$ rpki-client -vvf rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft File: TZCQh73foVBeK7oD8gYRLq7_sRs.mft (raw, json) Hash identifier: XsPuAFfNJHq/hOCAXtwbHq28PH/93RnRBzPb5nZPidU= Subject key identifier: A4:9A:D5:39:44:B9:99:DA:2B:BF:34:94:09:D2:EA:A9:B8:2B:72:CC Authority key identifier: 4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B Certificate issuer: /CN=A91D200F/serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft Manifest number: 0198 Signing time: Thu 07 Aug 2025 03:59:22 +0000 Manifest this update: Thu 07 Aug 2025 03:59:21 +0000 Manifest next update: Thu 14 Aug 2025 03:59:21 +0000 Files and hashes: 1: TZCQh73foVBeK7oD8gYRLq7_sRs.crl (hash: 52v2lwzocljF18JpOd693LNkNRNvBE6reL3kz46BOyY=) 2: D71B60EC2B5911EE81C7542FC4F9AE02.roa (hash: wndMS9TntxEIvOO1y5ThBewHzkdYkTNV8U/orVegQT4=) 3: 039807B286B511EFAF868C6EC4F9AE02.roa (hash: mvlfednBP8hH+VJF+N7b5lj86+gAiaBFLJ6OGfwQefA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 03:59:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D200F, serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Validity Not Before: Aug 7 03:59:21 2025 GMT Not After : Aug 14 03:59:21 2025 GMT Subject: CN=68942499-ea02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bb:56:f7:79:7c:f7:0f:9d:54:f1:87:02:fe: 0a:91:38:81:84:46:26:48:1b:45:17:00:2b:23:64: 92:dc:93:dd:ff:52:64:52:6c:d6:d1:7e:8c:f3:fe: 35:f7:70:51:59:7c:67:06:2c:c7:94:c4:89:09:77: a9:1f:5e:a7:b1:08:fd:85:f9:26:e8:18:60:00:df: 7e:44:44:82:41:82:43:e0:28:5c:d6:7a:aa:c6:5d: 98:db:57:7f:d8:27:18:75:19:3a:53:ef:48:3b:d1: 43:60:2c:62:5e:dc:5a:b0:0c:32:88:22:cd:58:cc: 37:cd:c8:ba:10:07:d7:40:3e:ea:db:96:88:6a:11: 3e:b0:ae:cf:aa:1c:e9:af:d7:05:f8:ef:ad:b0:23: 22:52:16:22:8a:7e:82:6a:a7:40:77:89:ac:e2:2d: 71:ed:cf:ae:65:3d:29:9a:8a:1e:75:f2:e9:b7:b6: c4:a7:c5:c9:b4:89:6e:45:59:4c:42:85:12:c4:88: cb:c2:9c:fa:e9:af:6b:0d:1d:6d:cd:f7:3c:ab:6d: 11:2e:23:a0:fa:96:6b:3d:5d:9b:4e:20:e8:37:c3: 08:dd:11:cf:1e:35:db:af:00:27:2d:12:6b:dc:9c: e9:71:f8:63:c0:56:94:94:a9:3a:9d:b9:33:0c:32: f4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:9A:D5:39:44:B9:99:DA:2B:BF:34:94:09:D2:EA:A9:B8:2B:72:CC X509v3 Authority Key Identifier: keyid:4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:d7:e3:7d:75:ce:25:df:ca:7f:e8:96:ab:9c:89:6b:9a:a5: 09:3e:bf:3c:e2:fc:54:f9:5f:94:a1:52:ad:01:c6:13:48:2d: 15:a3:fa:9d:28:f4:f6:8e:6a:b1:70:63:8d:ce:4e:6a:f0:7a: 94:98:75:66:fd:46:1f:4b:79:88:59:11:d0:96:45:d4:5d:12: fe:14:67:a5:2f:6f:70:81:97:f4:3d:bd:56:22:0a:a5:ac:18: 5d:c9:e3:32:70:95:f9:f0:ca:87:4d:bb:7f:d4:bf:81:ae:f6: bb:5f:49:e8:72:3b:12:37:2d:d6:ed:ad:34:d9:c1:f9:6f:1b: b7:f4:10:c5:29:50:c8:c3:bc:92:02:85:38:6e:3c:18:aa:83: 4a:5a:39:07:57:d7:57:7d:d6:f8:25:03:16:45:34:ab:5c:bb: f6:9b:db:08:8c:ae:3d:a9:52:ac:a5:56:26:b0:a0:53:02:7e: 10:68:7b:6e:52:bd:2d:38:99:8a:b6:71:b1:29:62:e4:18:2e: bf:8b:b0:d3:86:d5:a4:b3:80:14:dc:5b:fb:2e:7b:7d:93:9d: 34:9f:98:5c:8a:5a:1f:c1:72:58:04:f4:67:66:b7:9c:15:a1: c8:f7:93:ed:d3:46:43:6b:88:b7:4e:0a:89:27:cb:a4:61:22: bd:07:e9:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIwMEYxMTAvBgNVBAUTKDREOTA5MDg3QkRERkExNTA1RTJCQkEwM0YyMDYxMTJF QUVGRkIxMUIwHhcNMjUwODA3MDM1OTIxWhcNMjUwODE0MDM1OTIxWjAYMRYwFAYD VQQDEw02ODk0MjQ5OS1lYTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7tW93l89w+dVPGHAv4KkTiBhEYmSBtFFwArI2SS3JPd/1JkUmzW0X6M8/41 93BRWXxnBizHlMSJCXepH16nsQj9hfkm6BhgAN9+RESCQYJD4Chc1nqqxl2Y21d/ 2CcYdRk6U+9IO9FDYCxiXtxasAwyiCLNWMw3zci6EAfXQD7q25aIahE+sK7Pqhzp r9cF+O+tsCMiUhYiin6CaqdAd4ms4i1x7c+uZT0pmooedfLpt7bEp8XJtIluRVlM QoUSxIjLwpz66a9rDR1tzfc8q20RLiOg+pZrPV2bTiDoN8MI3RHPHjXbrwAnLRJr 3JzpcfhjwFaUlKk6nbkzDDL0YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSa1TlE uZnaK780lAnS6qm4K3LMMB8GA1UdIwQYMBaAFE2QkIe936FQXiu6A/IGES6u/7Eb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjAwRi8yNTc4NzQwMjE2 NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9WQmVLN29EOGdZUkxxN19z UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQ1FoNzNmb1ZCZUs3b0Q4Z1lSTHE3X3NScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjAwRi8yNTc4NzQwMjE2NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9W QmVLN29EOGdZUkxxN19zUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC1+N9dc4l38p/6JarnIlrmqUJPr884vxU+V+UoVKtAcYTSC0Vo/qd KPT2jmqxcGONzk5q8HqUmHVm/UYfS3mIWRHQlkXUXRL+FGelL29wgZf0Pb1WIgql rBhdyeMycJX58MqHTbt/1L+Brva7X0nocjsSNy3W7a002cH5bxu39BDFKVDIw7yS AoU4bjwYqoNKWjkHV9dXfdb4JQMWRTSrXLv2m9sIjK49qVKspVYmsKBTAn4QaHtu Ur0tOJmKtnGxKWLkGC6/i7DThtWks4AU3Fv7Lnt9k500n5hcilofwXJYBPRnZrec FaHI95Pt00ZDa4i3TgqJJ8ukYSK9B+kS -----END CERTIFICATE-----Generated at Fri Aug 8 19:40:16 2025 by rpki-client