$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft File: TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft (raw, json) Hash identifier: GyX2FZFB2aga28IyflEpT4E9VMwoU+fAUzBFNaBz4ho= Subject key identifier: 16:8E:18:01:28:33:1D:7A:F1:25:03:3B:E4:4A:0A:FE:A7:4B:58:5D Authority key identifier: 4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D Certificate issuer: /CN=A91C31B7/serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft Manifest number: F2 Signing time: Wed 03 Sep 2025 05:48:15 +0000 Manifest this update: Wed 03 Sep 2025 05:48:14 +0000 Manifest next update: Wed 10 Sep 2025 05:48:14 +0000 Files and hashes: 1: TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl (hash: UBNRl8TP3Ml/3nD6huBhoZT2VUKhNNbfSPSGfAMdkWQ=) 2: 1FC3B0DE1E6F11EFB392D937C4F9AE02.roa (hash: DqAscZot5tvFIRSwhun0FkboyMxWikjQ2XKpTFYg9ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:48:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31B7, serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Validity Not Before: Sep 3 05:48:14 2025 GMT Not After : Sep 10 05:48:14 2025 GMT Subject: CN=68b7d69f-2461 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d5:87:1f:48:60:6d:0c:73:79:8c:fb:51:01: ef:4c:c4:5a:8a:72:2c:db:f6:cf:2d:cc:10:8a:6a: ec:3e:32:0b:09:13:cf:4e:eb:6c:f3:59:e0:06:c5: a1:f4:7c:2b:bd:4b:52:0c:4d:3e:b2:71:3f:5a:54: 4d:4b:0e:ad:7e:da:17:99:f4:13:a0:c5:da:d7:31: 98:0f:ca:de:65:77:d5:86:86:19:12:21:af:0e:b9: f3:a5:52:5e:e3:ee:c6:99:27:14:45:f9:64:9e:30: 68:93:d6:78:72:ce:f3:5d:dd:57:b7:f3:4c:9d:16: ef:8f:d6:3b:2f:c0:7c:81:c8:a5:b1:d3:d1:b7:7b: 36:a5:63:c6:f6:f7:ca:f2:93:b7:0e:81:13:52:5c: 19:e7:39:71:60:07:07:c7:be:da:d4:7f:7b:72:6d: de:6c:a0:8d:82:c4:92:5f:fb:81:e5:ee:57:7b:e1: 9a:97:dd:ef:68:fb:a3:cf:dd:35:b2:36:74:52:e9: 6f:82:93:c7:04:7b:a3:fd:ba:d4:06:60:b7:c0:97: 8d:fe:a1:b5:fc:9f:82:08:f0:aa:54:28:ab:27:ee: 24:d5:6b:fa:13:28:ae:6b:f0:4a:66:d8:78:8c:43: 62:a1:8b:32:bc:1f:16:8e:11:ec:7a:b1:dc:c2:69: 75:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:8E:18:01:28:33:1D:7A:F1:25:03:3B:E4:4A:0A:FE:A7:4B:58:5D X509v3 Authority Key Identifier: keyid:4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:56:c1:fd:52:27:d4:22:17:f7:e8:a5:91:c0:b3:8e:08:00: 0d:f9:45:c6:a6:78:2c:cf:d9:72:d5:9a:83:d0:64:78:ac:ad: 70:41:ec:2e:3b:51:75:a9:a1:b7:9b:e7:61:eb:41:36:1a:a5: a4:87:f2:91:87:65:c5:13:44:c7:59:5f:8f:31:b6:90:60:d0: b4:4d:67:56:d0:4b:e9:5b:2e:25:db:19:73:af:57:e6:61:10: e0:2a:be:29:17:ac:9c:1f:b3:42:b5:cc:e9:68:a9:41:72:11: 2c:2c:da:d4:cc:f9:4a:c4:87:69:4c:8e:35:77:7a:de:a4:ef: 1f:c6:b6:7c:e1:21:46:2f:85:97:99:a2:e5:9c:7e:87:25:31: ca:28:57:73:6b:51:79:0f:55:fe:74:27:a9:9a:fa:dd:aa:0e: cc:c4:90:65:6b:d3:c5:88:01:26:60:72:ec:bd:c5:c3:34:8a: e5:fd:fb:b9:92:9a:06:c3:54:7b:0b:05:fd:8a:fc:a1:00:00: 4d:3a:c8:eb:db:07:66:cb:73:2c:42:2d:78:03:73:12:5e:fd: f7:68:1b:90:22:de:65:a4:9a:cd:1f:32:c5:c2:3d:81:2e:e0: 37:38:25:85:c9:d3:73:f0:54:cf:87:b3:3a:6a:4e:93:3a:f8: 8b:6d:22:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQjcxMTAvBgNVBAUTKDRDMzM5Q0FCRkM4MEE1RjQxOURGMzNERkIwNjg4NUMx QzM0ODhCMkQwHhcNMjUwOTAzMDU0ODE0WhcNMjUwOTEwMDU0ODE0WjAYMRYwFAYD VQQDEw02OGI3ZDY5Zi0yNDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dWHH0hgbQxzeYz7UQHvTMRainIs2/bPLcwQimrsPjILCRPPTuts81ngBsWh 9HwrvUtSDE0+snE/WlRNSw6tftoXmfQToMXa1zGYD8reZXfVhoYZEiGvDrnzpVJe 4+7GmScURflknjBok9Z4cs7zXd1Xt/NMnRbvj9Y7L8B8gcilsdPRt3s2pWPG9vfK 8pO3DoETUlwZ5zlxYAcHx77a1H97cm3ebKCNgsSSX/uB5e5Xe+Gal93vaPujz901 sjZ0UulvgpPHBHuj/brUBmC3wJeN/qG1/J+CCPCqVCirJ+4k1Wv6Eyiua/BKZth4 jENioYsyvB8WjhHserHcwml1IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBaOGAEo Mx168SUDO+RKCv6nS1hdMB8GA1UdIwQYMBaAFEwznKv8gKX0Gd8z37BohcHDSIst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFCNy9GMkE1NzMyRTFF NkIxMUVGQUMwRTkxNEVDNEY5QUUwMi9URE9jcV95QXBmUVozelBmc0dpRndjTklp eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RET2NxX3lBcGZRWjN6UGZzR2lGd2NOSWl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzFCNy9GMkE1NzMyRTFFNkIxMUVGQUMwRTkxNEVDNEY5QUUwMi9URE9jcV95QXBm UVozelBmc0dpRndjTklpeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnVsH9UifUIhf36KWRwLOOCAAN+UXGpngsz9ly1ZqD0GR4rK1wQewu O1F1qaG3m+dh60E2GqWkh/KRh2XFE0THWV+PMbaQYNC0TWdW0EvpWy4l2xlzr1fm YRDgKr4pF6ycH7NCtczpaKlBchEsLNrUzPlKxIdpTI41d3repO8fxrZ84SFGL4WX maLlnH6HJTHKKFdza1F5D1X+dCepmvrdqg7MxJBla9PFiAEmYHLsvcXDNIrl/fu5 kpoGw1R7CwX9ivyhAABNOsjr2wdmy3MsQi14A3MSXv33aBuQIt5lpJrNHzLFwj2B LuA3OCWFydNz8FTPh7M6ak6TOviLbSJ6 -----END CERTIFICATE-----Generated at Thu Sep 4 14:06:18 2025 by rpki-client