$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: MOEUay5uGNWJDKtdfAHxsVINLUNMTYaThzrvELUfdWg= Subject key identifier: 35:2B:4B:49:44:F5:4A:0C:17:FA:73:4A:01:9F:69:10:15:0E:B5:1F Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 01E0 Signing time: Wed 17 Sep 2025 03:23:21 +0000 Manifest this update: Wed 17 Sep 2025 03:23:21 +0000 Manifest next update: Wed 24 Sep 2025 03:23:21 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: vxkIA89UElYS/OmSmraHJiZwBTXJKKPwUQCrK2uS2dI=) 2: 7D22B44E249D11EFAC24EF6CC4F9AE02.roa (hash: A2YwzeZCV7lXuESZaxuoNr3XCXQA1+q4ChTmE99OOZ8=) 3: 9772767EB69A11EFBEB6CE0CC4F9AE02.roa (hash: 7OwaJrudjWnecoz7BCK7kPXjzB+3R7tWJ8DmqplI2rk=) 4: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: Ah9DA9XDU6AgPBrVhyRA7IEj119ByF47rhFGR96tGKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: Sep 17 03:23:21 2025 GMT Not After : Sep 24 03:23:21 2025 GMT Subject: CN=68ca29a9-8f0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:58:9d:e9:52:9c:90:4c:16:64:48:7c:8f:cf: 2d:c6:dd:d3:d8:da:c8:93:9c:93:ad:38:ed:9f:de: d5:6b:99:63:a3:7f:7f:04:0a:9f:d9:5d:1d:71:ce: bb:bc:1e:b4:b5:22:fc:27:a4:54:b4:b2:53:74:5e: 9d:84:e6:2f:5b:7d:eb:0f:08:e7:0b:c4:6b:40:38: 7e:2b:aa:dc:54:c3:e9:15:f6:2c:d7:cf:3d:c2:df: d8:c7:da:d9:7c:69:be:85:49:c5:08:cf:6f:fe:8a: d8:f5:5f:c6:84:e2:22:da:4d:7e:97:df:89:d0:0b: 8b:af:9c:03:1c:ed:d4:2d:fa:1a:a5:25:cc:4e:a7: 85:59:50:bd:11:69:ff:7b:ff:fb:5d:ec:3e:03:3e: 61:21:b7:20:ae:e9:c1:f4:d9:78:a8:b6:aa:11:75: e9:e3:cc:b9:f8:1e:ad:91:03:67:1d:82:eb:59:6a: c2:c5:a0:ac:13:bc:0b:11:90:4f:09:15:65:a3:30: 8c:de:11:53:69:75:1b:4b:ed:c7:3e:39:29:d5:62: 95:d3:d3:b9:2a:ef:9b:f6:a6:da:e1:ad:ff:de:8c: e7:1b:64:40:f2:8c:59:dc:52:4c:ec:13:ac:dc:c6: 40:33:80:5b:84:29:60:02:b7:54:33:ec:f7:13:30: 24:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:2B:4B:49:44:F5:4A:0C:17:FA:73:4A:01:9F:69:10:15:0E:B5:1F X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:68:33:ca:e3:5d:60:da:7e:30:4a:da:fc:ce:63:cb:79:b4: 41:de:6c:a2:75:ce:7e:6a:ba:52:2d:cc:d8:ef:a4:1d:c6:5b: 80:8d:4b:fc:2d:39:18:1f:00:4e:c6:e0:e9:96:16:36:fa:dd: ea:8e:b4:84:a8:a2:28:52:f3:e8:72:6b:2d:df:00:87:c7:34: 40:fa:49:4a:9c:e7:51:3a:4a:48:f2:5f:42:c5:da:a7:7b:da: 5d:b4:a3:4b:64:44:90:9c:ed:00:f1:72:9e:5d:e9:2b:5f:2f: fc:e6:9d:a0:1d:fe:6a:2a:cc:fd:d9:9f:1c:25:0f:9b:98:4e: f3:fc:24:87:de:a3:ca:0b:7c:23:a5:7b:42:1c:5c:2f:61:b8: 4a:63:d7:73:e2:33:dd:2a:3d:2f:d1:f3:57:e6:6d:bf:d8:63: 78:6f:c8:ae:5c:8a:56:34:bc:26:aa:e5:25:a7:64:9a:cc:fd: fd:27:00:b3:01:22:b6:35:59:93:66:a1:38:35:da:0f:7f:40: 81:d6:87:bd:a5:b2:2a:43:85:3e:9c:aa:13:4b:fc:de:ad:58: a9:e8:fb:42:59:10:1d:8a:e1:e4:d3:f2:1f:79:27:90:bb:29: 12:ef:ea:c0:db:3f:9b:9e:8a:70:e1:22:cd:4c:cd:91:fa:3c: cb:19:9f:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjUwOTE3MDMyMzIxWhcNMjUwOTI0MDMyMzIxWjAYMRYwFAYD VQQDEw02OGNhMjlhOS04ZjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1id6VKckEwWZEh8j88txt3T2NrIk5yTrTjtn97Va5ljo39/BAqf2V0dcc67 vB60tSL8J6RUtLJTdF6dhOYvW33rDwjnC8RrQDh+K6rcVMPpFfYs1889wt/Yx9rZ fGm+hUnFCM9v/orY9V/GhOIi2k1+l9+J0AuLr5wDHO3ULfoapSXMTqeFWVC9EWn/ e//7Xew+Az5hIbcgrunB9Nl4qLaqEXXp48y5+B6tkQNnHYLrWWrCxaCsE7wLEZBP CRVlozCM3hFTaXUbS+3HPjkp1WKV09O5Ku+b9qba4a3/3oznG2RA8oxZ3FJM7BOs 3MZAM4BbhClgArdUM+z3EzAkDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUrS0lE 9UoMF/pzSgGfaRAVDrUfMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRaDPK411g2n4wStr8zmPLebRB3myidc5+arpSLczY76QdxluAjUv8 LTkYHwBOxuDplhY2+t3qjrSEqKIoUvPocmst3wCHxzRA+klKnOdROkpI8l9Cxdqn e9pdtKNLZESQnO0A8XKeXekrXy/85p2gHf5qKsz92Z8cJQ+bmE7z/CSH3qPKC3wj pXtCHFwvYbhKY9dz4jPdKj0v0fNX5m2/2GN4b8iuXIpWNLwmquUlp2SazP39JwCz ASK2NVmTZqE4NdoPf0CB1oe9pbIqQ4U+nKoTS/zerVip6PtCWRAdiuHk0/IfeSeQ uykS7+rA2z+bnopw4SLNTM2R+jzLGZ8d -----END CERTIFICATE-----Generated at Thu Sep 18 18:58:37 2025 by rpki-client