$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft File: TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft (raw, json) Hash identifier: JFu2A5x86M1KvyFnkh6ZYIJ/M7mvWmk1rqtS8GybBdg= Subject key identifier: AB:15:60:07:78:89:25:EE:24:F7:33:CF:D5:72:29:3A:93:F4:38:E1 Authority key identifier: 4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 Certificate issuer: /CN=A91C7991/serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Certificate serial: 088A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft Manifest number: 0882 Signing time: Mon 30 Jun 2025 20:50:36 +0000 Manifest this update: Mon 30 Jun 2025 20:50:36 +0000 Manifest next update: Mon 07 Jul 2025 20:50:36 +0000 Files and hashes: 1: TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl (hash: 3/4eIbCA8653uHtYHPxolYguubE0v7P/zEhFe9QfvyI=) 2: 456CD12E5F0111ECAE4F0286C4F9AE02.roa (hash: Yvl58W31jTaXrFpKwLiylkuL3NEb2f8QrSD0rbbSX2w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2186 (0x88a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7991, serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Validity Not Before: Jun 30 20:50:36 2025 GMT Not After : Jul 7 20:50:36 2025 GMT Subject: CN=6862f89c-6e4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a3:de:89:32:0d:e4:20:f2:f9:38:d8:7b:a8: f5:04:ef:0d:63:1c:98:db:5a:29:d6:8b:66:7b:79: ef:15:c3:5c:5d:14:d6:6e:27:b5:be:7c:77:17:fd: f6:cc:2a:2d:e3:ab:6e:8b:26:12:8e:4c:05:8d:4d: 6f:aa:ef:a7:e4:14:e8:f3:f2:dd:35:1b:f5:df:3e: f5:fe:e5:1b:db:c9:98:43:46:7a:fe:76:5b:fc:ee: 67:02:79:90:d3:3c:15:10:37:bf:2a:76:c1:b1:04: 5d:8f:6a:ec:94:52:13:5f:90:75:2a:d9:5d:f5:71: 39:a1:86:f4:37:18:85:a7:b7:01:83:d5:74:6e:86: 98:25:2f:b5:af:5b:c5:f1:9c:29:d8:8c:31:38:80: 6e:0d:67:b1:50:60:73:87:f1:b4:d6:79:aa:5b:41: a6:2d:08:9b:ac:92:1c:6e:34:08:95:7d:89:c3:71: 63:1e:e5:a0:67:06:35:28:2f:e3:d3:ed:22:d7:ad: de:35:ad:43:fd:68:5f:b4:9d:3c:df:c8:08:04:17: 2c:b6:63:52:a7:58:93:f2:a0:40:9f:b4:c6:ee:d2: 31:60:1a:44:3e:85:72:6e:d1:d7:4e:3e:67:8a:20: 58:65:f7:79:5e:7b:43:62:e3:3e:76:d9:b3:51:0a: d0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:15:60:07:78:89:25:EE:24:F7:33:CF:D5:72:29:3A:93:F4:38:E1 X509v3 Authority Key Identifier: keyid:4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:95:e3:91:80:9f:f4:4d:55:0a:46:b2:42:4b:44:ee:b1:5f: b3:a1:64:a6:09:fe:ea:19:db:97:38:40:70:35:5f:4d:ec:6c: d0:1c:0f:4e:fb:7c:99:c0:a1:f4:2c:49:96:43:f3:f9:43:c2: 3b:20:29:e7:aa:6e:0f:33:ef:30:a2:23:8a:7c:9a:20:9a:8d: 92:b1:a9:4f:bd:bd:fa:bd:4f:74:71:60:b2:35:b5:18:18:0e: bf:7e:05:40:af:5d:42:64:c4:87:a2:3c:1c:05:0c:37:cc:8e: ad:d6:d6:e9:8b:2c:9c:90:fe:af:1b:a5:f3:67:b2:5c:fb:ef: 48:59:85:74:b1:29:b7:95:0c:b6:77:bb:d1:a5:fc:43:97:cc: 24:59:23:e3:6f:ef:6d:cd:23:47:64:5f:3a:5b:33:32:5b:e1: 46:b9:c5:5c:2f:b6:c8:f8:4b:67:36:cb:0b:31:dc:b7:f9:80: c4:10:74:8f:66:20:0c:64:87:d7:6c:35:3c:4e:fc:ea:14:5e: 66:08:a8:12:dc:5c:24:f7:09:8b:90:29:1f:c2:43:9b:55:60: 78:39:f1:95:5e:4e:5e:60:32:b9:47:cd:6e:b2:9e:a5:3d:30: a6:b8:6d:e0:a4:c8:16:9d:e7:a7:e2:50:c1:9a:bf:1e:a4:75: 98:cb:40:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OTExMTAvBgNVBAUTKDRDMjY5OUQyMTNERDVENTk5QjBFQzBFNDYzQjk0ODRG REIyMkY0MjcwHhcNMjUwNjMwMjA1MDM2WhcNMjUwNzA3MjA1MDM2WjAYMRYwFAYD VQQDEw02ODYyZjg5Yy02ZTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaPeiTIN5CDy+TjYe6j1BO8NYxyY21op1otme3nvFcNcXRTWbie1vnx3F/32 zCot46tuiyYSjkwFjU1vqu+n5BTo8/LdNRv13z71/uUb28mYQ0Z6/nZb/O5nAnmQ 0zwVEDe/KnbBsQRdj2rslFITX5B1Ktld9XE5oYb0NxiFp7cBg9V0boaYJS+1r1vF 8Zwp2IwxOIBuDWexUGBzh/G01nmqW0GmLQibrJIcbjQIlX2Jw3FjHuWgZwY1KC/j 0+0i163eNa1D/WhftJ0838gIBBcstmNSp1iT8qBAn7TG7tIxYBpEPoVybtHXTj5n iiBYZfd5XntDYuM+dtmzUQrQZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKsVYAd4 iSXuJPczz9VyKTqT9DjhMB8GA1UdIwQYMBaAFEwmmdIT3V1Zmw7A5GO5SE/bIvQn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk5MS83QzdCMUY2NkMz NUExMUVBQThFQ0I2N0ZDNEY5QUUwMi9UQ2FaMGhQZFhWbWJEc0RrWTdsSVQ5c2k5 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDYVowaFBkWFZtYkRzRGtZN2xJVDlzaTlDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzk5MS83QzdCMUY2NkMzNUExMUVBQThFQ0I2N0ZDNEY5QUUwMi9UQ2FaMGhQZFhW bWJEc0RrWTdsSVQ5c2k5Q2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1leORgJ/0TVUKRrJCS0TusV+zoWSmCf7qGduXOEBwNV9N7GzQHA9O +3yZwKH0LEmWQ/P5Q8I7ICnnqm4PM+8woiOKfJogmo2SsalPvb36vU90cWCyNbUY GA6/fgVAr11CZMSHojwcBQw3zI6t1tbpiyyckP6vG6XzZ7Jc++9IWYV0sSm3lQy2 d7vRpfxDl8wkWSPjb+9tzSNHZF86WzMyW+FGucVcL7bI+EtnNssLMdy3+YDEEHSP ZiAMZIfXbDU8TvzqFF5mCKgS3Fwk9wmLkCkfwkObVWB4OfGVXk5eYDK5R81usp6l PTCmuG3gpMgWneen4lDBmr8epHWYy0C4 -----END CERTIFICATE-----Generated at Tue Jul 1 18:18:56 2025 by rpki-client