$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEB37/3CB779E0F5F711EFB82EFD6BC4F9AE02/TmiwSN0926X0ePH9KIqGGLqfq6o.mft File: TmiwSN0926X0ePH9KIqGGLqfq6o.mft (raw, json) Hash identifier: JaKgNPqxOBIcAHZyB8neWWJ6bfdUC/iyTx9eORmbROQ= Subject key identifier: 0C:26:37:35:79:8C:23:03:FC:9F:4A:48:BA:3C:CB:3D:B4:34:F1:0C Authority key identifier: 4E:68:B0:48:DD:3D:DB:A5:F4:78:F1:FD:28:8A:86:18:BA:9F:AB:AA Certificate issuer: /CN=A91FEB37/serialNumber=4E68B048DD3DDBA5F478F1FD288A8618BA9FABAA Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TmiwSN0926X0ePH9KIqGGLqfq6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEB37/3CB779E0F5F711EFB82EFD6BC4F9AE02/TmiwSN0926X0ePH9KIqGGLqfq6o.mft Manifest number: 66 Signing time: Fri 05 Sep 2025 07:32:46 +0000 Manifest this update: Fri 05 Sep 2025 07:32:46 +0000 Manifest next update: Fri 12 Sep 2025 07:32:46 +0000 Files and hashes: 1: TmiwSN0926X0ePH9KIqGGLqfq6o.crl (hash: paX2MtYoDhrumLv+b+axn8sTfwwG2yJl48FV1fthibo=) 2: 0FED0338F66C11EFA1F5216AC4F9AE02.roa (hash: U5ihYANfpqZVv2wTmvSMJeDuFIy+/heVKl2c8EiBKYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEB37/3CB779E0F5F711EFB82EFD6BC4F9AE02/TmiwSN0926X0ePH9KIqGGLqfq6o.crl rsync://rpki.apnic.net/member_repository/A91FEB37/3CB779E0F5F711EFB82EFD6BC4F9AE02/TmiwSN0926X0ePH9KIqGGLqfq6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TmiwSN0926X0ePH9KIqGGLqfq6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:32:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEB37, serialNumber=4E68B048DD3DDBA5F478F1FD288A8618BA9FABAA Validity Not Before: Sep 5 07:32:46 2025 GMT Not After : Sep 12 07:32:46 2025 GMT Subject: CN=68ba921e-f96d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:55:c8:c5:02:24:c8:59:9b:e9:f4:f7:da:a9: fc:47:82:a1:67:61:48:4a:2d:f4:b8:4f:c5:6e:9d: 1c:39:39:c1:a9:a1:62:fe:e1:cc:9a:e4:90:b9:6b: 9e:7d:00:d6:77:b3:d8:4b:36:06:40:42:49:82:e4: 43:89:60:65:22:6e:49:7e:85:7d:ca:1d:54:56:4b: 0b:2c:f9:ba:5e:a0:d2:45:a0:cf:f5:45:ca:5a:fd: 06:61:4f:20:88:25:4e:1a:38:56:17:af:b4:f0:d4: bc:af:f2:50:96:c6:5d:a4:e1:de:e6:7e:04:1f:5d: ed:3b:6c:a9:00:83:13:d0:53:22:2e:86:0c:0c:98: dd:8c:ae:8e:08:10:fe:5d:a5:6e:ab:45:d7:1d:a2: 2f:2a:cd:b5:b8:c9:69:cb:d8:4a:51:95:d5:ae:30: 7a:e3:79:ee:50:f5:d3:37:d6:2d:dd:8b:ff:0f:57: 60:4d:34:94:52:4a:85:ff:92:60:59:ba:80:6b:90: 64:fe:85:22:e6:91:c5:68:39:3c:40:bf:09:1b:12: 1a:38:1a:cb:61:9b:6b:7e:d1:1b:bc:b8:31:9e:a0: 21:d9:54:87:5c:16:b6:96:79:11:15:e5:b1:51:91: d8:60:48:79:eb:fe:42:41:42:d5:43:4b:83:4b:0c: fd:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:26:37:35:79:8C:23:03:FC:9F:4A:48:BA:3C:CB:3D:B4:34:F1:0C X509v3 Authority Key Identifier: keyid:4E:68:B0:48:DD:3D:DB:A5:F4:78:F1:FD:28:8A:86:18:BA:9F:AB:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEB37/3CB779E0F5F711EFB82EFD6BC4F9AE02/TmiwSN0926X0ePH9KIqGGLqfq6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TmiwSN0926X0ePH9KIqGGLqfq6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEB37/3CB779E0F5F711EFB82EFD6BC4F9AE02/TmiwSN0926X0ePH9KIqGGLqfq6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:9f:52:99:79:ff:01:1e:98:98:64:b3:3b:2e:22:7a:df:15: 38:05:f3:35:fc:1b:dd:19:b0:df:14:ff:c8:52:1f:b1:dd:a5: 74:43:f3:e4:33:b4:cf:f2:f1:1e:51:25:79:02:f5:50:64:80: fa:42:79:82:98:68:7b:2e:93:d2:17:5b:56:72:36:e3:01:eb: 07:ac:08:1a:89:9d:fb:3d:4f:b7:42:b9:7a:d2:20:3c:66:61: 7c:f9:08:aa:7c:9c:4d:06:9c:5f:7f:e3:42:a9:b3:41:f7:c4: c3:40:d9:2e:51:b3:96:dd:32:98:5e:0a:31:83:20:a4:53:d7: 6f:d4:82:18:3d:81:ff:e8:86:fe:48:65:3a:f0:40:d3:68:9f: 8f:cc:1e:dd:c1:5d:1c:db:d7:6a:03:92:24:49:63:90:f4:3d: b8:28:90:c7:54:d8:5b:c6:9b:b8:d8:84:b2:06:01:2c:b5:f4: 52:87:70:b2:d3:7e:13:d1:18:66:7c:19:77:6d:69:a8:ce:62: 81:7d:91:c5:73:0c:f9:41:06:48:0b:08:6c:ce:46:be:0a:81: dc:4b:c1:53:52:89:81:7b:e3:2e:e2:ac:c2:4d:c3:88:56:b7: e0:ff:c5:26:bb:32:ee:96:f0:5b:a0:2a:82:99:85:36:56:86: 2c:c4:bb:59 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RUIzNzExMC8GA1UEBRMoNEU2OEIwNDhERDNEREJBNUY0NzhGMUZEMjg4QTg2MThC QTlGQUJBQTAeFw0yNTA5MDUwNzMyNDZaFw0yNTA5MTIwNzMyNDZaMBgxFjAUBgNV BAMTDTY4YmE5MjFlLWY5NmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZVcjFAiTIWZvp9PfaqfxHgqFnYUhKLfS4T8VunRw5OcGpoWL+4cya5JC5a559 ANZ3s9hLNgZAQkmC5EOJYGUibkl+hX3KHVRWSwss+bpeoNJFoM/1Rcpa/QZhTyCI JU4aOFYXr7Tw1Lyv8lCWxl2k4d7mfgQfXe07bKkAgxPQUyIuhgwMmN2Mro4IEP5d pW6rRdcdoi8qzbW4yWnL2EpRldWuMHrjee5Q9dM31i3di/8PV2BNNJRSSoX/kmBZ uoBrkGT+hSLmkcVoOTxAvwkbEho4Gsthm2t+0Ru8uDGeoCHZVIdcFraWeREV5bFR kdhgSHnr/kJBQtVDS4NLDP0jAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDCY3NXmM IwP8n0pIujzLPbQ08QwwHwYDVR0jBBgwFoAUTmiwSN0926X0ePH9KIqGGLqfq6ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZFQjM3LzNDQjc3OUUwRjVG NzExRUZCODJFRkQ2QkM0RjlBRTAyL1RtaXdTTjA5MjZYMGVQSDlLSXFHR0xxZnE2 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVG1pd1NOMDkyNlgwZVBIOUtJcUdHTHFmcTZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZF QjM3LzNDQjc3OUUwRjVGNzExRUZCODJFRkQ2QkM0RjlBRTAyL1RtaXdTTjA5MjZY MGVQSDlLSXFHR0xxZnE2by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAESfUpl5/wEemJhkszsuInrfFTgF8zX8G90ZsN8U/8hSH7HdpXRD8+Qz tM/y8R5RJXkC9VBkgPpCeYKYaHsuk9IXW1ZyNuMB6wesCBqJnfs9T7dCuXrSIDxm YXz5CKp8nE0GnF9/40Kps0H3xMNA2S5Rs5bdMpheCjGDIKRT12/Ughg9gf/ohv5I ZTrwQNNon4/MHt3BXRzb12oDkiRJY5D0PbgokMdU2FvGm7jYhLIGASy19FKHcLLT fhPRGGZ8GXdtaajOYoF9kcVzDPlBBkgLCGzORr4KgdxLwVNSiYF74y7irMJNw4hW t+D/xSa7Mu6W8FugKoKZhTZWhizEu1k= -----END CERTIFICATE-----Generated at Sat Sep 6 21:11:00 2025 by rpki-client