$ rpki-client -vvf rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft File: TZCQh73foVBeK7oD8gYRLq7_sRs.mft (raw, json) Hash identifier: iiLznNh75KAE1ajR95qE3zsP9uni8FF9vyLrKtKtSUE= Subject key identifier: 1D:1C:0F:B6:5F:6A:91:3D:3E:4D:19:09:2F:77:DA:98:0B:F4:FE:CE Authority key identifier: 4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B Certificate issuer: /CN=A91D200F/serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft Manifest number: 01A0 Signing time: Sat 23 Aug 2025 03:32:53 +0000 Manifest this update: Sat 23 Aug 2025 03:32:53 +0000 Manifest next update: Sat 30 Aug 2025 03:32:53 +0000 Files and hashes: 1: TZCQh73foVBeK7oD8gYRLq7_sRs.crl (hash: ITX7q1CVI1GB+l+4T+ztFc7V57kLUluHdcQVi6l0cAs=) 2: D71B60EC2B5911EE81C7542FC4F9AE02.roa (hash: wndMS9TntxEIvOO1y5ThBewHzkdYkTNV8U/orVegQT4=) 3: 039807B286B511EFAF868C6EC4F9AE02.roa (hash: mvlfednBP8hH+VJF+N7b5lj86+gAiaBFLJ6OGfwQefA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:32:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D200F, serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Validity Not Before: Aug 23 03:32:53 2025 GMT Not After : Aug 30 03:32:53 2025 GMT Subject: CN=68a93665-f153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:72:72:14:dc:3f:3c:f4:a0:4e:79:f2:1f:e9: c1:68:52:2a:3f:5a:73:cc:0e:10:d6:c7:88:09:15: e2:18:af:63:50:16:7f:46:7f:64:ff:d0:35:5b:49: 48:0d:ea:e7:00:2f:46:76:6b:18:58:94:18:03:83: f0:6e:6a:d2:52:14:5a:1f:05:60:c0:e4:a9:d8:c4: 3b:0b:b3:8f:12:0d:c1:bd:3c:65:6e:0e:70:ee:2c: 13:9d:f5:63:94:a4:cf:44:70:00:f8:fa:76:c7:8c: 98:0b:2f:32:db:01:e7:55:00:97:15:a3:d0:2e:54: 14:cd:42:f4:e0:0b:a3:87:66:dc:cd:6f:bf:ef:43: be:16:92:8e:75:93:b5:38:b8:b2:94:ab:86:12:ab: 7a:21:a8:e1:09:8f:aa:3e:0b:45:3e:30:5f:dc:4a: 6a:81:63:2e:c2:61:ab:aa:1f:84:bc:cb:e2:a7:7c: 7c:9d:4a:c1:91:f5:97:73:71:4d:6b:00:48:1d:82: 60:3b:76:4a:a5:ad:98:f4:0b:b7:08:d0:3a:65:e7: 30:7e:cd:8c:a7:9a:dd:05:6a:fb:ee:a7:05:35:29: c6:12:77:d7:6c:13:b0:79:e0:8c:14:b7:de:01:ef: fb:3b:ac:c9:c3:14:5d:d2:7d:43:7d:a0:73:99:ac: 1d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:1C:0F:B6:5F:6A:91:3D:3E:4D:19:09:2F:77:DA:98:0B:F4:FE:CE X509v3 Authority Key Identifier: keyid:4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:4e:d2:93:3e:f9:61:6f:b4:03:91:b6:ab:59:d2:d0:46:89: dc:eb:7d:af:00:35:c9:2f:28:1b:e3:86:93:81:49:57:a6:24: f5:59:ec:61:ff:95:9f:b7:f0:05:af:18:ba:1c:f0:03:81:0a: b5:7b:66:74:fc:14:49:b0:16:86:30:9a:f8:4c:fb:91:23:ad: d8:cb:a3:2d:65:eb:df:3d:6e:bd:f0:9b:d7:f1:80:02:a4:e1: cb:95:aa:ff:f6:69:fd:00:9b:d3:07:d6:46:37:0f:0b:7f:be: 27:73:25:fa:f5:84:8d:90:2a:5a:68:d8:9a:93:05:28:d1:93: 20:d1:ae:ef:b0:4d:d3:cf:82:ab:d5:5d:8b:dd:aa:37:32:c8: ce:7e:0a:18:96:c1:6b:64:1e:9f:29:47:ed:19:c4:b4:5b:7a: 78:39:ef:93:87:8b:f4:fb:7c:80:e3:60:52:68:f1:e8:4d:87: 11:c0:47:51:d7:0c:54:8f:05:4d:a5:5a:8a:b7:b2:c7:f8:fa: e8:63:a8:f0:ed:66:e5:67:c7:e3:37:5e:f4:ab:18:92:31:2e: 7e:ad:42:2d:c9:98:1b:d9:4d:bc:65:1b:85:e9:c0:16:48:ff: 15:2a:c5:4a:0b:ba:77:6d:87:2a:3e:89:c3:1e:55:87:13:ed: 89:98:9f:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIwMEYxMTAvBgNVBAUTKDREOTA5MDg3QkRERkExNTA1RTJCQkEwM0YyMDYxMTJF QUVGRkIxMUIwHhcNMjUwODIzMDMzMjUzWhcNMjUwODMwMDMzMjUzWjAYMRYwFAYD VQQDEw02OGE5MzY2NS1mMTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnJyFNw/PPSgTnnyH+nBaFIqP1pzzA4Q1seICRXiGK9jUBZ/Rn9k/9A1W0lI DernAC9GdmsYWJQYA4PwbmrSUhRaHwVgwOSp2MQ7C7OPEg3BvTxlbg5w7iwTnfVj lKTPRHAA+Pp2x4yYCy8y2wHnVQCXFaPQLlQUzUL04Aujh2bczW+/70O+FpKOdZO1 OLiylKuGEqt6IajhCY+qPgtFPjBf3EpqgWMuwmGrqh+EvMvip3x8nUrBkfWXc3FN awBIHYJgO3ZKpa2Y9Au3CNA6Zecwfs2Mp5rdBWr77qcFNSnGEnfXbBOweeCMFLfe Ae/7O6zJwxRd0n1DfaBzmawdbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0cD7Zf apE9Pk0ZCS932pgL9P7OMB8GA1UdIwQYMBaAFE2QkIe936FQXiu6A/IGES6u/7Eb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjAwRi8yNTc4NzQwMjE2 NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9WQmVLN29EOGdZUkxxN19z UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQ1FoNzNmb1ZCZUs3b0Q4Z1lSTHE3X3NScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjAwRi8yNTc4NzQwMjE2NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9W QmVLN29EOGdZUkxxN19zUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbTtKTPvlhb7QDkbarWdLQRonc632vADXJLygb44aTgUlXpiT1Wexh /5Wft/AFrxi6HPADgQq1e2Z0/BRJsBaGMJr4TPuRI63Yy6MtZevfPW698JvX8YAC pOHLlar/9mn9AJvTB9ZGNw8Lf74ncyX69YSNkCpaaNiakwUo0ZMg0a7vsE3Tz4Kr 1V2L3ao3MsjOfgoYlsFrZB6fKUftGcS0W3p4Oe+Th4v0+3yA42BSaPHoTYcRwEdR 1wxUjwVNpVqKt7LH+ProY6jw7WblZ8fjN170qxiSMS5+rUItyZgb2U28ZRuF6cAW SP8VKsVKC7p3bYcqPonDHlWHE+2JmJ/y -----END CERTIFICATE-----Generated at Sat Aug 23 16:41:53 2025 by rpki-client