$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft File: tpVKYo70-TShCnBay8uQbtYQSAw.mft (raw, json) Hash identifier: bp2pEsGLWh9jrX2s7GsW3x1CA9WnnFXKvw8hC/YgWY4= Subject key identifier: 4D:C9:71:46:08:62:CE:72:2A:96:46:8F:AF:D8:C4:E4:07:57:18:5E Authority key identifier: B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C Certificate issuer: /CN=A91DE43E/serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Certificate serial: 0BAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft Manifest number: 0BA9 Signing time: Fri 22 Aug 2025 19:05:56 +0000 Manifest this update: Fri 22 Aug 2025 19:05:56 +0000 Manifest next update: Fri 29 Aug 2025 19:05:56 +0000 Files and hashes: 1: tpVKYo70-TShCnBay8uQbtYQSAw.crl (hash: gA4QEKhAY3OSOuLKPGkt9/zGjvCfpn2noTBmDBX995g=) 2: 5E117DC82AFC11EAB5FEC955C4F9AE02.roa (hash: FLXDHzghX+xgCtsrZgeGezVp6qrYExOvwRgCUG3oquw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:05:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2991 (0xbaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE43E, serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Validity Not Before: Aug 22 19:05:56 2025 GMT Not After : Aug 29 19:05:56 2025 GMT Subject: CN=68a8bf94-033a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a3:27:8e:9d:41:a4:d4:33:3f:f4:7b:58:de: c5:47:65:15:94:de:6b:5c:65:98:19:47:86:3f:9d: e8:b8:a9:6d:58:63:34:2f:9d:5c:22:ed:ab:9d:ae: 93:1b:cd:70:ed:5a:28:0c:5f:a5:cc:cf:fa:93:36: 49:58:70:7b:2a:9f:5c:30:0b:35:e0:5d:28:35:e6: bc:ec:5e:fa:ed:a0:1c:4c:ba:5a:3c:7a:4c:cb:14: 08:ba:4d:19:38:58:4b:43:fc:82:1d:aa:b7:42:a6: 79:b9:b9:c4:3c:9e:b7:56:3a:4e:bc:4f:67:e1:4f: e9:87:1d:bf:97:c3:aa:ee:5e:59:4e:a6:61:47:de: 2a:1c:82:61:73:90:77:1c:ef:63:16:be:e8:7a:55: 99:fd:f7:3f:96:ed:fd:50:4f:54:c0:19:19:c1:cc: 4b:87:b3:a8:23:42:80:47:25:9b:40:18:4d:de:55: 1b:01:97:f3:41:a7:d3:86:17:27:38:7c:1b:96:80: 28:88:ff:70:75:43:f9:4c:0c:b8:33:db:68:c7:7b: a7:19:07:aa:66:ca:11:82:91:06:25:52:51:8b:e1: 47:7b:70:cf:07:dd:32:43:c4:fe:c2:be:e6:a1:13: a5:a5:e7:60:06:2f:fa:3d:1c:22:eb:28:20:4b:09: a3:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C9:71:46:08:62:CE:72:2A:96:46:8F:AF:D8:C4:E4:07:57:18:5E X509v3 Authority Key Identifier: keyid:B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:51:c3:f8:23:e4:a0:3c:5d:0a:93:7a:9f:30:16:c6:3c:de: df:b4:08:b3:42:b0:89:5d:88:12:47:17:a5:45:26:e1:fe:fc: e9:ee:72:0e:8d:cd:a5:57:9e:dc:2f:cb:71:81:c1:fc:a0:89: 6e:8f:70:98:58:e1:af:dc:83:f2:98:f7:66:ca:ee:22:03:41: 13:dc:32:70:3d:39:4d:68:7c:c8:32:bf:00:f3:4f:8d:b3:5a: 7b:fa:53:49:34:7b:36:66:85:6c:13:40:60:3f:8d:44:35:bf: 0e:6b:28:fa:8c:71:3f:87:95:1e:c2:25:ab:a8:a7:dc:16:3b: 7c:a2:ce:58:9b:69:64:2d:8b:22:09:58:d6:0e:10:aa:10:0a: 71:ce:d3:c3:d1:bb:24:22:24:f9:a6:3d:4c:d3:6b:a0:0a:c8: 43:49:18:39:5b:77:3b:ce:9e:9b:7e:52:14:89:d4:36:e9:5a: 76:0b:08:10:ec:47:e1:7c:84:d9:f6:30:b4:fb:31:d9:2c:4e: 00:30:63:2e:4f:5a:d7:b7:c3:1a:52:13:5e:9f:f9:f3:74:2c: 9c:54:5d:e9:c3:67:6b:05:04:2d:75:1d:49:43:81:a2:d8:1f: 83:68:1a:70:c8:a2:0a:4a:c1:81:98:82:fb:c8:21:4a:c6:f0: e4:ec:f6:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0M0UxMTAvBgNVBAUTKEI2OTU0QTYyOEVGNEY5MzRBMTBBNzA1QUNCQ0I5MDZF RDYxMDQ4MEMwHhcNMjUwODIyMTkwNTU2WhcNMjUwODI5MTkwNTU2WjAYMRYwFAYD VQQDEw02OGE4YmY5NC0wMzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKMnjp1BpNQzP/R7WN7FR2UVlN5rXGWYGUeGP53ouKltWGM0L51cIu2rna6T G81w7VooDF+lzM/6kzZJWHB7Kp9cMAs14F0oNea87F767aAcTLpaPHpMyxQIuk0Z OFhLQ/yCHaq3QqZ5ubnEPJ63VjpOvE9n4U/phx2/l8Oq7l5ZTqZhR94qHIJhc5B3 HO9jFr7oelWZ/fc/lu39UE9UwBkZwcxLh7OoI0KARyWbQBhN3lUbAZfzQafThhcn OHwbloAoiP9wdUP5TAy4M9tox3unGQeqZsoRgpEGJVJRi+FHe3DPB90yQ8T+wr7m oROlpedgBi/6PRwi6yggSwmjewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3JcUYI Ys5yKpZGj6/YxOQHVxheMB8GA1UdIwQYMBaAFLaVSmKO9Pk0oQpwWsvLkG7WEEgM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTQzRS9DQzAzRkJCODJB RkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1UU2hDbkJheTh1UWJ0WVFT QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RwVktZbzcwLVRTaENuQmF5OHVRYnRZUVNBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTQzRS9DQzAzRkJCODJBRkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1U U2hDbkJheTh1UWJ0WVFTQXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDUcP4I+SgPF0Kk3qfMBbGPN7ftAizQrCJXYgSRxelRSbh/vzp7nIO jc2lV57cL8txgcH8oIluj3CYWOGv3IPymPdmyu4iA0ET3DJwPTlNaHzIMr8A80+N s1p7+lNJNHs2ZoVsE0BgP41ENb8Oayj6jHE/h5UewiWrqKfcFjt8os5Ym2lkLYsi CVjWDhCqEApxztPD0bskIiT5pj1M02ugCshDSRg5W3c7zp6bflIUidQ26Vp2CwgQ 7EfhfITZ9jC0+zHZLE4AMGMuT1rXt8MaUhNen/nzdCycVF3pw2drBQQtdR1JQ4Gi 2B+DaBpwyKIKSsGBmIL7yCFKxvDk7PZQ -----END CERTIFICATE-----Generated at Sat Aug 23 19:04:56 2025 by rpki-client