$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.mft File: TLUe6HyCLo5ssFQoTLB-TPJPkhs.mft (raw, json) Hash identifier: 3Tpok8vUUvX2yZqJYo3DyW8fuDNveB4HteO55BbhDZo= Subject key identifier: 95:C0:8D:6B:49:4B:86:BF:66:44:B6:18:64:E7:02:9B:7D:A1:BD:F1 Authority key identifier: 4C:B5:1E:E8:7C:82:2E:8E:6C:B0:54:28:4C:B0:7E:4C:F2:4F:92:1B Certificate issuer: /CN=A91D0FCB/serialNumber=4CB51EE87C822E8E6CB054284CB07E4CF24F921B Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLUe6HyCLo5ssFQoTLB-TPJPkhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.mft Manifest number: 8D Signing time: Thu 03 Jul 2025 06:40:50 +0000 Manifest this update: Thu 03 Jul 2025 06:40:49 +0000 Manifest next update: Thu 10 Jul 2025 06:40:49 +0000 Files and hashes: 1: TLUe6HyCLo5ssFQoTLB-TPJPkhs.crl (hash: YW1OF5wxqSXBXOJx8rUQ3sriFzdUmZ+UgobORXCCfz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.crl rsync://rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLUe6HyCLo5ssFQoTLB-TPJPkhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0FCB, serialNumber=4CB51EE87C822E8E6CB054284CB07E4CF24F921B Validity Not Before: Jul 3 06:40:49 2025 GMT Not After : Jul 10 06:40:49 2025 GMT Subject: CN=686625f1-ec11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:75:ab:ba:16:ee:a6:18:ed:b3:02:7d:97:3b: 65:44:1a:bb:b9:d2:12:a6:ff:e7:f6:be:96:0c:f2: f2:b6:d5:b8:97:32:33:8f:c9:50:4c:64:dd:47:41: ca:fc:e4:10:03:c5:7b:54:10:28:d6:f8:ec:85:33: 61:ae:1c:2d:0a:6c:9d:b3:99:84:fb:d1:aa:be:8f: 6b:b2:27:ac:ee:9f:bb:e3:64:0d:af:0f:b1:a6:f9: 8c:e4:3f:3e:78:1f:0e:ee:43:31:f6:1d:d3:3e:17: ff:17:f7:fe:dc:65:81:72:26:28:a6:ff:d2:08:0b: c0:e4:03:f8:50:d8:e6:0a:07:ea:f4:aa:6f:e5:59: 2b:1e:8c:a9:43:0c:36:4b:e3:39:da:28:98:a7:86: 76:fa:c3:e3:a3:f1:02:ad:f7:7b:e2:ce:93:b9:67: f2:41:b2:28:11:b6:8d:9b:43:fc:a0:b7:5d:81:19: 19:80:7c:7b:56:87:1a:90:a4:cd:a9:1a:a3:e9:f3: f4:85:53:fd:34:bd:9f:d2:ee:2f:f7:43:97:aa:8d: 12:63:45:2e:90:95:42:74:03:c2:52:39:85:4f:27: 74:eb:d8:a9:21:51:b0:08:8d:08:4b:8d:8a:8e:97: a0:ef:35:06:08:27:a1:1f:b4:d0:45:85:dd:ee:f4: 3f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C0:8D:6B:49:4B:86:BF:66:44:B6:18:64:E7:02:9B:7D:A1:BD:F1 X509v3 Authority Key Identifier: keyid:4C:B5:1E:E8:7C:82:2E:8E:6C:B0:54:28:4C:B0:7E:4C:F2:4F:92:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLUe6HyCLo5ssFQoTLB-TPJPkhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:6f:2d:19:d2:3f:b4:13:1c:1e:06:61:2b:4d:f4:81:7a:7d: 17:14:38:ac:63:c9:62:01:ad:30:cc:0f:97:44:be:ad:dc:0c: 2c:8a:96:21:3d:a6:7e:6b:ea:f3:71:0d:ca:b9:cf:97:70:90: 29:15:96:70:47:3f:e3:04:44:74:1a:29:48:23:3d:a7:bb:e0: b6:1f:e4:5e:f7:7b:24:f4:56:6c:cf:23:4d:9d:ee:b6:ff:52: aa:7e:44:e4:dd:6b:e9:75:36:6c:79:3a:7f:ec:18:6d:32:22: 52:2c:ea:d7:68:98:c1:8d:44:c6:ea:bf:d2:26:94:90:a0:bb: 15:82:bb:f2:6a:ec:e0:22:f7:51:6d:14:8c:e0:a7:b7:60:0e: b9:be:fd:3f:9f:47:26:bc:b5:b1:18:f9:5b:7f:7b:98:89:4e: 23:79:ff:ba:53:f0:82:6e:f4:79:d7:ca:4a:52:ac:3b:7a:6a: a7:3b:22:22:fc:62:14:3e:df:2b:2c:56:c4:bd:22:53:1f:15: 01:37:6b:10:3f:b5:61:19:04:cb:81:82:18:de:06:5b:f1:fa: 1a:31:52:95:f3:20:52:82:2a:e4:36:1a:57:6e:44:43:04:0c: b2:c4:a2:dc:27:57:63:26:5e:a8:47:70:4b:3f:8e:9c:cd:bb: b4:8e:be:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBGQ0IxMTAvBgNVBAUTKDRDQjUxRUU4N0M4MjJFOEU2Q0IwNTQyODRDQjA3RTRD RjI0RjkyMUIwHhcNMjUwNzAzMDY0MDQ5WhcNMjUwNzEwMDY0MDQ5WjAYMRYwFAYD VQQDEw02ODY2MjVmMS1lYzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4HWruhbuphjtswJ9lztlRBq7udISpv/n9r6WDPLyttW4lzIzj8lQTGTdR0HK /OQQA8V7VBAo1vjshTNhrhwtCmyds5mE+9Gqvo9rsies7p+742QNrw+xpvmM5D8+ eB8O7kMx9h3TPhf/F/f+3GWBciYopv/SCAvA5AP4UNjmCgfq9Kpv5VkrHoypQww2 S+M52iiYp4Z2+sPjo/ECrfd74s6TuWfyQbIoEbaNm0P8oLddgRkZgHx7VocakKTN qRqj6fP0hVP9NL2f0u4v90OXqo0SY0UukJVCdAPCUjmFTyd069ipIVGwCI0IS42K jpeg7zUGCCehH7TQRYXd7vQ/XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXAjWtJ S4a/ZkS2GGTnApt9ob3xMB8GA1UdIwQYMBaAFEy1Huh8gi6ObLBUKEywfkzyT5Ib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEZDQi85MkRGRkM3ODgx NjkxMUVGODIxM0ZCMENDNEY5QUUwMi9UTFVlNkh5Q0xvNXNzRlFvVExCLVRQSlBr aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RMVWU2SHlDTG81c3NGUW9UTEItVFBKUGtocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEZDQi85MkRGRkM3ODgxNjkxMUVGODIxM0ZCMENDNEY5QUUwMi9UTFVlNkh5Q0xv NXNzRlFvVExCLVRQSlBraHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWby0Z0j+0ExweBmErTfSBen0XFDisY8liAa0wzA+XRL6t3AwsipYh PaZ+a+rzcQ3Kuc+XcJApFZZwRz/jBER0GilIIz2nu+C2H+Re93sk9FZszyNNne62 /1KqfkTk3WvpdTZseTp/7BhtMiJSLOrXaJjBjUTG6r/SJpSQoLsVgrvyauzgIvdR bRSM4Ke3YA65vv0/n0cmvLWxGPlbf3uYiU4jef+6U/CCbvR518pKUqw7emqnOyIi /GIUPt8rLFbEvSJTHxUBN2sQP7VhGQTLgYIY3gZb8foaMVKV8yBSgirkNhpXbkRD BAyyxKLcJ1djJl6oR3BLP46czbu0jr7b -----END CERTIFICATE-----Generated at Fri Jul 4 06:08:55 2025 by rpki-client