$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft File: TT_EcGT06hvcqym55lsx103iZOA.mft (raw, json) Hash identifier: f9+zE8Vw7KXaPGkOX5bTuhCrMJvll+MWhOxU6jgLUas= Subject key identifier: D0:54:B0:EB:F6:36:6E:0F:22:FC:D7:86:28:A3:CA:30:9E:D4:B6:89 Authority key identifier: 4D:3F:C4:70:64:F4:EA:1B:DC:AB:29:B9:E6:5B:31:D7:4D:E2:64:E0 Certificate issuer: /CN=A91AFAAC/serialNumber=4D3FC47064F4EA1BDCAB29B9E65B31D74DE264E0 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft Manifest number: 38 Signing time: Fri 05 Sep 2025 08:04:13 +0000 Manifest this update: Fri 05 Sep 2025 08:04:12 +0000 Manifest next update: Fri 12 Sep 2025 08:04:12 +0000 Files and hashes: 1: TT_EcGT06hvcqym55lsx103iZOA.crl (hash: Mz92s3ItQ412b6KnIlFQqMLtv5WKOzvzFUuKILnn2Kk=) 2: 40F5D9E6354B11F0A873F14DC4F9AE02.roa (hash: Cosb+eMZxQ3sCZz6h4y2hYsraDJKDCIgjZyVYBFmpVk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.crl rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 08:04:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFAAC, serialNumber=4D3FC47064F4EA1BDCAB29B9E65B31D74DE264E0 Validity Not Before: Sep 5 08:04:12 2025 GMT Not After : Sep 12 08:04:12 2025 GMT Subject: CN=68ba997c-c79c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:74:e2:80:78:3a:0f:d6:28:c3:36:dc:80:3b: 5c:04:1b:69:df:15:1a:a9:31:a9:c6:95:84:e0:39: 40:f8:e4:58:e4:c2:f0:e1:19:ef:32:df:34:ed:30: 8f:90:35:1d:75:c0:c2:5b:82:89:02:0a:da:cd:86: 29:29:9f:ff:a7:29:93:90:0d:a8:68:ec:29:4d:3d: b5:c6:69:8a:8b:f1:e6:c5:b0:77:55:4b:87:7e:d4: 3e:b6:6d:7e:f1:42:b0:ae:92:24:3a:d2:9e:26:6e: cd:1e:9b:8f:da:3e:b5:19:76:5d:c6:cb:73:30:80: 81:b6:8b:71:9f:f8:19:44:0d:69:85:59:11:50:30: f0:fb:72:da:5c:b9:4c:d7:cb:13:e9:ce:15:52:b0: a8:eb:04:0c:85:a9:af:e4:6b:ff:b4:5f:70:9c:5b: ed:49:5f:e8:e5:d3:80:1f:59:6e:63:23:06:bb:ba: 06:35:b0:81:71:44:dd:ae:e0:eb:b5:8b:15:98:6a: 51:c5:6a:ba:81:56:50:8d:93:36:90:75:64:dc:59: bf:58:73:be:7d:19:b6:96:35:67:34:38:91:1b:f5: 80:4c:8d:c9:07:d8:5b:26:15:35:c4:72:a5:da:0b: 4b:56:dd:24:11:c6:30:67:c0:ee:69:57:2c:ce:2c: 28:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:54:B0:EB:F6:36:6E:0F:22:FC:D7:86:28:A3:CA:30:9E:D4:B6:89 X509v3 Authority Key Identifier: keyid:4D:3F:C4:70:64:F4:EA:1B:DC:AB:29:B9:E6:5B:31:D7:4D:E2:64:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:22:1a:5b:7b:2d:67:bd:b1:7f:7a:0c:b0:24:88:2e:94:f2: e0:e6:67:93:45:66:65:a6:bc:09:af:f0:56:e3:e5:8b:8c:66: b0:27:8b:47:80:8c:d8:76:b2:78:cf:f3:10:e1:51:5f:0b:fc: ec:52:bd:c4:28:c8:dd:d7:0d:a5:c2:88:6b:60:ea:c3:ea:a0: c0:81:ce:8a:8f:a7:c1:71:c1:1b:e9:a7:a2:ac:c8:c8:45:12: ea:0c:37:76:4d:0f:db:e0:43:18:5c:0b:2b:c9:e6:ab:9e:bc: f0:f4:65:df:69:50:85:df:98:3a:ee:e6:b4:40:33:2f:79:3f: 4a:c0:4f:2a:02:c7:73:8b:01:4c:1e:a5:25:c4:7f:cb:49:9f: 49:25:78:13:96:57:35:45:d2:9f:76:b7:ee:1a:14:66:c2:b1: 2b:98:46:b8:de:c6:83:c0:41:21:f6:c5:ee:aa:02:bf:45:31: aa:5f:1d:6e:4b:ea:4f:c9:2a:79:c0:e7:a8:89:77:55:56:69: 66:d6:92:81:ac:f0:e6:89:66:ad:90:b2:f5:24:c2:9b:40:39: 41:ee:1a:5b:e1:45:80:da:eb:62:10:84:65:57:0d:b4:f5:5c: 2b:89:c1:8b:7d:c3:9c:5f:73:72:90:a2:01:97:f6:ec:de:a9: 2d:92:e2:ec -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RkFBQzExMC8GA1UEBRMoNEQzRkM0NzA2NEY0RUExQkRDQUIyOUI5RTY1QjMxRDc0 REUyNjRFMDAeFw0yNTA5MDUwODA0MTJaFw0yNTA5MTIwODA0MTJaMBgxFjAUBgNV BAMTDTY4YmE5OTdjLWM3OWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrdOKAeDoP1ijDNtyAO1wEG2nfFRqpManGlYTgOUD45FjkwvDhGe8y3zTtMI+Q NR11wMJbgokCCtrNhikpn/+nKZOQDaho7ClNPbXGaYqL8ebFsHdVS4d+1D62bX7x QrCukiQ60p4mbs0em4/aPrUZdl3Gy3MwgIG2i3Gf+BlEDWmFWRFQMPD7ctpcuUzX yxPpzhVSsKjrBAyFqa/ka/+0X3CcW+1JX+jl04AfWW5jIwa7ugY1sIFxRN2u4Ou1 ixWYalHFarqBVlCNkzaQdWTcWb9Yc759GbaWNWc0OJEb9YBMjckH2FsmFTXEcqXa C0tW3SQRxjBnwO5pVyzOLCgDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0FSw6/Y2 bg8i/NeGKKPKMJ7UtokwHwYDVR0jBBgwFoAUTT/EcGT06hvcqym55lsx103iZOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGQUFDLzRBRjBDOTJBMzU0 QTExRjBCQTc2NkU0Q0M0RjlBRTAyL1RUX0VjR1QwNmh2Y3F5bTU1bHN4MTAzaVpP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVFRfRWNHVDA2aHZjcXltNTVsc3gxMDNpWk9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFG QUFDLzRBRjBDOTJBMzU0QTExRjBCQTc2NkU0Q0M0RjlBRTAyL1RUX0VjR1QwNmh2 Y3F5bTU1bHN4MTAzaVpPQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJQiGlt7LWe9sX96DLAkiC6U8uDmZ5NFZmWmvAmv8Fbj5YuMZrAni0eA jNh2snjP8xDhUV8L/OxSvcQoyN3XDaXCiGtg6sPqoMCBzoqPp8FxwRvpp6KsyMhF EuoMN3ZND9vgQxhcCyvJ5quevPD0Zd9pUIXfmDru5rRAMy95P0rATyoCx3OLAUwe pSXEf8tJn0kleBOWVzVF0p92t+4aFGbCsSuYRrjexoPAQSH2xe6qAr9FMapfHW5L 6k/JKnnA56iJd1VWaWbWkoGs8OaJZq2QsvUkwptAOUHuGlvhRYDa62IQhGVXDbT1 XCuJwYt9w5xfc3KQogGX9uzeqS2S4uw= -----END CERTIFICATE-----Generated at Sat Sep 6 21:13:21 2025 by rpki-client