$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft File: tpVKYo70-TShCnBay8uQbtYQSAw.mft (raw, json) Hash identifier: DOlCzzM1CiYIXrdmEwFJbTjkIllYagdIGcNB0/ps0yc= Subject key identifier: F4:F1:8B:44:03:C1:48:67:9F:1C:EC:93:D6:0E:1C:76:F7:79:13:24 Authority key identifier: B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C Certificate issuer: /CN=A91DE43E/serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Certificate serial: 0B96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft Manifest number: 0B90 Signing time: Fri 04 Jul 2025 19:21:02 +0000 Manifest this update: Fri 04 Jul 2025 19:21:01 +0000 Manifest next update: Fri 11 Jul 2025 19:21:01 +0000 Files and hashes: 1: tpVKYo70-TShCnBay8uQbtYQSAw.crl (hash: CiUds7kpRtOjfgCTPagdC/w6rPI2d7NagTNJDWAV9JU=) 2: 5E117DC82AFC11EAB5FEC955C4F9AE02.roa (hash: FLXDHzghX+xgCtsrZgeGezVp6qrYExOvwRgCUG3oquw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2966 (0xb96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE43E, serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Validity Not Before: Jul 4 19:21:01 2025 GMT Not After : Jul 11 19:21:01 2025 GMT Subject: CN=6868299e-f0ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:45:da:05:4a:ee:4b:e6:01:2c:01:3e:f3:f1: 93:8b:c6:23:2b:fd:58:73:52:02:88:f7:36:01:f6: 26:fd:f7:1c:23:78:e1:11:c2:d0:5f:17:db:b9:91: f3:20:e8:24:37:01:c0:b3:e8:71:b4:92:67:2a:b5: 73:17:40:6e:e7:a3:35:b7:1c:09:78:6e:de:06:c4: cd:59:ef:f3:5a:20:d7:59:1d:f3:43:49:0f:32:73: 09:3a:64:d7:b1:d6:23:de:6f:7d:78:92:c3:7e:ce: 24:a7:1f:a5:e4:1c:fe:7d:95:4a:87:eb:5f:7a:b3: ce:80:6c:0c:88:c5:f0:36:d9:f0:63:8a:d1:c2:11: 73:76:c4:8c:cc:0a:ec:79:ec:c9:12:7c:e1:7e:ce: 84:03:06:e3:b9:e8:13:bb:81:72:8a:f7:0e:c5:be: f9:bb:14:30:b8:a3:74:40:78:32:9c:b9:ea:3e:95: 12:4c:0c:81:14:39:f6:f0:20:b0:b2:00:53:f5:5c: 31:18:99:2a:de:6a:48:a7:68:28:81:8a:d8:90:c1: fd:7a:71:d9:8f:87:c8:98:df:60:45:c4:a5:81:2b: 6f:e6:e5:26:1b:2b:82:85:8f:9f:ca:ac:ee:77:51: 93:98:66:73:ee:6a:ac:91:29:cb:fc:4b:f0:c7:84: 73:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F1:8B:44:03:C1:48:67:9F:1C:EC:93:D6:0E:1C:76:F7:79:13:24 X509v3 Authority Key Identifier: keyid:B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:77:04:b6:a9:a1:20:f9:db:14:c1:52:d4:f1:6c:ad:a6:82: 7f:3b:26:8f:ad:3c:c9:e7:8b:c4:75:00:75:af:5f:be:e9:1c: f6:e7:8b:44:63:23:ff:4c:b2:c6:c6:5c:d0:53:79:20:3a:12: 9a:cb:b5:d1:23:51:a5:41:6f:6c:ab:72:b1:dd:4a:8d:41:12: 26:fe:26:2e:39:58:0d:38:77:38:af:03:ba:40:cd:ed:dc:06: 52:91:f9:ec:28:20:0e:45:27:a6:e0:ed:21:97:6f:c2:82:02: 22:ea:17:25:d5:dc:ae:ec:1e:9b:53:71:c7:c9:7b:ee:e9:04: d8:2d:c3:38:39:25:78:5f:a9:5e:35:b0:b0:5e:9a:b1:e1:f4: 5e:0d:f4:92:df:91:58:ce:36:d0:9d:d7:2f:75:89:8a:61:4c: 41:44:96:fd:5f:cd:d3:24:44:a3:b0:7b:be:e4:06:09:08:f3: 02:0e:98:27:1c:08:ec:59:12:a2:96:36:53:85:56:d8:12:d9: 3f:e6:66:8f:12:ef:78:e1:0d:10:28:f4:1b:43:9a:2b:68:03: d2:65:eb:f9:15:1e:4b:02:01:78:6c:ba:b6:ae:6b:e4:ac:c3: ee:b3:fd:72:23:e7:15:69:d0:95:b4:1f:e5:6e:4a:80:cb:43: c5:a7:74:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0M0UxMTAvBgNVBAUTKEI2OTU0QTYyOEVGNEY5MzRBMTBBNzA1QUNCQ0I5MDZF RDYxMDQ4MEMwHhcNMjUwNzA0MTkyMTAxWhcNMjUwNzExMTkyMTAxWjAYMRYwFAYD VQQDEw02ODY4Mjk5ZS1mMGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0XaBUruS+YBLAE+8/GTi8YjK/1Yc1ICiPc2AfYm/fccI3jhEcLQXxfbuZHz IOgkNwHAs+hxtJJnKrVzF0Bu56M1txwJeG7eBsTNWe/zWiDXWR3zQ0kPMnMJOmTX sdYj3m99eJLDfs4kpx+l5Bz+fZVKh+tferPOgGwMiMXwNtnwY4rRwhFzdsSMzArs eezJEnzhfs6EAwbjuegTu4FyivcOxb75uxQwuKN0QHgynLnqPpUSTAyBFDn28CCw sgBT9VwxGJkq3mpIp2gogYrYkMH9enHZj4fImN9gRcSlgStv5uUmGyuChY+fyqzu d1GTmGZz7mqskSnL/Evwx4RzFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTxi0QD wUhnnxzsk9YOHHb3eRMkMB8GA1UdIwQYMBaAFLaVSmKO9Pk0oQpwWsvLkG7WEEgM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTQzRS9DQzAzRkJCODJB RkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1UU2hDbkJheTh1UWJ0WVFT QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RwVktZbzcwLVRTaENuQmF5OHVRYnRZUVNBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTQzRS9DQzAzRkJCODJBRkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1U U2hDbkJheTh1UWJ0WVFTQXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAedwS2qaEg+dsUwVLU8WytpoJ/OyaPrTzJ54vEdQB1r1++6Rz254tE YyP/TLLGxlzQU3kgOhKay7XRI1GlQW9sq3Kx3UqNQRIm/iYuOVgNOHc4rwO6QM3t 3AZSkfnsKCAORSem4O0hl2/CggIi6hcl1dyu7B6bU3HHyXvu6QTYLcM4OSV4X6le NbCwXpqx4fReDfSS35FYzjbQndcvdYmKYUxBRJb9X83TJESjsHu+5AYJCPMCDpgn HAjsWRKiljZThVbYEtk/5maPEu944Q0QKPQbQ5oraAPSZev5FR5LAgF4bLq2rmvk rMPus/1yI+cVadCVtB/lbkqAy0PFp3TG -----END CERTIFICATE-----Generated at Sat Jul 5 05:20:28 2025 by rpki-client