$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft File: TSeJUeK9itKFuUCo6p5X43lxHms.mft (raw, json) Hash identifier: WxfD3eOLBpa6fRR7vWkkU4lbgjA9i6yC1nP2UYS6SBU= Subject key identifier: AA:EB:EC:95:9A:5C:FA:BD:E6:03:BD:32:EA:61:8C:68:F9:C6:DE:A6 Authority key identifier: 4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B Certificate issuer: /CN=A91342C5/serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Certificate serial: 03B8 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft Manifest number: 03B3 Signing time: Sat 23 Aug 2025 00:59:16 +0000 Manifest this update: Sat 23 Aug 2025 00:59:16 +0000 Manifest next update: Sat 30 Aug 2025 00:59:16 +0000 Files and hashes: 1: TSeJUeK9itKFuUCo6p5X43lxHms.crl (hash: hFGXao8sckXYM+9AaNddKpr2xisZcsfgAn2gzw5PeFQ=) 2: E8E194B8A5CC11EC85A86A1FC4F9AE02.roa (hash: ypQGr8fcGrxnVWfQ2RrFsZZ4R7tmsDgEITmj6bx0ScA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:59:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 952 (0x3b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Validity Not Before: Aug 23 00:59:16 2025 GMT Not After : Aug 30 00:59:16 2025 GMT Subject: CN=68a91264-57f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c3:77:40:f2:65:95:3d:ed:0a:38:3c:bd:f8: 33:3c:de:b0:e3:d6:76:f2:9e:cc:af:09:66:2d:88: a3:64:94:f1:41:1b:7c:cc:d3:0c:23:15:81:39:53: 62:f8:3c:2c:7c:a3:b2:47:33:62:e7:7b:bc:03:90: 2f:6c:b6:26:e8:2a:fc:cc:82:73:72:a6:75:16:1b: 42:76:b4:61:6b:5d:78:5c:bf:b2:34:d6:7a:d2:b4: ee:a2:02:53:fe:8e:1b:68:35:51:a9:d9:85:e3:ce: e7:3a:32:87:ca:cd:8f:12:ac:ed:2d:da:6a:48:ae: 0c:6c:dd:6f:b7:4d:0e:f0:c6:22:33:20:2f:87:9c: 59:f3:4b:fc:31:33:6b:d7:ac:57:e4:43:94:a0:7e: 65:65:6c:ff:45:e1:53:d3:88:68:22:5d:da:2d:f3: ad:11:94:89:30:e3:4a:d8:8a:cf:02:9e:d9:6a:30: be:47:d9:b5:30:03:48:81:a7:b5:04:a4:2c:fc:53: 14:4c:03:bd:90:12:e3:4f:51:fd:ea:f0:19:05:98: 21:b4:11:3d:ac:94:ce:43:86:1f:14:f9:7c:c0:28: dc:58:dc:ff:40:db:7e:86:42:93:28:2f:94:ef:65: 78:64:85:12:fc:d8:bc:9e:99:33:00:67:a8:d5:b6: f7:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:EB:EC:95:9A:5C:FA:BD:E6:03:BD:32:EA:61:8C:68:F9:C6:DE:A6 X509v3 Authority Key Identifier: keyid:4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:e0:90:47:cd:9f:51:a1:02:d2:e2:58:68:c2:57:f8:3d:be: 2b:9c:48:7d:65:3e:a6:a3:c0:66:0a:14:ed:3e:40:18:05:ca: a4:3b:6c:5a:98:77:35:00:9f:2a:78:01:f0:d1:b5:ef:fc:eb: f0:f5:23:49:e2:5c:06:6f:ed:60:08:6d:12:22:4d:e7:b3:b6: 3c:a4:d2:af:58:e5:7b:64:8f:02:c1:d7:c3:43:48:91:a9:2c: 95:a4:ac:14:a6:6e:c8:f6:de:1d:f1:49:9b:cd:21:ae:aa:8d: b7:30:f7:b5:ca:b4:99:96:a0:da:01:b0:3c:e8:12:5a:58:97: 85:4c:7b:9d:27:31:88:87:3c:a9:84:32:13:14:10:f9:d7:5e: 80:34:41:bd:82:99:02:de:29:88:5d:60:69:c7:ff:b6:a3:e0: ed:d9:56:13:6f:50:f5:53:be:cb:a0:11:41:a7:2e:03:c6:8d: d1:3b:01:84:74:ca:c4:c4:e3:2c:22:e1:24:26:ad:c3:c0:b3: 5e:03:11:90:1f:f8:2d:a5:9e:53:c0:e9:0d:cc:20:84:14:d2: c2:b6:78:f4:40:27:1f:9a:9e:fd:9a:92:31:52:b8:bb:e8:94: 1d:a2:ef:bc:3b:23:24:52:02:80:d2:c1:9c:74:84:ff:e8:f4: c3:ad:6c:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDREMjc4OTUxRTJCRDhBRDI4NUI5NDBBOEVBOUU1N0Uz Nzk3MTFFNkIwHhcNMjUwODIzMDA1OTE2WhcNMjUwODMwMDA1OTE2WjAYMRYwFAYD VQQDEw02OGE5MTI2NC01N2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8N3QPJllT3tCjg8vfgzPN6w49Z28p7MrwlmLYijZJTxQRt8zNMMIxWBOVNi +DwsfKOyRzNi53u8A5AvbLYm6Cr8zIJzcqZ1FhtCdrRha114XL+yNNZ60rTuogJT /o4baDVRqdmF487nOjKHys2PEqztLdpqSK4MbN1vt00O8MYiMyAvh5xZ80v8MTNr 16xX5EOUoH5lZWz/ReFT04hoIl3aLfOtEZSJMONK2IrPAp7ZajC+R9m1MANIgae1 BKQs/FMUTAO9kBLjT1H96vAZBZghtBE9rJTOQ4YfFPl8wCjcWNz/QNt+hkKTKC+U 72V4ZIUS/Ni8npkzAGeo1bb3YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrr7JWa XPq95gO9MuphjGj5xt6mMB8GA1UdIwQYMBaAFE0niVHivYrShblAqOqeV+N5cR5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xNjYzN0MyRUE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0S0Z1VUNvNnA1WDQzbHhI bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1RTZUpVZUs5aXRLRnVVQ282cDVYNDNseEhtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xNjYzN0MyRUE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0 S0Z1VUNvNnA1WDQzbHhIbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR4JBHzZ9RoQLS4lhowlf4Pb4rnEh9ZT6mo8BmChTtPkAYBcqkO2xa mHc1AJ8qeAHw0bXv/Ovw9SNJ4lwGb+1gCG0SIk3ns7Y8pNKvWOV7ZI8CwdfDQ0iR qSyVpKwUpm7I9t4d8UmbzSGuqo23MPe1yrSZlqDaAbA86BJaWJeFTHudJzGIhzyp hDITFBD5116ANEG9gpkC3imIXWBpx/+2o+Dt2VYTb1D1U77LoBFBpy4Dxo3ROwGE dMrExOMsIuEkJq3DwLNeAxGQH/gtpZ5TwOkNzCCEFNLCtnj0QCcfmp79mpIxUri7 6JQdou+8OyMkUgKA0sGcdIT/6PTDrWy+ -----END CERTIFICATE-----Generated at Sat Aug 23 13:40:13 2025 by rpki-client