$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft File: TN7H1CHxboUWcqgSOd0Y_IweOVY.mft (raw, json) Hash identifier: CLsKmI492h2uZOxlgPBMcggjpbT3jpmCRalY4OFq9Ek= Subject key identifier: 48:50:06:B3:77:FB:83:7F:8D:7D:6D:83:52:03:E3:C7:F0:0B:65:E8 Authority key identifier: 4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 Certificate issuer: /CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Certificate serial: 04D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft Manifest number: 04D3 Signing time: Thu 03 Jul 2025 00:07:30 +0000 Manifest this update: Thu 03 Jul 2025 00:07:29 +0000 Manifest next update: Thu 10 Jul 2025 00:07:29 +0000 Files and hashes: 1: TN7H1CHxboUWcqgSOd0Y_IweOVY.crl (hash: hvoXC9ZqFAH+d8hZOMekIOnUB3RVYVddlR4lKi2BOEc=) 2: C54BA97E283311ECBE887F3BC4F9AE02.roa (hash: XOTWPX30EoXJqKV6109bwG+UksO95BBHigXDmFEItd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:07:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1239 (0x4d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0A62, serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Validity Not Before: Jul 3 00:07:29 2025 GMT Not After : Jul 10 00:07:29 2025 GMT Subject: CN=6865c9c2-a741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:64:d6:0c:d0:f6:ab:fb:18:ed:dd:c9:45:35: 31:6c:b5:bf:18:ca:1c:a3:9a:d6:96:6d:9a:1b:d0: 08:b0:bc:b9:93:73:7b:f3:72:87:4e:13:93:92:10: e2:7a:cc:64:a9:a9:aa:c5:ba:9d:2d:da:f7:18:dd: 82:59:60:fc:68:b5:e6:14:a1:eb:eb:14:73:5d:4e: b5:4c:19:a0:76:c3:b2:41:55:9e:f7:6d:ec:29:52: 5f:5b:a3:59:3d:54:32:82:b9:4e:de:9b:33:5b:cf: f0:01:d8:21:68:1b:09:38:28:eb:a7:4c:c5:5b:07: e4:bf:2c:f1:2f:86:d7:16:85:46:4e:55:3d:47:1c: 4e:55:78:4d:c6:59:b7:58:d1:a0:93:57:3b:46:ee: e5:fc:65:b9:8c:53:5b:e0:a3:c8:75:d9:1d:66:29: ce:b6:55:1b:e5:2c:ea:6e:36:ee:f8:00:de:82:90: 16:ee:15:f6:6b:ff:5c:09:b8:ff:33:60:b7:bb:82: 5a:97:0f:0f:82:d4:5f:9a:48:cb:7f:12:02:ee:72: e8:2b:5f:db:28:a1:52:9b:17:4b:8d:11:48:ce:3f: 87:5d:99:40:50:e1:35:2d:53:75:21:8e:9e:46:2e: ac:68:0f:90:58:d4:18:27:ee:d9:9b:8a:65:26:23: 0f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:50:06:B3:77:FB:83:7F:8D:7D:6D:83:52:03:E3:C7:F0:0B:65:E8 X509v3 Authority Key Identifier: keyid:4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:4e:f8:a8:73:1d:63:01:e5:84:79:ff:99:52:38:ca:c8:a1: bf:5c:96:2e:7d:a7:9c:9b:c9:64:8a:b2:92:5e:14:1b:3a:e1: 65:ae:1d:39:78:b5:b2:07:a3:b5:9a:22:db:a6:45:16:13:be: 36:6c:9c:8f:75:b8:f6:cd:32:d2:68:9e:7e:48:64:77:ec:ee: cf:3b:91:91:08:82:a2:bc:a9:d0:b1:d9:de:86:ef:d3:23:a9: 3c:a6:e4:31:31:21:ce:98:5e:0b:d5:45:26:39:3f:90:8f:a5: 09:bd:48:83:99:a6:30:8d:89:b2:b2:27:3b:cc:49:c9:ad:ec: af:fc:df:2c:e0:b8:17:4c:73:a8:57:4f:79:fb:d9:82:eb:7c: 30:02:61:d9:59:d2:e7:80:d3:3e:11:7d:a2:b9:5e:bc:7e:5e: 77:c3:ad:68:a0:b1:02:90:1a:54:5e:a8:b2:15:87:e3:5c:c1: 63:5e:91:f0:00:c2:eb:0a:1c:c8:05:8c:bd:5d:e7:f5:54:f2: 4d:96:8b:9a:b7:e2:a2:a3:7e:9a:44:31:39:65:f8:27:ee:fa: e8:ff:ad:b6:bb:5c:47:90:af:a5:a6:76:8b:6c:b3:c0:9e:71: 0f:d9:d1:25:58:d7:cb:58:a4:29:fd:b8:39:16:21:42:41:b9: 3a:5e:07:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBBNjIxMTAvBgNVBAUTKDRDREVDN0Q0MjFGMTZFODUxNjcyQTgxMjM5REQxOEZD OEMxRTM5NTYwHhcNMjUwNzAzMDAwNzI5WhcNMjUwNzEwMDAwNzI5WjAYMRYwFAYD VQQDEw02ODY1YzljMi1hNzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1WTWDND2q/sY7d3JRTUxbLW/GMoco5rWlm2aG9AIsLy5k3N783KHThOTkhDi esxkqamqxbqdLdr3GN2CWWD8aLXmFKHr6xRzXU61TBmgdsOyQVWe923sKVJfW6NZ PVQygrlO3pszW8/wAdghaBsJOCjrp0zFWwfkvyzxL4bXFoVGTlU9RxxOVXhNxlm3 WNGgk1c7Ru7l/GW5jFNb4KPIddkdZinOtlUb5Szqbjbu+ADegpAW7hX2a/9cCbj/ M2C3u4Jalw8PgtRfmkjLfxIC7nLoK1/bKKFSmxdLjRFIzj+HXZlAUOE1LVN1IY6e Ri6saA+QWNQYJ+7Zm4plJiMPGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhQBrN3 +4N/jX1tg1ID48fwC2XoMB8GA1UdIwQYMBaAFEzex9Qh8W6FFnKoEjndGPyMHjlW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEE2Mi8xRkE5NkRBMDI4 MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJvVVdjcWdTT2QwWV9Jd2VP VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RON0gxQ0h4Ym9VV2NxZ1NPZDBZX0l3ZU9WWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEE2Mi8xRkE5NkRBMDI4MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJv VVdjcWdTT2QwWV9Jd2VPVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtTviocx1jAeWEef+ZUjjKyKG/XJYufaecm8lkirKSXhQbOuFlrh05 eLWyB6O1miLbpkUWE742bJyPdbj2zTLSaJ5+SGR37O7PO5GRCIKivKnQsdnehu/T I6k8puQxMSHOmF4L1UUmOT+Qj6UJvUiDmaYwjYmysic7zEnJreyv/N8s4LgXTHOo V095+9mC63wwAmHZWdLngNM+EX2iuV68fl53w61ooLECkBpUXqiyFYfjXMFjXpHw AMLrChzIBYy9Xef1VPJNlouat+Kio36aRDE5Zfgn7vro/622u1xHkK+lpnaLbLPA nnEP2dElWNfLWKQp/bg5FiFCQbk6Xgdy -----END CERTIFICATE-----Generated at Thu Jul 3 09:41:06 2025 by rpki-client