$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: BsH8m1SDmX4rx7f5MPL1GBhwKG2tYjIjZoFjsrDa2/8= Subject key identifier: DE:83:E4:9F:57:C5:A5:F5:5E:82:53:0E:9B:1D:27:A3:37:86:7F:F9 Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: 1E Signing time: Thu 03 Jul 2025 08:08:08 +0000 Manifest this update: Thu 03 Jul 2025 08:08:08 +0000 Manifest next update: Thu 10 Jul 2025 08:08:08 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: Tx24tZ0+R9q9cl57AFeyjA6/TJ1XJdAgqQlmen/3Z80=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: R5e5Pbe0gCRILBx2wr55E5wPwG2ILhIOGtJI6e+r29g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Jul 3 08:08:08 2025 GMT Not After : Jul 10 08:08:08 2025 GMT Subject: CN=68663a68-ea17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e5:aa:17:f3:43:75:5a:59:70:d7:14:fd:c7: e0:79:73:71:54:f1:fa:85:ec:62:cd:29:8f:dc:59: e7:2d:8c:01:b4:6f:e0:16:d5:bd:83:fa:f2:e1:88: fd:45:2d:70:1a:d7:53:7c:36:49:c3:bd:06:02:a3: e0:05:8b:60:f9:35:a2:a1:8d:10:1f:d6:89:18:e7: 60:35:8b:17:a6:54:ee:60:41:49:a8:48:a4:a0:48: c1:c6:2b:d3:2d:71:67:10:a4:b4:55:5a:eb:32:71: b1:24:a0:10:36:2a:6b:7e:38:77:58:d5:42:cb:3c: 67:39:32:87:91:68:83:05:c2:41:5f:6b:b7:47:13: 04:e7:25:32:83:07:57:2c:79:85:70:3b:17:8d:c3: a4:85:b0:5e:eb:89:58:05:83:2a:6c:99:35:40:86: eb:19:a7:e1:3b:d3:79:d0:83:4f:cc:91:ff:a1:86: 26:ab:ad:00:bf:5a:bd:a7:d8:01:07:a5:ad:31:bc: 03:e6:9b:7f:aa:f2:ea:fb:7b:c1:87:31:94:26:82: 6f:f2:a2:2e:a7:7e:12:bd:f7:61:4f:a7:9b:04:27: 2e:92:5b:69:a9:04:85:90:1a:2f:a7:4c:1b:fd:38: 78:53:11:b8:69:a5:23:43:e4:f8:bf:f3:75:f9:c3: 3e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:83:E4:9F:57:C5:A5:F5:5E:82:53:0E:9B:1D:27:A3:37:86:7F:F9 X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:8c:ec:1f:eb:69:fd:c0:8f:17:bc:98:c7:91:4e:0a:15:5f: 37:27:7e:a3:1a:0f:2b:be:ab:7f:9b:a1:45:44:0c:44:80:d7: 89:bf:5e:3a:1c:19:be:83:bf:e8:5b:62:d0:6f:01:c2:e7:78: 00:c1:df:87:28:51:e4:bc:d4:b6:b1:0f:31:82:2d:8c:68:6c: 4e:b5:8e:c5:98:10:bc:ed:3a:61:88:8f:aa:07:c2:0e:31:11: a3:a8:74:eb:15:bc:e6:f4:1d:e7:be:c0:7e:cd:62:36:ed:87: ae:d7:5b:33:32:1b:60:81:6a:b1:b8:09:dc:b7:2e:57:1d:9e: ee:fd:65:23:5b:bf:6f:94:cf:86:e7:ed:94:03:42:4b:0c:a5: f4:0c:6d:a0:26:a0:40:cc:af:f2:78:c3:87:cd:bd:c9:30:fa: ab:a8:2a:b7:25:76:05:8a:14:74:8c:e8:12:ce:4c:1f:0a:43: ed:10:44:41:a0:d0:eb:eb:7b:f7:f7:2f:00:b8:82:08:33:37: ca:21:5d:cb:a1:25:74:c2:e8:64:3e:e0:e2:85:a8:70:65:54: 12:77:58:5c:94:b4:b0:83:6a:bd:20:6e:5e:68:b6:e5:5d:2b: d8:0f:bf:03:a1:08:c9:aa:25:2b:5d:c1:ec:32:d8:1c:11:ac: e1:07:cc:1a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0RDQjExMC8GA1UEBRMoQjU0RjhBRDFDRUNBQzEzNkZDQUY0NzkyRUJGRDAwRTY4 RUExRDM2ODAeFw0yNTA3MDMwODA4MDhaFw0yNTA3MTAwODA4MDhaMBgxFjAUBgNV BAMTDTY4NjYzYTY4LWVhMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDN5aoX80N1Wllw1xT9x+B5c3FU8fqF7GLNKY/cWectjAG0b+AW1b2D+vLhiP1F LXAa11N8NknDvQYCo+AFi2D5NaKhjRAf1okY52A1ixemVO5gQUmoSKSgSMHGK9Mt cWcQpLRVWusycbEkoBA2Kmt+OHdY1ULLPGc5MoeRaIMFwkFfa7dHEwTnJTKDB1cs eYVwOxeNw6SFsF7riVgFgypsmTVAhusZp+E703nQg0/Mkf+hhiarrQC/Wr2n2AEH pa0xvAPmm3+q8ur7e8GHMZQmgm/yoi6nfhK992FPp5sEJy6SW2mpBIWQGi+nTBv9 OHhTEbhppSND5Pi/83X5wz7fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3oPkn1fF pfVeglMOmx0nozeGf/kwHwYDVR0jBBgwFoAUtU+K0c7KwTb8r0eS6/0A5o6h02gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3RENCL0Y4M0FDNDk0Mjk0 NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdFUtSzBjN0t3VGI4cjBlUzZfMEE1bzZoMDJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 RENCL0Y4M0FDNDk0Mjk0NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1Ri OHIwZVM2XzBBNW82aDAyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAWM7B/raf3Ajxe8mMeRTgoVXzcnfqMaDyu+q3+boUVEDESA14m/Xjoc Gb6Dv+hbYtBvAcLneADB34coUeS81LaxDzGCLYxobE61jsWYELztOmGIj6oHwg4x EaOodOsVvOb0Hee+wH7NYjbth67XWzMyG2CBarG4Cdy3Llcdnu79ZSNbv2+Uz4bn 7ZQDQksMpfQMbaAmoEDMr/J4w4fNvckw+quoKrcldgWKFHSM6BLOTB8KQ+0QREGg 0Ovre/f3LwC4gggzN8ohXcuhJXTC6GQ+4OKFqHBlVBJ3WFyUtLCDar0gbl5otuVd K9gPvwOhCMmqJStdwewy2BwRrOEHzBo= -----END CERTIFICATE-----Generated at Thu Jul 3 23:17:01 2025 by rpki-client