$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft File: TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft (raw, json) Hash identifier: HFQnILuBGufuF5+AfAgmVIz3PrvWaEtaFdD5t/dMYkw= Subject key identifier: 01:CA:E3:0B:AF:22:C0:96:B9:D4:2D:E7:8B:EB:16:12:75:6B:94:D8 Authority key identifier: 4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 Certificate issuer: /CN=A91C7991/serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Certificate serial: 08A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft Manifest number: 089D Signing time: Fri 22 Aug 2025 20:41:25 +0000 Manifest this update: Fri 22 Aug 2025 20:41:24 +0000 Manifest next update: Fri 29 Aug 2025 20:41:24 +0000 Files and hashes: 1: TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl (hash: qn7G0VoKupLIko56U5W3L7R6/fLYzXirQMV4xy9gaGE=) 2: 456CD12E5F0111ECAE4F0286C4F9AE02.roa (hash: Yvl58W31jTaXrFpKwLiylkuL3NEb2f8QrSD0rbbSX2w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:41:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2213 (0x8a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7991, serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Validity Not Before: Aug 22 20:41:24 2025 GMT Not After : Aug 29 20:41:24 2025 GMT Subject: CN=68a8d5f4-b017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f0:84:84:4a:2c:2d:87:3a:bb:d4:05:bc:02: a7:e0:ed:0f:da:47:b9:1e:bf:35:87:b3:fc:80:28: 82:ce:b8:88:e3:1f:a9:cd:05:8e:f9:4f:2d:15:65: 8f:bd:c9:7e:c8:dd:60:53:62:64:b8:99:8b:ed:5b: 88:a4:11:6b:df:d7:26:dc:35:15:eb:53:be:a7:39: f3:52:fc:f9:ed:37:49:1a:1e:53:a1:bd:68:34:66: a6:e2:91:5a:87:a0:13:80:30:16:a7:48:1b:37:2a: a2:41:12:54:7b:23:a8:6b:d2:52:bb:e2:df:25:ca: 23:62:96:42:5c:6f:1c:80:2a:40:2c:dd:78:f2:bd: 6d:c4:ba:b5:b8:09:6e:ef:1e:48:a3:7a:20:e7:95: 35:96:83:ea:ee:22:5a:86:7a:7c:c8:49:87:bd:55: 91:e3:f5:14:40:a7:17:6f:db:6a:3d:89:b1:cb:53: 81:fe:05:28:40:5d:48:62:2d:d0:e6:71:43:d9:e1: 22:00:a3:b8:4d:f1:62:b1:d9:94:17:6e:cf:a8:b0: 20:62:8c:bb:c3:17:17:e3:95:91:e7:b8:19:41:73: 9e:91:23:4c:dc:00:45:54:eb:e7:4c:b5:0f:e5:68: bc:cf:c3:c5:13:30:2c:8a:3e:ae:73:55:39:1c:a8: 9f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:CA:E3:0B:AF:22:C0:96:B9:D4:2D:E7:8B:EB:16:12:75:6B:94:D8 X509v3 Authority Key Identifier: keyid:4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:07:88:95:4d:f0:1d:d1:40:81:67:48:9f:a9:19:f0:02:ce: 72:78:d0:e7:ee:62:ca:c8:66:38:9c:1a:d2:5b:a3:5a:b3:40: 35:8a:5c:f0:19:cb:72:23:22:28:5c:9e:be:f0:2e:ec:e9:de: 23:fa:2c:ce:a9:41:df:ef:5b:23:93:92:dc:36:70:e2:a3:d9: c0:9b:a7:79:63:af:a3:3d:b4:0c:66:e4:de:04:ab:18:0c:bb: d1:14:c6:f4:16:89:4f:40:c6:80:09:58:f7:b0:1a:9d:03:f9: 1d:da:15:50:77:6a:e0:9b:59:e7:d3:22:08:56:16:41:3d:90: f4:51:a2:37:42:d3:be:8d:e0:67:cf:11:1d:47:ec:76:4c:d0: f0:89:53:41:b3:e5:47:47:98:9a:76:58:be:e5:8a:ef:7a:e1: f4:f0:86:96:6c:e2:3a:34:cb:16:3a:16:b5:62:7f:92:e7:dd: aa:ea:56:67:cd:0e:76:ab:84:a5:fb:6a:0a:09:96:14:4e:f2: c8:fc:aa:6e:f4:12:79:44:f5:8d:e0:4e:95:e3:97:25:74:92: 9b:1a:45:25:04:b8:65:93:21:84:6b:8f:99:bf:42:2d:58:01: ad:a2:f0:71:4b:9b:20:a6:88:b1:a5:a6:8d:8e:82:50:76:3e: 8a:a8:00:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OTExMTAvBgNVBAUTKDRDMjY5OUQyMTNERDVENTk5QjBFQzBFNDYzQjk0ODRG REIyMkY0MjcwHhcNMjUwODIyMjA0MTI0WhcNMjUwODI5MjA0MTI0WjAYMRYwFAYD VQQDEw02OGE4ZDVmNC1iMDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfCEhEosLYc6u9QFvAKn4O0P2ke5Hr81h7P8gCiCzriI4x+pzQWO+U8tFWWP vcl+yN1gU2JkuJmL7VuIpBFr39cm3DUV61O+pznzUvz57TdJGh5Tob1oNGam4pFa h6ATgDAWp0gbNyqiQRJUeyOoa9JSu+LfJcojYpZCXG8cgCpALN148r1txLq1uAlu 7x5Io3og55U1loPq7iJahnp8yEmHvVWR4/UUQKcXb9tqPYmxy1OB/gUoQF1IYi3Q 5nFD2eEiAKO4TfFisdmUF27PqLAgYoy7wxcX45WR57gZQXOekSNM3ABFVOvnTLUP 5Wi8z8PFEzAsij6uc1U5HKifqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHK4wuv IsCWudQt54vrFhJ1a5TYMB8GA1UdIwQYMBaAFEwmmdIT3V1Zmw7A5GO5SE/bIvQn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk5MS83QzdCMUY2NkMz NUExMUVBQThFQ0I2N0ZDNEY5QUUwMi9UQ2FaMGhQZFhWbWJEc0RrWTdsSVQ5c2k5 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDYVowaFBkWFZtYkRzRGtZN2xJVDlzaTlDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzk5MS83QzdCMUY2NkMzNUExMUVBQThFQ0I2N0ZDNEY5QUUwMi9UQ2FaMGhQZFhW bWJEc0RrWTdsSVQ5c2k5Q2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjB4iVTfAd0UCBZ0ifqRnwAs5yeNDn7mLKyGY4nBrSW6Nas0A1ilzw GctyIyIoXJ6+8C7s6d4j+izOqUHf71sjk5LcNnDio9nAm6d5Y6+jPbQMZuTeBKsY DLvRFMb0FolPQMaACVj3sBqdA/kd2hVQd2rgm1nn0yIIVhZBPZD0UaI3QtO+jeBn zxEdR+x2TNDwiVNBs+VHR5iadli+5YrveuH08IaWbOI6NMsWOha1Yn+S592q6lZn zQ52q4Sl+2oKCZYUTvLI/Kpu9BJ5RPWN4E6V45cldJKbGkUlBLhlkyGEa4+Zv0It WAGtovBxS5sgpoixpaaNjoJQdj6KqADp -----END CERTIFICATE-----Generated at Sat Aug 23 22:35:50 2025 by rpki-client