$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft File: TnVPewjIAAZ84HEJetOUaJDao2U.mft (raw, json) Hash identifier: CSjzuu3XrKNtYSMlCXO3kUjKsS77xgE+9ozVdCKQM6w= Subject key identifier: A1:F4:40:E9:59:94:C7:54:AE:30:EF:5D:C3:0D:9A:6E:2D:89:36:7F Authority key identifier: 4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 Certificate issuer: /CN=A91F4B3F/serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Certificate serial: 0170 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft Manifest number: 016D Signing time: Sat 23 Aug 2025 03:58:15 +0000 Manifest this update: Sat 23 Aug 2025 03:58:15 +0000 Manifest next update: Sat 30 Aug 2025 03:58:15 +0000 Files and hashes: 1: TnVPewjIAAZ84HEJetOUaJDao2U.crl (hash: Y6cl7U/455k6yJpaiqWAPYozFMn/jXzNVFhxn5rHg+Y=) 2: D875D57EF30611EEAFFC0C66C4F9AE02.roa (hash: DsVxbJQBFvHguy7znDHJZ9CR2UmTMow8V9P9QuFVJ9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:58:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4B3F, serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Validity Not Before: Aug 23 03:58:15 2025 GMT Not After : Aug 30 03:58:15 2025 GMT Subject: CN=68a93c57-4e69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fe:c5:45:8a:86:69:69:8c:72:75:cf:fd:a2: c6:2a:db:18:c0:e8:70:5c:4a:70:3f:d4:44:5b:77: 08:78:49:4c:ad:45:36:68:18:75:16:0b:b4:ec:e7: a3:d0:8a:e7:a0:9d:ee:3f:a5:83:9a:7c:a7:27:94: 7c:47:35:80:f1:15:ca:6d:f2:f2:72:dc:f4:f2:48: 8b:f6:1a:fa:00:2f:6a:84:18:05:63:79:bf:1f:00: bb:61:cf:e2:7e:28:ee:89:29:03:32:41:19:d4:cc: a9:dd:91:36:6f:65:ed:2a:ae:c9:7f:61:f5:20:0b: ac:41:0f:91:c0:1f:f1:88:eb:c0:bf:ea:89:c7:4e: 8b:dd:42:b2:36:8e:e0:1c:eb:5b:20:91:32:5d:29: aa:61:b3:00:da:d4:8e:c2:89:42:5f:52:82:f2:2f: 2f:ba:af:68:69:f8:b5:b2:cf:17:3f:a4:8f:65:4c: 14:82:aa:22:d6:dd:c1:40:42:9a:fe:54:c1:89:ba: 70:ec:73:19:3d:22:6e:49:01:f6:77:f2:97:23:40: 75:a0:b4:b4:88:1f:e1:3e:3f:69:2f:39:16:42:b7: 69:c3:12:db:14:8a:e3:3c:08:2b:d7:a8:69:11:d4: a4:6e:5c:b9:86:86:f5:c0:58:4f:ce:af:4e:f3:d1: 8b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:F4:40:E9:59:94:C7:54:AE:30:EF:5D:C3:0D:9A:6E:2D:89:36:7F X509v3 Authority Key Identifier: keyid:4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:48:94:11:a9:55:76:32:7b:ac:5e:dc:4d:d7:69:d2:f1:1e: ce:8c:e0:e5:d2:9a:df:61:a6:e4:4a:85:2c:3b:78:14:86:71: 7e:52:0e:87:e0:f6:8b:4d:c1:b3:11:6b:b7:a1:b6:e3:7a:2c: f9:1c:18:4b:5d:c4:20:d2:6f:bc:dc:ac:63:f5:ef:9e:61:90: 91:09:ce:a9:7e:d4:f8:c7:e9:8d:bf:ae:93:29:bf:83:bb:83: 35:61:20:bc:83:4f:69:11:08:f7:e9:5d:05:62:c1:58:62:72: 50:64:4e:2b:42:70:e6:56:84:87:84:ed:cf:5a:d1:1c:97:3f: 76:d2:ce:66:a3:34:76:e7:d4:ad:a2:eb:22:3f:37:fc:d8:c2: 80:02:6c:e8:e0:9d:03:c6:53:42:8f:14:79:54:47:df:20:cf: 43:71:51:af:c1:fa:5f:d2:1b:b9:2e:b4:5e:69:49:9a:a2:6f: 37:6e:2e:17:6b:3f:d6:44:1b:02:5b:a0:18:94:78:75:ac:c8: ea:7c:41:1f:25:ce:38:03:2e:0d:c3:55:88:91:d3:d1:34:2c: 0c:81:4a:64:a2:63:77:f9:b9:49:e3:5e:45:fb:1a:fa:b4:83: bf:d6:c1:f5:63:25:8f:41:2d:4e:6b:99:a2:6c:6f:19:54:c2: aa:6e:af:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCM0YxMTAvBgNVBAUTKDRFNzU0RjdCMDhDODAwMDY3Q0UwNzEwOTdBRDM5NDY4 OTBEQUEzNjUwHhcNMjUwODIzMDM1ODE1WhcNMjUwODMwMDM1ODE1WjAYMRYwFAYD VQQDEw02OGE5M2M1Ny00ZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsP7FRYqGaWmMcnXP/aLGKtsYwOhwXEpwP9REW3cIeElMrUU2aBh1Fgu07Oej 0IrnoJ3uP6WDmnynJ5R8RzWA8RXKbfLyctz08kiL9hr6AC9qhBgFY3m/HwC7Yc/i fijuiSkDMkEZ1Myp3ZE2b2XtKq7Jf2H1IAusQQ+RwB/xiOvAv+qJx06L3UKyNo7g HOtbIJEyXSmqYbMA2tSOwolCX1KC8i8vuq9oafi1ss8XP6SPZUwUgqoi1t3BQEKa /lTBibpw7HMZPSJuSQH2d/KXI0B1oLS0iB/hPj9pLzkWQrdpwxLbFIrjPAgr16hp EdSkbly5hob1wFhPzq9O89GLgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKH0QOlZ lMdUrjDvXcMNmm4tiTZ/MB8GA1UdIwQYMBaAFE51T3sIyAAGfOBxCXrTlGiQ2qNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEIzRi8xQ0RGODdFNDUx NjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFBWjg0SEVKZXRPVWFKRGFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RuVlBld2pJQUFaODRIRUpldE9VYUpEYW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEIzRi8xQ0RGODdFNDUxNjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFB Wjg0SEVKZXRPVWFKRGFvMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvSJQRqVV2MnusXtxN12nS8R7OjODl0prfYabkSoUsO3gUhnF+Ug6H 4PaLTcGzEWu3obbjeiz5HBhLXcQg0m+83Kxj9e+eYZCRCc6pftT4x+mNv66TKb+D u4M1YSC8g09pEQj36V0FYsFYYnJQZE4rQnDmVoSHhO3PWtEclz920s5mozR259St ousiPzf82MKAAmzo4J0DxlNCjxR5VEffIM9DcVGvwfpf0hu5LrReaUmaom83bi4X az/WRBsCW6AYlHh1rMjqfEEfJc44Ay4Nw1WIkdPRNCwMgUpkomN3+blJ415F+xr6 tIO/1sH1YyWPQS1Oa5mibG8ZVMKqbq+k -----END CERTIFICATE-----Generated at Sat Aug 23 17:11:07 2025 by rpki-client