$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft File: TSeJUeK9itKFuUCo6p5X43lxHms.mft (raw, json) Hash identifier: 41QIUXEBrBfJbN4YFpDm1cMmyftYupsitFETwbedY5A= Subject key identifier: 4E:41:C4:B9:91:A4:B6:26:7F:D5:3C:91:30:60:74:9B:1C:9D:5D:31 Authority key identifier: 4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B Certificate issuer: /CN=A91342C5/serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Certificate serial: 039E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft Manifest number: 0399 Signing time: Thu 03 Jul 2025 01:11:15 +0000 Manifest this update: Thu 03 Jul 2025 01:11:15 +0000 Manifest next update: Thu 10 Jul 2025 01:11:15 +0000 Files and hashes: 1: TSeJUeK9itKFuUCo6p5X43lxHms.crl (hash: OgpcFkDcEyztOVi298/NT4kwiDZJKx49ArjDHvW24T8=) 2: E8E194B8A5CC11EC85A86A1FC4F9AE02.roa (hash: ypQGr8fcGrxnVWfQ2RrFsZZ4R7tmsDgEITmj6bx0ScA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 926 (0x39e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Validity Not Before: Jul 3 01:11:15 2025 GMT Not After : Jul 10 01:11:15 2025 GMT Subject: CN=6865d8b3-ebbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ba:8c:56:dd:6d:0c:40:f0:07:4b:df:9a:0e: 4a:a4:de:ba:37:e0:25:73:a5:31:c9:b2:36:a8:cf: ee:01:2e:b9:48:9d:56:54:68:67:d3:0a:b8:c8:fa: 3f:56:61:6d:16:90:e6:cb:69:ca:66:78:ab:8e:6f: 43:4b:0d:07:83:76:24:fd:73:ce:f2:07:0e:aa:5f: a4:d7:09:8d:ad:e9:c0:b3:41:4e:74:02:a2:8c:20: b9:b1:6d:24:df:df:f6:55:42:0d:ab:5a:97:ed:06: d4:d3:fd:53:ff:b4:a7:2f:21:44:e4:64:2b:af:95: 92:b1:f7:6b:63:61:a1:22:f6:4d:da:7b:57:ee:7d: 57:3f:be:46:b5:5b:e6:ad:96:d6:06:2e:4e:d6:75: af:91:70:68:b6:43:bf:01:8b:ae:33:f0:04:13:03: 11:4d:45:43:26:49:13:c3:5f:eb:44:78:57:26:32: b7:b0:d8:0c:4d:39:74:1c:1f:0f:4b:da:ee:1a:d1: ca:e3:72:c6:1b:4e:08:20:3c:8f:4f:97:b5:da:6f: 55:c4:f8:95:9e:65:55:5c:98:1f:3c:3e:04:2d:3d: e8:46:30:b4:4e:72:38:58:cb:9a:9d:40:b2:83:60: 13:00:2b:72:09:f0:77:5c:a8:77:0c:52:e0:ab:1f: a3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:41:C4:B9:91:A4:B6:26:7F:D5:3C:91:30:60:74:9B:1C:9D:5D:31 X509v3 Authority Key Identifier: keyid:4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:26:cd:28:0d:01:06:b2:de:27:f9:e5:3d:da:c0:68:c9:f4: b6:1f:d4:01:3d:ba:a3:b7:e0:bb:45:c0:25:dc:d9:f6:bd:f9: 7a:36:ef:8f:a5:0c:7f:1f:88:a1:d6:56:81:27:0f:4c:b5:0e: 8b:85:2c:1b:34:49:19:80:fc:17:8a:ef:ec:cf:f7:1f:97:37: 62:da:fd:34:99:f4:b5:32:d2:e7:27:50:3d:3d:02:1e:78:8d: 4c:8e:0e:69:19:9f:cc:68:c3:04:76:be:30:18:78:c9:9b:5d: c8:8a:e2:f3:db:72:ae:3c:7e:09:20:b7:2a:11:9b:b3:07:4d: a0:84:b8:df:44:b2:92:f5:01:de:12:07:4e:26:5d:08:dc:e8: 16:55:c5:67:77:eb:ce:f6:c4:0d:99:a2:d1:cd:d9:39:2a:03: 7c:5a:dd:00:83:f6:a3:c3:70:88:62:3d:d5:9f:35:6b:ff:99: b6:09:97:d7:ce:87:29:11:70:c4:4f:46:aa:0e:72:79:25:27: d1:99:a7:fc:4c:73:0d:39:87:4d:01:9c:ec:cb:a9:cc:69:f0: 2d:cd:c3:a3:3f:40:82:70:16:7b:79:b0:2e:46:42:cd:49:71: d3:6b:1f:f6:9c:e8:f3:67:6b:21:38:89:2f:48:93:7e:69:c8: 98:c0:9a:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDREMjc4OTUxRTJCRDhBRDI4NUI5NDBBOEVBOUU1N0Uz Nzk3MTFFNkIwHhcNMjUwNzAzMDExMTE1WhcNMjUwNzEwMDExMTE1WjAYMRYwFAYD VQQDEw02ODY1ZDhiMy1lYmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrqMVt1tDEDwB0vfmg5KpN66N+Alc6UxybI2qM/uAS65SJ1WVGhn0wq4yPo/ VmFtFpDmy2nKZnirjm9DSw0Hg3Yk/XPO8gcOql+k1wmNrenAs0FOdAKijCC5sW0k 39/2VUINq1qX7QbU0/1T/7SnLyFE5GQrr5WSsfdrY2GhIvZN2ntX7n1XP75GtVvm rZbWBi5O1nWvkXBotkO/AYuuM/AEEwMRTUVDJkkTw1/rRHhXJjK3sNgMTTl0HB8P S9ruGtHK43LGG04IIDyPT5e12m9VxPiVnmVVXJgfPD4ELT3oRjC0TnI4WMuanUCy g2ATACtyCfB3XKh3DFLgqx+jGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5BxLmR pLYmf9U8kTBgdJscnV0xMB8GA1UdIwQYMBaAFE0niVHivYrShblAqOqeV+N5cR5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xNjYzN0MyRUE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0S0Z1VUNvNnA1WDQzbHhI bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1RTZUpVZUs5aXRLRnVVQ282cDVYNDNseEhtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xNjYzN0MyRUE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0 S0Z1VUNvNnA1WDQzbHhIbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEJs0oDQEGst4n+eU92sBoyfS2H9QBPbqjt+C7RcAl3Nn2vfl6Nu+P pQx/H4ih1laBJw9MtQ6LhSwbNEkZgPwXiu/sz/cflzdi2v00mfS1MtLnJ1A9PQIe eI1Mjg5pGZ/MaMMEdr4wGHjJm13IiuLz23KuPH4JILcqEZuzB02ghLjfRLKS9QHe EgdOJl0I3OgWVcVnd+vO9sQNmaLRzdk5KgN8Wt0Ag/ajw3CIYj3VnzVr/5m2CZfX zocpEXDET0aqDnJ5JSfRmaf8THMNOYdNAZzsy6nMafAtzcOjP0CCcBZ7ebAuRkLN SXHTax/2nOjzZ2shOIkvSJN+aciYwJrq -----END CERTIFICATE-----Generated at Thu Jul 3 22:53:46 2025 by rpki-client