$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: o66XQdJ0kYztRvzY3j4DC5MopFNFYauJNtp4T2Bkkfc= Subject key identifier: FE:BD:AC:97:A4:12:54:B2:76:D8:06:07:1F:C2:E8:8B:85:3C:59:43 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 192F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1768 Signing time: Wed 20 Aug 2025 16:57:56 +0000 Manifest this update: Wed 20 Aug 2025 16:57:55 +0000 Manifest next update: Wed 27 Aug 2025 16:57:55 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: NHgbj6baiwEbgVa1u2j0PRKGmYQkavqm2YJtfriTy60=) 2: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 5uITBc+pZTop6KZh3NhbY8ifInIc97Y2n3CHN/qqt94=) 3: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: H2LNVWI/4SBtnLIxC+HsKb0Sn6SPu235wjCIk/88N90=) 4: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: dqGvsBo+O3A3ECQgQGmvroXEzldwim2Z97cn9HnwO7I=) 5: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: lNqOJJYDQvLu7DRWfBEiDCTTNbz1juAgLIKu2ZnWJwo=) 6: 47AAFC5A661311F09011712CC4F9AE02.roa (hash: bKUs2FCkPNmMAj51EyqjN767TDd443hBV4PsE7lCiRw=) 7: A865A1925B1611F083088661C4F9AE02.roa (hash: Rw9T99RuNwJAGQR3ACNuRpkBbGAU9I1LWh2/O8OeLqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 16:57:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6447 (0x192f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Aug 20 16:57:55 2025 GMT Not After : Aug 27 16:57:55 2025 GMT Subject: CN=68a5fe94-e376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f0:55:fe:d6:40:d4:28:60:52:4b:ea:cb:b9: 89:d3:2c:93:ec:ae:ad:2f:6f:6e:8a:53:a7:74:a4: 4e:24:35:bc:15:bd:53:6f:8f:3f:38:70:e5:b1:9b: 9b:f0:59:9e:89:b9:be:c7:11:84:f7:58:6f:88:ca: 44:be:da:d2:39:67:0d:1d:79:7d:b6:3c:24:68:e8: 73:16:90:02:08:ed:6d:11:d9:e7:8b:5a:c0:56:45: 76:d1:3d:f0:07:db:42:51:d8:20:5e:85:6b:a7:a8: 94:7a:c6:68:66:fa:ba:8a:9a:51:46:cb:4e:25:e4: a1:9e:e9:13:29:3e:98:bc:ba:02:67:18:cf:d4:2a: c5:9e:02:8e:2b:c7:3f:13:fb:fe:a2:6f:cd:31:ad: 57:72:55:2d:47:4f:2d:77:3b:7e:68:49:10:6a:b8: 4c:fb:6d:d5:7a:18:8e:1d:87:2f:86:55:69:5b:89: 5c:60:b2:10:c0:93:75:5e:1d:f9:93:29:40:36:40: 51:14:f5:e8:d3:fe:33:8b:b4:32:49:e6:3b:33:98: ef:61:c8:0d:df:7e:79:8c:7b:52:3f:7d:1d:42:e6: 3b:45:e0:9a:c8:50:90:17:0c:2d:5f:12:c2:91:e4: 36:43:fa:0c:4d:bc:cd:29:87:40:96:f0:f0:3e:96: ca:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:BD:AC:97:A4:12:54:B2:76:D8:06:07:1F:C2:E8:8B:85:3C:59:43 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:12:d9:f5:40:8e:24:18:c2:66:cc:ca:b0:47:12:a4:20:fc: 80:78:3b:e5:7c:91:87:a8:74:c0:e8:17:71:60:aa:93:30:fd: 1c:57:40:b5:21:db:bd:1a:8c:3b:9c:58:a2:6f:d1:41:2d:e1: ed:83:72:f9:5e:2f:13:7f:19:ac:12:b6:e5:4a:bf:a0:28:46: a5:88:8e:da:05:da:1f:8d:4d:4d:1e:b0:1a:a4:51:9f:b4:f3: c2:f3:92:ec:95:1b:ef:b9:b3:48:5c:d3:3f:e8:d8:47:17:ad: f4:18:37:3e:d7:32:f4:9f:0a:d4:1a:ab:4e:8c:42:a6:07:7f: 5c:bf:9b:32:1d:29:22:6e:98:93:51:73:fe:9c:3e:46:dc:40: a2:a2:a2:e9:94:4b:2b:d7:51:e6:28:1e:ff:26:57:00:24:19: c6:59:54:c1:d2:bf:1e:61:d1:28:86:15:fb:32:ba:3e:83:2b: ee:9b:4d:5e:22:a1:16:b4:b0:c5:bc:d1:a5:1d:56:3b:7a:db: ee:aa:8f:2b:c7:5d:68:bc:89:db:a0:12:dc:d3:ba:8b:55:8a: 66:c3:8a:b6:41:12:06:8d:66:6e:67:17:45:d7:4c:9d:83:5d: d2:5f:70:bc:34:b4:13:2d:53:20:27:87:2f:31:ff:bb:09:6a: b2:04:da:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjUwODIwMTY1NzU1WhcNMjUwODI3MTY1NzU1WjAYMRYwFAYD VQQDEw02OGE1ZmU5NC1lMzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PBV/tZA1ChgUkvqy7mJ0yyT7K6tL29uilOndKROJDW8Fb1Tb48/OHDlsZub 8Fmeibm+xxGE91hviMpEvtrSOWcNHXl9tjwkaOhzFpACCO1tEdnni1rAVkV20T3w B9tCUdggXoVrp6iUesZoZvq6ippRRstOJeShnukTKT6YvLoCZxjP1CrFngKOK8c/ E/v+om/NMa1XclUtR08tdzt+aEkQarhM+23VehiOHYcvhlVpW4lcYLIQwJN1Xh35 kylANkBRFPXo0/4zi7QySeY7M5jvYcgN3355jHtSP30dQuY7ReCayFCQFwwtXxLC keQ2Q/oMTbzNKYdAlvDwPpbKAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP69rJek ElSydtgGBx/C6IuFPFlDMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjEtn1QI4kGMJmzMqwRxKkIPyAeDvlfJGHqHTA6BdxYKqTMP0cV0C1 Idu9Gow7nFiib9FBLeHtg3L5Xi8TfxmsErblSr+gKEaliI7aBdofjU1NHrAapFGf tPPC85LslRvvubNIXNM/6NhHF630GDc+1zL0nwrUGqtOjEKmB39cv5syHSkibpiT UXP+nD5G3ECioqLplEsr11HmKB7/JlcAJBnGWVTB0r8eYdEohhX7Mro+gyvum01e IqEWtLDFvNGlHVY7etvuqo8rx11ovInboBLc07qLVYpmw4q2QRIGjWZuZxdF10yd g13SX3C8NLQTLVMgJ4cvMf+7CWqyBNpn -----END CERTIFICATE-----Generated at Thu Aug 21 07:25:33 2025 by rpki-client