$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft File: Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft (raw, json) Hash identifier: U35npKwSY3ujiRPEkzs0O7rUEWZyItjZwX4JC3V43g4= Subject key identifier: AF:EC:2B:48:02:67:11:06:1A:DC:65:CD:30:57:D4:E6:E9:11:07:AB Authority key identifier: 4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E Certificate issuer: /CN=A9173C8A/serialNumber=4E2B20D953732B75EED12F129921A0B1B5EB158E Certificate serial: 1930 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft Manifest number: 1923 Signing time: Tue 12 Aug 2025 16:31:44 +0000 Manifest this update: Tue 12 Aug 2025 16:31:44 +0000 Manifest next update: Tue 19 Aug 2025 16:31:44 +0000 Files and hashes: 1: Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl (hash: DST6Zoeqh78hn6j3qxcy0xIK+YpS463O358prBLA2oM=) 2: 9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa (hash: 7Hs9ZZORwzDrkP5Wsr0Azs8K265xvZ4OedgYnSopdc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 16:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6448 (0x1930) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C8A, serialNumber=4E2B20D953732B75EED12F129921A0B1B5EB158E Validity Not Before: Aug 12 16:31:44 2025 GMT Not After : Aug 19 16:31:44 2025 GMT Subject: CN=689b6c70-3316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a7:33:7e:30:56:a9:47:d3:59:92:a9:21:85: 17:34:98:3a:09:3a:e8:d0:4b:fd:b5:8d:6c:e2:48: 50:69:0c:2c:7f:d2:ea:0d:d5:08:6f:4e:42:d0:c0: 5b:44:5c:d8:52:c9:88:1c:68:49:d0:31:01:28:82: 7d:0a:99:7e:ff:20:c2:21:d8:b9:6a:dd:b3:a8:17: b2:c5:6f:a6:cf:56:c1:08:84:23:de:e1:e2:75:26: ca:33:f2:92:40:b0:1c:60:93:61:55:c3:87:3a:f2: f6:4c:ce:cd:0f:a0:ce:8b:d8:90:46:4e:85:4d:6f: 0b:92:35:f1:95:be:93:a2:d2:43:e3:42:b5:ec:df: 75:76:de:be:4f:2a:40:a9:9d:4a:83:c9:a1:6d:47: 8a:03:ab:51:21:a4:80:54:80:81:ed:be:74:ba:b5: fd:51:d2:c2:79:4f:45:bf:d7:3f:b3:4e:9a:74:7a: 0d:7c:58:8f:e0:a6:b6:2d:10:82:ea:24:79:12:49: 68:09:b7:fb:01:ca:32:b8:bc:07:db:ff:07:21:d5: 13:fe:81:0a:e4:3b:f6:44:e3:f1:52:9f:db:6c:7a: 3c:51:32:a6:b9:d8:cc:6c:5c:44:79:22:06:af:a3: ac:ad:b8:b7:dc:4b:8b:d8:e0:dd:1a:80:bb:a9:e1: 49:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:EC:2B:48:02:67:11:06:1A:DC:65:CD:30:57:D4:E6:E9:11:07:AB X509v3 Authority Key Identifier: keyid:4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:7f:22:9b:90:c8:cd:2c:3c:ac:18:38:16:48:bf:8b:ad:aa: 13:94:4c:46:7b:4e:9f:53:ca:aa:67:9a:e0:1a:7d:0b:27:7f: 5a:eb:11:5a:12:42:22:47:a8:38:be:fa:e3:c2:c3:22:57:c2: 53:03:fc:31:35:c5:a2:3d:0b:32:74:ad:c3:81:d4:d8:c0:30: 30:df:47:6b:6a:94:1d:71:45:eb:3c:57:6a:fe:e9:d6:97:3e: a2:83:d8:6a:cb:27:d8:12:b1:6b:93:10:33:2b:27:3b:a9:a7: 26:a9:c0:4c:b6:d1:5f:cc:14:a5:d8:97:26:52:07:ca:4c:01: 85:03:f9:e5:e1:de:55:52:a2:50:e3:d6:5e:8f:85:26:e5:5e: 01:cc:7a:b3:4d:c7:c9:cc:2c:3a:a2:51:c5:91:b0:5c:46:00: 77:3e:52:f2:57:d9:4e:01:c2:21:0d:53:56:b4:14:97:0d:0f: b8:b9:c6:e7:20:fc:f8:54:f5:9f:8e:d8:ec:b8:59:f4:4b:48: ab:9c:22:7f:5f:67:88:a5:d7:38:6a:8a:81:9d:36:ed:ed:11: f2:17:ad:8b:64:40:97:c8:6b:cd:58:42:37:55:e0:94:ef:e4: a5:4f:79:cc:50:5c:24:ac:df:fe:eb:d2:64:03:d8:f4:d6:26: f8:3e:de:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDOEExMTAvBgNVBAUTKDRFMkIyMEQ5NTM3MzJCNzVFRUQxMkYxMjk5MjFBMEIx QjVFQjE1OEUwHhcNMjUwODEyMTYzMTQ0WhcNMjUwODE5MTYzMTQ0WjAYMRYwFAYD VQQDEw02ODliNmM3MC0zMzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6czfjBWqUfTWZKpIYUXNJg6CTro0Ev9tY1s4khQaQwsf9LqDdUIb05C0MBb RFzYUsmIHGhJ0DEBKIJ9Cpl+/yDCIdi5at2zqBeyxW+mz1bBCIQj3uHidSbKM/KS QLAcYJNhVcOHOvL2TM7ND6DOi9iQRk6FTW8LkjXxlb6TotJD40K17N91dt6+TypA qZ1Kg8mhbUeKA6tRIaSAVICB7b50urX9UdLCeU9Fv9c/s06adHoNfFiP4Ka2LRCC 6iR5EkloCbf7AcoyuLwH2/8HIdUT/oEK5Dv2ROPxUp/bbHo8UTKmudjMbFxEeSIG r6Osrbi33EuL2ODdGoC7qeFJtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/sK0gC ZxEGGtxlzTBX1ObpEQerMB8GA1UdIwQYMBaAFE4rINlTcyt17tEvEpkhoLG16xWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M4QS9FN0ZGQzVGNDg2 RjcxMUU3ODYzNEVDN0VDNEY5QUUwMi9UaXNnMlZOekszWHUwUzhTbVNHZ3NiWHJG WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rpc2cyVk56SzNYdTBTOFNtU0dnc2JYckZZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M4QS9FN0ZGQzVGNDg2RjcxMUU3ODYzNEVDN0VDNEY5QUUwMi9UaXNnMlZOeksz WHUwUzhTbVNHZ3NiWHJGWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXfyKbkMjNLDysGDgWSL+LraoTlExGe06fU8qqZ5rgGn0LJ39a6xFa EkIiR6g4vvrjwsMiV8JTA/wxNcWiPQsydK3DgdTYwDAw30drapQdcUXrPFdq/unW lz6ig9hqyyfYErFrkxAzKyc7qacmqcBMttFfzBSl2JcmUgfKTAGFA/nl4d5VUqJQ 49Zej4Um5V4BzHqzTcfJzCw6olHFkbBcRgB3PlLyV9lOAcIhDVNWtBSXDQ+4ucbn IPz4VPWfjtjsuFn0S0irnCJ/X2eIpdc4aoqBnTbt7RHyF62LZECXyGvNWEI3VeCU 7+SlT3nMUFwkrN/+69JkA9j01ib4Pt5q -----END CERTIFICATE-----Generated at Wed Aug 13 05:54:12 2025 by rpki-client