$ rpki-client -vvf rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft File: TCISGt-uP1dSgBZRUcP9MOOq_QE.mft (raw, json) Hash identifier: b5lUg+UYDk84k8bqV2EMKtmc/gK0is+a9+HFc0xX0Zc= Subject key identifier: F6:9D:32:10:62:AB:82:F8:07:8C:C2:2C:3C:AD:97:34:6F:06:4A:7C Authority key identifier: 4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 Certificate issuer: /CN=A91466E8/serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft Manifest number: 7D Signing time: Sun 19 Oct 2025 10:04:21 +0000 Manifest this update: Sun 19 Oct 2025 10:04:21 +0000 Manifest next update: Sun 26 Oct 2025 10:04:21 +0000 Files and hashes: 1: TCISGt-uP1dSgBZRUcP9MOOq_QE.crl (hash: dhpUUNjfYai4R5gGysS8J8m5OF9KUKtM0Zfo3l0rTHA=) 2: 02640B0CF97911EF99F9BE80C4F9AE02.roa (hash: NYtoABq9iaZ7RDTNr8tHyhssdbHGRtrQu/5JhSbINm0=) 3: 67CB5FC0629411F0B7FA070FC4F9AE02.roa (hash: ezXoOJmaQ+T0/SBG+83qcx+7CgpMAs0wB76/qo16lME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91466E8, serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Validity Not Before: Oct 19 10:04:21 2025 GMT Not After : Oct 26 10:04:21 2025 GMT Subject: CN=68f4b7a5-c55c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:bc:0d:6d:7a:81:05:7f:de:20:be:20:ad:2f: a9:c5:7d:ad:20:dd:76:45:81:9f:ce:8a:5b:19:99: ce:cf:6d:6c:9a:ee:60:6d:00:0e:e4:aa:66:14:8b: 35:c7:be:32:be:cb:9f:3e:f0:87:f2:86:c5:29:0d: 87:96:b8:ec:31:05:8a:2c:ae:c3:27:29:1f:1a:5a: 21:29:87:0b:70:69:32:b5:f6:17:dd:2f:5b:92:ce: 02:5b:74:46:7c:ef:c5:08:72:3e:f8:4d:12:4c:be: ed:12:77:4b:c2:9e:d5:cd:90:08:0c:ee:12:62:ba: 90:64:7f:0b:a6:41:60:e0:57:6f:4b:78:7e:f5:08: 91:93:58:9d:8c:52:86:2d:48:57:15:08:fd:80:b4: 18:b8:38:d8:1b:5e:b5:43:3e:38:7a:78:85:0c:15: 93:0e:a6:0e:8c:ef:5d:e0:71:cd:0c:19:88:1d:5f: 28:5d:44:8c:d5:30:cc:ae:cc:f1:49:86:ec:80:0d: 88:55:5e:09:23:9b:09:94:9e:8e:2e:3f:e1:21:f5: 5d:f1:08:04:5a:48:ba:a7:fd:a1:51:c2:b3:21:74: 75:29:fb:f7:9b:99:e2:e5:16:93:8e:10:ad:14:49: 5d:9b:af:9e:3c:0f:ed:e8:42:97:2d:38:8e:07:3d: 92:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:9D:32:10:62:AB:82:F8:07:8C:C2:2C:3C:AD:97:34:6F:06:4A:7C X509v3 Authority Key Identifier: keyid:4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:0c:7f:54:23:da:7b:a8:d0:c2:24:8a:06:c8:31:c9:8b:dd: 4b:5b:67:a2:b1:33:ad:18:8e:62:a4:25:9d:f8:8c:cc:9f:b8: 91:d4:02:92:ca:78:db:0b:03:e4:9c:e5:e7:e8:fe:e7:30:55: ac:d2:13:a8:5b:c7:66:5a:e7:55:5f:08:25:cf:85:54:36:5b: d5:d5:a9:27:ed:88:5f:09:21:61:43:13:d4:96:59:2d:ac:16: 0f:b3:13:90:58:16:6c:f6:cb:cc:6c:80:69:47:66:97:cf:32: 89:d9:0a:3a:f7:3a:74:10:90:b5:cd:e1:3c:aa:3a:f6:0f:6e: 2a:c1:93:84:21:3d:11:25:64:17:3d:bb:32:df:f6:20:f1:43: 9b:6e:97:a2:65:09:e8:f7:75:4f:a1:91:94:81:0b:76:04:02: 03:c6:be:90:65:7c:38:f3:db:59:d9:0f:82:b5:bb:4a:2c:96: c7:37:d2:76:03:46:c0:e9:70:a2:3a:81:dd:1e:fa:c8:63:62: 77:cd:58:39:e8:c3:64:85:75:9e:01:77:94:bb:1c:83:b0:47: cc:36:bd:26:5f:15:3e:ca:34:a7:28:1c:09:ed:76:2e:a7:d1: 57:73:06:80:40:4d:1a:f1:75:e2:87:fa:fd:5d:41:59:c5:87: e9:ae:e2:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY2RTgxMTAvBgNVBAUTKDRDMjIxMjFBREZBRTNGNTc1MjgwMTY1MTUxQzNGRDMw RTNBQUZEMDEwHhcNMjUxMDE5MTAwNDIxWhcNMjUxMDI2MTAwNDIxWjAYMRYwFAYD VQQDEw02OGY0YjdhNS1jNTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7wNbXqBBX/eIL4grS+pxX2tIN12RYGfzopbGZnOz21smu5gbQAO5KpmFIs1 x74yvsufPvCH8obFKQ2HlrjsMQWKLK7DJykfGlohKYcLcGkytfYX3S9bks4CW3RG fO/FCHI++E0STL7tEndLwp7VzZAIDO4SYrqQZH8LpkFg4FdvS3h+9QiRk1idjFKG LUhXFQj9gLQYuDjYG161Qz44eniFDBWTDqYOjO9d4HHNDBmIHV8oXUSM1TDMrszx SYbsgA2IVV4JI5sJlJ6OLj/hIfVd8QgEWki6p/2hUcKzIXR1Kfv3m5ni5RaTjhCt FEldm6+ePA/t6EKXLTiOBz2SXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPadMhBi q4L4B4zCLDytlzRvBkp8MB8GA1UdIwQYMBaAFEwiEhrfrj9XUoAWUVHD/TDjqv0B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjZFOC9EODM4OEQzNEYz RkMxMUVGOTI2Q0U2MzBDNEY5QUUwMi9UQ0lTR3QtdVAxZFNnQlpSVWNQOU1PT3Ff UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDSVNHdC11UDFkU2dCWlJVY1A5TU9PcV9RRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjZFOC9EODM4OEQzNEYzRkMxMUVGOTI2Q0U2MzBDNEY5QUUwMi9UQ0lTR3QtdVAx ZFNnQlpSVWNQOU1PT3FfUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1DH9UI9p7qNDCJIoGyDHJi91LW2eisTOtGI5ipCWd+IzMn7iR1AKS ynjbCwPknOXn6P7nMFWs0hOoW8dmWudVXwglz4VUNlvV1akn7YhfCSFhQxPUllkt rBYPsxOQWBZs9svMbIBpR2aXzzKJ2Qo69zp0EJC1zeE8qjr2D24qwZOEIT0RJWQX Pbsy3/Yg8UObbpeiZQno93VPoZGUgQt2BAIDxr6QZXw489tZ2Q+CtbtKLJbHN9J2 A0bA6XCiOoHdHvrIY2J3zVg56MNkhXWeAXeUuxyDsEfMNr0mXxU+yjSnKBwJ7XYu p9FXcwaAQE0a8XXih/r9XUFZxYfpruK3 -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:26 2025 by rpki-client