$ rpki-client -vvf rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft File: TZRPMLjG5pGYjTAvumwvnFdMBLA.mft (raw, json) Hash identifier: ucBTekxccTj6D3pk3qP2S2HlKMPfyPDQHJ50lV3tbvs= Subject key identifier: E8:A2:92:41:6C:82:12:CB:6E:FF:70:E6:67:1D:65:4F:7D:5F:56:0A Authority key identifier: 4D:94:4F:30:B8:C6:E6:91:98:8D:30:2F:BA:6C:2F:9C:57:4C:04:B0 Certificate issuer: /CN=A914F349/serialNumber=4D944F30B8C6E691988D302FBA6C2F9C574C04B0 Certificate serial: 02FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZRPMLjG5pGYjTAvumwvnFdMBLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft Manifest number: 02F7 Signing time: Sat 23 Aug 2025 01:30:57 +0000 Manifest this update: Sat 23 Aug 2025 01:30:56 +0000 Manifest next update: Sat 30 Aug 2025 01:30:56 +0000 Files and hashes: 1: TZRPMLjG5pGYjTAvumwvnFdMBLA.crl (hash: QvHDy9uMN7E3GbfMxP+roCKXFS7mgb8//qlU9ELF8Vg=) 2: E5A22A7CEDB811ECB7BDFF0AC4F9AE02.roa (hash: pBwxys1yivtkEToGBFIFFmXXN52OvE5FFgRhewDkeko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.crl rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZRPMLjG5pGYjTAvumwvnFdMBLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:30:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 764 (0x2fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F349, serialNumber=4D944F30B8C6E691988D302FBA6C2F9C574C04B0 Validity Not Before: Aug 23 01:30:56 2025 GMT Not After : Aug 30 01:30:56 2025 GMT Subject: CN=68a919d1-3095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1b:11:eb:41:cf:bf:fb:af:03:65:08:de:86: 31:83:4a:fb:e4:4e:7a:5d:d4:27:03:56:af:78:bc: 18:5b:0e:00:87:26:15:64:48:b9:46:77:80:a2:52: 83:98:01:74:05:93:d3:80:be:08:d8:6a:35:28:9e: 1c:d1:a7:50:cb:9a:76:4c:9c:82:e4:90:62:cd:a3: 17:a2:4e:89:7a:45:ae:aa:5e:8b:10:7f:1c:d4:65: 51:d4:7f:09:df:84:78:3d:b0:04:17:78:88:3f:90: fb:58:8d:bd:84:1d:b7:48:7d:90:a7:cb:4a:d0:f5: 3f:be:d2:43:bf:f5:e9:32:c8:e3:5a:d6:d9:20:3a: 8d:37:43:af:1a:e2:a1:4d:9d:55:97:15:a5:cc:dd: 7c:1f:79:ba:66:1c:92:e2:24:58:f9:0d:53:ee:a4: cf:73:18:80:24:92:04:7e:f5:5c:09:a5:6b:76:9f: 1a:00:c0:6d:c7:95:1c:fb:9c:b7:15:25:d1:8e:53: fd:f0:d5:35:3b:1b:1d:c4:5d:1f:35:bd:4f:7b:9a: b9:08:a7:b6:0f:d0:c4:dd:86:4c:67:d6:9c:d9:e5: 7d:33:d3:a4:90:20:17:fe:34:76:ba:bd:30:bc:22: 7d:65:fc:46:58:96:ad:2b:4d:14:e5:9a:50:7c:9a: 04:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:A2:92:41:6C:82:12:CB:6E:FF:70:E6:67:1D:65:4F:7D:5F:56:0A X509v3 Authority Key Identifier: keyid:4D:94:4F:30:B8:C6:E6:91:98:8D:30:2F:BA:6C:2F:9C:57:4C:04:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZRPMLjG5pGYjTAvumwvnFdMBLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:86:d6:d3:08:39:b2:72:ca:5f:b7:13:a1:ab:2a:15:b7:f6: 35:ef:11:44:40:11:30:70:11:28:90:18:74:22:f0:65:02:ed: e5:4b:d3:e1:24:6d:05:a9:2c:a5:7f:33:2c:0e:98:e2:c1:b5: 01:76:e7:cb:0f:1a:14:32:5b:fc:c8:00:97:b3:78:33:1c:b1: 8b:d7:aa:ed:1a:65:46:e3:78:9f:7b:a1:71:1a:46:3a:60:83: f2:8e:bc:13:5a:c9:17:9c:39:82:d9:ad:0c:a4:c8:bb:d3:7a: 15:68:e4:09:06:f3:f7:da:35:eb:8e:69:f7:a8:54:4a:cb:85: fe:f5:1e:b3:6e:29:a5:5a:ec:85:f7:6f:e1:09:e8:1b:5c:93: f0:58:d3:6a:7a:72:d6:ec:d9:ae:1c:5d:46:dd:73:bb:49:32: 95:6d:44:ef:d1:48:35:7c:c0:8c:45:c1:22:8d:47:e9:70:73: de:61:3b:3f:88:c7:c8:37:c2:cc:ad:75:a7:18:8a:65:87:01: 76:f1:8f:0e:34:96:44:9d:30:10:3f:8b:18:40:ef:e0:be:10: 04:33:b5:fc:0b:85:0c:7f:7b:24:e2:0f:3a:3f:a3:3f:01:08: 7a:36:b8:c5:82:20:f5:9b:2a:b9:5c:91:0f:01:83:8e:4c:65: 6f:0e:0e:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzNDkxMTAvBgNVBAUTKDREOTQ0RjMwQjhDNkU2OTE5ODhEMzAyRkJBNkMyRjlD NTc0QzA0QjAwHhcNMjUwODIzMDEzMDU2WhcNMjUwODMwMDEzMDU2WjAYMRYwFAYD VQQDEw02OGE5MTlkMS0zMDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxsR60HPv/uvA2UI3oYxg0r75E56XdQnA1aveLwYWw4AhyYVZEi5RneAolKD mAF0BZPTgL4I2Go1KJ4c0adQy5p2TJyC5JBizaMXok6JekWuql6LEH8c1GVR1H8J 34R4PbAEF3iIP5D7WI29hB23SH2Qp8tK0PU/vtJDv/XpMsjjWtbZIDqNN0OvGuKh TZ1VlxWlzN18H3m6ZhyS4iRY+Q1T7qTPcxiAJJIEfvVcCaVrdp8aAMBtx5Uc+5y3 FSXRjlP98NU1OxsdxF0fNb1Pe5q5CKe2D9DE3YZMZ9ac2eV9M9OkkCAX/jR2ur0w vCJ9ZfxGWJatK00U5ZpQfJoE0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOiikkFs ghLLbv9w5mcdZU99X1YKMB8GA1UdIwQYMBaAFE2UTzC4xuaRmI0wL7psL5xXTASw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjM0OS9DNkY1MDAxQUVE QjExMUVDQUY0MzVDNURDNEY5QUUwMi9UWlJQTUxqRzVwR1lqVEF2dW13dm5GZE1C TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaUlBNTGpHNXBHWWpUQXZ1bXd2bkZkTUJMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjM0OS9DNkY1MDAxQUVEQjExMUVDQUY0MzVDNURDNEY5QUUwMi9UWlJQTUxqRzVw R1lqVEF2dW13dm5GZE1CTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHhtbTCDmycspftxOhqyoVt/Y17xFEQBEwcBEokBh0IvBlAu3lS9Ph JG0FqSylfzMsDpjiwbUBdufLDxoUMlv8yACXs3gzHLGL16rtGmVG43ife6FxGkY6 YIPyjrwTWskXnDmC2a0MpMi703oVaOQJBvP32jXrjmn3qFRKy4X+9R6zbimlWuyF 92/hCegbXJPwWNNqenLW7NmuHF1G3XO7STKVbUTv0Ug1fMCMRcEijUfpcHPeYTs/ iMfIN8LMrXWnGIplhwF28Y8ONJZEnTAQP4sYQO/gvhAEM7X8C4UMf3sk4g86P6M/ AQh6NrjFgiD1myq5XJEPAYOOTGVvDg68 -----END CERTIFICATE-----Generated at Sun Aug 24 00:17:17 2025 by rpki-client