$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: 1QpoHMtwQVFaVx8jlXF3LetaTlmk2Ve/dlnD9Geiggo= Subject key identifier: B9:45:BC:60:A6:43:3F:DD:A8:86:EF:41:C0:86:57:6E:7E:DC:42:7A Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0CAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0C94 Signing time: Fri 22 Aug 2025 18:26:16 +0000 Manifest this update: Fri 22 Aug 2025 18:26:15 +0000 Manifest next update: Fri 29 Aug 2025 18:26:15 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: ql8QccG9gzJLd/QENKtCsgY7m4NAyglpBEGv1Ebgdo4=) 2: E8F85ED4EC5811EFA9B9C618C4F9AE02.roa (hash: ykoz29uCG/11xDnxQBhHvrkmfn5Ejy8eSvfC/XRGcV0=) 3: 47DADED8EC5211EFBF551F6DC4F9AE02.roa (hash: Ns3EqlAuypXsdC/A5rNqIcQNoK/ntkU/96rQkctaiRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:26:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3247 (0xcaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2, serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: Aug 22 18:26:15 2025 GMT Not After : Aug 29 18:26:15 2025 GMT Subject: CN=68a8b647-2982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:53:21:74:4c:5e:bc:2d:79:9b:13:9c:9a:c5: b8:9f:1a:32:11:92:0b:df:2e:dd:10:86:64:cc:83: 83:e0:dc:37:df:8e:6e:31:5e:70:29:4e:1b:76:80: 85:e1:27:c1:b7:f2:f2:3c:c6:00:66:b4:96:4f:7d: fc:3b:05:d5:34:79:20:ad:9c:37:82:b8:ee:00:8d: bb:76:c0:cf:9b:6d:dc:8e:f8:ef:a6:df:1c:ba:80: 4a:bd:91:5b:96:58:12:00:38:c6:c4:cc:45:23:c7: be:bb:11:48:3d:e2:c1:d5:f4:a1:00:fc:1a:8d:63: c9:bb:7e:3f:f0:dd:de:2f:be:d3:6c:50:87:9e:9e: 54:08:78:46:cd:f3:44:e9:75:6d:98:30:1f:9c:75: e3:34:51:68:22:b7:be:56:53:95:a8:45:d0:c7:c3: d9:10:98:ab:31:6b:88:56:01:6d:34:8e:86:2d:6e: 0c:42:78:af:23:2f:74:24:6d:19:29:90:fd:5c:3a: cd:39:3d:3e:58:97:cf:89:2f:68:a4:98:3c:cd:81: 33:86:87:bf:21:f3:07:d2:92:3f:9b:8d:70:f2:13: c1:73:cd:83:42:df:57:bd:af:d3:e3:a5:76:68:4b: d1:11:14:e7:83:14:27:66:11:d2:18:49:41:a6:20: 65:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:45:BC:60:A6:43:3F:DD:A8:86:EF:41:C0:86:57:6E:7E:DC:42:7A X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:ab:f0:72:88:ae:9e:6a:60:74:ba:52:7a:aa:34:6d:2c:9e: 79:d9:a0:bf:a4:40:de:e5:42:6e:96:3b:72:21:2e:f9:21:d9: 82:eb:42:96:e8:50:fc:43:b1:67:3a:41:87:b1:21:33:ba:61: 34:4e:53:15:85:a2:17:cd:cd:ef:12:bd:87:8e:5b:5c:4d:e7: 95:b3:58:bc:e8:22:6a:4d:2e:1b:11:2f:36:44:48:3e:24:c3: 42:50:6e:f0:fc:9c:8f:3c:d1:bf:f3:e8:e9:2e:79:91:3b:df: 13:38:dd:fb:c8:77:78:cc:04:6f:11:90:b8:e8:72:21:21:3c: 8b:57:32:1c:60:e3:df:1b:2f:c8:6a:3f:77:b1:ff:21:35:6f: 43:29:2f:6b:a9:79:02:a6:e4:33:b4:70:8f:0b:cf:59:ff:70: ba:d0:e9:69:9e:1b:df:49:65:6b:30:07:eb:85:93:91:1f:56: 22:c8:79:2e:a7:b9:f3:a8:16:66:c2:e4:48:93:f9:05:c2:37: f4:57:61:3c:7a:02:dd:f9:5f:71:a6:a8:c3:71:ff:33:9c:6b: 85:67:8f:ea:9f:e8:55:e3:60:f3:39:4c:98:47:50:df:d7:61: ce:4e:96:5f:81:15:93:9a:63:82:24:92:8d:63:3d:2c:83:73: db:06:95:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjUwODIyMTgyNjE1WhcNMjUwODI5MTgyNjE1WjAYMRYwFAYD VQQDEw02OGE4YjY0Ny0yOTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FMhdExevC15mxOcmsW4nxoyEZIL3y7dEIZkzIOD4Nw3345uMV5wKU4bdoCF 4SfBt/LyPMYAZrSWT338OwXVNHkgrZw3grjuAI27dsDPm23cjvjvpt8cuoBKvZFb llgSADjGxMxFI8e+uxFIPeLB1fShAPwajWPJu34/8N3eL77TbFCHnp5UCHhGzfNE 6XVtmDAfnHXjNFFoIre+VlOVqEXQx8PZEJirMWuIVgFtNI6GLW4MQnivIy90JG0Z KZD9XDrNOT0+WJfPiS9opJg8zYEzhoe/IfMH0pI/m41w8hPBc82DQt9Xva/T46V2 aEvRERTngxQnZhHSGElBpiBlNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLlFvGCm Qz/dqIbvQcCGV25+3EJ6MB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIq/ByiK6eamB0ulJ6qjRtLJ552aC/pEDe5UJuljtyIS75IdmC60KW 6FD8Q7FnOkGHsSEzumE0TlMVhaIXzc3vEr2HjltcTeeVs1i86CJqTS4bES82REg+ JMNCUG7w/JyPPNG/8+jpLnmRO98TON37yHd4zARvEZC46HIhITyLVzIcYOPfGy/I aj93sf8hNW9DKS9rqXkCpuQztHCPC89Z/3C60OlpnhvfSWVrMAfrhZORH1YiyHku p7nzqBZmwuRIk/kFwjf0V2E8egLd+V9xpqjDcf8znGuFZ4/qn+hV42DzOUyYR1Df 12HOTpZfgRWTmmOCJJKNYz0sg3PbBpXV -----END CERTIFICATE-----Generated at Sun Aug 24 09:05:24 2025 by rpki-client