$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft File: TiWbqHpAtm2EKsjOCup4TkvXOC4.mft (raw, json) Hash identifier: iwrApytVk7NudXJU5vJnEj6fr2ht4l2Vuaz38NXRkGg= Subject key identifier: 1F:25:50:2E:04:B6:3C:37:7F:64:CC:76:C3:83:10:6A:4B:99:E7:66 Authority key identifier: 4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E Certificate issuer: /CN=A91E57A9/serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft Manifest number: E7 Signing time: Sat 23 Aug 2025 05:32:47 +0000 Manifest this update: Sat 23 Aug 2025 05:32:46 +0000 Manifest next update: Sat 30 Aug 2025 05:32:46 +0000 Files and hashes: 1: TiWbqHpAtm2EKsjOCup4TkvXOC4.crl (hash: m9T+rjpzq5AAMS8At62PARdjrP5WCtaZ9wi0qjPSQL0=) 2: 4647BCD66E7F11EF9223EA62C4F9AE02.roa (hash: ktZfaMlA6IUEVI7ymclMb6B8SOgTxjLIP6VRKiXLA/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57A9, serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E Validity Not Before: Aug 23 05:32:46 2025 GMT Not After : Aug 30 05:32:46 2025 GMT Subject: CN=68a9527f-5cb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:81:48:03:7d:75:5e:ef:1e:9a:ee:fc:54:0a: 44:a4:0a:cd:f3:77:bd:06:6d:57:0a:00:6d:7a:66: 37:0b:84:c0:e4:2e:e3:60:f9:fa:c4:06:e4:4a:16: 36:f3:d9:1a:1e:42:a8:a2:6f:5d:59:c4:b6:5c:fa: 2a:b9:84:c6:82:51:83:9c:5d:a4:04:e6:cd:ca:d9: b5:fa:ac:2c:1a:46:eb:fe:b5:a8:fb:77:bc:e0:62: 6c:ce:f1:46:fb:6a:b7:bc:74:68:9e:69:a6:3b:e0: 64:9e:10:8b:4e:75:12:e1:c2:50:89:bd:72:7d:97: 75:72:59:17:62:fd:fb:6f:5a:b3:54:e3:b3:b3:75: 01:30:1f:4d:8d:93:8a:e4:6a:69:5f:70:0d:bb:c6: c2:dc:25:e3:5c:6b:d6:10:15:c2:07:a1:d5:e5:90: ad:37:a8:1b:96:60:e5:c5:91:97:4c:9e:94:4c:cd: 77:63:82:0a:af:41:8e:a9:1c:51:fd:9d:39:0d:5c: 11:b3:1f:8b:d0:4a:f9:2f:c5:20:47:e3:5d:14:5e: e4:9f:7b:5a:28:fa:42:ff:76:79:f6:8b:a3:d2:a5: c0:6f:e3:e1:4a:99:73:67:7f:41:f8:2a:e9:66:26: f2:a9:01:50:5d:ce:42:b0:2c:49:e8:a2:60:e6:5c: 70:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:25:50:2E:04:B6:3C:37:7F:64:CC:76:C3:83:10:6A:4B:99:E7:66 X509v3 Authority Key Identifier: keyid:4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:2b:f6:f6:bd:f2:dd:56:82:2e:1d:5a:99:81:81:5d:1b:da: 04:16:ae:bf:65:1f:29:69:03:2c:47:fd:39:ab:9a:d6:90:2f: 7c:10:6a:68:e3:1c:c6:62:cf:0a:64:44:fd:aa:da:45:87:5c: 97:43:8c:c0:17:98:66:de:ae:8c:91:ae:ed:e8:8b:6e:2a:82: a4:f5:41:84:db:9e:31:a0:35:f4:6e:a0:f1:4a:d4:1a:f1:20: 76:61:b8:8d:73:c9:07:8d:f0:df:97:22:99:16:89:4f:a6:32: 41:50:1f:76:6d:2a:72:22:df:a1:19:00:8c:87:47:9e:f2:2c: a7:cd:e3:32:17:f0:79:ba:2f:f5:99:10:2a:fd:60:a2:07:40: ff:6b:31:d7:ff:99:c3:04:57:74:7d:57:5e:3c:da:73:76:fe: d1:1e:2a:f1:16:a2:85:27:b9:e4:ff:30:14:fa:0a:d5:8b:0b: 6b:f8:c2:5f:c6:ca:11:a2:6e:37:bd:7e:a2:06:0d:ad:c5:b8: 7c:22:12:22:9d:f2:a8:c9:cc:26:f1:2f:33:ac:83:d7:b5:9c: 76:ea:27:0d:44:15:c4:20:f3:d6:eb:57:3f:26:f3:b6:e9:e7: 6a:3c:06:cd:9c:9e:23:b6:fe:d4:27:0d:1b:a5:3a:43:f5:7d: 69:22:f7:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3QTkxMTAvBgNVBAUTKDRFMjU5QkE4N0E0MEI2NkQ4NDJBQzhDRTBBRUE3ODRF NEJENzM4MkUwHhcNMjUwODIzMDUzMjQ2WhcNMjUwODMwMDUzMjQ2WjAYMRYwFAYD VQQDEw02OGE5NTI3Zi01Y2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoFIA311Xu8emu78VApEpArN83e9Bm1XCgBtemY3C4TA5C7jYPn6xAbkShY2 89kaHkKoom9dWcS2XPoquYTGglGDnF2kBObNytm1+qwsGkbr/rWo+3e84GJszvFG +2q3vHRonmmmO+BknhCLTnUS4cJQib1yfZd1clkXYv37b1qzVOOzs3UBMB9NjZOK 5GppX3ANu8bC3CXjXGvWEBXCB6HV5ZCtN6gblmDlxZGXTJ6UTM13Y4IKr0GOqRxR /Z05DVwRsx+L0Er5L8UgR+NdFF7kn3taKPpC/3Z59ouj0qXAb+PhSplzZ39B+Crp ZibyqQFQXc5CsCxJ6KJg5lxw2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8lUC4E tjw3f2TMdsODEGpLmedmMB8GA1UdIwQYMBaAFE4lm6h6QLZthCrIzgrqeE5L1zgu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdBOS83QkJEMTFBQzFG RjMxMUVGQTNGQjJDODFDNEY5QUUwMi9UaVdicUhwQXRtMkVLc2pPQ3VwNFRrdlhP QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RpV2JxSHBBdG0yRUtzak9DdXA0VGt2WE9DNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTdBOS83QkJEMTFBQzFGRjMxMUVGQTNGQjJDODFDNEY5QUUwMi9UaVdicUhwQXRt MkVLc2pPQ3VwNFRrdlhPQzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHK/b2vfLdVoIuHVqZgYFdG9oEFq6/ZR8paQMsR/05q5rWkC98EGpo 4xzGYs8KZET9qtpFh1yXQ4zAF5hm3q6Mka7t6ItuKoKk9UGE254xoDX0bqDxStQa 8SB2YbiNc8kHjfDflyKZFolPpjJBUB92bSpyIt+hGQCMh0ee8iynzeMyF/B5ui/1 mRAq/WCiB0D/azHX/5nDBFd0fVdePNpzdv7RHirxFqKFJ7nk/zAU+grViwtr+MJf xsoRom43vX6iBg2txbh8IhIinfKoycwm8S8zrIPXtZx26icNRBXEIPPW61c/JvO2 6edqPAbNnJ4jtv7UJw0bpTpD9X1pIvdM -----END CERTIFICATE-----Generated at Sat Aug 23 12:43:15 2025 by rpki-client