$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: JSA9i4E1c2tVPKeU+TM5HfxqPQI9Lr0eHU8nvoXMHo0= Subject key identifier: 0D:80:F5:B5:FA:85:95:85:75:5A:BF:01:49:F8:8D:47:E5:73:69:9C Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 193C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1775 Signing time: Sun 14 Sep 2025 16:55:58 +0000 Manifest this update: Sun 14 Sep 2025 16:55:58 +0000 Manifest next update: Sun 21 Sep 2025 16:55:58 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: PzGK9eEUN0Q2rqhZt3OEAEeK5yIrEZm7KEauB4LqI+Q=) 2: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 5uITBc+pZTop6KZh3NhbY8ifInIc97Y2n3CHN/qqt94=) 3: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: H2LNVWI/4SBtnLIxC+HsKb0Sn6SPu235wjCIk/88N90=) 4: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: dqGvsBo+O3A3ECQgQGmvroXEzldwim2Z97cn9HnwO7I=) 5: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: lNqOJJYDQvLu7DRWfBEiDCTTNbz1juAgLIKu2ZnWJwo=) 6: 47AAFC5A661311F09011712CC4F9AE02.roa (hash: bKUs2FCkPNmMAj51EyqjN767TDd443hBV4PsE7lCiRw=) 7: A865A1925B1611F083088661C4F9AE02.roa (hash: Rw9T99RuNwJAGQR3ACNuRpkBbGAU9I1LWh2/O8OeLqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Sep 2025 16:55:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6460 (0x193c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Sep 14 16:55:58 2025 GMT Not After : Sep 21 16:55:58 2025 GMT Subject: CN=68c6f39e-ab9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e4:f2:20:0f:01:94:30:a2:6f:25:57:22:fe: b1:2e:ff:85:9e:d7:f6:d7:c5:f2:a1:f3:fb:f8:ac: e1:5d:a1:e1:74:6a:e7:3f:6e:de:88:10:6e:1f:52: 39:55:75:0b:98:e8:d8:2a:90:8c:69:29:27:07:0e: b4:8d:6b:87:50:4f:67:8b:02:50:70:62:c3:19:3e: ee:3e:ba:43:98:01:e1:df:26:88:c1:15:16:1e:7f: 2a:b7:56:0c:41:18:8e:a8:cc:79:e3:6e:3e:7d:a5: af:75:1c:d8:3a:fe:7b:df:6b:44:dc:03:c0:62:ae: 1e:99:7b:e9:12:fa:06:cb:e4:a2:08:18:08:ca:6c: 68:e6:49:aa:1b:89:dc:05:91:17:95:46:a9:d3:4b: b1:22:2d:bf:fa:77:63:9a:98:f9:28:4b:9c:92:45: c3:f3:26:ea:2f:ae:56:a8:df:3d:67:73:30:bd:e0: ec:69:8a:70:45:bd:13:f9:91:87:db:fc:66:24:a9: ee:74:04:9c:20:bf:35:10:cf:a7:95:99:8e:c9:b2: 0e:d5:b5:bf:d9:ef:3b:3f:30:23:23:29:68:13:8c: db:21:da:17:b9:9d:80:7b:fd:f1:00:a7:e4:db:45: d1:6d:42:ee:9d:42:a3:b6:61:89:fa:bd:bf:77:3a: 45:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:80:F5:B5:FA:85:95:85:75:5A:BF:01:49:F8:8D:47:E5:73:69:9C X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:d8:d8:2d:3a:29:db:f7:f2:27:b2:90:0c:51:11:9a:cb:b8: 57:20:a3:37:78:2e:28:1b:43:6d:13:3d:d0:72:e6:cf:3c:a0: e7:59:88:52:69:fa:b7:5b:48:90:f6:8e:38:4b:ef:79:a8:af: 1e:6b:e1:ec:ab:66:0b:dc:f8:7f:9b:1a:3d:c8:d5:89:28:52: 8b:24:7a:f8:21:4e:94:8f:30:68:99:ca:4b:d2:26:e1:4e:80: db:ab:6d:34:04:d9:50:d7:4c:a0:12:20:38:37:e9:c3:c2:65: 31:3b:f8:76:47:88:bf:c5:50:63:52:63:1b:83:b6:8d:b8:41: cd:c1:66:2a:17:f4:79:d9:dc:68:f1:69:c7:15:ff:86:76:e5: 91:71:0b:93:c6:b8:74:e4:2e:04:de:52:84:a2:68:de:2b:1d: fb:e8:70:f3:0a:2d:c1:c2:3e:ee:42:f1:42:49:51:8e:58:10: 8e:97:dd:13:87:53:a2:ee:b4:68:39:32:0d:a3:d2:4e:2c:7a: 69:de:9c:59:21:3a:ae:ef:68:dd:d9:ee:3e:f6:af:ff:0b:25: 1b:09:3e:36:1b:17:3a:9a:02:09:ce:a2:9a:8a:fa:a2:37:d1: 6c:57:23:56:51:ab:64:fa:8a:86:12:e9:d8:86:51:2f:78:5e: a2:38:2c:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjUwOTE0MTY1NTU4WhcNMjUwOTIxMTY1NTU4WjAYMRYwFAYD VQQDEw02OGM2ZjM5ZS1hYjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruTyIA8BlDCibyVXIv6xLv+Fntf218XyofP7+KzhXaHhdGrnP27eiBBuH1I5 VXULmOjYKpCMaSknBw60jWuHUE9niwJQcGLDGT7uPrpDmAHh3yaIwRUWHn8qt1YM QRiOqMx5424+faWvdRzYOv5732tE3APAYq4emXvpEvoGy+SiCBgIymxo5kmqG4nc BZEXlUap00uxIi2/+ndjmpj5KEuckkXD8ybqL65WqN89Z3MwveDsaYpwRb0T+ZGH 2/xmJKnudAScIL81EM+nlZmOybIO1bW/2e87PzAjIyloE4zbIdoXuZ2Ae/3xAKfk 20XRbULunUKjtmGJ+r2/dzpFPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2A9bX6 hZWFdVq/AUn4jUflc2mcMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu2NgtOinb9/InspAMURGay7hXIKM3eC4oG0NtEz3QcubPPKDnWYhS afq3W0iQ9o44S+95qK8ea+Hsq2YL3Ph/mxo9yNWJKFKLJHr4IU6UjzBomcpL0ibh ToDbq200BNlQ10ygEiA4N+nDwmUxO/h2R4i/xVBjUmMbg7aNuEHNwWYqF/R52dxo 8WnHFf+GduWRcQuTxrh05C4E3lKEomjeKx376HDzCi3Bwj7uQvFCSVGOWBCOl90T h1Oi7rRoOTINo9JOLHpp3pxZITqu72jd2e4+9q//CyUbCT42Gxc6mgIJzqKaivqi N9FsVyNWUatk+oqGEunYhlEveF6iOCyG -----END CERTIFICATE-----Generated at Tue Sep 16 13:04:32 2025 by rpki-client