$ rpki-client -vvf rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft File: TCISGt-uP1dSgBZRUcP9MOOq_QE.mft (raw, json) Hash identifier: f3R130+W3Xtpql/xsv7FDnNuEdtnLZ2qJaW3Q+3Ct0c= Subject key identifier: FF:7C:B4:8F:45:6F:13:59:7B:F0:39:21:65:38:59:0E:4E:F3:C6:32 Authority key identifier: 4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 Certificate issuer: /CN=A91466E8/serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft Manifest number: 42 Signing time: Tue 01 Jul 2025 08:12:53 +0000 Manifest this update: Tue 01 Jul 2025 08:12:52 +0000 Manifest next update: Tue 08 Jul 2025 08:12:52 +0000 Files and hashes: 1: TCISGt-uP1dSgBZRUcP9MOOq_QE.crl (hash: iAQSH7qEi0THDMu5Lu3hZMK9NjlGPSzjbZHvSTAKSqg=) 2: 02640B0CF97911EF99F9BE80C4F9AE02.roa (hash: cI8Rp+uDdJ361Bt2iDuipm5XRt6w/fm/O6/Pc4tHNDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:12:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91466E8, serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Validity Not Before: Jul 1 08:12:52 2025 GMT Not After : Jul 8 08:12:52 2025 GMT Subject: CN=68639885-fc3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f8:1f:da:b0:b0:e0:e4:84:47:aa:63:df:4a: 08:af:98:91:04:62:15:fd:2d:ac:38:6f:21:c9:d5: 1b:1d:f4:ee:8f:45:e3:84:7e:94:1f:44:5c:6d:18: e1:80:cb:c9:5b:fb:f7:44:37:9d:cc:f2:a5:9b:e7: 25:7d:3f:f3:ab:95:9c:9f:a2:f8:51:15:6f:8e:21: b1:a2:5d:52:0b:0d:eb:65:4c:9a:24:fe:b1:c8:0c: 4b:4b:45:17:e3:6c:32:8c:81:36:8c:38:91:ac:a6: 37:71:6b:20:15:e7:c4:8f:65:9c:1b:ea:2b:56:3f: 41:4b:d6:24:38:ae:0b:b7:27:e3:99:5b:e6:e8:58: 35:1b:ff:ac:ce:b9:07:f0:f5:2a:27:15:c2:3c:35: ef:e1:d6:9b:33:f3:c1:b3:f1:8c:de:c6:e2:7a:b8: fc:0c:14:16:94:e8:85:7b:63:ae:a0:ad:9d:1d:c1: 76:45:25:4c:fa:02:8c:43:68:24:cd:bc:ee:dd:31: 9c:06:b3:2f:78:5b:81:18:da:78:c6:54:84:6a:50: b9:16:a4:b0:64:3e:57:81:65:f9:16:f8:66:63:b3: 1b:b6:07:bb:1a:3f:04:a9:dd:81:02:38:b2:8f:3d: 1c:7c:69:3c:37:75:44:9c:00:0a:84:a2:30:35:72: 1f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:7C:B4:8F:45:6F:13:59:7B:F0:39:21:65:38:59:0E:4E:F3:C6:32 X509v3 Authority Key Identifier: keyid:4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:fd:e1:c1:bd:99:56:af:3a:d3:1f:22:33:14:bc:5f:90:78: 81:14:e2:be:e7:73:da:42:f0:6c:28:4b:5b:af:55:ca:6d:d3: 94:48:62:74:ff:69:6b:3f:f8:1e:c9:e3:ed:56:21:04:8b:f3: b0:e4:8c:95:4c:d4:74:58:56:98:44:77:ab:87:d5:0f:5d:df: e5:62:a8:b3:ea:74:aa:d5:7a:e6:f9:86:56:a7:e4:b8:88:c8: ef:c4:cc:e2:8d:95:ec:09:c1:97:47:5a:d1:e4:9c:73:a3:3e: 33:cb:f4:fc:d6:d0:71:89:d9:30:c3:5c:20:20:75:7f:43:95: e8:73:d9:47:d1:40:8c:04:23:9c:bd:76:9f:71:44:88:d2:de: 4d:46:8f:84:52:20:b4:38:fa:a2:74:d3:0c:9d:03:47:b6:c6: fe:27:72:d9:e5:17:86:44:1f:d7:10:b7:5c:2c:8e:1f:26:a8: 61:51:bb:5f:a9:cd:25:68:70:08:71:0e:9e:d8:f5:52:4d:29: 80:1f:e6:8a:ab:5a:bd:79:63:47:ad:1f:25:87:61:b2:58:36: 5b:22:8e:5f:4d:74:cb:bb:92:8a:73:01:66:e2:cf:bf:46:08: 60:9b:e2:c2:58:42:c6:61:9f:16:eb:39:32:4a:e2:89:e7:dd: f9:b1:34:13 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NjZFODExMC8GA1UEBRMoNEMyMjEyMUFERkFFM0Y1NzUyODAxNjUxNTFDM0ZEMzBF M0FBRkQwMTAeFw0yNTA3MDEwODEyNTJaFw0yNTA3MDgwODEyNTJaMBgxFjAUBgNV BAMTDTY4NjM5ODg1LWZjM2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6+B/asLDg5IRHqmPfSgivmJEEYhX9Law4byHJ1Rsd9O6PReOEfpQfRFxtGOGA y8lb+/dEN53M8qWb5yV9P/OrlZyfovhRFW+OIbGiXVILDetlTJok/rHIDEtLRRfj bDKMgTaMOJGspjdxayAV58SPZZwb6itWP0FL1iQ4rgu3J+OZW+boWDUb/6zOuQfw 9SonFcI8Ne/h1psz88Gz8YzexuJ6uPwMFBaU6IV7Y66grZ0dwXZFJUz6AoxDaCTN vO7dMZwGsy94W4EY2njGVIRqULkWpLBkPleBZfkW+GZjsxu2B7saPwSp3YECOLKP PRx8aTw3dUScAAqEojA1ch8bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/3y0j0Vv E1l78DkhZThZDk7zxjIwHwYDVR0jBBgwFoAUTCISGt+uP1dSgBZRUcP9MOOq/QEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2NkU4L0Q4Mzg4RDM0RjNG QzExRUY5MjZDRTYzMEM0RjlBRTAyL1RDSVNHdC11UDFkU2dCWlJVY1A5TU9PcV9R RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVENJU0d0LXVQMWRTZ0JaUlVjUDlNT09xX1FFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2 NkU4L0Q4Mzg4RDM0RjNGQzExRUY5MjZDRTYzMEM0RjlBRTAyL1RDSVNHdC11UDFk U2dCWlJVY1A5TU9PcV9RRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIP94cG9mVavOtMfIjMUvF+QeIEU4r7nc9pC8GwoS1uvVcpt05RIYnT/ aWs/+B7J4+1WIQSL87DkjJVM1HRYVphEd6uH1Q9d3+ViqLPqdKrVeub5hlan5LiI yO/EzOKNlewJwZdHWtHknHOjPjPL9PzW0HGJ2TDDXCAgdX9Dlehz2UfRQIwEI5y9 dp9xRIjS3k1Gj4RSILQ4+qJ00wydA0e2xv4nctnlF4ZEH9cQt1wsjh8mqGFRu1+p zSVocAhxDp7Y9VJNKYAf5oqrWr15Y0etHyWHYbJYNlsijl9NdMu7kopzAWbiz79G CGCb4sJYQsZhnxbrOTJK4onn3fmxNBM= -----END CERTIFICATE-----Generated at Thu Jul 3 01:14:21 2025 by rpki-client