$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: LrHlO9nJzQ3jZmGPl4cU4LUhKLt5uK9dQIeM6bj0IkI= Subject key identifier: 5A:A8:32:35:D4:0D:9C:3B:74:13:EE:D8:23:13:06:2A:83:9D:E9:18 Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: 38 Signing time: Sat 23 Aug 2025 07:47:01 +0000 Manifest this update: Sat 23 Aug 2025 07:47:00 +0000 Manifest next update: Sat 30 Aug 2025 07:47:00 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: 4y/DekVyvzc4tEgtj9SiE7RO9yxi9cc+uCDLSxHs5eo=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: R5e5Pbe0gCRILBx2wr55E5wPwG2ILhIOGtJI6e+r29g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Aug 23 07:47:00 2025 GMT Not After : Aug 30 07:47:00 2025 GMT Subject: CN=68a971f4-70ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:49:76:37:f5:c7:b9:f6:58:ef:02:54:3a:6e: 98:67:72:4a:ba:b4:cf:c9:88:09:80:2d:61:65:3b: 8c:af:42:9e:ad:1a:b7:4d:50:7b:50:fc:07:61:93: 6f:42:54:eb:84:11:ca:c3:09:1d:ed:01:ac:d1:9f: 04:dc:16:8e:61:5a:a0:bb:74:83:d1:58:5a:cd:98: b1:2b:19:8d:07:c8:c5:58:b0:7c:f0:c3:d9:d6:e5: 70:60:de:f7:01:14:dd:5f:83:3d:80:76:db:e7:7b: 33:7f:9d:bb:a7:63:98:c2:a6:94:4c:14:aa:2e:03: a2:09:27:cb:c5:db:91:3a:95:4b:dd:63:60:c6:69: 66:4c:ef:2a:10:1c:de:07:4f:70:3d:e8:ef:fc:2b: a0:85:b2:30:5f:3a:39:69:d3:b6:96:f5:f8:78:4b: 22:09:2f:cb:9c:c4:20:2b:09:c4:0a:06:33:83:64: be:23:02:29:77:b8:72:50:cd:bf:8b:73:4c:46:77: 6c:a3:9a:5c:c4:e1:f6:a3:f5:0d:7e:66:7c:71:ee: 22:db:67:ef:4d:d3:b3:59:ce:3e:92:16:b1:31:3d: 18:c0:a2:3e:85:bf:b1:b7:9c:5f:a4:84:01:58:45: 16:46:8a:6e:36:d4:ea:a9:cc:e8:c0:a9:3b:ac:fd: c4:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:A8:32:35:D4:0D:9C:3B:74:13:EE:D8:23:13:06:2A:83:9D:E9:18 X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:0a:b9:cc:8c:f0:43:51:8d:a4:ee:b2:05:35:a6:8d:c2:3f: 9b:f0:6b:97:34:b4:a7:e9:65:f3:c0:d6:f8:67:3b:e1:31:22: 72:c9:3d:9f:b3:07:d5:0f:84:88:f2:18:0f:4d:a9:e0:f6:06: c1:72:36:9b:19:23:09:de:b5:e3:81:79:83:10:de:05:4a:96: 6b:8a:41:e8:46:d2:22:f7:f6:81:8b:05:33:7b:ce:e8:8f:9a: d3:7a:77:85:2e:c1:16:e8:89:3e:33:c3:02:a4:67:10:0e:c9: 4c:0d:d0:0e:bf:3e:22:b8:07:e9:fc:bc:60:bc:dc:3c:e7:d9: 5a:16:ab:48:79:27:07:9c:fe:b8:a3:70:ee:af:36:ae:73:ff: 0b:7b:f0:dd:c3:e1:90:87:79:5b:29:f2:fd:97:b1:7d:86:df: a2:27:f3:2d:b8:72:e3:b5:b4:05:68:c6:3f:f7:de:82:9d:ca: eb:1b:1c:28:c4:5d:e3:96:60:87:c0:c1:ac:42:aa:9e:e2:2e: 8f:05:50:fe:e6:50:fa:13:3a:37:75:c2:ff:f3:2e:66:8c:65: e9:17:36:4e:08:05:83:58:0a:60:47:ac:d2:0c:a2:32:e7:e4: 59:94:69:35:d9:42:c0:30:14:94:da:b2:4a:e5:b6:7b:42:95: d0:36:ac:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0RDQjExMC8GA1UEBRMoQjU0RjhBRDFDRUNBQzEzNkZDQUY0NzkyRUJGRDAwRTY4 RUExRDM2ODAeFw0yNTA4MjMwNzQ3MDBaFw0yNTA4MzAwNzQ3MDBaMBgxFjAUBgNV BAMTDTY4YTk3MWY0LTcwZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZSXY39ce59ljvAlQ6bphnckq6tM/JiAmALWFlO4yvQp6tGrdNUHtQ/Adhk29C VOuEEcrDCR3tAazRnwTcFo5hWqC7dIPRWFrNmLErGY0HyMVYsHzww9nW5XBg3vcB FN1fgz2AdtvnezN/nbunY5jCppRMFKouA6IJJ8vF25E6lUvdY2DGaWZM7yoQHN4H T3A96O/8K6CFsjBfOjlp07aW9fh4SyIJL8ucxCArCcQKBjODZL4jAil3uHJQzb+L c0xGd2yjmlzE4faj9Q1+Znxx7iLbZ+9N07NZzj6SFrExPRjAoj6Fv7G3nF+khAFY RRZGim421OqpzOjAqTus/cS5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWqgyNdQN nDt0E+7YIxMGKoOd6RgwHwYDVR0jBBgwFoAUtU+K0c7KwTb8r0eS6/0A5o6h02gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3RENCL0Y4M0FDNDk0Mjk0 NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdFUtSzBjN0t3VGI4cjBlUzZfMEE1bzZoMDJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 RENCL0Y4M0FDNDk0Mjk0NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1Ri OHIwZVM2XzBBNW82aDAyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADgKucyM8ENRjaTusgU1po3CP5vwa5c0tKfpZfPA1vhnO+ExInLJPZ+z B9UPhIjyGA9NqeD2BsFyNpsZIwneteOBeYMQ3gVKlmuKQehG0iL39oGLBTN7zuiP mtN6d4UuwRboiT4zwwKkZxAOyUwN0A6/PiK4B+n8vGC83Dzn2VoWq0h5Jwec/rij cO6vNq5z/wt78N3D4ZCHeVsp8v2XsX2G36In8y24cuO1tAVoxj/33oKdyusbHCjE XeOWYIfAwaxCqp7iLo8FUP7mUPoTOjd1wv/zLmaMZekXNk4IBYNYCmBHrNIMojLn 5FmUaTXZQsAwFJTaskrltntCldA2rB0= -----END CERTIFICATE-----Generated at Sat Aug 23 10:32:19 2025 by rpki-client