$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft File: tAgYFca67ZihzJUKxvoQvGAFiQI.mft (raw, json) Hash identifier: RqYfBa+MJZUFcseWoYzGxhjH05fSAhax3JWc3+5BMQs= Subject key identifier: 9B:A0:BE:EF:F9:20:3B:84:ED:12:42:B9:F8:E7:10:20:7B:B9:00:A4 Authority key identifier: B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 Certificate issuer: /CN=A91A3F5D/serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft Manifest number: 0105 Signing time: Sun 07 Sep 2025 05:33:30 +0000 Manifest this update: Sun 07 Sep 2025 05:33:29 +0000 Manifest next update: Sun 14 Sep 2025 05:33:29 +0000 Files and hashes: 1: tAgYFca67ZihzJUKxvoQvGAFiQI.crl (hash: AIveNDb9KyHRu54HvWJzriajMWjegO38C400IaJLqR8=) 2: C27BAE1E63B411EF9A87155DC4F9AE02.roa (hash: SSYQhoePXSEZdBWsz2dSUFdjtoPBSwBZmvZLvzmRmE0=) 3: 04B0D250076211EFB14D3B12C4F9AE02.roa (hash: P3/wZ7DQvbJJfKWvdajqCfHfPIC9vT8MvrKGyjWYukc=) 4: 052FFA76076211EFB14D3B12C4F9AE02.roa (hash: ZSCw86aRTNxpcp5h59Ua7FuiYhnQ7JZYo+fxXzI0qEo=) 5: 03DAC9E4076211EFB14D3B12C4F9AE02.roa (hash: 81XCmtMAkz8d5MFKkbARa3r3fmwCBxTjGKLV+BXxDFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3F5D, serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Validity Not Before: Sep 7 05:33:29 2025 GMT Not After : Sep 14 05:33:29 2025 GMT Subject: CN=68bd1929-4df5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:07:3a:10:c8:a8:ae:b7:cc:4e:eb:50:28:01: 1a:a2:19:a8:d6:e8:7d:86:78:87:06:6e:c8:a8:dd: e6:c9:6d:56:ba:87:b6:66:c8:bc:51:06:04:ec:05: bc:63:b0:82:88:31:ee:93:0d:16:ae:81:6f:7f:3e: ac:1a:61:14:33:4f:ed:2a:78:6b:2e:7d:37:a4:9f: fb:49:17:0d:ac:cf:ec:58:1b:a4:98:82:16:bc:2a: 47:f8:a2:94:1e:69:5e:a9:9d:59:bf:fe:74:49:bf: 92:c4:59:4d:f4:a3:0d:18:30:ff:f9:f0:38:0a:c9: a0:94:e8:ad:84:03:06:38:c6:c0:77:58:be:35:d3: cd:87:8b:fe:7e:b1:bb:7d:6c:1d:a3:a9:ec:28:73: 01:9f:90:7c:64:0e:a8:83:27:4c:9e:43:09:a2:ba: 98:78:ca:81:83:74:4a:b8:09:5f:5f:94:30:45:af: 18:48:29:39:a4:4c:d4:6f:f0:93:d6:7c:68:a4:e8: ba:cf:b3:04:f6:19:e9:3e:5c:57:39:e7:71:ce:76: ad:2c:87:19:5e:8c:a2:b0:91:91:d9:4c:be:01:4e: 36:80:58:41:94:4f:04:a0:7e:90:0d:aa:78:23:b1: 65:85:12:aa:4c:e5:f8:9a:4c:80:04:1f:39:a0:cb: 3a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:A0:BE:EF:F9:20:3B:84:ED:12:42:B9:F8:E7:10:20:7B:B9:00:A4 X509v3 Authority Key Identifier: keyid:B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:cc:e9:c8:bd:1b:5a:0e:52:73:7b:f3:bb:69:04:bc:19:7d: e7:d2:20:35:c0:70:24:ff:35:8b:7c:de:ce:33:f1:3c:04:06: 47:5d:15:5e:5d:63:d0:e2:a8:2c:01:19:6a:6e:65:f4:f0:37: f6:e6:95:8b:ba:bb:24:8d:dc:59:0c:20:0e:6e:7b:96:72:b2: a6:fe:3e:1d:f2:5b:ab:d4:9e:11:65:35:11:7a:48:a5:65:a8: 64:66:de:c5:ca:82:35:c1:82:79:16:91:b3:eb:2b:db:22:08: 81:62:c0:00:cf:eb:2d:d6:8a:11:6f:2d:f3:49:43:be:c3:85: ef:39:e5:f9:2c:01:de:7d:ea:64:e8:56:18:3c:bf:9b:18:24: 24:48:3b:de:54:88:8d:f7:6d:8c:35:c8:54:4c:aa:28:5d:8e: 1b:c6:4f:a4:b2:6f:53:21:e8:09:0a:f9:f1:c2:24:8a:b5:99: 41:c4:76:27:2a:92:22:d8:39:d7:6b:3f:e0:13:1e:b6:e8:bd: 63:41:f1:2e:e7:f3:8e:77:8e:26:6d:38:8d:ff:21:84:fd:68: f6:dc:b2:3f:93:6a:cf:38:fd:e2:7a:78:d4:a0:1f:cf:9c:97: a5:2d:52:3c:b9:3f:fa:bf:83:3d:6c:ce:bf:69:f8:e7:14:86: 10:97:8b:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGNUQxMTAvBgNVBAUTKEI0MDgxODE1QzZCQUVEOThBMUNDOTUwQUM2RkExMEJD NjAwNTg5MDIwHhcNMjUwOTA3MDUzMzI5WhcNMjUwOTE0MDUzMzI5WjAYMRYwFAYD VQQDEw02OGJkMTkyOS00ZGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywc6EMiorrfMTutQKAEaohmo1uh9hniHBm7IqN3myW1Wuoe2Zsi8UQYE7AW8 Y7CCiDHukw0WroFvfz6sGmEUM0/tKnhrLn03pJ/7SRcNrM/sWBukmIIWvCpH+KKU HmleqZ1Zv/50Sb+SxFlN9KMNGDD/+fA4CsmglOithAMGOMbAd1i+NdPNh4v+frG7 fWwdo6nsKHMBn5B8ZA6ogydMnkMJorqYeMqBg3RKuAlfX5QwRa8YSCk5pEzUb/CT 1nxopOi6z7ME9hnpPlxXOedxznatLIcZXoyisJGR2Uy+AU42gFhBlE8EoH6QDap4 I7FlhRKqTOX4mkyABB85oMs6bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJugvu/5 IDuE7RJCufjnECB7uQCkMB8GA1UdIwQYMBaAFLQIGBXGuu2YocyVCsb6ELxgBYkC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0Y1RC8xMEY5NEVGMDA2 QUIxMUVGODdCRkE3MjVDNEY5QUUwMi90QWdZRmNhNjdaaWh6SlVLeHZvUXZHQUZp UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBZ1lGY2E2N1ppaHpKVUt4dm9RdkdBRmlRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0Y1RC8xMEY5NEVGMDA2QUIxMUVGODdCRkE3MjVDNEY5QUUwMi90QWdZRmNhNjda aWh6SlVLeHZvUXZHQUZpUUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBizOnIvRtaDlJze/O7aQS8GX3n0iA1wHAk/zWLfN7OM/E8BAZHXRVe XWPQ4qgsARlqbmX08Df25pWLurskjdxZDCAObnuWcrKm/j4d8lur1J4RZTURekil ZahkZt7FyoI1wYJ5FpGz6yvbIgiBYsAAz+st1ooRby3zSUO+w4XvOeX5LAHefepk 6FYYPL+bGCQkSDveVIiN922MNchUTKooXY4bxk+ksm9TIegJCvnxwiSKtZlBxHYn KpIi2DnXaz/gEx626L1jQfEu5/OOd44mbTiN/yGE/Wj23LI/k2rPOP3ienjUoB/P nJelLVI8uT/6v4M9bM6/afjnFIYQl4uG -----END CERTIFICATE-----Generated at Sun Sep 7 14:25:39 2025 by rpki-client