$ rpki-client -vvf rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft File: TCISGt-uP1dSgBZRUcP9MOOq_QE.mft (raw, json) Hash identifier: RLsZ29hKLupS4WFAvkRzWIbdShfxgCRdLgJXSaCRUtM= Subject key identifier: 0A:17:43:D6:1F:06:E4:B7:59:CB:C3:F1:49:D5:58:49:90:73:28:56 Authority key identifier: 4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 Certificate issuer: /CN=A91466E8/serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft Manifest number: 60 Signing time: Sat 23 Aug 2025 07:21:15 +0000 Manifest this update: Sat 23 Aug 2025 07:21:15 +0000 Manifest next update: Sat 30 Aug 2025 07:21:14 +0000 Files and hashes: 1: TCISGt-uP1dSgBZRUcP9MOOq_QE.crl (hash: 1hjD4ouXtZp7XKdJ2yy8++yRv/u8PB3bD4rn+F16X1s=) 2: 02640B0CF97911EF99F9BE80C4F9AE02.roa (hash: NYtoABq9iaZ7RDTNr8tHyhssdbHGRtrQu/5JhSbINm0=) 3: 67CB5FC0629411F0B7FA070FC4F9AE02.roa (hash: ezXoOJmaQ+T0/SBG+83qcx+7CgpMAs0wB76/qo16lME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91466E8, serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Validity Not Before: Aug 23 07:21:15 2025 GMT Not After : Aug 30 07:21:14 2025 GMT Subject: CN=68a96beb-bdd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fe:7a:fa:69:3c:76:c3:5e:22:45:e3:5b:de: 7d:17:b7:13:f2:ee:fb:18:9c:a5:ab:3b:8d:d4:47: af:f0:23:6b:e0:45:ec:c1:2b:91:ba:0c:6f:a6:a6: a0:0a:40:78:20:6a:c3:74:a1:40:45:8a:1a:3d:f5: 71:f1:7f:0e:37:e3:ec:d6:99:4b:41:19:4e:6d:8d: 30:f8:1f:0e:c2:5e:55:40:98:9f:42:bc:91:75:ad: aa:6a:a5:77:74:b2:36:77:49:04:a6:02:8f:82:45: ac:bf:81:bd:61:45:92:e9:4d:db:56:4f:7c:b3:3e: 4f:fc:a1:a5:33:55:20:27:28:b0:69:dd:21:32:d4: 86:3c:4b:68:40:0e:77:a0:19:d6:8b:b7:55:0e:4b: 46:89:0a:cd:1d:7f:64:96:7f:43:93:68:1c:09:61: 94:74:4d:f1:91:6f:0f:4f:5e:26:17:c3:dc:67:c9: 25:e7:d2:19:31:34:70:08:29:88:93:61:0a:df:23: f2:7d:cf:7d:16:16:c4:a0:a0:38:07:d2:f7:d0:c5: ac:f5:5c:74:b5:c8:8f:77:cd:bd:3a:f9:f4:94:82: 55:c9:d1:de:70:eb:3e:66:43:51:1e:23:93:c3:e2: 93:69:f2:b7:e2:97:0e:2d:ea:3f:fd:a3:90:22:48: a1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:17:43:D6:1F:06:E4:B7:59:CB:C3:F1:49:D5:58:49:90:73:28:56 X509v3 Authority Key Identifier: keyid:4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:99:e4:b5:cf:54:72:e7:09:39:4d:aa:de:10:ef:62:b6:05: 56:79:f2:d2:5a:8f:46:74:85:84:c6:f2:64:02:10:02:7b:30: 00:06:f1:45:fc:d4:28:44:a3:49:fb:bd:5f:4e:c3:96:85:b3: d9:41:57:4e:2f:5e:79:31:ac:36:fe:7d:6a:52:ea:97:5c:1a: fd:e2:1a:3a:2f:cd:0a:db:26:81:ee:b6:7b:02:5e:27:9c:ba: 25:e2:80:d4:cb:d4:86:5c:00:b5:f5:ad:98:d8:24:d8:e3:05: c1:a4:59:8e:fd:29:2e:a1:6c:68:99:52:79:f5:06:ef:e3:80: 14:53:b5:ba:2a:0f:70:57:05:95:ae:ec:23:fb:78:c1:52:91: 2f:aa:3f:85:cb:03:1d:28:3f:f5:fd:8d:11:59:c5:48:68:58: 52:49:15:72:57:fb:99:32:57:ee:d7:2a:60:d9:24:20:2e:59: c2:db:e0:58:ab:61:91:99:7d:7b:f9:e4:db:8d:e1:3d:4c:fe: 49:e9:b8:cc:93:fb:6b:35:5f:ce:a7:16:db:aa:b6:6c:dc:67: e9:0f:27:6c:84:8a:b8:21:5d:25:ff:3b:ee:6f:e9:66:69:8a: 7b:09:a0:16:29:a3:9c:39:97:06:13:33:d4:ef:7b:70:99:92: 08:50:fc:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NjZFODExMC8GA1UEBRMoNEMyMjEyMUFERkFFM0Y1NzUyODAxNjUxNTFDM0ZEMzBF M0FBRkQwMTAeFw0yNTA4MjMwNzIxMTVaFw0yNTA4MzAwNzIxMTRaMBgxFjAUBgNV BAMTDTY4YTk2YmViLWJkZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0/nr6aTx2w14iReNb3n0XtxPy7vsYnKWrO43UR6/wI2vgRezBK5G6DG+mpqAK QHggasN0oUBFiho99XHxfw434+zWmUtBGU5tjTD4Hw7CXlVAmJ9CvJF1rapqpXd0 sjZ3SQSmAo+CRay/gb1hRZLpTdtWT3yzPk/8oaUzVSAnKLBp3SEy1IY8S2hADneg GdaLt1UOS0aJCs0df2SWf0OTaBwJYZR0TfGRbw9PXiYXw9xnySXn0hkxNHAIKYiT YQrfI/J9z30WFsSgoDgH0vfQxaz1XHS1yI93zb06+fSUglXJ0d5w6z5mQ1EeI5PD 4pNp8rfilw4t6j/9o5AiSKEfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUChdD1h8G 5LdZy8PxSdVYSZBzKFYwHwYDVR0jBBgwFoAUTCISGt+uP1dSgBZRUcP9MOOq/QEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2NkU4L0Q4Mzg4RDM0RjNG QzExRUY5MjZDRTYzMEM0RjlBRTAyL1RDSVNHdC11UDFkU2dCWlJVY1A5TU9PcV9R RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVENJU0d0LXVQMWRTZ0JaUlVjUDlNT09xX1FFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2 NkU4L0Q4Mzg4RDM0RjNGQzExRUY5MjZDRTYzMEM0RjlBRTAyL1RDSVNHdC11UDFk U2dCWlJVY1A5TU9PcV9RRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHWZ5LXPVHLnCTlNqt4Q72K2BVZ58tJaj0Z0hYTG8mQCEAJ7MAAG8UX8 1ChEo0n7vV9Ow5aFs9lBV04vXnkxrDb+fWpS6pdcGv3iGjovzQrbJoHutnsCXiec uiXigNTL1IZcALX1rZjYJNjjBcGkWY79KS6hbGiZUnn1Bu/jgBRTtboqD3BXBZWu 7CP7eMFSkS+qP4XLAx0oP/X9jRFZxUhoWFJJFXJX+5kyV+7XKmDZJCAuWcLb4Fir YZGZfXv55NuN4T1M/knpuMyT+2s1X86nFtuqtmzcZ+kPJ2yEirghXSX/O+5v6WZp insJoBYpo5w5lwYTM9Tve3CZkghQ/DM= -----END CERTIFICATE-----Generated at Sun Aug 24 00:15:52 2025 by rpki-client