$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft File: TZAcNCU7ylsnTusQaZPe9yCiUqw.mft (raw, json) Hash identifier: DJXu8HVDPCXaUZtcXPdSsoSMFm+I02VpNLAxhT3jlr4= Subject key identifier: FB:EE:2F:FD:1D:67:4B:0E:0B:FA:69:F3:4B:4A:01:D2:2E:70:92:38 Authority key identifier: 4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC Certificate issuer: /CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Certificate serial: 0448 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft Manifest number: 0C9A Signing time: Fri 22 Aug 2025 20:48:19 +0000 Manifest this update: Fri 22 Aug 2025 20:48:19 +0000 Manifest next update: Fri 29 Aug 2025 20:48:19 +0000 Files and hashes: 1: TZAcNCU7ylsnTusQaZPe9yCiUqw.crl (hash: qwEGXkFRSPy1DQEYKPBarz+HKlbVfMLSRfMG9JkJLLc=) 2: 8E4BBF50F5C511EF89110646C4F9AE02.roa (hash: khC3NWIbwkvutKI6Vqs7kfio6cgD4nvnuDwfjQlSlpw=) 3: A1B8D10EF5C511EF83B21246C4F9AE02.roa (hash: R9z8+TOIkB2HShaZE8kZf0+7pw9G6s/c+bvTwVe027E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:48:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1096 (0x448) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Validity Not Before: Aug 22 20:48:19 2025 GMT Not After : Aug 29 20:48:19 2025 GMT Subject: CN=68a8d793-c491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:8f:29:33:37:35:3f:71:39:13:0c:ab:cd:11: a2:af:79:5e:79:0a:ca:56:ab:ea:bd:f8:99:32:f7: 75:6a:1c:17:a7:c9:9b:ba:0f:fa:a8:5b:87:4d:18: 6d:05:2b:0f:e3:de:fd:27:7a:16:a7:0f:f9:51:6b: b8:db:aa:b8:5f:82:81:b1:a7:ba:10:18:d4:27:9e: f3:ec:61:66:01:1f:a3:1a:ce:39:9d:28:81:cc:69: 66:09:f5:51:d3:1f:6e:99:ea:ad:4c:d8:d7:5a:59: b6:bc:51:ec:a3:06:fa:e0:0d:e3:c8:44:a6:f0:57: 2f:cd:33:7d:ef:4a:09:95:aa:fd:d5:5a:88:a9:45: 16:83:50:d4:36:7f:df:78:3d:67:10:7d:ca:08:f1: 94:89:b0:b4:4a:c4:d1:a6:a4:e2:59:9e:b8:58:50: cb:30:ea:ed:c9:c1:bd:3d:fe:c6:da:03:a5:09:c1: 0c:fe:8e:d8:bd:6d:c3:08:ad:5d:1d:89:4a:a2:8a: e9:2c:f1:7c:89:28:88:ea:79:60:43:42:65:2d:28: 14:5b:46:3e:a1:f6:08:a3:55:b7:8c:9f:06:39:c4: df:3d:c7:03:1a:03:f4:3e:05:26:82:15:34:33:61: ca:08:88:12:68:92:2a:a5:36:7c:e4:34:c2:97:55: 30:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:EE:2F:FD:1D:67:4B:0E:0B:FA:69:F3:4B:4A:01:D2:2E:70:92:38 X509v3 Authority Key Identifier: keyid:4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:cc:c6:af:23:c0:88:f9:e8:52:cd:7a:02:6d:bf:0e:a4:9b: 08:c1:7b:2e:b5:37:b1:8d:4d:20:63:3e:a9:9c:91:d5:2c:08: a0:e5:ba:32:5a:70:df:e9:fb:61:83:aa:db:10:9d:69:dd:2f: 16:04:96:5a:ca:01:c6:55:8f:b0:14:24:8d:01:30:77:cd:18: 7c:0b:1e:aa:e2:43:02:b3:65:99:98:c4:5b:7e:e2:c8:c2:a9: 1c:ac:71:2c:e7:e2:da:ea:a2:5f:88:48:28:5d:85:e6:f0:38: 87:9d:9f:5a:d6:df:6a:61:eb:01:91:07:ce:79:80:a6:3d:96: 71:1f:8f:af:0a:55:ba:d1:c3:13:58:64:42:e1:c7:2f:68:5b: ef:e2:e8:c9:d3:f3:69:53:c5:65:e4:be:57:50:8e:0c:b1:01: ee:18:1f:1e:e7:3d:bc:13:96:6b:61:1a:48:59:e1:92:33:36: 8c:9d:41:0c:ff:ac:7d:6b:46:7e:c2:3f:9e:2e:e9:1a:2b:e9: bf:24:fc:3d:6e:4a:cb:c3:18:c6:d7:9a:c7:df:76:10:25:79: f4:ee:5a:9c:16:71:2f:4c:ac:2d:40:c0:ff:9a:0a:44:8e:3e: 47:39:1d:9d:95:8c:c6:57:3c:b7:e9:0e:38:e7:36:eb:b3:25: 73:24:5e:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDREOTAxQzM0MjUzQkNBNUIyNzRFRUIxMDY5OTNERUY3 MjBBMjUyQUMwHhcNMjUwODIyMjA0ODE5WhcNMjUwODI5MjA0ODE5WjAYMRYwFAYD VQQDEw02OGE4ZDc5My1jNDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlY8pMzc1P3E5EwyrzRGir3leeQrKVqvqvfiZMvd1ahwXp8mbug/6qFuHTRht BSsP4979J3oWpw/5UWu426q4X4KBsae6EBjUJ57z7GFmAR+jGs45nSiBzGlmCfVR 0x9umeqtTNjXWlm2vFHsowb64A3jyESm8FcvzTN970oJlar91VqIqUUWg1DUNn/f eD1nEH3KCPGUibC0SsTRpqTiWZ64WFDLMOrtycG9Pf7G2gOlCcEM/o7YvW3DCK1d HYlKoorpLPF8iSiI6nlgQ0JlLSgUW0Y+ofYIo1W3jJ8GOcTfPccDGgP0PgUmghU0 M2HKCIgSaJIqpTZ85DTCl1Uw2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvuL/0d Z0sOC/pp80tKAdIucJI4MB8GA1UdIwQYMBaAFE2QHDQlO8pbJ07rEGmT3vcgolKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3lsc25UdXNRYVpQZTl5Q2lV cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQWNOQ1U3eWxzblR1c1FhWlBlOXlDaVVxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3ls c25UdXNRYVpQZTl5Q2lVcXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnzMavI8CI+ehSzXoCbb8OpJsIwXsutTexjU0gYz6pnJHVLAig5boy WnDf6fthg6rbEJ1p3S8WBJZaygHGVY+wFCSNATB3zRh8Cx6q4kMCs2WZmMRbfuLI wqkcrHEs5+La6qJfiEgoXYXm8DiHnZ9a1t9qYesBkQfOeYCmPZZxH4+vClW60cMT WGRC4ccvaFvv4ujJ0/NpU8Vl5L5XUI4MsQHuGB8e5z28E5ZrYRpIWeGSMzaMnUEM /6x9a0Z+wj+eLukaK+m/JPw9bkrLwxjG15rH33YQJXn07lqcFnEvTKwtQMD/mgpE jj5HOR2dlYzGVzy36Q445zbrsyVzJF46 -----END CERTIFICATE-----Generated at Sat Aug 23 19:28:09 2025 by rpki-client