$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft File: TN7H1CHxboUWcqgSOd0Y_IweOVY.mft (raw, json) Hash identifier: 7dtBGAJe2+3DNM6xF1gC4vJa4FITFgq/m2+VDb1Sfi0= Subject key identifier: 4A:3E:72:38:43:26:FE:6A:37:E8:74:36:68:D7:EF:9A:02:A9:FC:A4 Authority key identifier: 4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 Certificate issuer: /CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Certificate serial: 04F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft Manifest number: 04ED Signing time: Fri 22 Aug 2025 23:54:41 +0000 Manifest this update: Fri 22 Aug 2025 23:54:41 +0000 Manifest next update: Fri 29 Aug 2025 23:54:41 +0000 Files and hashes: 1: TN7H1CHxboUWcqgSOd0Y_IweOVY.crl (hash: bzKDF/50BKhpLk7e+F1ulT1mtLJgNTEv4n21F+m1Gwc=) 2: C54BA97E283311ECBE887F3BC4F9AE02.roa (hash: XOTWPX30EoXJqKV6109bwG+UksO95BBHigXDmFEItd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1265 (0x4f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0A62, serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Validity Not Before: Aug 22 23:54:41 2025 GMT Not After : Aug 29 23:54:41 2025 GMT Subject: CN=68a90341-c10d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ad:84:92:e2:20:cb:59:d4:45:b6:b8:ea:c8: 9d:21:b5:5e:98:92:cb:fc:aa:9c:1e:30:5e:75:92: 86:ae:c2:f7:a1:d8:82:62:43:7c:45:79:67:32:b0: 81:8c:7d:7f:b3:85:4e:d8:fe:20:a7:ed:ee:33:ae: a0:ab:f9:37:52:1e:ce:42:fc:73:a2:f7:ec:87:a2: 46:1f:71:f1:3d:08:78:84:62:3e:df:8f:bc:0b:1c: 1f:42:b6:5b:6a:5a:5e:45:40:d6:e3:28:6b:81:9a: 77:1c:5f:fd:1f:80:fe:2c:a5:20:a4:4a:77:9c:e6: f0:18:03:e9:87:66:2c:7e:b1:54:99:6c:bd:a6:e9: 70:71:1b:24:4c:53:26:7a:dd:a7:9b:dd:2a:d1:24: 23:35:07:4a:38:80:94:29:d9:6c:49:5b:1d:d8:bf: e1:2e:a5:a9:05:12:75:88:a3:6e:af:85:b3:17:40: 41:b0:75:88:60:00:a3:26:fc:60:bc:bd:12:cf:52: af:b7:a3:b0:6a:a0:a3:28:6b:81:49:ac:52:28:e4: 61:25:96:8d:ed:15:c3:52:92:e9:e0:e4:ef:2b:2b: 73:01:0b:d7:71:61:be:11:5d:4b:3b:e1:82:40:9a: 7c:d2:37:94:af:b5:3d:07:08:8c:0e:08:e4:eb:44: 8e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3E:72:38:43:26:FE:6A:37:E8:74:36:68:D7:EF:9A:02:A9:FC:A4 X509v3 Authority Key Identifier: keyid:4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:7d:a8:f6:80:4a:0a:9b:d0:89:68:c2:fe:52:b0:64:54:80: 7a:82:40:a6:08:cd:ff:56:85:06:ec:db:b4:f6:d4:55:ad:bb: e3:b0:65:15:54:f4:09:be:15:0c:99:94:47:d9:1e:93:bb:e3: cd:80:14:d2:76:24:1e:0e:c6:6c:9e:d8:d6:c7:28:a2:dc:f9: b3:e1:9f:7c:6a:92:13:f6:ce:d9:08:24:db:30:5c:14:c5:06: f6:f0:84:2d:df:e2:91:55:ea:55:7e:95:fe:e7:a2:c5:f2:e4: cb:2d:87:e6:3b:24:43:56:d6:bb:2e:ef:be:4f:d3:6f:ee:c4: cc:14:e7:d2:f7:70:41:0f:5e:f5:e2:19:26:ec:e8:33:2f:4d: 5b:ca:03:a6:c5:62:0a:fd:ad:e1:90:d9:ed:5b:ed:ef:55:0b: 09:bf:b0:19:87:35:07:22:db:63:1e:01:83:85:85:e7:91:8f: 41:58:48:af:b5:dd:88:c6:e9:42:9d:78:7d:32:4b:46:e3:69: c7:87:2f:17:77:18:07:a4:16:eb:5e:5b:bf:44:20:de:e9:69: 03:07:32:a9:7c:4a:13:30:dd:91:49:84:81:a1:eb:f0:17:a9: 47:ef:0f:bb:28:af:7c:c6:86:f9:72:b3:17:7e:52:b8:b9:b8: 48:69:04:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBBNjIxMTAvBgNVBAUTKDRDREVDN0Q0MjFGMTZFODUxNjcyQTgxMjM5REQxOEZD OEMxRTM5NTYwHhcNMjUwODIyMjM1NDQxWhcNMjUwODI5MjM1NDQxWjAYMRYwFAYD VQQDEw02OGE5MDM0MS1jMTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv62EkuIgy1nURba46sidIbVemJLL/KqcHjBedZKGrsL3odiCYkN8RXlnMrCB jH1/s4VO2P4gp+3uM66gq/k3Uh7OQvxzovfsh6JGH3HxPQh4hGI+34+8CxwfQrZb alpeRUDW4yhrgZp3HF/9H4D+LKUgpEp3nObwGAPph2YsfrFUmWy9pulwcRskTFMm et2nm90q0SQjNQdKOICUKdlsSVsd2L/hLqWpBRJ1iKNur4WzF0BBsHWIYACjJvxg vL0Sz1Kvt6OwaqCjKGuBSaxSKORhJZaN7RXDUpLp4OTvKytzAQvXcWG+EV1LO+GC QJp80jeUr7U9BwiMDgjk60SOSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEo+cjhD Jv5qN+h0NmjX75oCqfykMB8GA1UdIwQYMBaAFEzex9Qh8W6FFnKoEjndGPyMHjlW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEE2Mi8xRkE5NkRBMDI4 MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJvVVdjcWdTT2QwWV9Jd2VP VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RON0gxQ0h4Ym9VV2NxZ1NPZDBZX0l3ZU9WWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEE2Mi8xRkE5NkRBMDI4MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJv VVdjcWdTT2QwWV9Jd2VPVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWfaj2gEoKm9CJaML+UrBkVIB6gkCmCM3/VoUG7Nu09tRVrbvjsGUV VPQJvhUMmZRH2R6Tu+PNgBTSdiQeDsZsntjWxyii3Pmz4Z98apIT9s7ZCCTbMFwU xQb28IQt3+KRVepVfpX+56LF8uTLLYfmOyRDVta7Lu++T9Nv7sTMFOfS93BBD171 4hkm7OgzL01bygOmxWIK/a3hkNntW+3vVQsJv7AZhzUHIttjHgGDhYXnkY9BWEiv td2IxulCnXh9MktG42nHhy8XdxgHpBbrXlu/RCDe6WkDBzKpfEoTMN2RSYSBoevw F6lH7w+7KK98xob5crMXflK4ubhIaQRa -----END CERTIFICATE-----Generated at Sat Aug 23 20:30:29 2025 by rpki-client