$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft File: tksRCOmO7If7awwovgFkXHCLSsU.mft (raw, json) Hash identifier: 815EFFOEos+bnVIhq0tX97IjAKcHcaizH5Ij/hwrqgs= Subject key identifier: EC:27:6B:2B:1E:98:10:83:D4:13:BB:6E:4C:70:95:2D:95:20:43:56 Authority key identifier: B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 Certificate issuer: /CN=A91BAE17/serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Certificate serial: 297D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft Manifest number: 2968 Signing time: Sun 10 Aug 2025 15:33:08 +0000 Manifest this update: Sun 10 Aug 2025 15:33:07 +0000 Manifest next update: Sun 17 Aug 2025 15:33:07 +0000 Files and hashes: 1: tksRCOmO7If7awwovgFkXHCLSsU.crl (hash: jjRVt6/MUbK95Fg2cjEjnLjyRHy2qS1dZHVm7Z0dsqM=) 2: 98845C5C54EC11E791C3F825C4F9AE02.roa (hash: XWmzI2yeMf3apt5DHsKgv60jONcTAI6E+TZgl5OMpW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10621 (0x297d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE17, serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Validity Not Before: Aug 10 15:33:07 2025 GMT Not After : Aug 17 15:33:07 2025 GMT Subject: CN=6898bbb4-f359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:2c:41:1e:be:d5:71:2c:a4:50:a2:30:02:22: 85:83:64:5c:80:bf:6a:85:9e:e9:ce:09:40:df:05: 0f:6c:4a:28:b9:6a:9b:e6:1c:bf:31:2c:ec:8a:18: aa:88:86:f0:ad:6f:a0:b8:67:5f:02:f7:bc:a1:e2: 4d:93:b2:fe:52:1e:9d:c3:d2:03:13:bf:4e:39:76: 80:aa:79:55:70:3c:ff:5e:73:15:85:f5:84:9c:46: 78:e8:94:70:b9:9a:c0:d3:bc:a6:e6:d7:de:50:49: 8c:6a:28:ea:32:9c:b3:76:ae:2a:73:0e:7c:e1:52: aa:d4:d9:2c:2a:8b:89:9d:9f:ef:ac:87:ae:3d:d0: ca:c2:7f:32:d6:b6:f0:ae:09:35:b7:26:65:cb:61: e4:30:c6:58:b5:46:6b:cc:5b:e8:7c:f0:8a:7d:95: 02:f9:17:fc:1a:15:3d:f1:75:22:8b:75:3a:69:73: dc:74:fc:3c:0e:2e:da:d6:4a:6b:ae:aa:4d:f4:e3: 42:90:63:54:eb:8e:fd:ad:43:e0:7f:4d:28:b1:f7: 57:84:59:b8:97:49:29:ba:f6:24:a3:b3:39:30:00: ea:b9:cc:1d:86:95:47:66:89:21:38:b6:a5:54:af: f0:a0:c1:05:72:3e:18:cc:db:98:dd:3b:b9:9d:97: 7c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:27:6B:2B:1E:98:10:83:D4:13:BB:6E:4C:70:95:2D:95:20:43:56 X509v3 Authority Key Identifier: keyid:B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:b8:08:51:29:f2:c5:0c:4e:3b:df:7c:0d:bb:ba:33:87:81: 6c:a3:fb:b8:06:f2:fb:84:5c:f3:5e:6b:fb:cf:ce:b6:ad:f2: d2:d2:fb:91:cf:35:f3:2a:2e:2e:7b:f0:75:6e:35:8f:29:f8: 2a:57:b7:56:dd:29:02:e7:53:a3:e8:7d:5e:92:9f:74:ef:b7: f3:b4:ed:47:d8:cf:d9:e1:2d:fc:d9:06:2b:92:bb:8e:40:fd: 61:2d:db:ce:56:01:19:e1:62:cf:99:4e:ef:e9:44:b6:61:f0: 94:24:b9:02:b6:64:dc:fb:34:a3:0a:7d:26:ab:f3:b4:c0:42: 90:80:c9:9f:c1:02:19:50:23:bb:7a:8a:5e:78:66:50:5f:4c: 30:fc:dd:45:c6:c9:8f:70:3d:c8:2b:70:1b:97:58:6f:ba:ed: 71:93:1c:30:33:97:c6:99:f1:7a:f9:a8:86:9e:45:1a:9e:fa: b4:d6:9e:f3:71:ce:1a:d4:c1:5d:08:0f:3a:df:6a:8e:bf:36: 71:11:2d:dd:b6:e0:7f:19:61:93:22:f3:d2:8b:cb:16:6b:8c: 7e:4a:c9:86:b4:53:b1:d0:5e:44:f0:52:a7:d9:1f:9c:ef:28: cf:9f:24:eb:a1:16:f8:99:53:51:04:5c:3d:a0:5b:8e:79:fb: 62:12:1c:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMTcxMTAvBgNVBAUTKEI2NEIxMTA4RTk4RUVDODdGQjZCMEMyOEJFMDE2NDVD NzA4QjRBQzUwHhcNMjUwODEwMTUzMzA3WhcNMjUwODE3MTUzMzA3WjAYMRYwFAYD VQQDEw02ODk4YmJiNC1mMzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4SxBHr7VcSykUKIwAiKFg2RcgL9qhZ7pzglA3wUPbEoouWqb5hy/MSzsihiq iIbwrW+guGdfAve8oeJNk7L+Uh6dw9IDE79OOXaAqnlVcDz/XnMVhfWEnEZ46JRw uZrA07ym5tfeUEmMaijqMpyzdq4qcw584VKq1NksKouJnZ/vrIeuPdDKwn8y1rbw rgk1tyZly2HkMMZYtUZrzFvofPCKfZUC+Rf8GhU98XUii3U6aXPcdPw8Di7a1kpr rqpN9ONCkGNU6479rUPgf00osfdXhFm4l0kpuvYko7M5MADqucwdhpVHZokhOLal VK/woMEFcj4YzNuY3Tu5nZd8xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwnayse mBCD1BO7bkxwlS2VIENWMB8GA1UdIwQYMBaAFLZLEQjpjuyH+2sMKL4BZFxwi0rF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUxNy80NDVFRTA5NDU4 QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJZjdhd3dvdmdGa1hIQ0xT c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rrc1JDT21PN0lmN2F3d292Z0ZrWEhDTFNzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUxNy80NDVFRTA5NDU4QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJ Zjdhd3dvdmdGa1hIQ0xTc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxuAhRKfLFDE4733wNu7ozh4Fso/u4BvL7hFzzXmv7z862rfLS0vuR zzXzKi4ue/B1bjWPKfgqV7dW3SkC51Oj6H1ekp9077fztO1H2M/Z4S382QYrkruO QP1hLdvOVgEZ4WLPmU7v6US2YfCUJLkCtmTc+zSjCn0mq/O0wEKQgMmfwQIZUCO7 eopeeGZQX0ww/N1FxsmPcD3IK3Abl1hvuu1xkxwwM5fGmfF6+aiGnkUanvq01p7z cc4a1MFdCA8632qOvzZxES3dtuB/GWGTIvPSi8sWa4x+SsmGtFOx0F5E8FKn2R+c 7yjPnyTroRb4mVNRBFw9oFuOeftiEhzm -----END CERTIFICATE-----Generated at Sun Aug 10 18:17:18 2025 by rpki-client