$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft File: TnWast4kVGn4MRuSc7VVOH51CpA.mft (raw, json) Hash identifier: raWwkzhxVWyWJVjoGkn/T6A3kpPWSEhX0lE03JbqblI= Subject key identifier: AF:6C:E1:AD:68:CC:82:C2:38:3A:13:3C:FC:A4:90:C2:EA:1B:CC:EE Authority key identifier: 4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 Certificate issuer: /CN=A91DF233/serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft Manifest number: 6C Signing time: Thu 03 Jul 2025 07:10:32 +0000 Manifest this update: Thu 03 Jul 2025 07:10:31 +0000 Manifest next update: Thu 10 Jul 2025 07:10:31 +0000 Files and hashes: 1: TnWast4kVGn4MRuSc7VVOH51CpA.crl (hash: sGAuW8F9uCyO7ITBeKOhSUgJFPij9ssabXFjhBm8ieI=) 2: 1FE0E016B37D11EFBDE18263C4F9AE02.roa (hash: i4QqretrMrfllRlkSz0xUOac9qaskNbaHtNPO9MoQA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Validity Not Before: Jul 3 07:10:31 2025 GMT Not After : Jul 10 07:10:31 2025 GMT Subject: CN=68662ce7-4327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2b:19:4a:89:70:f6:2c:e8:8d:60:8e:e7:9d: 9a:0c:be:ff:6b:3c:18:e1:f3:9d:cd:a5:9e:fd:5c: 1f:bb:38:73:a6:3e:eb:aa:13:c5:7c:76:9d:46:e1: 6f:d4:9d:84:22:75:3c:ea:5a:9b:7e:7a:c7:6f:2e: 9d:46:57:78:8d:9c:8a:ad:51:f2:22:1d:80:21:d8: 04:83:df:15:95:a7:b6:0c:8e:bf:f3:07:b6:56:41: b1:cc:87:aa:fb:41:06:b5:20:8e:36:0b:d2:89:cf: ba:66:5d:4f:49:07:3b:ee:d8:1f:bd:ae:88:78:c0: d9:f1:2b:f7:e7:1c:76:f4:c4:77:6b:ea:2b:4b:0f: 4c:a8:ed:8c:40:fe:d3:a7:93:3f:ca:d5:d8:65:a9: 07:df:bf:89:2d:97:a4:c2:81:6b:f9:11:ac:1e:f4: cb:c5:78:de:22:69:ae:b0:77:30:24:3b:1a:73:d9: be:55:f7:6b:f5:7c:ec:87:52:bf:e9:87:a8:61:d6: aa:8a:bd:f5:87:07:f2:2b:4a:0b:9c:82:e4:0b:5b: 2c:ce:25:ef:01:8f:33:7e:7a:d1:1f:47:85:6a:e1: ed:7f:73:d7:ed:9c:5f:b8:63:a3:8e:3f:9f:bc:35: 01:42:ea:ca:ee:5f:63:80:7d:9d:cb:a7:f8:d2:c9: 2a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:6C:E1:AD:68:CC:82:C2:38:3A:13:3C:FC:A4:90:C2:EA:1B:CC:EE X509v3 Authority Key Identifier: keyid:4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:f6:a1:c5:e5:26:16:ff:05:07:90:f5:0d:f8:d8:c1:25:cb: ae:7b:4e:a0:8b:c3:77:b0:24:e6:ef:cc:e9:09:78:c1:92:85: 4f:f6:c7:27:c5:30:c1:40:9b:c3:29:4d:82:d1:18:1f:5f:89: 8f:6d:0f:30:a3:8e:23:e6:ce:66:4f:25:3b:9c:2d:fd:c1:4c: 4e:83:cc:a3:df:64:83:50:eb:40:b1:98:6e:28:79:46:55:99: 91:92:f6:ae:ee:00:2f:68:ff:b4:d8:4a:27:57:cb:ac:94:a3: f3:0a:01:b5:d4:59:51:59:30:2b:2a:32:28:49:74:6b:89:d7: a2:21:a8:46:b5:40:38:23:b5:e5:40:9c:c9:e2:88:99:ad:d5: 96:e2:f8:69:e3:01:c0:23:52:c4:1b:da:b4:28:85:70:07:ae: 13:f2:46:d5:05:f3:34:fd:47:31:b8:4e:4b:d7:8a:c8:1a:3b: 0d:8a:5f:67:3b:fd:ec:34:ba:b5:3f:d6:13:6a:9c:6d:da:94: b3:48:0f:98:a2:53:cd:12:dd:73:8c:3f:5a:72:f5:0e:86:f4: 02:36:89:0b:48:49:b2:07:fa:bd:a3:15:6b:29:82:20:36:68: 45:06:d3:4a:ad:c5:3f:60:41:9f:43:ae:c6:fd:68:c2:b4:40: dd:e2:ff:49 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RjIzMzExMC8GA1UEBRMoNEU3NTlBQjJERTI0NTQ2OUY4MzExQjkyNzNCNTU1Mzg3 RTc1MEE5MDAeFw0yNTA3MDMwNzEwMzFaFw0yNTA3MTAwNzEwMzFaMBgxFjAUBgNV BAMTDTY4NjYyY2U3LTQzMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIKxlKiXD2LOiNYI7nnZoMvv9rPBjh853NpZ79XB+7OHOmPuuqE8V8dp1G4W/U nYQidTzqWpt+esdvLp1GV3iNnIqtUfIiHYAh2ASD3xWVp7YMjr/zB7ZWQbHMh6r7 QQa1II42C9KJz7pmXU9JBzvu2B+9roh4wNnxK/fnHHb0xHdr6itLD0yo7YxA/tOn kz/K1dhlqQffv4ktl6TCgWv5Eawe9MvFeN4iaa6wdzAkOxpz2b5V92v1fOyHUr/p h6hh1qqKvfWHB/IrSgucguQLWyzOJe8BjzN+etEfR4Vq4e1/c9ftnF+4Y6OOP5+8 NQFC6sruX2OAfZ3Lp/jSySo7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUr2zhrWjM gsI4OhM8/KSQwuobzO4wHwYDVR0jBBgwFoAUTnWast4kVGn4MRuSc7VVOH51CpAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGMjMzLzA4RjA1MjYwQjM3 ODExRUY4ODMyMkIwRkM0RjlBRTAyL1RuV2FzdDRrVkduNE1SdVNjN1ZWT0g1MUNw QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVG5XYXN0NGtWR240TVJ1U2M3VlZPSDUxQ3BBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG MjMzLzA4RjA1MjYwQjM3ODExRUY4ODMyMkIwRkM0RjlBRTAyL1RuV2FzdDRrVkdu NE1SdVNjN1ZWT0g1MUNwQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACf2ocXlJhb/BQeQ9Q342MEly657TqCLw3ewJObvzOkJeMGShU/2xyfF MMFAm8MpTYLRGB9fiY9tDzCjjiPmzmZPJTucLf3BTE6DzKPfZINQ60CxmG4oeUZV mZGS9q7uAC9o/7TYSidXy6yUo/MKAbXUWVFZMCsqMihJdGuJ16IhqEa1QDgjteVA nMniiJmt1Zbi+GnjAcAjUsQb2rQohXAHrhPyRtUF8zT9RzG4TkvXisgaOw2KX2c7 /ew0urU/1hNqnG3alLNID5iiU80S3XOMP1py9Q6G9AI2iQtISbIH+r2jFWspgiA2 aEUG00qtxT9gQZ9Drsb9aMK0QN3i/0k= -----END CERTIFICATE-----Generated at Fri Jul 4 13:35:11 2025 by rpki-client