$ rpki-client -vvf rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft File: TzFe71rLLtp6NynnnhNZkMAecHQ.mft (raw, json) Hash identifier: yg5smhua5OQLUBxpSkvwDrgzd8aiKB52wrLRGk6L1n8= Subject key identifier: BC:7C:18:98:5A:76:B3:63:56:72:7E:E0:B1:59:AD:21:E9:2B:EE:15 Authority key identifier: 4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 Certificate issuer: /CN=A91957C9/serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Certificate serial: 0E4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft Manifest number: 0E43 Signing time: Thu 18 Sep 2025 17:56:46 +0000 Manifest this update: Thu 18 Sep 2025 17:56:45 +0000 Manifest next update: Thu 25 Sep 2025 17:56:45 +0000 Files and hashes: 1: TzFe71rLLtp6NynnnhNZkMAecHQ.crl (hash: 0QhNAnl8NrCiFOO2qvVSTJhoGclNelKOf6FWallLyxs=) 2: B55EC19EAC2B11E996F6E511C4F9AE02.roa (hash: Kmbnqjt+FsbQjmxP1orKor9zYnpCPWPxfhoKQqbWYu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3663 (0xe4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957C9, serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Validity Not Before: Sep 18 17:56:45 2025 GMT Not After : Sep 25 17:56:45 2025 GMT Subject: CN=68cc47dd-ae96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cf:3c:79:51:6d:06:1c:f6:1d:22:6a:c4:cf: c6:5c:40:e1:b2:ca:9f:3a:fd:9a:13:f5:17:ca:a6: a8:04:8b:5c:ad:5a:9c:7e:ff:bd:40:2f:a5:fe:64: 6e:b8:fb:14:c4:5e:0f:37:96:c2:2b:69:82:05:94: d2:6e:cb:a6:05:5b:ed:16:f5:3b:0c:2b:2c:12:4c: 79:8f:ec:6e:f1:29:cb:64:ff:28:36:72:b2:d4:69: 60:d6:e0:03:16:1d:96:d8:79:65:88:3f:36:1e:30: 3d:62:ab:db:cc:e2:ae:f5:6c:ef:ea:22:31:64:e9: e3:63:cd:02:3d:f5:22:76:f4:12:f5:d5:8c:8a:21: e2:22:e1:92:f5:e0:51:3a:78:3e:a1:cf:48:d1:89: 3e:f4:a7:82:77:1c:45:ab:92:20:97:5d:3a:ae:01: 9b:b2:73:00:fe:24:3c:ca:b3:18:0a:f8:02:26:ee: 24:bf:d0:fa:3c:3f:a8:21:7a:09:78:93:49:ad:70: a1:b0:b8:1c:93:e1:cc:c1:44:14:73:69:62:f4:2a: 72:cd:98:0d:b6:bf:95:9c:41:f5:7a:da:db:1a:9f: 54:35:77:0f:60:9f:c4:79:1b:e9:20:fa:b8:5c:ea: 7a:a2:ef:b9:ca:1f:65:8d:73:81:4e:01:92:36:7b: b3:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:7C:18:98:5A:76:B3:63:56:72:7E:E0:B1:59:AD:21:E9:2B:EE:15 X509v3 Authority Key Identifier: keyid:4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:19:64:1e:da:5b:e6:88:87:b4:e0:36:29:80:62:f4:c5:1f: 48:e4:58:da:74:40:da:9e:55:4f:43:ef:51:1b:93:af:14:b5: a2:b4:2e:c6:ec:3f:75:37:09:29:75:80:6d:f1:82:61:ea:84: 83:4a:af:5a:45:10:bb:83:ee:c4:0e:c3:53:2d:ec:33:94:97: 7f:84:9a:27:1b:d5:d8:b5:ce:91:85:50:06:09:06:62:a3:f5: 5b:ed:75:d6:a0:13:43:5c:c0:23:b8:b9:f6:1a:89:25:87:b0: 97:69:fc:0f:4b:bf:32:35:4d:fe:95:f4:60:d5:a9:5a:97:40: e3:b5:62:37:0c:4d:45:e5:c8:83:b5:1d:d8:50:fa:e8:16:7a: c9:98:aa:d9:b8:a4:6d:24:8e:35:c9:32:ea:7d:4e:64:34:aa: 03:26:d2:bc:97:66:ca:89:ef:9e:20:77:50:77:1e:e6:36:19: 99:02:48:ab:81:e2:3f:b1:29:4a:6f:6a:50:2f:f8:7a:87:f2: 9b:00:d0:44:45:d0:61:d8:2d:ea:bd:67:7f:64:36:8c:07:6d: bf:60:1d:e8:30:d3:6a:1b:18:32:96:f3:00:a6:4a:8f:1e:5a: e5:bb:8c:17:f8:1b:3f:13:d2:99:4e:98:89:07:61:56:26:1c: 70:d1:22:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3QzkxMTAvBgNVBAUTKDRGMzE1RUVGNUFDQjJFREE3QTM3MjlFNzlFMTM1OTkw QzAxRTcwNzQwHhcNMjUwOTE4MTc1NjQ1WhcNMjUwOTI1MTc1NjQ1WjAYMRYwFAYD VQQDEw02OGNjNDdkZC1hZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0M88eVFtBhz2HSJqxM/GXEDhssqfOv2aE/UXyqaoBItcrVqcfv+9QC+l/mRu uPsUxF4PN5bCK2mCBZTSbsumBVvtFvU7DCssEkx5j+xu8SnLZP8oNnKy1Glg1uAD Fh2W2HlliD82HjA9YqvbzOKu9Wzv6iIxZOnjY80CPfUidvQS9dWMiiHiIuGS9eBR Ong+oc9I0Yk+9KeCdxxFq5Igl106rgGbsnMA/iQ8yrMYCvgCJu4kv9D6PD+oIXoJ eJNJrXChsLgck+HMwUQUc2li9CpyzZgNtr+VnEH1etrbGp9UNXcPYJ/EeRvpIPq4 XOp6ou+5yh9ljXOBTgGSNnuz/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLx8GJha drNjVnJ+4LFZrSHpK+4VMB8GA1UdIwQYMBaAFE8xXu9ayy7aejcp554TWZDAHnB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdDOS9DMzU5RTc1RUFD MTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0cDZOeW5ubmhOWmtNQWVj SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R6RmU3MXJMTHRwNk55bm5uaE5aa01BZWNIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdDOS9DMzU5RTc1RUFDMTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0 cDZOeW5ubmhOWmtNQWVjSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbGWQe2lvmiIe04DYpgGL0xR9I5FjadEDanlVPQ+9RG5OvFLWitC7G 7D91NwkpdYBt8YJh6oSDSq9aRRC7g+7EDsNTLewzlJd/hJonG9XYtc6RhVAGCQZi o/Vb7XXWoBNDXMAjuLn2Goklh7CXafwPS78yNU3+lfRg1alal0DjtWI3DE1F5ciD tR3YUProFnrJmKrZuKRtJI41yTLqfU5kNKoDJtK8l2bKie+eIHdQdx7mNhmZAkir geI/sSlKb2pQL/h6h/KbANBERdBh2C3qvWd/ZDaMB22/YB3oMNNqGxgylvMApkqP Hlrlu4wX+Bs/E9KZTpiJB2FWJhxw0SJD -----END CERTIFICATE-----Generated at Fri Sep 19 00:38:56 2025 by rpki-client