$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft File: TnWast4kVGn4MRuSc7VVOH51CpA.mft (raw, json) Hash identifier: DhJOpouikhDtejc5LkQmlrFdVq2fVCneUEW4GMrArYk= Subject key identifier: BD:AA:B5:12:B5:24:6A:E5:51:BF:A0:A3:2E:F6:CB:0A:8A:4F:50:B9 Authority key identifier: 4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 Certificate issuer: /CN=A91DF233/serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft Manifest number: 8D Signing time: Fri 05 Sep 2025 07:00:52 +0000 Manifest this update: Fri 05 Sep 2025 07:00:51 +0000 Manifest next update: Fri 12 Sep 2025 07:00:51 +0000 Files and hashes: 1: TnWast4kVGn4MRuSc7VVOH51CpA.crl (hash: K0lZBu1/usN7jA2ga+zs/P8mGQkQxnpr8ptrWd8zZLs=) 2: 1FE0E016B37D11EFBDE18263C4F9AE02.roa (hash: i4QqretrMrfllRlkSz0xUOac9qaskNbaHtNPO9MoQA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Validity Not Before: Sep 5 07:00:51 2025 GMT Not After : Sep 12 07:00:51 2025 GMT Subject: CN=68ba8aa4-9986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:01:99:b4:cd:3e:cd:f1:90:73:52:35:61:03: 3c:ad:b5:4a:8a:58:87:ec:6f:3f:3f:2d:2c:fd:7f: ee:ad:ce:e6:51:ba:2c:1e:0a:db:32:d2:6c:e8:a7: 10:4b:b0:9f:ba:15:07:4a:58:71:a3:8d:80:72:4f: e9:6b:7c:0d:32:5f:9c:43:a4:5b:a9:4a:0a:74:c1: b6:57:21:54:3e:5f:63:90:52:21:95:20:e0:6b:41: 2a:31:6b:cc:1a:b2:32:0d:e1:8f:bc:6b:9d:06:07: 4f:6e:a4:04:a5:30:2f:31:e8:65:f1:72:c9:cf:94: e3:40:1b:73:b0:e0:b0:4d:ad:00:35:3f:47:31:9e: 7e:87:a6:16:75:c2:2f:5f:85:37:4b:3c:c2:9b:61: ae:37:6a:3d:be:dd:69:0a:f4:cf:f5:cb:21:f8:31: b1:0f:f0:0c:79:b9:07:90:16:13:bf:a7:e3:5c:50: 14:c8:60:28:42:11:a9:14:dd:62:ac:46:ff:bd:c5: 05:ad:f0:a8:02:f8:8e:d7:b2:ad:6e:3f:71:0f:d1: 2e:e1:88:a7:11:36:a2:b9:c4:4e:c3:1e:3e:7f:06: 33:62:22:cb:f6:d2:05:c1:03:4b:50:7a:ee:9b:fa: 5c:cd:d6:66:b7:30:42:cb:41:f6:14:5c:f1:e0:86: dd:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:AA:B5:12:B5:24:6A:E5:51:BF:A0:A3:2E:F6:CB:0A:8A:4F:50:B9 X509v3 Authority Key Identifier: keyid:4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:24:8e:9b:dc:e5:6d:75:a5:c9:54:d8:04:df:1b:c2:e4:7a: be:d6:a3:0e:ec:94:4f:7f:cf:d1:63:32:da:33:fb:45:c8:23: 5e:5d:a0:95:ca:04:0d:4a:62:56:17:cd:03:d6:f5:9e:23:48: 51:b5:c9:e0:02:9c:d3:d1:b7:40:1f:b2:9a:86:80:67:ac:af: ae:a3:4b:1a:65:a2:d7:e9:c9:fb:e2:b6:71:7c:67:9e:dd:e0: 7d:93:81:43:d6:c4:91:20:7b:e6:c1:e8:55:6b:31:ee:5a:f7: 70:29:01:37:ab:ce:74:b2:63:04:d9:43:d5:9a:0e:b7:d2:a8: a1:03:86:af:de:2f:ff:ee:f9:0a:48:0a:e7:47:8d:d7:9f:49: c6:95:ba:73:8d:66:99:db:cb:28:e6:ae:3b:9a:f9:0f:18:78: 98:0c:6b:3e:8d:76:c4:ba:f6:4e:80:8f:19:ff:1e:54:81:47: 6d:12:0c:e2:17:50:35:7a:73:ba:ed:e9:8a:5b:54:60:6a:73: 04:35:b5:de:1c:35:26:49:21:10:09:b2:93:aa:46:aa:53:23: 97:fa:b3:61:0d:ad:0e:f2:a1:78:99:ff:d4:08:c3:ec:c6:02: 3f:13:c5:51:fe:0a:00:b0:56:92:d5:bb:25:27:fe:cd:5f:76: 32:e6:40:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYyMzMxMTAvBgNVBAUTKDRFNzU5QUIyREUyNDU0NjlGODMxMUI5MjczQjU1NTM4 N0U3NTBBOTAwHhcNMjUwOTA1MDcwMDUxWhcNMjUwOTEyMDcwMDUxWjAYMRYwFAYD VQQDEw02OGJhOGFhNC05OTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QGZtM0+zfGQc1I1YQM8rbVKiliH7G8/Py0s/X/urc7mUbosHgrbMtJs6KcQ S7CfuhUHSlhxo42Ack/pa3wNMl+cQ6RbqUoKdMG2VyFUPl9jkFIhlSDga0EqMWvM GrIyDeGPvGudBgdPbqQEpTAvMehl8XLJz5TjQBtzsOCwTa0ANT9HMZ5+h6YWdcIv X4U3SzzCm2GuN2o9vt1pCvTP9csh+DGxD/AMebkHkBYTv6fjXFAUyGAoQhGpFN1i rEb/vcUFrfCoAviO17Ktbj9xD9Eu4YinETaiucROwx4+fwYzYiLL9tIFwQNLUHru m/pczdZmtzBCy0H2FFzx4IbdeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2qtRK1 JGrlUb+goy72ywqKT1C5MB8GA1UdIwQYMBaAFE51mrLeJFRp+DEbknO1VTh+dQqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjIzMy8wOEYwNTI2MEIz NzgxMUVGODgzMjJCMEZDNEY5QUUwMi9Ubldhc3Q0a1ZHbjRNUnVTYzdWVk9INTFD cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuV2FzdDRrVkduNE1SdVNjN1ZWT0g1MUNwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjIzMy8wOEYwNTI2MEIzNzgxMUVGODgzMjJCMEZDNEY5QUUwMi9Ubldhc3Q0a1ZH bjRNUnVTYzdWVk9INTFDcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPJI6b3OVtdaXJVNgE3xvC5Hq+1qMO7JRPf8/RYzLaM/tFyCNeXaCV ygQNSmJWF80D1vWeI0hRtcngApzT0bdAH7KahoBnrK+uo0saZaLX6cn74rZxfGee 3eB9k4FD1sSRIHvmwehVazHuWvdwKQE3q850smME2UPVmg630qihA4av3i//7vkK SArnR43Xn0nGlbpzjWaZ28so5q47mvkPGHiYDGs+jXbEuvZOgI8Z/x5UgUdtEgzi F1A1enO67emKW1RganMENbXeHDUmSSEQCbKTqkaqUyOX+rNhDa0O8qF4mf/UCMPs xgI/E8VR/goAsFaS1bslJ/7NX3Yy5kDu -----END CERTIFICATE-----Generated at Sat Sep 6 21:13:17 2025 by rpki-client