$ rpki-client -vvf rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.mft File: TAV55XydHpSk4-TgZlZmIOww4qc.mft (raw, json) Hash identifier: VRD/5VtfBQ3umm12j6yvIyqWsUQisJW1uh1J1NRyw6I= Subject key identifier: 20:F4:8A:E0:68:09:53:A6:56:E7:BE:B4:1F:2A:63:0F:1B:AF:71:61 Authority key identifier: 4C:05:79:E5:7C:9D:1E:94:A4:E3:E4:E0:66:56:66:20:EC:30:E2:A7 Certificate issuer: /CN=A917C34D/serialNumber=4C0579E57C9D1E94A4E3E4E066566620EC30E2A7 Certificate serial: 06C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAV55XydHpSk4-TgZlZmIOww4qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.mft Manifest number: 06C2 Signing time: Tue 12 Aug 2025 22:26:46 +0000 Manifest this update: Tue 12 Aug 2025 22:26:46 +0000 Manifest next update: Tue 19 Aug 2025 22:26:46 +0000 Files and hashes: 1: TAV55XydHpSk4-TgZlZmIOww4qc.crl (hash: fHr1TQr+ry/DqKt3m1FybhTK1i7foIC/T4CEjyrT6MI=) 2: 00F7933C6F3B11EBA740F268C4F9AE02.roa (hash: XuD/dJtjIFCcLvDlNEI5r0Ri7UyViz+739sGCWSc5XQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.crl rsync://rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAV55XydHpSk4-TgZlZmIOww4qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 22:26:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1736 (0x6c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C34D, serialNumber=4C0579E57C9D1E94A4E3E4E066566620EC30E2A7 Validity Not Before: Aug 12 22:26:46 2025 GMT Not After : Aug 19 22:26:46 2025 GMT Subject: CN=689bbfa6-ef63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:41:f9:4a:cc:16:c6:b7:94:13:73:c2:47:74: 48:b9:f8:d7:35:84:a2:c6:5a:c5:04:d6:e2:e4:59: c7:b9:83:b1:e3:e3:dd:03:4f:da:63:3f:1c:8b:e6: 4a:3b:67:f6:3e:fe:9f:15:06:81:b9:6c:34:8f:46: 28:1c:56:5a:7e:ee:0f:be:e0:ec:73:83:57:41:66: 88:e1:59:e1:15:23:c9:4c:4f:50:37:7f:8a:a2:6f: d9:df:97:d0:a9:23:14:3e:cb:84:b3:c9:41:b2:b1: 4a:b9:08:ac:85:5e:49:f2:0b:be:1d:98:be:c2:f6: ad:b6:15:af:17:2c:f2:52:b2:1c:30:8d:ca:aa:45: fc:19:6f:6f:03:91:8e:c7:cd:71:7e:9f:51:d0:ec: 7d:ab:e9:92:0e:80:23:5e:c9:cd:d8:5e:10:8b:d5: 1a:17:aa:87:4f:ca:19:35:a4:e6:1b:74:09:69:53: 54:bc:69:76:53:8c:21:9a:75:42:49:a7:e8:db:ca: 67:53:2f:5b:d4:6b:a3:48:dc:a4:72:ae:94:49:bd: c1:54:b1:e4:0d:fb:d7:93:fc:7c:60:96:c8:36:b1: e5:c2:57:8f:1e:17:d4:87:91:9f:d5:c4:7f:b6:62: 1c:68:db:f7:3d:6b:4a:09:6b:bb:b4:bd:e2:34:32: 7f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F4:8A:E0:68:09:53:A6:56:E7:BE:B4:1F:2A:63:0F:1B:AF:71:61 X509v3 Authority Key Identifier: keyid:4C:05:79:E5:7C:9D:1E:94:A4:E3:E4:E0:66:56:66:20:EC:30:E2:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAV55XydHpSk4-TgZlZmIOww4qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:8a:bd:fb:d1:d9:ed:c5:2f:be:71:11:99:dc:3f:8d:26:a3: 8b:cc:64:5b:37:c1:3d:4c:00:da:51:6f:1b:5c:da:ba:24:52: 65:00:e0:4b:08:6e:56:aa:27:74:d3:13:02:10:fe:32:16:db: 6a:96:b8:cd:3b:89:2a:82:db:91:43:87:5c:02:35:0b:c5:90: be:43:ba:47:a6:26:7f:cd:03:32:9a:cc:f6:0a:d2:b9:02:a9: c5:e6:9e:87:90:19:cd:08:de:9a:05:08:a9:bb:9f:13:ed:22: 14:de:18:8d:81:ed:d8:03:a3:55:de:56:82:cf:0e:aa:b6:64: 50:ab:51:b3:04:a9:86:4c:5c:5e:5c:a9:8e:97:63:e8:7e:09: 9b:6f:bb:a1:e7:a2:fa:df:21:46:8a:98:fc:4a:02:8c:9c:96: db:27:07:44:0e:21:1e:bf:cb:b4:7b:e1:d8:af:f8:3e:ee:8d: 50:35:cd:c9:b4:20:b3:3d:95:6e:03:c5:f1:41:a3:8c:b3:48: 97:44:6b:40:fd:83:49:bc:0c:7c:7e:9a:12:58:bd:77:27:d8: 71:ba:8b:98:45:28:11:92:d6:ff:c3:ae:d1:3d:14:b8:a9:25: ee:c2:06:e2:d4:31:c8:80:8f:0f:24:4f:57:29:db:8e:1a:a5: 59:e0:df:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzNEQxMTAvBgNVBAUTKDRDMDU3OUU1N0M5RDFFOTRBNEUzRTRFMDY2NTY2NjIw RUMzMEUyQTcwHhcNMjUwODEyMjIyNjQ2WhcNMjUwODE5MjIyNjQ2WjAYMRYwFAYD VQQDEw02ODliYmZhNi1lZjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUH5SswWxreUE3PCR3RIufjXNYSixlrFBNbi5FnHuYOx4+PdA0/aYz8ci+ZK O2f2Pv6fFQaBuWw0j0YoHFZafu4PvuDsc4NXQWaI4VnhFSPJTE9QN3+Kom/Z35fQ qSMUPsuEs8lBsrFKuQishV5J8gu+HZi+wvatthWvFyzyUrIcMI3KqkX8GW9vA5GO x81xfp9R0Ox9q+mSDoAjXsnN2F4Qi9UaF6qHT8oZNaTmG3QJaVNUvGl2U4whmnVC Safo28pnUy9b1GujSNykcq6USb3BVLHkDfvXk/x8YJbINrHlwlePHhfUh5Gf1cR/ tmIcaNv3PWtKCWu7tL3iNDJ/gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCD0iuBo CVOmVue+tB8qYw8br3FhMB8GA1UdIwQYMBaAFEwFeeV8nR6UpOPk4GZWZiDsMOKn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzM0RC9GNEYwNDkxODZC NDIxMUVCOUQyQzE5MkNDNEY5QUUwMi9UQVY1NVh5ZEhwU2s0LVRnWmxabUlPd3c0 cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBVjU1WHlkSHBTazQtVGdabFptSU93dzRxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzM0RC9GNEYwNDkxODZCNDIxMUVCOUQyQzE5MkNDNEY5QUUwMi9UQVY1NVh5ZEhw U2s0LVRnWmxabUlPd3c0cWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSir370dntxS++cRGZ3D+NJqOLzGRbN8E9TADaUW8bXNq6JFJlAOBL CG5Wqid00xMCEP4yFttqlrjNO4kqgtuRQ4dcAjULxZC+Q7pHpiZ/zQMymsz2CtK5 AqnF5p6HkBnNCN6aBQipu58T7SIU3hiNge3YA6NV3laCzw6qtmRQq1GzBKmGTFxe XKmOl2Pofgmbb7uh56L63yFGipj8SgKMnJbbJwdEDiEev8u0e+HYr/g+7o1QNc3J tCCzPZVuA8XxQaOMs0iXRGtA/YNJvAx8fpoSWL13J9hxuouYRSgRktb/w67RPRS4 qSXuwgbi1DHIgI8PJE9XKduOGqVZ4N8i -----END CERTIFICATE-----Generated at Wed Aug 13 04:31:15 2025 by rpki-client