$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft File: tgQSzpgJwQxn3eq7oOM1462k_hA.mft (raw, json) Hash identifier: LF61y0BXhfdyr05dLqiqNfRtmzMssiICGooZPVWgQtk= Subject key identifier: AF:BF:AF:7A:84:42:20:83:83:62:33:74:31:71:02:D3:2B:82:23:22 Authority key identifier: B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10 Certificate issuer: /CN=A91BF306/serialNumber=B60412CE9809C10C67DDEABBA0E335E3ADA4FE10 Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft Manifest number: 0159 Signing time: Sat 23 Aug 2025 04:14:12 +0000 Manifest this update: Sat 23 Aug 2025 04:14:11 +0000 Manifest next update: Sat 30 Aug 2025 04:14:11 +0000 Files and hashes: 1: tgQSzpgJwQxn3eq7oOM1462k_hA.crl (hash: HhzVDCNuxram0wdqZXyMfPci/UTNbA1lQ0IdbJzhoWE=) 2: 3CED465E8E0811EE8450D961C4F9AE02.roa (hash: cZSiy4bCwDyhfeb/EZhFsCoqJYnevtXYXbg2+tmKMXk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:14:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF306, serialNumber=B60412CE9809C10C67DDEABBA0E335E3ADA4FE10 Validity Not Before: Aug 23 04:14:11 2025 GMT Not After : Aug 30 04:14:11 2025 GMT Subject: CN=68a94014-7b62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:84:aa:f6:cb:3a:aa:6b:9b:46:9d:3d:c8:92: f5:fc:f2:ac:0c:01:85:1c:ee:e5:72:dc:6e:2c:6f: e9:3f:46:b9:b5:cc:bc:ce:f3:f6:aa:b2:b9:e3:7f: 49:43:cc:0e:9a:56:e4:03:fc:ac:c2:01:4d:81:4f: 1a:98:c0:8c:d3:39:57:7d:d3:af:a8:9a:77:85:94: 75:9c:d9:3d:ae:10:5f:0f:45:6f:3b:fe:e6:14:c9: b9:8e:3e:66:14:94:06:aa:5d:65:bc:e1:a2:eb:33: cb:cb:be:17:f5:65:9f:7d:95:f8:90:10:eb:ac:be: 23:15:b5:00:e7:cf:98:1c:be:bc:49:ea:e6:06:ae: ca:41:68:c2:16:8d:41:9a:41:62:05:68:99:be:ae: c0:90:55:c8:15:92:e8:a8:7b:d1:5d:34:a5:ad:d0: 9b:4a:dd:4a:67:9e:6f:2a:43:63:f6:c2:7b:3a:5d: 9e:54:40:a1:ce:e9:1f:01:0b:d5:1c:e6:86:04:94: e0:85:5e:95:ef:c0:16:49:47:9e:04:64:fa:0b:e7: a8:cc:31:43:f2:8a:72:b8:77:5b:08:19:c5:f7:bc: 96:ef:09:35:16:e2:14:de:b0:66:d4:ad:ca:64:15: 44:e8:04:bc:08:6a:84:fc:50:25:d8:6d:a3:62:ea: b1:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:BF:AF:7A:84:42:20:83:83:62:33:74:31:71:02:D3:2B:82:23:22 X509v3 Authority Key Identifier: keyid:B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:bf:14:5b:39:d6:af:c6:d8:31:33:6b:b5:7c:7c:67:d1:b0: 74:69:2f:a3:72:70:79:2e:0e:51:0a:48:63:d8:19:17:a1:90: f3:4d:60:4b:d2:01:72:35:1a:06:31:c7:71:f2:2e:44:39:82: cb:ab:90:bb:99:fb:09:df:ff:cd:5e:49:d7:51:05:26:9e:19: e0:ec:f6:f2:06:e7:05:9d:75:7e:62:ea:e3:b1:4c:d4:30:d0: ff:6f:ef:ff:ae:81:df:b6:5c:84:b4:d2:a1:09:13:2b:eb:d4: ae:a7:36:16:71:ae:cc:6e:d0:6a:26:9b:12:ee:fd:a2:02:3b: 33:71:63:d3:f9:a8:70:1f:70:8a:07:01:25:77:10:de:12:21: 51:9c:ab:a2:b8:82:09:05:ea:cc:1d:7f:e9:ce:4e:7a:b6:d7: 3b:92:b8:a8:83:74:3d:ab:6f:a5:62:9c:56:b8:26:de:7c:63: f4:a7:28:69:87:aa:47:dd:e0:f7:22:eb:58:57:55:d0:2b:a6: f9:c8:1c:d0:36:ad:fb:76:dd:12:ca:2c:5a:d6:35:aa:c2:0f: 3e:92:a3:ec:bf:88:55:1f:11:48:81:e6:be:8e:41:1f:90:a8: 24:aa:9a:25:08:a5:2b:65:db:1c:aa:c6:15:3c:a7:98:33:49: 53:09:57:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYzMDYxMTAvBgNVBAUTKEI2MDQxMkNFOTgwOUMxMEM2N0RERUFCQkEwRTMzNUUz QURBNEZFMTAwHhcNMjUwODIzMDQxNDExWhcNMjUwODMwMDQxNDExWjAYMRYwFAYD VQQDEw02OGE5NDAxNC03YjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYSq9ss6qmubRp09yJL1/PKsDAGFHO7lctxuLG/pP0a5tcy8zvP2qrK5439J Q8wOmlbkA/yswgFNgU8amMCM0zlXfdOvqJp3hZR1nNk9rhBfD0VvO/7mFMm5jj5m FJQGql1lvOGi6zPLy74X9WWffZX4kBDrrL4jFbUA58+YHL68SermBq7KQWjCFo1B mkFiBWiZvq7AkFXIFZLoqHvRXTSlrdCbSt1KZ55vKkNj9sJ7Ol2eVEChzukfAQvV HOaGBJTghV6V78AWSUeeBGT6C+eozDFD8opyuHdbCBnF97yW7wk1FuIU3rBm1K3K ZBVE6AS8CGqE/FAl2G2jYuqxBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+/r3qE QiCDg2IzdDFxAtMrgiMiMB8GA1UdIwQYMBaAFLYEEs6YCcEMZ93qu6DjNeOtpP4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjMwNi8xNzE3OTIwRTcx NkIxMUVFQjE2NzMyNzdDNEY5QUUwMi90Z1FTenBnSndReG4zZXE3b09NMTQ2Mmtf aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnUVN6cGdKd1F4bjNlcTdvT00xNDYya19oQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjMwNi8xNzE3OTIwRTcxNkIxMUVFQjE2NzMyNzdDNEY5QUUwMi90Z1FTenBnSndR eG4zZXE3b09NMTQ2MmtfaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6vxRbOdavxtgxM2u1fHxn0bB0aS+jcnB5Lg5RCkhj2BkXoZDzTWBL 0gFyNRoGMcdx8i5EOYLLq5C7mfsJ3//NXknXUQUmnhng7PbyBucFnXV+YurjsUzU MND/b+//roHftlyEtNKhCRMr69SupzYWca7MbtBqJpsS7v2iAjszcWPT+ahwH3CK BwEldxDeEiFRnKuiuIIJBerMHX/pzk56ttc7kriog3Q9q2+lYpxWuCbefGP0pyhp h6pH3eD3IutYV1XQK6b5yBzQNq37dt0Syixa1jWqwg8+kqPsv4hVHxFIgea+jkEf kKgkqpolCKUrZdscqsYVPKeYM0lTCVfV -----END CERTIFICATE-----Generated at Sat Aug 23 22:16:32 2025 by rpki-client