$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft File: TiWbqHpAtm2EKsjOCup4TkvXOC4.mft (raw, json) Hash identifier: Cv6+BlYLqaWFmRJXCJ3h5sTN0NVRXx6BmlsUign9iEM= Subject key identifier: F4:F3:B1:3A:89:4F:28:55:2B:AD:AD:3D:79:87:A3:6C:11:D1:3B:E2 Authority key identifier: 4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E Certificate issuer: /CN=A91E57A9/serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft Manifest number: CD Signing time: Thu 03 Jul 2025 05:52:39 +0000 Manifest this update: Thu 03 Jul 2025 05:52:39 +0000 Manifest next update: Thu 10 Jul 2025 05:52:39 +0000 Files and hashes: 1: TiWbqHpAtm2EKsjOCup4TkvXOC4.crl (hash: 45VkSWqcyqK3TjOVJ+Q+KZODRcRcOkTKZ4NY6S9GPHc=) 2: 4647BCD66E7F11EF9223EA62C4F9AE02.roa (hash: ktZfaMlA6IUEVI7ymclMb6B8SOgTxjLIP6VRKiXLA/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57A9, serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E Validity Not Before: Jul 3 05:52:39 2025 GMT Not After : Jul 10 05:52:39 2025 GMT Subject: CN=68661aa7-ab89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:39:c2:29:83:1d:58:71:25:88:ce:04:d1:e6: e3:01:3e:c3:a0:e2:48:c9:6a:33:bd:e3:4e:bd:ca: 0e:b2:26:ad:60:e9:ba:16:16:79:6b:81:ec:72:37: 03:dd:fe:b8:af:c3:af:1d:e2:cc:5c:a0:bb:80:e6: 45:f7:ee:4a:af:1f:02:11:f9:cc:21:31:f8:3e:19: 5d:e5:35:b3:0d:50:57:2f:94:85:b3:a7:00:81:48: 30:1d:c9:3f:8c:62:2d:63:49:d9:82:19:14:b0:13: 54:4a:56:9c:38:a3:e5:32:05:a9:72:9d:e0:03:32: 29:c1:d8:7e:0b:6b:35:de:50:dd:57:82:a7:2c:a6: 2d:eb:40:03:4f:1c:01:d3:66:f5:07:9f:c4:c7:ee: aa:8e:e0:93:ba:b5:ad:83:0e:42:5c:87:24:6d:a5: 0c:4e:e2:79:66:ac:4e:86:a3:66:aa:85:b2:fd:db: 59:98:a9:af:59:49:ad:91:38:94:ca:dd:b8:33:7b: 5e:9b:05:98:ad:39:5b:53:43:8f:bf:ef:3d:38:4d: c3:20:db:5c:35:a3:c3:ff:a4:74:f2:52:9e:be:59: 80:c4:b3:ee:75:9a:f9:49:b5:7c:bc:bd:81:dc:41: bb:1a:94:24:9e:31:4c:ae:5e:f0:90:c8:b2:4f:72: 6a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F3:B1:3A:89:4F:28:55:2B:AD:AD:3D:79:87:A3:6C:11:D1:3B:E2 X509v3 Authority Key Identifier: keyid:4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:8f:7c:11:04:54:0d:f6:de:cf:5c:ce:95:86:b6:86:b2:06: 91:51:57:e7:de:74:d3:97:fe:39:60:d0:38:27:ba:61:7f:2b: f7:eb:3c:c3:aa:a5:b8:f0:b6:69:d9:f0:6e:4e:38:97:1f:d4: 10:cc:cf:39:fb:ca:7e:a5:26:33:f3:08:54:9a:13:b3:8f:8a: f5:e3:0b:94:98:30:b6:d8:bb:2d:55:12:f1:88:fc:ed:e1:27: 21:2c:fe:1a:93:3a:79:91:39:5a:6e:46:1b:12:60:99:3a:0f: ce:87:f2:9e:8c:74:4b:32:39:f1:6c:7d:59:39:f8:3e:5f:68: 46:24:fe:ac:ab:61:a8:30:67:c4:a9:19:e6:af:86:f8:1c:b6: ad:9c:a7:bd:b8:5f:c6:9d:57:2a:f3:4f:2b:4b:b2:d8:0c:f9: ad:54:d8:3a:9d:3b:22:ad:55:4e:b4:cd:c3:3f:93:1c:84:43: 0b:6b:d6:c8:16:6a:ca:f5:d1:b3:a2:83:b9:80:bb:48:f3:e1: 99:62:71:5a:7f:cd:46:d5:8a:91:55:82:ac:49:fe:cc:97:dc: 35:3e:fc:f1:6a:4b:e5:ca:ee:a6:ca:6d:d5:55:a5:28:97:4c: 7f:c0:7f:f0:a9:a2:98:9d:fa:7d:b3:e2:74:ba:07:7e:b9:1a: fe:33:12:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3QTkxMTAvBgNVBAUTKDRFMjU5QkE4N0E0MEI2NkQ4NDJBQzhDRTBBRUE3ODRF NEJENzM4MkUwHhcNMjUwNzAzMDU1MjM5WhcNMjUwNzEwMDU1MjM5WjAYMRYwFAYD VQQDEw02ODY2MWFhNy1hYjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTnCKYMdWHEliM4E0ebjAT7DoOJIyWozveNOvcoOsiatYOm6FhZ5a4HscjcD 3f64r8OvHeLMXKC7gOZF9+5Krx8CEfnMITH4Phld5TWzDVBXL5SFs6cAgUgwHck/ jGItY0nZghkUsBNUSlacOKPlMgWpcp3gAzIpwdh+C2s13lDdV4KnLKYt60ADTxwB 02b1B5/Ex+6qjuCTurWtgw5CXIckbaUMTuJ5ZqxOhqNmqoWy/dtZmKmvWUmtkTiU yt24M3temwWYrTlbU0OPv+89OE3DINtcNaPD/6R08lKevlmAxLPudZr5SbV8vL2B 3EG7GpQknjFMrl7wkMiyT3JqoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTzsTqJ TyhVK62tPXmHo2wR0TviMB8GA1UdIwQYMBaAFE4lm6h6QLZthCrIzgrqeE5L1zgu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdBOS83QkJEMTFBQzFG RjMxMUVGQTNGQjJDODFDNEY5QUUwMi9UaVdicUhwQXRtMkVLc2pPQ3VwNFRrdlhP QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RpV2JxSHBBdG0yRUtzak9DdXA0VGt2WE9DNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTdBOS83QkJEMTFBQzFGRjMxMUVGQTNGQjJDODFDNEY5QUUwMi9UaVdicUhwQXRt MkVLc2pPQ3VwNFRrdlhPQzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3j3wRBFQN9t7PXM6VhraGsgaRUVfn3nTTl/45YNA4J7phfyv36zzD qqW48LZp2fBuTjiXH9QQzM85+8p+pSYz8whUmhOzj4r14wuUmDC22LstVRLxiPzt 4SchLP4akzp5kTlabkYbEmCZOg/Oh/KejHRLMjnxbH1ZOfg+X2hGJP6sq2GoMGfE qRnmr4b4HLatnKe9uF/GnVcq808rS7LYDPmtVNg6nTsirVVOtM3DP5MchEMLa9bI FmrK9dGzooO5gLtI8+GZYnFaf81G1YqRVYKsSf7Ml9w1Pvzxakvlyu6mym3VVaUo l0x/wH/wqaKYnfp9s+J0ugd+uRr+MxKm -----END CERTIFICATE-----Generated at Fri Jul 4 08:12:12 2025 by rpki-client