$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: D7R5tBHqcMGWotr9BL+V4t+oKv679pIgCnMX39QCq4c= Subject key identifier: 63:42:AA:81:2E:20:F0:B6:E6:46:53:E7:94:4D:BB:F1:3B:EF:9D:8C Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0CB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0C9C Signing time: Sat 06 Sep 2025 18:27:25 +0000 Manifest this update: Sat 06 Sep 2025 18:27:25 +0000 Manifest next update: Sat 13 Sep 2025 18:27:25 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: +AZ3LMezvHPqqkxM5Y2fBuUEIScxPgKEUESLwjh3fbI=) 2: E8F85ED4EC5811EFA9B9C618C4F9AE02.roa (hash: ykoz29uCG/11xDnxQBhHvrkmfn5Ejy8eSvfC/XRGcV0=) 3: 47DADED8EC5211EFBF551F6DC4F9AE02.roa (hash: Ns3EqlAuypXsdC/A5rNqIcQNoK/ntkU/96rQkctaiRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 18:27:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3255 (0xcb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2, serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: Sep 6 18:27:25 2025 GMT Not After : Sep 13 18:27:25 2025 GMT Subject: CN=68bc7d0d-204a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:77:c5:c6:28:6b:ae:d8:f7:60:b2:e7:08:9e: f9:52:d3:12:80:30:5c:c0:a5:59:69:55:d6:4d:27: 41:79:7d:d7:11:c5:2a:65:31:0d:e3:07:7e:8a:bb: f2:7d:c6:19:a4:d0:73:c3:11:b7:8c:80:cf:95:16: 54:23:b8:78:2a:09:bc:d7:fe:be:9c:58:ee:5a:3f: ff:57:10:c4:33:d0:e5:d7:52:a4:e3:e3:69:17:d0: 7c:92:d5:62:35:51:e1:2b:c3:b6:72:71:e1:07:a6: 7a:00:02:37:06:8d:46:ba:96:12:3b:fa:e0:1e:e1: fd:8a:bd:6b:6f:94:b1:34:3c:3d:a0:31:0b:76:f9: b6:99:ef:49:be:a3:ec:d5:ee:d7:ff:65:e3:c2:3a: 95:2d:5c:62:ac:ff:a9:52:c2:1c:9d:d0:1c:26:66: de:35:7f:05:d8:65:35:99:9f:b5:53:33:24:22:a9: 6d:52:5e:e7:be:96:3a:f3:25:3d:e6:db:7b:33:65: 97:a4:af:ed:55:d3:57:08:79:16:1b:0e:6c:b2:10: 32:c2:21:fc:8c:d3:2d:68:5b:12:3f:7c:09:15:ae: 9c:19:6f:da:04:d7:01:67:be:2c:00:7d:9f:d4:ba: f5:f6:76:fa:3b:cd:a8:af:d5:45:36:67:d5:a9:2e: 2b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:42:AA:81:2E:20:F0:B6:E6:46:53:E7:94:4D:BB:F1:3B:EF:9D:8C X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:2c:76:59:e5:03:09:16:3c:fb:99:f7:38:64:fa:d8:17:99: 09:d1:2d:42:4d:d2:87:84:95:90:dc:35:b1:87:63:83:fc:2c: 8a:7f:f2:4d:26:db:ec:14:27:f6:cc:28:cf:e3:0e:fe:78:4d: ab:bd:b5:3a:2d:67:da:8d:1c:22:07:66:b8:90:71:1e:46:ed: 98:23:35:cb:3f:03:4c:3e:f1:95:e8:61:37:6c:5b:82:07:d6: 37:df:db:6a:5e:ab:f0:41:a0:9c:a8:64:16:76:9b:01:63:1e: 56:d8:43:be:3b:f7:50:ba:10:78:0f:34:bb:b7:57:a8:28:f1: bc:3e:c1:7b:e7:5a:5c:fe:db:df:a8:b1:6c:fc:a5:a9:b4:ce: 95:98:df:4a:47:ef:ce:05:dd:d8:d0:10:6b:4b:37:8a:7b:1b: 34:83:33:38:27:17:a7:ff:bf:01:d1:7e:c1:a2:7c:f9:45:4c: ab:a8:48:34:b5:39:0e:36:c3:6f:4f:c5:f0:ce:37:85:54:c5: d8:f7:79:13:7e:1e:7a:c7:92:1e:bd:88:f8:f8:9d:41:8f:77: c9:72:5e:11:97:54:74:14:22:04:94:71:a7:99:ee:4b:42:f1: 7b:d9:52:0a:c9:f0:9d:e5:00:d8:6f:a5:c4:89:ad:48:f3:3b: c3:62:5f:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjUwOTA2MTgyNzI1WhcNMjUwOTEzMTgyNzI1WjAYMRYwFAYD VQQDEw02OGJjN2QwZC0yMDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqnfFxihrrtj3YLLnCJ75UtMSgDBcwKVZaVXWTSdBeX3XEcUqZTEN4wd+irvy fcYZpNBzwxG3jIDPlRZUI7h4Kgm81/6+nFjuWj//VxDEM9Dl11Kk4+NpF9B8ktVi NVHhK8O2cnHhB6Z6AAI3Bo1GupYSO/rgHuH9ir1rb5SxNDw9oDELdvm2me9JvqPs 1e7X/2XjwjqVLVxirP+pUsIcndAcJmbeNX8F2GU1mZ+1UzMkIqltUl7nvpY68yU9 5tt7M2WXpK/tVdNXCHkWGw5sshAywiH8jNMtaFsSP3wJFa6cGW/aBNcBZ74sAH2f 1Lr19nb6O82or9VFNmfVqS4rUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGNCqoEu IPC25kZT55RNu/E7752MMB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADLHZZ5QMJFjz7mfc4ZPrYF5kJ0S1CTdKHhJWQ3DWxh2OD/CyKf/JN JtvsFCf2zCjP4w7+eE2rvbU6LWfajRwiB2a4kHEeRu2YIzXLPwNMPvGV6GE3bFuC B9Y339tqXqvwQaCcqGQWdpsBYx5W2EO+O/dQuhB4DzS7t1eoKPG8PsF751pc/tvf qLFs/KWptM6VmN9KR+/OBd3Y0BBrSzeKexs0gzM4Jxen/78B0X7Bonz5RUyrqEg0 tTkONsNvT8XwzjeFVMXY93kTfh56x5IevYj4+J1Bj3fJcl4Rl1R0FCIElHGnme5L QvF72VIKyfCd5QDYb6XEia1I8zvDYl+q -----END CERTIFICATE-----Generated at Mon Sep 8 04:40:46 2025 by rpki-client