$ rpki-client -vvf rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft File: TZRPMLjG5pGYjTAvumwvnFdMBLA.mft (raw, json) Hash identifier: 4SW+d029gPD0EgEwRJZwwPKadv4SxR0pQZQ5pKxg8s0= Subject key identifier: E3:63:AB:25:49:54:74:70:5D:D1:BD:EE:A7:45:FC:FA:91:68:4A:81 Authority key identifier: 4D:94:4F:30:B8:C6:E6:91:98:8D:30:2F:BA:6C:2F:9C:57:4C:04:B0 Certificate issuer: /CN=A914F349/serialNumber=4D944F30B8C6E691988D302FBA6C2F9C574C04B0 Certificate serial: 02DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZRPMLjG5pGYjTAvumwvnFdMBLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft Manifest number: 02DB Signing time: Thu 03 Jul 2025 01:43:58 +0000 Manifest this update: Thu 03 Jul 2025 01:43:57 +0000 Manifest next update: Thu 10 Jul 2025 01:43:57 +0000 Files and hashes: 1: TZRPMLjG5pGYjTAvumwvnFdMBLA.crl (hash: QjJoaQy455s01UQptNl+6h0gyRaIqQSrw6wmELvuyyA=) 2: E5A22A7CEDB811ECB7BDFF0AC4F9AE02.roa (hash: eMUIS/zzjzYQct5cXs32cWMUeQ2JvlQAolC+FTmpNC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.crl rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZRPMLjG5pGYjTAvumwvnFdMBLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 735 (0x2df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F349, serialNumber=4D944F30B8C6E691988D302FBA6C2F9C574C04B0 Validity Not Before: Jul 3 01:43:57 2025 GMT Not After : Jul 10 01:43:57 2025 GMT Subject: CN=6865e05e-f9f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:16:cc:65:7c:9a:87:72:2f:ca:5d:5e:39:7f: ca:c0:40:2b:5e:2a:0d:59:df:c6:65:fd:6a:4d:ff: e2:b4:82:bd:7e:02:82:5f:92:8c:cc:ac:08:88:85: 4e:1d:3d:c2:59:0a:9d:d2:9d:0d:c5:23:de:6a:dc: d4:88:3c:b7:be:53:c1:6e:19:09:de:ca:57:5a:22: 6c:64:2e:78:6a:59:58:82:07:61:2c:65:e5:9b:8b: 71:3c:4a:5c:f9:5c:53:8b:ef:e7:4f:af:58:7f:f0: 4d:2a:5d:3d:20:fa:86:17:6b:51:30:ba:ba:f4:e3: 8f:21:58:fa:ce:0e:41:d7:c3:1f:12:d8:fd:9b:90: 31:30:f4:ac:64:83:a0:cd:50:a2:95:75:26:76:7d: a8:6f:b6:70:af:5b:2c:10:12:c2:f3:c5:97:c6:93: d5:d4:8a:d4:fd:f0:03:e5:91:1a:81:82:e7:b4:19: 78:05:74:1a:a8:aa:ef:b3:a8:c3:b1:51:e9:e1:c1: f4:17:bd:3a:d0:ae:a9:06:3d:ec:e1:41:f3:5e:9b: b1:77:9b:a5:e7:98:d1:ca:86:24:5f:37:b6:41:88: 3d:44:40:74:7c:9e:80:ac:c1:ca:ad:0c:e4:d9:f4: 41:77:8b:5b:8c:4d:d3:8e:fc:87:ef:2c:64:3b:a2: cf:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:63:AB:25:49:54:74:70:5D:D1:BD:EE:A7:45:FC:FA:91:68:4A:81 X509v3 Authority Key Identifier: keyid:4D:94:4F:30:B8:C6:E6:91:98:8D:30:2F:BA:6C:2F:9C:57:4C:04:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZRPMLjG5pGYjTAvumwvnFdMBLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:76:6b:6f:cb:91:28:14:24:43:d3:39:e9:14:9a:16:8b:d9: da:88:a2:40:81:5b:7f:f0:d9:60:51:b1:f7:99:96:db:60:6e: 80:2c:56:be:32:b2:22:1d:7f:9d:35:ae:19:58:10:99:c8:6c: 6b:88:31:c1:ee:a8:3b:0d:6c:ad:ce:55:34:77:a0:b4:e4:49: 88:9e:87:c5:fe:b0:43:43:af:ad:91:46:6a:99:3b:5e:20:78: 9f:82:31:57:d6:77:a0:dd:9d:14:61:b1:03:73:62:42:7c:df: 47:ef:71:47:db:24:a7:0c:6f:f1:90:39:14:9d:e7:c2:cc:cf: 21:a3:6a:e3:ed:e6:5c:57:d2:92:45:27:2e:ea:52:95:75:fb: b3:19:22:a2:ed:3f:7f:d7:51:58:81:6a:df:8d:fd:5c:46:b9: d4:f3:9a:14:4d:95:0c:cd:f2:c0:ad:74:8c:8a:83:21:f4:30: 54:fe:7f:a2:fa:f3:df:d4:3f:ad:0a:8c:eb:95:79:5c:61:7e: 8b:36:fd:d6:0b:44:e1:bc:c6:f0:d9:bd:31:a1:a5:be:2f:9b: 21:59:d2:68:27:16:59:46:a4:26:bf:0e:47:04:0d:05:4b:36: b9:7d:be:a3:19:0e:d0:38:e6:f3:01:27:9c:51:97:5d:25:b1: f2:d6:4a:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzNDkxMTAvBgNVBAUTKDREOTQ0RjMwQjhDNkU2OTE5ODhEMzAyRkJBNkMyRjlD NTc0QzA0QjAwHhcNMjUwNzAzMDE0MzU3WhcNMjUwNzEwMDE0MzU3WjAYMRYwFAYD VQQDEw02ODY1ZTA1ZS1mOWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAohbMZXyah3Ivyl1eOX/KwEArXioNWd/GZf1qTf/itIK9fgKCX5KMzKwIiIVO HT3CWQqd0p0NxSPeatzUiDy3vlPBbhkJ3spXWiJsZC54allYggdhLGXlm4txPEpc +VxTi+/nT69Yf/BNKl09IPqGF2tRMLq69OOPIVj6zg5B18MfEtj9m5AxMPSsZIOg zVCilXUmdn2ob7Zwr1ssEBLC88WXxpPV1IrU/fAD5ZEagYLntBl4BXQaqKrvs6jD sVHp4cH0F7060K6pBj3s4UHzXpuxd5ul55jRyoYkXze2QYg9REB0fJ6ArMHKrQzk 2fRBd4tbjE3TjvyH7yxkO6LPgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONjqyVJ VHRwXdG97qdF/PqRaEqBMB8GA1UdIwQYMBaAFE2UTzC4xuaRmI0wL7psL5xXTASw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjM0OS9DNkY1MDAxQUVE QjExMUVDQUY0MzVDNURDNEY5QUUwMi9UWlJQTUxqRzVwR1lqVEF2dW13dm5GZE1C TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaUlBNTGpHNXBHWWpUQXZ1bXd2bkZkTUJMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjM0OS9DNkY1MDAxQUVEQjExMUVDQUY0MzVDNURDNEY5QUUwMi9UWlJQTUxqRzVw R1lqVEF2dW13dm5GZE1CTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJdmtvy5EoFCRD0znpFJoWi9naiKJAgVt/8NlgUbH3mZbbYG6ALFa+ MrIiHX+dNa4ZWBCZyGxriDHB7qg7DWytzlU0d6C05EmInofF/rBDQ6+tkUZqmTte IHifgjFX1neg3Z0UYbEDc2JCfN9H73FH2ySnDG/xkDkUnefCzM8ho2rj7eZcV9KS RScu6lKVdfuzGSKi7T9/11FYgWrfjf1cRrnU85oUTZUMzfLArXSMioMh9DBU/n+i +vPf1D+tCozrlXlcYX6LNv3WC0ThvMbw2b0xoaW+L5shWdJoJxZZRqQmvw5HBA0F Sza5fb6jGQ7QOObzASecUZddJbHy1kou -----END CERTIFICATE-----Generated at Thu Jul 3 20:18:27 2025 by rpki-client