$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: mbl1XgkxoL78vzee5SMaKn/zynDuj46r+9KEz8zuCUo= Subject key identifier: BC:69:4D:57:12:BE:94:FC:BF:E3:1B:7E:2A:CA:E5:18:AA:4A:24:A5 Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0C95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0C7A Signing time: Wed 02 Jul 2025 18:34:42 +0000 Manifest this update: Wed 02 Jul 2025 18:34:41 +0000 Manifest next update: Wed 09 Jul 2025 18:34:41 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: 5OU7X5kHStR2aNqkS0Yeln1/eTazb3CAr/Bjl40vDAM=) 2: E8F85ED4EC5811EFA9B9C618C4F9AE02.roa (hash: ykoz29uCG/11xDnxQBhHvrkmfn5Ejy8eSvfC/XRGcV0=) 3: 47DADED8EC5211EFBF551F6DC4F9AE02.roa (hash: Ns3EqlAuypXsdC/A5rNqIcQNoK/ntkU/96rQkctaiRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3221 (0xc95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2, serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: Jul 2 18:34:41 2025 GMT Not After : Jul 9 18:34:41 2025 GMT Subject: CN=68657bc2-2162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:6a:18:d7:74:ff:f2:7b:02:5f:db:61:0a:35: 5c:4e:9c:70:25:d3:63:3e:1d:40:6a:85:03:25:97: 73:0e:4e:2c:be:10:63:f3:c4:5b:23:90:79:d1:ac: 83:1d:fd:bd:6d:26:28:15:d6:6a:5a:bd:77:2b:66: 29:4d:d1:d8:89:b7:8d:7c:5c:be:a2:f0:93:43:db: 15:3d:a1:4d:de:17:d3:7e:9a:c2:c9:67:ec:42:e5: 76:b6:7d:d7:e3:4c:c4:8c:74:86:f0:26:8a:66:66: 47:c9:74:4c:65:bf:d9:80:c5:64:f3:ef:d4:3f:01: c3:c6:f7:92:84:04:9f:e4:af:6c:55:e4:3a:d6:b4: 9c:72:e6:d2:b9:b1:fa:c5:d8:7f:90:d4:fb:25:d1: e4:e5:dc:ac:25:e6:f4:d8:21:da:09:6b:53:c7:a5: e0:6d:fe:24:75:1a:3d:77:d9:46:22:9b:d9:09:c7: eb:c4:32:fb:63:da:74:44:ed:33:a0:a8:03:79:4f: 1e:bf:50:bb:c1:54:e2:dc:d6:ec:33:de:98:97:47: 7b:de:ea:9f:82:8d:78:75:d7:20:e4:a3:d5:4b:e8: 0c:91:f0:0b:ed:25:0d:4d:4a:22:dd:2d:ab:3c:1c: b3:83:7f:6b:f6:0b:2c:e2:13:1c:3d:38:26:30:1b: d7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:69:4D:57:12:BE:94:FC:BF:E3:1B:7E:2A:CA:E5:18:AA:4A:24:A5 X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:2c:b6:55:c5:b9:65:c5:71:03:09:cf:16:a4:9b:e4:7b:36: c5:c5:74:bb:94:c3:9c:2a:41:69:df:d6:8a:bb:bc:1e:b3:d8: c7:b0:a4:a9:fc:f7:5c:e5:c5:88:9c:37:af:96:1e:1e:82:23: 3a:0f:d1:d6:31:60:52:a5:fe:d2:87:3f:97:0c:91:41:65:8e: 42:07:75:ba:0e:8d:43:5d:22:53:a9:3e:70:83:13:15:79:67: 8d:6a:db:bb:2b:eb:a4:d8:3a:69:0b:25:0a:c7:9a:87:f3:31: 7e:8e:fd:55:cd:e5:ac:b1:03:a9:4b:fc:73:f7:11:86:4b:a5: 25:3f:b6:3b:16:b6:af:ce:59:7e:c8:3c:51:49:3c:d1:1e:20: f2:c3:b9:a8:28:71:c5:3c:35:77:40:e7:4c:66:ca:bc:c2:f9: e3:ec:83:0c:1d:1a:c0:a9:54:d1:74:02:ba:1e:9b:f1:2f:7f: 6b:1a:ac:c0:6c:d1:92:9a:e2:d0:bc:6d:ac:b3:c2:90:35:d4: 75:34:54:ad:b5:dc:a1:77:fd:e0:04:61:83:1f:8d:c4:d1:88: 01:95:a7:51:97:aa:34:1a:33:af:94:04:36:08:b6:3a:ff:57: 87:25:32:f2:e4:d3:5e:d0:a1:67:99:26:2f:46:07:b4:e8:70: c3:d3:fe:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjUwNzAyMTgzNDQxWhcNMjUwNzA5MTgzNDQxWjAYMRYwFAYD VQQDEw02ODY1N2JjMi0yMTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4moY13T/8nsCX9thCjVcTpxwJdNjPh1AaoUDJZdzDk4svhBj88RbI5B50ayD Hf29bSYoFdZqWr13K2YpTdHYibeNfFy+ovCTQ9sVPaFN3hfTfprCyWfsQuV2tn3X 40zEjHSG8CaKZmZHyXRMZb/ZgMVk8+/UPwHDxveShASf5K9sVeQ61rSccubSubH6 xdh/kNT7JdHk5dysJeb02CHaCWtTx6Xgbf4kdRo9d9lGIpvZCcfrxDL7Y9p0RO0z oKgDeU8ev1C7wVTi3NbsM96Yl0d73uqfgo14ddcg5KPVS+gMkfAL7SUNTUoi3S2r PByzg39r9gss4hMcPTgmMBvX6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxpTVcS vpT8v+MbfirK5RiqSiSlMB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCLLZVxbllxXEDCc8WpJvkezbFxXS7lMOcKkFp39aKu7wes9jHsKSp /Pdc5cWInDevlh4egiM6D9HWMWBSpf7Shz+XDJFBZY5CB3W6Do1DXSJTqT5wgxMV eWeNatu7K+uk2DppCyUKx5qH8zF+jv1VzeWssQOpS/xz9xGGS6UlP7Y7Fravzll+ yDxRSTzRHiDyw7moKHHFPDV3QOdMZsq8wvnj7IMMHRrAqVTRdAK6HpvxL39rGqzA bNGSmuLQvG2ss8KQNdR1NFSttdyhd/3gBGGDH43E0YgBladRl6o0GjOvlAQ2CLY6 /1eHJTLy5NNe0KFnmSYvRge06HDD0/6u -----END CERTIFICATE-----Generated at Thu Jul 3 12:22:48 2025 by rpki-client