$ rpki-client -vvf rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft File: TbOy41mbZG6fMK90pYxmePrx0rc.mft (raw, json) Hash identifier: sadWdkQlVQM2hTDOyVGaNMNN/tytq3+aDlBLS67wnmk= Subject key identifier: B0:9D:9B:7D:40:05:F0:1B:D8:84:F9:6D:6F:8F:94:71:7D:65:17:24 Authority key identifier: 4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 Certificate issuer: /CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft Manifest number: F1 Signing time: Fri 05 Sep 2025 05:41:40 +0000 Manifest this update: Fri 05 Sep 2025 05:41:40 +0000 Manifest next update: Fri 12 Sep 2025 05:41:40 +0000 Files and hashes: 1: TbOy41mbZG6fMK90pYxmePrx0rc.crl (hash: 4Wi0Cl3FJxSy8OW3VYBAo7DB41QiUIsjprFfU00foJ4=) 2: 206DB948214F11EFAB245D49C4F9AE02.roa (hash: Eb8AfFxkY2lunIzmPfp9ZyHAYk+RBb0a8BG4v3YCxDc=) 3: F2A90F6A86AE11EF999DAD2FC4F9AE02.roa (hash: Bg47WQyQqPO6vhS9f39oGO32kv0x8D/332r6YxTMVPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:41:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91698EC, serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Validity Not Before: Sep 5 05:41:40 2025 GMT Not After : Sep 12 05:41:40 2025 GMT Subject: CN=68ba7814-a540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c5:97:c7:78:21:08:b7:a3:c0:37:24:09:f8: c1:d0:fa:03:0b:35:7b:f9:2b:1e:90:a7:4f:ca:41: ef:d6:8b:2f:c9:d5:48:4e:98:89:38:58:c2:f8:17: 33:4f:67:bf:98:22:f0:7e:38:a5:b4:1d:2a:c3:b2: a7:ef:15:bc:55:c3:50:50:21:52:84:52:7a:4d:37: ab:ec:6d:fe:99:45:d5:b0:ad:57:7b:05:f7:bb:16: 1a:86:aa:ce:d6:c4:f3:75:eb:bf:21:9e:e4:c1:59: 67:d7:6b:03:be:32:25:9d:ca:0c:22:2f:f4:e9:04: 4c:c8:20:5b:49:2d:b5:09:ff:de:db:d6:9f:67:62: f4:09:fb:66:4f:07:ad:e4:38:20:c4:22:c8:71:d0: 12:aa:30:e9:c9:e8:08:e2:db:f3:c4:f4:2a:e4:d4: a6:8f:6f:31:d6:63:60:d1:b5:df:c6:a0:12:41:1b: 6c:a6:c3:8f:46:fa:dd:36:db:c4:a7:e8:8e:cb:5a: 94:ce:4a:96:19:e7:71:3b:8b:77:3a:74:c3:b6:49: 03:aa:e6:6c:9c:e5:b8:5d:f6:13:64:13:47:21:6f: 96:34:db:96:8a:da:d9:27:25:af:0e:9d:e4:8b:ff: 64:69:38:50:d3:ac:c6:62:6d:28:ca:5c:b5:1f:32: 18:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:9D:9B:7D:40:05:F0:1B:D8:84:F9:6D:6F:8F:94:71:7D:65:17:24 X509v3 Authority Key Identifier: keyid:4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:bb:7b:21:93:07:5b:ed:0e:2d:5a:94:d7:47:35:7a:99:74: eb:73:c2:25:bd:7c:72:c8:1f:0a:4a:af:cf:7e:b4:a2:7c:a9: 7a:62:10:e9:8a:9c:9f:40:8c:2c:c1:db:cf:79:33:ae:c9:b2: 26:33:50:30:b9:88:72:7b:a2:e2:eb:a3:ac:e8:7f:6e:83:df: 5f:f7:fe:9f:9e:b1:e0:81:51:9a:29:f5:88:09:e5:b3:7a:5b: 14:b6:9f:d2:ba:ea:17:a7:5b:05:f8:35:af:47:9b:cc:2b:03: e3:8e:9d:b8:00:c7:10:42:9b:cc:dd:2c:e9:fc:af:d1:b4:58: a9:c6:cd:79:3a:88:4f:46:95:9b:d6:65:8b:b5:91:86:54:8e: 97:54:a1:a6:42:a8:be:97:77:7c:94:cc:47:00:57:4d:9b:58: 0e:31:ee:66:17:4d:c4:69:41:aa:11:81:cf:6c:94:28:99:b2: a0:b8:fc:ba:3d:37:e7:5f:19:52:48:1f:61:1e:39:d3:b9:44: 0a:20:95:c5:3a:e4:40:23:f6:10:8b:61:cc:b6:f4:ea:e6:2e: 1d:c8:9c:91:1b:ee:17:55:a5:fe:ed:9b:05:7b:2e:ee:92:d1: 81:ea:de:15:67:92:27:44:95:93:0f:aa:04:76:8b:c6:f6:9b: bb:f7:1e:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk4RUMxMTAvBgNVBAUTKDREQjNCMkUzNTk5QjY0NkU5RjMwQUY3NEE1OEM2Njc4 RkFGMUQyQjcwHhcNMjUwOTA1MDU0MTQwWhcNMjUwOTEyMDU0MTQwWjAYMRYwFAYD VQQDEw02OGJhNzgxNC1hNTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMWXx3ghCLejwDckCfjB0PoDCzV7+SsekKdPykHv1osvydVITpiJOFjC+Bcz T2e/mCLwfjiltB0qw7Kn7xW8VcNQUCFShFJ6TTer7G3+mUXVsK1XewX3uxYahqrO 1sTzdeu/IZ7kwVln12sDvjIlncoMIi/06QRMyCBbSS21Cf/e29afZ2L0CftmTwet 5DggxCLIcdASqjDpyegI4tvzxPQq5NSmj28x1mNg0bXfxqASQRtspsOPRvrdNtvE p+iOy1qUzkqWGedxO4t3OnTDtkkDquZsnOW4XfYTZBNHIW+WNNuWitrZJyWvDp3k i/9kaThQ06zGYm0oyly1HzIYQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLCdm31A BfAb2IT5bW+PlHF9ZRckMB8GA1UdIwQYMBaAFE2zsuNZm2RunzCvdKWMZnj68dK3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OThFQy8zQThGODQxMDIx NDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpHNmZNSzkwcFl4bWVQcngw cmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RiT3k0MW1iWkc2Zk1LOTBwWXhtZVByeDByYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OThFQy8zQThGODQxMDIxNDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpH NmZNSzkwcFl4bWVQcngwcmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUu3shkwdb7Q4tWpTXRzV6mXTrc8IlvXxyyB8KSq/PfrSifKl6YhDp ipyfQIwswdvPeTOuybImM1AwuYhye6Li66Os6H9ug99f9/6fnrHggVGaKfWICeWz elsUtp/SuuoXp1sF+DWvR5vMKwPjjp24AMcQQpvM3Szp/K/RtFipxs15OohPRpWb 1mWLtZGGVI6XVKGmQqi+l3d8lMxHAFdNm1gOMe5mF03EaUGqEYHPbJQombKguPy6 PTfnXxlSSB9hHjnTuUQKIJXFOuRAI/YQi2HMtvTq5i4dyJyRG+4XVaX+7ZsFey7u ktGB6t4VZ5InRJWTD6oEdovG9pu79x6b -----END CERTIFICATE-----Generated at Sat Sep 6 21:13:22 2025 by rpki-client