$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft File: TZAcNCU7ylsnTusQaZPe9yCiUqw.mft (raw, json) Hash identifier: /lco8QgBE3YhMxHAPhBNS6J+88oy6DU6g203+ahEwz8= Subject key identifier: 1C:6D:99:91:52:5D:A5:E1:3A:2E:46:85:A8:85:B6:2D:10:6E:66:8C Authority key identifier: 4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC Certificate issuer: /CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Certificate serial: 0429 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft Manifest number: 0C61 Signing time: Mon 30 Jun 2025 20:56:56 +0000 Manifest this update: Mon 30 Jun 2025 20:56:56 +0000 Manifest next update: Mon 07 Jul 2025 20:56:56 +0000 Files and hashes: 1: TZAcNCU7ylsnTusQaZPe9yCiUqw.crl (hash: 25RA6YP/qXMmnwYNk8Ne7ZctPQi/kFeadbBywBOD3+0=) 2: 8E4BBF50F5C511EF89110646C4F9AE02.roa (hash: S0EFM1LlMU93Q/SmaTsXJfrCySvLdm2xsJllc0bdMTA=) 3: A1B8D10EF5C511EF83B21246C4F9AE02.roa (hash: qJqe7xZLrZpale4qfa8dX4Bwzzbb4MiCN1zRa6JcZMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:56:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1065 (0x429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Validity Not Before: Jun 30 20:56:56 2025 GMT Not After : Jul 7 20:56:56 2025 GMT Subject: CN=6862fa18-fb31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:0d:0e:c6:27:fe:b8:ee:76:23:26:9e:b7:1e: 8a:2a:fa:94:f8:d7:02:ac:35:72:66:85:96:c0:a9: 64:1e:01:18:6d:c3:08:ac:f2:a6:c1:e0:12:49:24: 36:8b:74:42:3d:61:f7:ee:8b:73:87:d1:91:b6:e8: 37:3f:ed:5a:71:db:76:30:bc:64:2e:56:f6:e3:b2: c7:b5:4f:cc:74:b9:8b:aa:6f:53:d1:04:7b:12:26: 18:e7:f9:e2:da:b9:42:71:e3:1b:af:fb:b1:95:cd: 5f:5f:08:12:72:10:23:48:11:50:50:5e:e6:37:6f: c3:9c:c5:93:5b:65:dd:3e:c7:6d:22:bc:80:dd:56: 5e:43:7e:21:00:fc:18:af:25:8a:98:83:0a:da:f6: 80:24:d3:a3:27:e8:85:ec:a9:d6:6a:68:d1:5d:9e: 50:7c:43:86:9b:1d:5e:e9:51:91:2a:9f:66:50:2c: 12:09:aa:a2:ab:de:64:7c:9e:a4:0c:f8:70:a0:f1: c8:e1:25:84:16:28:bc:c6:f2:20:d4:6b:f5:85:c2: 67:9c:cd:9b:52:72:b7:79:ff:52:49:2b:cb:e5:ac: d7:7c:2a:1d:91:c0:c0:5f:f6:cb:1f:60:14:a3:4b: d8:22:50:2d:1a:02:f6:1e:d4:f2:23:a8:56:3f:c0: 8d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:6D:99:91:52:5D:A5:E1:3A:2E:46:85:A8:85:B6:2D:10:6E:66:8C X509v3 Authority Key Identifier: keyid:4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:f8:00:a4:98:9c:46:6d:b8:39:f4:09:0b:0a:0d:18:5a:d4: 75:34:52:e7:ba:03:1a:e5:6d:03:1b:35:57:ae:95:d5:d5:6e: ff:60:77:cf:76:81:c8:75:fd:18:b8:41:13:8f:c7:c5:7b:f6: 4c:b0:80:f2:4c:d1:0c:be:d8:4e:d9:5d:1b:ae:10:c7:63:32: 74:52:1d:ef:19:b5:b2:54:cd:4a:a1:78:2c:b5:c5:99:3d:c1: 9c:b4:13:60:40:63:95:8f:95:88:ad:57:35:1f:52:1e:fe:b1: 54:96:3f:9d:c8:37:07:a9:6e:bc:8a:dd:25:6b:73:99:e4:16: 4a:80:fd:ce:ed:b6:da:54:89:a9:38:29:fe:60:28:36:eb:34: f4:ab:75:02:0d:ee:4a:44:90:51:10:00:a4:73:ec:1c:c5:b5: 53:34:fe:35:1d:ed:d4:91:c3:43:93:4c:7c:80:2e:a6:a3:8a: 64:e4:0d:90:5c:f7:b3:c4:fb:4b:a1:43:a4:3e:18:48:0a:2a: e8:da:a2:e3:ad:95:b0:bf:08:53:09:28:78:75:a2:84:42:06: 07:d4:43:4c:93:9a:42:45:35:9b:e7:01:68:d4:a6:d8:1b:c5: ad:82:ff:6a:2b:c6:49:f2:bb:72:4e:73:b7:1b:2d:69:b8:56: b1:fb:95:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDREOTAxQzM0MjUzQkNBNUIyNzRFRUIxMDY5OTNERUY3 MjBBMjUyQUMwHhcNMjUwNjMwMjA1NjU2WhcNMjUwNzA3MjA1NjU2WjAYMRYwFAYD VQQDEw02ODYyZmExOC1mYjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7w0Oxif+uO52Iyaetx6KKvqU+NcCrDVyZoWWwKlkHgEYbcMIrPKmweASSSQ2 i3RCPWH37otzh9GRtug3P+1acdt2MLxkLlb247LHtU/MdLmLqm9T0QR7EiYY5/ni 2rlCceMbr/uxlc1fXwgSchAjSBFQUF7mN2/DnMWTW2XdPsdtIryA3VZeQ34hAPwY ryWKmIMK2vaAJNOjJ+iF7KnWamjRXZ5QfEOGmx1e6VGRKp9mUCwSCaqiq95kfJ6k DPhwoPHI4SWEFii8xvIg1Gv1hcJnnM2bUnK3ef9SSSvL5azXfCodkcDAX/bLH2AU o0vYIlAtGgL2HtTyI6hWP8CN4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxtmZFS XaXhOi5GhaiFti0QbmaMMB8GA1UdIwQYMBaAFE2QHDQlO8pbJ07rEGmT3vcgolKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3lsc25UdXNRYVpQZTl5Q2lV cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQWNOQ1U3eWxzblR1c1FhWlBlOXlDaVVxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3ls c25UdXNRYVpQZTl5Q2lVcXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI+ACkmJxGbbg59AkLCg0YWtR1NFLnugMa5W0DGzVXrpXV1W7/YHfP doHIdf0YuEETj8fFe/ZMsIDyTNEMvthO2V0brhDHYzJ0Uh3vGbWyVM1KoXgstcWZ PcGctBNgQGOVj5WIrVc1H1Ie/rFUlj+dyDcHqW68it0la3OZ5BZKgP3O7bbaVImp OCn+YCg26zT0q3UCDe5KRJBREACkc+wcxbVTNP41He3UkcNDk0x8gC6mo4pk5A2Q XPezxPtLoUOkPhhICiro2qLjrZWwvwhTCSh4daKEQgYH1ENMk5pCRTWb5wFo1KbY G8Wtgv9qK8ZJ8rtyTnO3Gy1puFax+5VF -----END CERTIFICATE-----Generated at Wed Jul 2 19:16:27 2025 by rpki-client