$ rpki-client -vvf rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft File: TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft (raw, json) Hash identifier: FZ8gQx1ouEGqHPd02wQOy8EHW3G/Wd5QLHvnlwa+k88= Subject key identifier: E2:22:1F:47:97:31:82:7B:E3:9A:C2:EB:0C:FB:7A:E8:7F:AB:45:21 Authority key identifier: 4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 Certificate issuer: /CN=A91716DE/serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Certificate serial: 0432 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft Manifest number: 042A Signing time: Sat 23 Aug 2025 00:33:23 +0000 Manifest this update: Sat 23 Aug 2025 00:33:22 +0000 Manifest next update: Sat 30 Aug 2025 00:33:22 +0000 Files and hashes: 1: TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl (hash: 1pvU6tNfJwZ/LZTBDg/f8XcTGStAwPJuLUaJlzzRGZ0=) 2: E2348176D54D11EF8A899250C4F9AE02.roa (hash: vU7fQooVaJk/8bmjfMJwzmIcKpCJVNxNvX0SFPwtzeQ=) 3: 75FC6CC2753711EC9091CB62C4F9AE02.roa (hash: GmAluyp1SMa2XHtQwLg3qsZiugrvAjRv/8qqPdWoOr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1074 (0x432) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91716DE, serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Validity Not Before: Aug 23 00:33:22 2025 GMT Not After : Aug 30 00:33:22 2025 GMT Subject: CN=68a90c53-09f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:4b:b9:9b:43:25:44:43:dd:03:8e:15:b5:e6: a8:04:e5:bf:e4:05:97:f7:ad:de:8b:8b:da:91:d3: 7c:90:8d:c5:8d:a6:06:20:01:a3:cb:13:be:38:fb: 77:a4:60:a2:8a:47:1e:df:60:45:03:53:4c:cf:a8: 29:46:cd:63:63:39:4b:db:c4:b5:56:84:fe:3a:da: e2:9c:40:c0:09:20:e9:2f:22:f3:9c:1d:c3:10:94: 7e:02:1a:e6:11:ae:7c:d8:48:71:5d:98:e0:c3:b0: 51:55:af:9c:b6:95:27:e8:7f:28:1d:69:3a:a9:7a: 6c:5f:58:0f:90:6e:74:a4:8f:ce:99:73:f3:d8:45: e3:85:78:0b:e9:2a:8c:12:55:3c:65:35:a9:e8:e2: 8c:e5:dc:3a:49:50:89:ec:e8:e0:28:95:d6:aa:66: 4e:4c:e8:4b:9d:6d:2c:01:5c:ec:16:89:86:6b:c0: 80:99:6c:d8:52:b6:9a:f2:43:0d:ea:69:73:07:d3: c3:e3:06:cc:18:ce:1c:8a:0b:46:1e:4a:46:c3:49: 99:d8:e1:a0:f3:58:fa:6b:a6:ab:a4:89:02:56:ca: 92:7f:15:e8:01:8a:32:52:2a:8a:75:27:ac:bd:2c: 87:5f:2b:94:92:74:93:17:a1:93:a2:8d:5a:45:e1: 1a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:22:1F:47:97:31:82:7B:E3:9A:C2:EB:0C:FB:7A:E8:7F:AB:45:21 X509v3 Authority Key Identifier: keyid:4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:08:34:6f:db:2b:9c:30:89:98:88:40:1a:45:98:f7:1a:09: f7:a0:ce:a7:ac:fa:5d:29:87:07:0d:0a:a4:11:4d:11:28:14: 4a:52:16:ce:e7:df:e8:f2:6c:c8:40:4a:db:a7:f1:55:fc:51: eb:52:ed:01:24:d9:b6:cf:08:a4:27:6d:c1:0a:82:0a:cb:12: c9:a9:7e:42:5e:58:b8:68:f8:50:30:e5:6f:8e:e8:b4:03:3b: fb:e5:13:5e:6a:8f:0f:21:79:9f:0c:8b:9f:d2:99:1c:eb:08: e7:35:a8:47:49:b0:cc:a7:5f:f6:7b:9c:2c:4f:ef:0b:60:49: 68:bd:b4:d8:d3:a9:33:75:2e:10:56:d0:17:04:6f:e5:25:14: cb:fe:fb:72:32:95:e5:43:3b:96:df:4e:4c:f7:ca:46:13:2f: 03:d4:c6:e7:a4:b4:59:16:9f:05:47:31:1c:2d:13:05:fe:c0: a7:08:e5:dc:7c:7e:70:53:28:f1:7a:96:43:a4:86:44:de:65: d9:6c:54:43:20:0d:df:65:ac:22:1f:d6:b6:98:bf:dd:f8:74: c0:93:5f:5e:48:53:6d:28:92:b6:25:ce:0e:f1:57:67:91:2a: 80:28:02:df:99:dc:68:9d:08:36:7f:41:d9:87:ae:41:6c:e7: 6a:3b:f8:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2REUxMTAvBgNVBAUTKDRDQzkwNEU5NEM1QzlCOTNBNDRBNEY2NUVGQjIwQTgw MEQ2REQ3RTcwHhcNMjUwODIzMDAzMzIyWhcNMjUwODMwMDAzMzIyWjAYMRYwFAYD VQQDEw02OGE5MGM1My0wOWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0u5m0MlREPdA44VteaoBOW/5AWX963ei4vakdN8kI3FjaYGIAGjyxO+OPt3 pGCiikce32BFA1NMz6gpRs1jYzlL28S1VoT+OtrinEDACSDpLyLznB3DEJR+Ahrm Ea582EhxXZjgw7BRVa+ctpUn6H8oHWk6qXpsX1gPkG50pI/OmXPz2EXjhXgL6SqM ElU8ZTWp6OKM5dw6SVCJ7OjgKJXWqmZOTOhLnW0sAVzsFomGa8CAmWzYUraa8kMN 6mlzB9PD4wbMGM4cigtGHkpGw0mZ2OGg81j6a6arpIkCVsqSfxXoAYoyUiqKdSes vSyHXyuUknSTF6GToo1aReEarwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOIiH0eX MYJ745rC6wz7euh/q0UhMB8GA1UdIwQYMBaAFEzJBOlMXJuTpEpPZe+yCoANbdfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTZERS84RjM0MEREMDc1 MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201T2tTazlsNzdJS2dBMXQx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RNa0U2VXhjbTVPa1NrOWw3N0lLZ0ExdDEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTZERS84RjM0MEREMDc1MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201 T2tTazlsNzdJS2dBMXQxLWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGCDRv2yucMImYiEAaRZj3Ggn3oM6nrPpdKYcHDQqkEU0RKBRKUhbO 59/o8mzIQErbp/FV/FHrUu0BJNm2zwikJ23BCoIKyxLJqX5CXli4aPhQMOVvjui0 Azv75RNeao8PIXmfDIuf0pkc6wjnNahHSbDMp1/2e5wsT+8LYElovbTY06kzdS4Q VtAXBG/lJRTL/vtyMpXlQzuW305M98pGEy8D1MbnpLRZFp8FRzEcLRMF/sCnCOXc fH5wUyjxepZDpIZE3mXZbFRDIA3fZawiH9a2mL/d+HTAk19eSFNtKJK2Jc4O8Vdn kSqAKALfmdxonQg2f0HZh65BbOdqO/h1 -----END CERTIFICATE-----Generated at Sun Aug 24 06:46:49 2025 by rpki-client