$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: KRvrkzJK8jwR4qzrwGm1H7WYLpg+oyG4OUrK4FYmcFs= Subject key identifier: 0C:56:A7:CB:83:37:62:B1:8B:F5:3B:2C:13:33:1F:04:29:AF:93:40 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 198D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 17AA Signing time: Sat 18 Oct 2025 17:20:18 +0000 Manifest this update: Sat 18 Oct 2025 17:20:17 +0000 Manifest next update: Sat 25 Oct 2025 17:20:17 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: 3UjsXNG/6TUnru9iJgLtWZVAqOU0jICIy3yvB+VtCmE=) 2: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 5uITBc+pZTop6KZh3NhbY8ifInIc97Y2n3CHN/qqt94=) 3: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: H2LNVWI/4SBtnLIxC+HsKb0Sn6SPu235wjCIk/88N90=) 4: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: lNqOJJYDQvLu7DRWfBEiDCTTNbz1juAgLIKu2ZnWJwo=) 5: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: dqGvsBo+O3A3ECQgQGmvroXEzldwim2Z97cn9HnwO7I=) 6: 47AAFC5A661311F09011712CC4F9AE02.roa (hash: xmwuYDXCfySwbUGaYydBrSMd0xgcEAUOjZPYHzZ7uJM=) 7: A865A1925B1611F083088661C4F9AE02.roa (hash: Rw9T99RuNwJAGQR3ACNuRpkBbGAU9I1LWh2/O8OeLqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6541 (0x198d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Oct 18 17:20:17 2025 GMT Not After : Oct 25 17:20:17 2025 GMT Subject: CN=68f3cc51-b678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ce:c3:88:44:09:b6:28:73:8f:c4:ca:ac:27: e8:be:83:cb:42:8d:23:2e:cb:a2:9a:23:8c:ca:23: bd:2f:cd:63:50:e4:eb:0c:b3:7a:97:cb:e0:cc:5e: 10:a9:2d:e8:d2:c8:3b:f3:f5:a9:32:2b:e5:9b:0d: 97:6f:d9:4c:59:cf:dc:65:0b:6c:54:99:04:32:ba: 15:ce:e4:f9:ca:df:ae:a9:c2:d0:5d:c9:61:1c:b7: 3a:3e:81:fd:79:39:1e:dc:52:d3:9b:1b:30:68:23: ef:e2:53:44:07:1c:80:5c:8e:e7:21:c1:a6:45:c6: 83:9f:2f:a0:ea:41:72:8f:1e:77:f3:c2:4e:ae:9a: 02:d0:05:71:30:63:fc:2d:92:97:3e:f1:6b:89:62: 32:62:51:b8:4b:70:60:c1:a0:ac:4a:1e:99:67:4d: 66:aa:be:3c:85:7b:ea:82:e2:cd:73:23:80:88:99: 2a:ce:d1:11:e2:62:85:dc:a4:dc:9a:eb:46:eb:f8: ac:ef:8c:82:5f:a6:7b:78:d0:9f:99:ef:2c:d3:3f: bc:c0:2b:db:2a:c6:93:6a:69:22:ed:67:16:23:98: 7a:aa:0e:16:e8:b0:e6:00:08:12:dd:98:e3:62:80: 04:2f:7b:ec:a6:34:4d:4e:f1:54:f5:0a:b0:df:b8: c5:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:56:A7:CB:83:37:62:B1:8B:F5:3B:2C:13:33:1F:04:29:AF:93:40 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:07:96:e6:60:a2:a4:e5:b6:41:d9:c6:bf:f7:aa:26:d8:d1: 68:a1:8e:73:d9:fe:19:f4:42:61:58:33:75:36:b2:31:7e:83: fd:79:6b:7d:fe:8a:f0:65:31:ef:71:ac:51:2f:ca:14:00:bb: 85:4f:35:f0:6f:04:2f:0b:17:31:7e:04:8e:1f:d9:86:9b:62: 8a:97:7b:4f:09:ea:ab:d6:56:ac:99:99:da:d0:24:db:05:80: 02:71:85:fd:18:ef:ce:6e:3a:b9:07:f9:0f:28:4e:41:ad:43: cb:7e:f5:ed:63:02:b2:c1:d5:29:ad:5d:31:2e:06:54:77:0a: fa:8e:4a:bc:5e:a0:20:32:66:42:b1:38:c2:a7:c7:49:7d:c1: ea:11:7b:cc:74:88:12:89:07:d2:a5:3c:a0:c8:04:60:66:75: 8a:bd:fd:e7:fd:94:3f:df:6a:12:68:3e:84:99:27:b6:99:23: 09:93:70:34:57:8f:de:14:0a:d9:e5:93:89:4d:f4:48:fc:be: e3:0e:22:f6:f9:11:e8:bc:3f:5d:10:85:32:68:7e:fc:c7:aa: 18:6b:ba:b9:60:c5:da:3b:23:80:43:2b:7f:44:d4:e7:16:f3: 50:85:8c:fb:87:46:7d:04:28:4c:d3:e6:ba:76:1b:ab:ef:1f: 4a:00:ff:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjUxMDE4MTcyMDE3WhcNMjUxMDI1MTcyMDE3WjAYMRYwFAYD VQQDEw02OGYzY2M1MS1iNjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz87DiEQJtihzj8TKrCfovoPLQo0jLsuimiOMyiO9L81jUOTrDLN6l8vgzF4Q qS3o0sg78/WpMivlmw2Xb9lMWc/cZQtsVJkEMroVzuT5yt+uqcLQXclhHLc6PoH9 eTke3FLTmxswaCPv4lNEBxyAXI7nIcGmRcaDny+g6kFyjx5388JOrpoC0AVxMGP8 LZKXPvFriWIyYlG4S3BgwaCsSh6ZZ01mqr48hXvqguLNcyOAiJkqztER4mKF3KTc mutG6/is74yCX6Z7eNCfme8s0z+8wCvbKsaTamki7WcWI5h6qg4W6LDmAAgS3Zjj YoAEL3vspjRNTvFU9Qqw37jFVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxWp8uD N2Kxi/U7LBMzHwQpr5NAMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoB5bmYKKk5bZB2ca/96om2NFooY5z2f4Z9EJhWDN1NrIxfoP9eWt9 /orwZTHvcaxRL8oUALuFTzXwbwQvCxcxfgSOH9mGm2KKl3tPCeqr1lasmZna0CTb BYACcYX9GO/Objq5B/kPKE5BrUPLfvXtYwKywdUprV0xLgZUdwr6jkq8XqAgMmZC sTjCp8dJfcHqEXvMdIgSiQfSpTygyARgZnWKvf3n/ZQ/32oSaD6EmSe2mSMJk3A0 V4/eFArZ5ZOJTfRI/L7jDiL2+RHovD9dEIUyaH78x6oYa7q5YMXaOyOAQyt/RNTn FvNQhYz7h0Z9BChM0+a6dhur7x9KAP9C -----END CERTIFICATE-----Generated at Sun Oct 19 15:08:36 2025 by rpki-client