$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft File: TKAS9bToBGfvDuxPjAJEoj1WmbU.mft (raw, json) Hash identifier: ueBQM9CJMzQdf87dH8E0Ynkr6EulzqhoKO9EpuQcQwE= Subject key identifier: 3F:D0:A9:AF:88:9F:4A:AD:85:35:56:B6:75:AA:98:A7:78:E1:5A:D3 Authority key identifier: 4C:A0:12:F5:B4:E8:04:67:EF:0E:EC:4F:8C:02:44:A2:3D:56:99:B5 Certificate issuer: /CN=A91B1E8B/serialNumber=4CA012F5B4E80467EF0EEC4F8C0244A23D5699B5 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKAS9bToBGfvDuxPjAJEoj1WmbU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft Manifest number: DA Signing time: Wed 17 Sep 2025 06:11:08 +0000 Manifest this update: Wed 17 Sep 2025 06:11:07 +0000 Manifest next update: Wed 24 Sep 2025 06:11:07 +0000 Files and hashes: 1: TKAS9bToBGfvDuxPjAJEoj1WmbU.crl (hash: 1X4q6vq6Ah05dZVF0h5MxlnZuJwTt5KpGpEoVgTGx94=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKAS9bToBGfvDuxPjAJEoj1WmbU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B, serialNumber=4CA012F5B4E80467EF0EEC4F8C0244A23D5699B5 Validity Not Before: Sep 17 06:11:07 2025 GMT Not After : Sep 24 06:11:07 2025 GMT Subject: CN=68ca50fb-8040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:28:17:ae:51:d9:e2:18:cb:51:06:b2:39:9e: 1b:11:cb:64:6d:db:33:43:67:26:66:f7:37:a9:fb: 34:c9:a4:dc:53:65:83:c1:23:97:5b:1e:0a:90:69: 66:7a:11:d5:f3:62:cf:a4:86:a3:06:e8:af:e3:65: 1a:51:4e:a5:5f:0a:c6:78:b1:41:fb:8f:35:1a:d9: 14:c6:39:1e:cf:8e:64:53:c1:06:67:6c:49:91:78: 8e:ed:a0:42:fa:92:bb:02:d5:78:50:b6:74:d6:1c: fe:5c:e2:f6:df:1b:c5:f8:da:be:28:88:6d:ff:ff: ec:e2:84:e2:ad:bd:a3:7c:71:fa:2b:a3:95:25:29: 60:86:51:27:6e:2d:90:cc:d9:7f:ec:44:2c:e9:75: ec:1e:07:2b:12:16:41:b4:1e:ac:72:70:18:0a:88: 6f:66:b4:f4:c7:87:ae:64:4f:0d:20:5b:6a:43:36: df:4a:07:00:df:b0:23:f4:1d:cb:a7:cc:8a:c5:f1: 88:d0:a9:a1:94:f1:87:5a:03:3c:a1:bf:3f:3c:c1: 9b:37:61:a8:bd:a7:61:9a:70:7b:07:ad:2e:ef:07: 96:c2:83:ef:46:bb:16:b3:3d:03:81:1b:99:ab:95: 22:30:07:4c:87:bd:99:9c:d6:b8:4c:41:88:bb:57: a5:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:D0:A9:AF:88:9F:4A:AD:85:35:56:B6:75:AA:98:A7:78:E1:5A:D3 X509v3 Authority Key Identifier: keyid:4C:A0:12:F5:B4:E8:04:67:EF:0E:EC:4F:8C:02:44:A2:3D:56:99:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKAS9bToBGfvDuxPjAJEoj1WmbU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:7b:08:00:d9:5a:af:ab:a4:dd:05:f8:8d:51:c5:ae:3a:51: 5a:7f:31:6f:54:f6:36:a5:7e:1f:75:60:e5:e5:49:67:a6:97: c8:29:56:0c:55:00:2a:f0:f4:bd:f2:be:81:74:9a:ed:55:71: 14:6e:95:77:91:f8:96:7b:a9:4c:ef:d3:2d:db:f4:73:08:0d: 9b:3c:19:67:d0:f8:b0:eb:52:57:26:98:d3:56:80:35:cf:80: 07:94:65:ca:50:44:0d:aa:84:00:cb:70:c7:4d:b5:0d:50:ec: 8e:48:0d:08:e6:94:d5:80:8f:9f:48:e7:ae:18:b1:63:ca:4b: 45:97:78:c1:c7:9e:21:e9:4a:aa:b3:bb:be:b2:27:66:69:e3: 9a:d2:40:f4:1e:43:8e:1d:53:15:37:5c:be:36:43:8b:5a:7d: 9e:ff:87:ae:24:51:e2:84:a1:23:40:cf:7b:30:85:cd:e0:00: c1:e1:a7:5c:ce:06:31:14:08:bc:c8:d2:0e:16:bd:71:13:42: fa:1d:9d:01:a8:bd:34:a1:bd:77:22:8a:57:3a:c9:43:0e:4b: ec:f5:7a:f7:88:28:1b:3f:10:61:db:33:77:72:c5:3f:26:48: 21:74:f8:5a:12:ca:dc:3a:f4:e1:3b:11:f6:20:54:65:f6:8c: c3:12:f8:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFOEIxMTAvBgNVBAUTKDRDQTAxMkY1QjRFODA0NjdFRjBFRUM0RjhDMDI0NEEy M0Q1Njk5QjUwHhcNMjUwOTE3MDYxMTA3WhcNMjUwOTI0MDYxMTA3WjAYMRYwFAYD VQQDEw02OGNhNTBmYi04MDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwygXrlHZ4hjLUQayOZ4bEctkbdszQ2cmZvc3qfs0yaTcU2WDwSOXWx4KkGlm ehHV82LPpIajBuiv42UaUU6lXwrGeLFB+481GtkUxjkez45kU8EGZ2xJkXiO7aBC +pK7AtV4ULZ01hz+XOL23xvF+Nq+KIht///s4oTirb2jfHH6K6OVJSlghlEnbi2Q zNl/7EQs6XXsHgcrEhZBtB6scnAYCohvZrT0x4euZE8NIFtqQzbfSgcA37Aj9B3L p8yKxfGI0KmhlPGHWgM8ob8/PMGbN2GovadhmnB7B60u7weWwoPvRrsWsz0DgRuZ q5UiMAdMh72ZnNa4TEGIu1elzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/Qqa+I n0qthTVWtnWqmKd44VrTMB8GA1UdIwQYMBaAFEygEvW06ARn7w7sT4wCRKI9Vpm1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU4Qi82QjM4QjgxNjQ1 QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9US0FTOWJUb0JHZnZEdXhQakFKRW9qMVdt YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLQVM5YlRvQkdmdkR1eFBqQUpFb2oxV21iVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU4Qi82QjM4QjgxNjQ1QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9US0FTOWJUb0JH ZnZEdXhQakFKRW9qMVdtYlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsewgA2Vqvq6TdBfiNUcWuOlFafzFvVPY2pX4fdWDl5UlnppfIKVYM VQAq8PS98r6BdJrtVXEUbpV3kfiWe6lM79Mt2/RzCA2bPBln0Piw61JXJpjTVoA1 z4AHlGXKUEQNqoQAy3DHTbUNUOyOSA0I5pTVgI+fSOeuGLFjyktFl3jBx54h6Uqq s7u+sidmaeOa0kD0HkOOHVMVN1y+NkOLWn2e/4euJFHihKEjQM97MIXN4ADB4adc zgYxFAi8yNIOFr1xE0L6HZ0BqL00ob13IopXOslDDkvs9Xr3iCgbPxBh2zN3csU/ JkghdPhaEsrcOvThOxH2IFRl9ozDEvhb -----END CERTIFICATE-----Generated at Fri Sep 19 06:23:52 2025 by rpki-client