$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft File: TZAcNCU7ylsnTusQaZPe9yCiUqw.mft (raw, json) Hash identifier: OUhzQaNnCLnMvpstIB2Q6o3GTknPlxzQxBhPeLE+UHI= Subject key identifier: 61:C6:9D:30:82:18:23:73:E9:C9:66:DA:E2:97:C5:28:8F:33:3D:C9 Authority key identifier: 4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC Certificate issuer: /CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Certificate serial: 0455 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft Manifest number: 0CB4 Signing time: Tue 16 Sep 2025 20:52:04 +0000 Manifest this update: Tue 16 Sep 2025 20:52:03 +0000 Manifest next update: Tue 23 Sep 2025 20:52:03 +0000 Files and hashes: 1: TZAcNCU7ylsnTusQaZPe9yCiUqw.crl (hash: ogU3ke8d1ESHSR3EIuzEnPGbG0UhoMYopWiX4Pgxj0Y=) 2: 8E4BBF50F5C511EF89110646C4F9AE02.roa (hash: khC3NWIbwkvutKI6Vqs7kfio6cgD4nvnuDwfjQlSlpw=) 3: A1B8D10EF5C511EF83B21246C4F9AE02.roa (hash: R9z8+TOIkB2HShaZE8kZf0+7pw9G6s/c+bvTwVe027E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 20:52:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1109 (0x455) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Validity Not Before: Sep 16 20:52:03 2025 GMT Not After : Sep 23 20:52:03 2025 GMT Subject: CN=68c9cdf3-d5f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2e:5e:99:8a:de:56:0d:b0:21:64:e6:83:cd: bf:26:fc:df:7c:55:9e:5c:fd:e4:02:0c:0f:69:6a: 38:65:77:1e:2c:29:3e:90:73:9f:bd:aa:7c:82:80: 8b:50:de:3e:d9:37:19:2f:2c:da:a5:0f:40:12:c4: b2:ca:de:4f:7b:a8:46:2e:76:c7:d9:04:a4:ab:5d: af:7a:ca:13:42:74:a3:b8:f3:f7:2f:67:81:52:92: d7:5f:25:3c:84:22:36:85:69:9e:0d:c9:e9:93:64: c5:10:24:4c:51:5d:73:8c:b1:81:f6:a2:78:b0:8b: 1e:1b:08:aa:87:79:a7:0a:ba:7d:27:d5:d1:d3:91: 77:dd:27:b6:24:e7:40:80:29:14:a7:ed:7b:de:87: 6f:57:c1:0a:f6:86:04:07:11:e3:cc:95:28:bc:78: e2:3d:fc:50:0d:6c:31:a1:3c:d4:14:8b:db:d7:e1: 21:66:6a:e8:e1:25:b9:dc:67:5d:6e:30:ac:5f:cc: 7d:81:fd:36:41:f7:25:74:02:2a:55:d0:eb:cd:c0: 2d:a8:5b:94:ac:53:02:8b:ba:99:af:ff:6c:c0:8e: ee:4e:66:c2:6b:05:79:10:ad:ac:84:4c:33:21:82: 7f:2c:8e:ca:48:6a:41:97:72:49:ed:d2:84:76:a8: 33:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:C6:9D:30:82:18:23:73:E9:C9:66:DA:E2:97:C5:28:8F:33:3D:C9 X509v3 Authority Key Identifier: keyid:4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:dd:83:ed:1f:b2:36:14:d4:a7:b6:5f:67:0f:21:06:33:ad: 6a:d7:a2:76:6b:e2:5c:c9:36:c0:0e:de:02:cc:0d:90:a5:fd: 47:c4:17:5d:95:55:32:fb:6c:d9:a2:b3:d6:1a:e9:f5:ea:aa: 1b:a0:68:e9:22:d2:43:73:fc:af:78:80:a9:31:9e:c0:08:13: e5:8d:5d:78:2e:2b:d2:49:68:08:c9:19:6f:e8:75:b2:57:fb: 19:2d:02:79:29:77:cc:c7:93:ed:c9:ff:0e:82:64:46:35:f7: af:15:17:53:15:4d:95:77:3d:e0:99:0c:6c:6c:46:3b:07:b8: ce:c0:23:6e:43:7b:69:09:7e:00:a3:94:4c:da:5c:0a:5d:6a: 24:a9:56:29:2a:11:7a:89:90:7f:c5:e9:d0:55:fc:6f:89:38: 29:68:a4:e0:ab:8d:bd:7c:2a:38:5e:74:b5:e5:a1:a9:47:ea: 13:5b:65:ad:c1:2f:89:1f:f3:89:23:2a:1f:f6:99:31:91:a5: 9f:66:2c:64:46:9d:fe:48:b6:0c:1f:ac:23:94:00:a0:4d:87: 74:12:37:f7:4e:4b:36:d0:cb:36:8b:15:b1:72:90:5b:91:63: 3e:45:b4:71:ca:d0:56:0b:68:99:26:57:54:53:36:b7:e6:17: 6c:88:57:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDREOTAxQzM0MjUzQkNBNUIyNzRFRUIxMDY5OTNERUY3 MjBBMjUyQUMwHhcNMjUwOTE2MjA1MjAzWhcNMjUwOTIzMjA1MjAzWjAYMRYwFAYD VQQDEw02OGM5Y2RmMy1kNWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAry5emYreVg2wIWTmg82/JvzffFWeXP3kAgwPaWo4ZXceLCk+kHOfvap8goCL UN4+2TcZLyzapQ9AEsSyyt5Pe6hGLnbH2QSkq12vesoTQnSjuPP3L2eBUpLXXyU8 hCI2hWmeDcnpk2TFECRMUV1zjLGB9qJ4sIseGwiqh3mnCrp9J9XR05F33Se2JOdA gCkUp+173odvV8EK9oYEBxHjzJUovHjiPfxQDWwxoTzUFIvb1+EhZmro4SW53Gdd bjCsX8x9gf02QfcldAIqVdDrzcAtqFuUrFMCi7qZr/9swI7uTmbCawV5EK2shEwz IYJ/LI7KSGpBl3JJ7dKEdqgzXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHGnTCC GCNz6clm2uKXxSiPMz3JMB8GA1UdIwQYMBaAFE2QHDQlO8pbJ07rEGmT3vcgolKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3lsc25UdXNRYVpQZTl5Q2lV cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQWNOQ1U3eWxzblR1c1FhWlBlOXlDaVVxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3ls c25UdXNRYVpQZTl5Q2lVcXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu3YPtH7I2FNSntl9nDyEGM61q16J2a+JcyTbADt4CzA2Qpf1HxBdd lVUy+2zZorPWGun16qoboGjpItJDc/yveICpMZ7ACBPljV14LivSSWgIyRlv6HWy V/sZLQJ5KXfMx5Ptyf8OgmRGNfevFRdTFU2Vdz3gmQxsbEY7B7jOwCNuQ3tpCX4A o5RM2lwKXWokqVYpKhF6iZB/xenQVfxviTgpaKTgq429fCo4XnS15aGpR+oTW2Wt wS+JH/OJIyof9pkxkaWfZixkRp3+SLYMH6wjlACgTYd0Ejf3Tks20Ms2ixWxcpBb kWM+RbRxytBWC2iZJldUUza35hdsiFfM -----END CERTIFICATE-----Generated at Thu Sep 18 21:53:21 2025 by rpki-client