:86:61:71:f0:fa: aa:4a:66:f6:1d:06:5d:1f:0c:a8:4e:a6:6e:d2:6e: 4f:a3:4a:56:8a:46:0c:ee:3f:76:34:c6:c4:66:15: 35:b3:61:1e:46:9a:2e:86:be:97:96:ea:44:e7:e6: 77:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:F2:86:90:18:A3:3D:7F:BF:F8:1A:B9:AB:67:9C:FC:0C:EF:F2:5B X509v3 Authority Key Identifier: keyid:4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:0e:06:07:12:68:56:ba:16:f2:2b:06:05:83:8e:1d:83:d1: 2d:a6:0e:29:95:28:68:ee:5f:87:32:03:3a:30:33:cb:92:42: 6f:a0:34:53:59:e8:d9:6a:1a:a4:dd:d0:1a:db:b5:6d:f9:b7: 32:26:3f:b6:92:5a:76:5a:d5:e1:03:e9:db:93:88:a0:65:70: 03:60:8d:5e:b2:aa:e8:fb:cb:83:08:45:af:5f:03:13:01:f0: 76:3e:88:c6:36:e1:bb:a4:6b:7c:ee:08:e8:59:91:9f:5e:6f: ea:c0:af:fb:21:c3:d9:03:bf:77:f1:9f:34:ee:f3:a9:c6:f0: ef:a2:31:12:af:8d:2a:ed:ec:b6:fc:b9:93:0c:3b:c6:7d:d9: 70:77:3f:96:17:1a:94:88:be:87:fc:7a:64:f0:3e:72:61:bc: 56:8d:39:77:43:17:d0:e0:37:7a:f2:21:f1:73:5e:7c:91:e3: c7:92:32:92:9a:a7:a3:87:5c:0b:07:32:df:8d:2f:c8:7e:1b: 14:cd:f6:d6:b7:14:e8:70:32:5a:e1:c1:e2:bc:93:9c:6d:4b: bb:ba:12:9c:be:ac:af:77:c3:5f:d3:a0:9c:6e:7a:3d:3e:2e: f5:44:9a:cd:d9:de:26:4e:d6:0c:09:68:71:06:72:7e:ca:cb: 38:0f:c6:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjMyRDcxMTAvBgNVBAUTKDRFMDczNzg2NjdFQzc5RDUzRDY1MEU1MjREMUU4Rjk4 QjA4QzI4RTEwHhcNMjUwOTA1MDIwNDQ0WhcNMjUwOTEyMDIwNDQ0WjAYMRYwFAYD VQQDEw02OGJhNDUzYy01NWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyA17GCOW4mx4mxcIa44yGlcjIIQHeVM4PL0WT17uMH5nuwjakUC5sVTeW7t M0fwAAWNj4NuKm3SfQW3qxZFudFCmPrBcnc+q9evGZrDua7bSHZkkr7vjTg/wjnt GVQve0/SIpbKoZh2r7ZUsnJ5djcCIDJmzZIApPJLhlST5pTilBBP4gf9HWPmZWSf HhIIGDlxlOcUcF+zUUe+zuULeOqDnpmm8cy2wi5hctXeX9jIkOoToDMKaoQoSBs+ ZrnaD/CjuozyET9lUxU+hmFx8PqqSmb2HQZdHwyoTqZu0m5Po0pWikYM7j92NMbE ZhU1s2EeRpouhr6XlupE5+Z3eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzyhpAY oz1/v/gauatnnPwM7/JbMB8GA1UdIwQYMBaAFE4HN4Zn7HnVPWUOUk0ej5iwjCjh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzJENy9GOTc5NTlDMjI0 MTcxMUVEOUMwQzcwMERDNEY5QUUwMi9UZ2MzaG1mc2VkVTlaUTVTVFI2UG1MQ01L T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RnYzNobWZzZWRVOVpRNVNUUjZQbUxDTUtPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzJENy9GOTc5NTlDMjI0MTcxMUVEOUMwQzcwMERDNEY5QUUwMi9UZ2MzaG1mc2Vk VTlaUTVTVFI2UG1MQ01LT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGDgYHEmhWuhbyKwYFg44dg9Etpg4plSho7l+HMgM6MDPLkkJvoDRT WejZahqk3dAa27Vt+bcyJj+2klp2WtXhA+nbk4igZXADYI1esqro+8uDCEWvXwMT AfB2PojGNuG7pGt87gjoWZGfXm/qwK/7IcPZA7938Z807vOpxvDvojESr40q7ey2 /LmTDDvGfdlwdz+WFxqUiL6H/Hpk8D5yYbxWjTl3QxfQ4Dd68iHxc158kePHkjKS mqejh1wLBzLfjS/IfhsUzfbWtxTocDJa4cHivJOcbUu7uhKcvqyvd8Nf06Ccbno9 Pi71RJrN2d4mTtYMCWhxBnJ+yss4D8YL -----END CERTIFICATE-----Generated at Sat Sep 6 16:02:09 2025 by rpki-client