$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft File: TnVPewjIAAZ84HEJetOUaJDao2U.mft (raw, json) Hash identifier: JLd9YdT4dt5aISrY/LjY7Noy1xZ3Eg1azkA2YbqgDM8= Subject key identifier: 5B:20:96:C6:B1:B6:B0:1F:A9:EB:95:4F:DE:69:2A:AD:03:5B:87:07 Authority key identifier: 4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 Certificate issuer: /CN=A91F4B3F/serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft Manifest number: 0152 Signing time: Tue 01 Jul 2025 04:36:37 +0000 Manifest this update: Tue 01 Jul 2025 04:36:36 +0000 Manifest next update: Tue 08 Jul 2025 04:36:36 +0000 Files and hashes: 1: TnVPewjIAAZ84HEJetOUaJDao2U.crl (hash: 96X+Rl7IZYRctVqptBRdNQpDKy//eRPmIcEjQOz088M=) 2: D875D57EF30611EEAFFC0C66C4F9AE02.roa (hash: DsVxbJQBFvHguy7znDHJZ9CR2UmTMow8V9P9QuFVJ9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:36:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4B3F, serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Validity Not Before: Jul 1 04:36:36 2025 GMT Not After : Jul 8 04:36:36 2025 GMT Subject: CN=686365d4-c1a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b4:f4:56:56:2e:a8:bd:31:77:d0:6f:27:80: 7d:c9:c8:27:a0:5d:a2:ec:d0:72:8d:a3:0b:51:79: 3e:a2:f0:e7:46:0c:fc:3b:dc:9e:1f:70:0a:ff:b5: 05:b0:3e:f5:cd:57:ea:3d:7c:2f:2e:33:1a:48:09: 33:ab:ef:d0:61:4b:0d:eb:2b:b9:90:35:20:66:3c: 61:84:00:32:ea:da:fe:bd:98:c6:e1:d5:0f:dd:cd: 34:b3:f8:4f:d7:c3:e0:5b:2e:f0:8b:81:b5:16:04: 41:08:e7:c4:2c:ce:70:7d:5a:ac:55:93:e1:e8:ea: 70:7c:f8:e1:48:e2:55:4e:71:1e:e3:e9:d3:08:81: 54:e9:35:df:00:ed:0b:d1:e5:79:c4:23:3a:9c:40: 62:b4:35:ee:56:4b:b1:5b:24:96:97:c8:d4:b8:c6: 07:dc:eb:3d:30:72:56:30:c0:b4:04:db:6c:4c:4e: 0a:d8:ad:9e:53:82:26:88:6d:5b:0d:de:63:1a:d5: 7f:28:e5:32:84:2a:69:b0:0b:7e:86:e3:2b:9b:dd: e7:3c:93:a1:c5:09:3f:d0:9e:ed:8d:70:22:f6:5f: 2e:e3:6a:35:4d:7e:e2:ec:2f:2c:df:ee:af:17:a5: 8f:77:e1:70:cd:b4:ca:7a:a2:1e:27:b1:e5:57:5d: 27:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:20:96:C6:B1:B6:B0:1F:A9:EB:95:4F:DE:69:2A:AD:03:5B:87:07 X509v3 Authority Key Identifier: keyid:4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:28:41:7b:f7:b0:38:a8:89:b0:4f:2c:01:d3:90:e3:e4:d8: 56:bf:ef:a2:2d:71:fb:1e:75:ad:85:4f:69:9e:51:b0:e6:2a: 50:b2:61:5c:8e:40:22:c5:83:52:6f:d1:05:09:32:f1:92:eb: 0a:12:21:48:e0:aa:50:28:e0:fd:31:1f:f7:54:cd:63:4c:65: e5:08:7d:92:f0:92:f6:09:12:c9:6e:e8:c3:0e:7f:50:4f:45: a2:1e:5e:00:6a:7b:2f:b0:ab:53:35:ff:63:c0:8e:0c:7b:de: 8a:da:a7:5f:7c:72:81:df:94:59:8b:0b:a9:17:a9:78:f5:e4: 6d:77:67:d6:d1:df:7b:a1:8f:a0:38:32:6a:d6:c4:79:b7:d3: 92:be:d4:89:69:09:b3:bb:fe:b3:89:6d:df:57:e5:32:1c:c2: c7:2b:a9:10:ca:ab:05:62:cd:05:e8:ff:c6:35:91:89:2d:38: a7:8d:39:36:24:45:cc:aa:a5:ab:bb:f5:60:da:c0:50:c7:d4: c4:43:04:d8:ed:62:c9:c2:1b:ec:4f:f8:e9:8d:19:56:d7:e3: 5f:ad:85:27:42:8d:95:be:30:53:85:42:b5:52:06:95:16:bc: 5d:09:ea:8b:20:ed:8a:43:a8:22:42:28:d8:3e:cc:17:c1:15: a3:38:f3:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCM0YxMTAvBgNVBAUTKDRFNzU0RjdCMDhDODAwMDY3Q0UwNzEwOTdBRDM5NDY4 OTBEQUEzNjUwHhcNMjUwNzAxMDQzNjM2WhcNMjUwNzA4MDQzNjM2WjAYMRYwFAYD VQQDEw02ODYzNjVkNC1jMWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLT0VlYuqL0xd9BvJ4B9ycgnoF2i7NByjaMLUXk+ovDnRgz8O9yeH3AK/7UF sD71zVfqPXwvLjMaSAkzq+/QYUsN6yu5kDUgZjxhhAAy6tr+vZjG4dUP3c00s/hP 18PgWy7wi4G1FgRBCOfELM5wfVqsVZPh6OpwfPjhSOJVTnEe4+nTCIFU6TXfAO0L 0eV5xCM6nEBitDXuVkuxWySWl8jUuMYH3Os9MHJWMMC0BNtsTE4K2K2eU4ImiG1b Dd5jGtV/KOUyhCppsAt+huMrm93nPJOhxQk/0J7tjXAi9l8u42o1TX7i7C8s3+6v F6WPd+FwzbTKeqIeJ7HlV10nuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsglsax trAfqeuVT95pKq0DW4cHMB8GA1UdIwQYMBaAFE51T3sIyAAGfOBxCXrTlGiQ2qNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEIzRi8xQ0RGODdFNDUx NjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFBWjg0SEVKZXRPVWFKRGFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RuVlBld2pJQUFaODRIRUpldE9VYUpEYW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEIzRi8xQ0RGODdFNDUxNjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFB Wjg0SEVKZXRPVWFKRGFvMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsKEF797A4qImwTywB05Dj5NhWv++iLXH7HnWthU9pnlGw5ipQsmFc jkAixYNSb9EFCTLxkusKEiFI4KpQKOD9MR/3VM1jTGXlCH2S8JL2CRLJbujDDn9Q T0WiHl4AansvsKtTNf9jwI4Me96K2qdffHKB35RZiwupF6l49eRtd2fW0d97oY+g ODJq1sR5t9OSvtSJaQmzu/6ziW3fV+UyHMLHK6kQyqsFYs0F6P/GNZGJLTinjTk2 JEXMqqWru/Vg2sBQx9TEQwTY7WLJwhvsT/jpjRlW1+NfrYUnQo2VvjBThUK1UgaV FrxdCeqLIO2KQ6giQijYPswXwRWjOPMh -----END CERTIFICATE-----Generated at Wed Jul 2 19:31:32 2025 by rpki-client