$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: 9pVngVQ1FmXKPvgBYGuj23Ac6HmjLsYNs/2SBqFkLHg= Subject key identifier: 0F:E8:A3:FB:C8:8A:F6:F5:1F:DD:42:FD:21:B2:25:BB:CD:DB:DB:91 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 01D3 Signing time: Sat 23 Aug 2025 03:07:51 +0000 Manifest this update: Sat 23 Aug 2025 03:07:50 +0000 Manifest next update: Sat 30 Aug 2025 03:07:50 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: PPaUckLEm6jLsK+CpeVngq4r+RX+WZdqg3BjKKNsNYk=) 2: 7D22B44E249D11EFAC24EF6CC4F9AE02.roa (hash: A2YwzeZCV7lXuESZaxuoNr3XCXQA1+q4ChTmE99OOZ8=) 3: 9772767EB69A11EFBEB6CE0CC4F9AE02.roa (hash: 7OwaJrudjWnecoz7BCK7kPXjzB+3R7tWJ8DmqplI2rk=) 4: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: Ah9DA9XDU6AgPBrVhyRA7IEj119ByF47rhFGR96tGKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: Aug 23 03:07:50 2025 GMT Not After : Aug 30 03:07:50 2025 GMT Subject: CN=68a93087-0830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9c:9d:fd:d7:93:5c:a8:6a:89:9a:0c:46:07: 7c:bf:3f:f0:45:07:5c:09:db:0f:c5:84:e8:76:c3: 9b:ec:28:19:d4:cc:34:42:b2:8c:22:a9:f5:e8:28: c8:65:42:06:bc:d7:4e:b0:60:0e:ee:ac:99:f1:75: 68:a2:ad:c2:d5:7e:97:29:e4:0b:51:84:5c:76:7b: 18:8a:96:9d:15:2d:9f:7c:c1:12:61:bc:db:51:11: df:14:ed:5f:65:1b:b4:43:f5:38:9c:c6:2c:5f:50: dd:0f:9a:11:ca:b9:0a:88:63:bb:c5:7f:d8:c4:62: e6:cd:69:13:ba:cb:ab:42:0d:5b:84:9e:8d:e5:92: 83:3d:d0:04:3d:bb:a8:02:1b:57:de:41:a6:db:91: 0f:45:8d:2b:22:05:35:d0:85:a0:26:85:a5:38:a3: fc:6b:fe:70:13:75:62:fc:ed:f3:69:97:6f:48:3e: 28:d5:82:9b:6d:73:e3:0b:7f:6f:69:5d:6f:8f:56: 84:30:26:86:9d:98:68:67:5d:d9:f2:83:e7:1d:98: f8:8a:dd:6b:35:35:65:13:af:75:fa:70:b1:a0:dd: 95:f1:c4:52:0f:59:eb:d5:f1:56:b1:9d:48:0d:c9: 7a:00:11:e9:ab:75:a2:38:68:5b:a3:4d:12:d1:d4: 82:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:E8:A3:FB:C8:8A:F6:F5:1F:DD:42:FD:21:B2:25:BB:CD:DB:DB:91 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:28:70:14:23:40:cd:07:4e:47:92:a2:81:59:af:93:74:6f: 5b:e9:55:b8:c7:88:26:f8:c6:6e:57:26:2e:98:da:b3:4b:b0: 5b:d8:e9:63:6b:ac:df:2f:b7:ef:94:fb:74:0d:2b:c3:29:9e: af:74:51:a9:d8:f8:fe:5b:5d:9e:97:2f:11:57:b9:81:30:da: d5:ac:bb:99:ca:cc:71:90:46:1b:98:b8:a7:07:88:b7:76:51: 6c:f3:95:18:3d:f2:45:25:8a:82:5f:f2:92:2a:d2:da:86:38: a9:05:5f:4d:26:6a:25:02:8f:99:97:dc:9d:72:c0:1e:8d:71: bf:05:ed:32:20:56:61:1d:a1:de:9d:75:3c:b2:a1:14:57:04: d6:7e:cc:10:d4:d8:49:6d:98:83:8f:6a:dc:a1:0a:8a:a0:e3: 59:ac:1b:36:83:2e:15:f3:37:e3:0f:ed:d7:e9:71:7e:9e:93: 3a:23:c4:bb:8f:e9:c6:4c:c5:b5:fb:89:79:7b:46:04:a7:77: f4:54:13:0a:61:54:68:12:37:85:02:a4:28:4b:96:e0:a6:28: bd:36:8b:ae:74:ad:21:f9:e9:9f:b6:ea:cc:6a:61:80:4c:a6: c2:14:cf:6f:fe:dd:0a:f9:27:72:5a:47:88:55:bf:26:8d:2f: 9e:66:ca:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjUwODIzMDMwNzUwWhcNMjUwODMwMDMwNzUwWjAYMRYwFAYD VQQDEw02OGE5MzA4Ny0wODMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJyd/deTXKhqiZoMRgd8vz/wRQdcCdsPxYTodsOb7CgZ1Mw0QrKMIqn16CjI ZUIGvNdOsGAO7qyZ8XVooq3C1X6XKeQLUYRcdnsYipadFS2ffMESYbzbURHfFO1f ZRu0Q/U4nMYsX1DdD5oRyrkKiGO7xX/YxGLmzWkTusurQg1bhJ6N5ZKDPdAEPbuo AhtX3kGm25EPRY0rIgU10IWgJoWlOKP8a/5wE3Vi/O3zaZdvSD4o1YKbbXPjC39v aV1vj1aEMCaGnZhoZ13Z8oPnHZj4it1rNTVlE691+nCxoN2V8cRSD1nr1fFWsZ1I Dcl6ABHpq3WiOGhbo00S0dSChQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA/oo/vI ivb1H91C/SGyJbvN29uRMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+KHAUI0DNB05HkqKBWa+TdG9b6VW4x4gm+MZuVyYumNqzS7Bb2Olj a6zfL7fvlPt0DSvDKZ6vdFGp2Pj+W12ely8RV7mBMNrVrLuZysxxkEYbmLinB4i3 dlFs85UYPfJFJYqCX/KSKtLahjipBV9NJmolAo+Zl9ydcsAejXG/Be0yIFZhHaHe nXU8sqEUVwTWfswQ1NhJbZiDj2rcoQqKoONZrBs2gy4V8zfjD+3X6XF+npM6I8S7 j+nGTMW1+4l5e0YEp3f0VBMKYVRoEjeFAqQoS5bgpii9NouudK0h+emfturMamGA TKbCFM9v/t0K+SdyWkeIVb8mjS+eZsq6 -----END CERTIFICATE-----Generated at Sat Aug 23 17:14:37 2025 by rpki-client