$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft File: TSeJUeK9itKFuUCo6p5X43lxHms.mft (raw, json) Hash identifier: /s4LyveDylD923pvJHj0VK32xbZ5Odq3Qo3mYuClN3U= Subject key identifier: 85:BA:8A:86:EA:CE:94:FF:27:19:9A:BE:4E:0B:4A:7B:5B:49:AC:F6 Authority key identifier: 4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B Certificate issuer: /CN=A91342C5/serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Certificate serial: 03A6 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft Manifest number: 03A1 Signing time: Sat 19 Jul 2025 01:13:07 +0000 Manifest this update: Sat 19 Jul 2025 01:13:06 +0000 Manifest next update: Sat 26 Jul 2025 01:13:06 +0000 Files and hashes: 1: TSeJUeK9itKFuUCo6p5X43lxHms.crl (hash: Q1EZA/ZKn3EYP4Hiy2sbFPpp8LGFdQRzjhzuA4sBvFo=) 2: E8E194B8A5CC11EC85A86A1FC4F9AE02.roa (hash: ypQGr8fcGrxnVWfQ2RrFsZZ4R7tmsDgEITmj6bx0ScA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 934 (0x3a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Validity Not Before: Jul 19 01:13:06 2025 GMT Not After : Jul 26 01:13:06 2025 GMT Subject: CN=687af122-4443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e1:19:7e:45:ed:c4:c0:42:0f:53:72:1a:ae: 05:19:66:7b:ee:dc:f2:1d:1e:67:b8:c1:02:63:c8: 9e:fa:70:6d:45:5f:a0:b5:9c:27:ad:10:0d:80:1e: 9c:82:ba:a1:d7:fe:4d:19:57:ad:08:2a:d3:a6:e8: c1:e7:ad:19:be:e1:b2:02:4d:2e:27:ac:2a:f8:d6: 2c:82:bd:96:98:31:ca:68:92:4d:2d:91:71:75:5d: c8:e8:c7:3f:a2:8a:12:a9:51:fe:96:ac:a9:59:a3: e8:0c:41:05:a1:dd:6e:45:46:b2:5c:94:40:fb:54: 40:e0:41:f6:a5:29:8e:13:0b:78:e4:a5:3c:78:46: 35:c4:41:db:ee:6e:41:76:52:50:f2:0c:18:52:c4: 9d:96:6e:bc:08:1d:db:2c:b9:03:b8:e4:41:e6:a9: 2d:8b:d6:34:d7:99:b7:39:ef:5c:c1:5e:7f:8f:14: 35:45:ed:8c:13:e4:9d:6a:57:b4:54:02:cc:3a:1f: 8c:2f:89:e2:7f:66:2a:0e:24:c1:75:ed:df:32:2f: d7:d4:63:71:4d:35:6a:25:de:7e:95:aa:1e:5e:67: b3:7e:5a:c2:28:3a:ce:80:90:5a:dd:23:71:2e:b1: 65:3f:99:e2:d5:6a:47:19:e2:1b:05:40:da:6d:ea: 32:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:BA:8A:86:EA:CE:94:FF:27:19:9A:BE:4E:0B:4A:7B:5B:49:AC:F6 X509v3 Authority Key Identifier: keyid:4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:21:55:67:9d:c3:d2:95:6c:d3:00:2d:ac:c7:c1:4f:37:05: b6:80:56:19:a3:09:e6:70:f8:d7:e6:30:0f:be:b1:48:35:82: 54:fb:4c:af:1d:13:92:fc:61:08:27:0d:cc:05:bf:8d:2b:29: e3:d4:cc:03:03:fd:4a:01:4c:1d:63:7b:c0:37:61:04:03:5f: fc:12:80:b1:e4:e0:7a:c8:2c:bf:bb:ef:f8:db:3e:7f:95:65: c9:60:04:0e:be:e4:67:ac:11:4f:1a:0a:f1:19:0e:6e:0a:60: f7:15:42:3a:7a:6d:af:61:41:fd:52:01:2b:43:c9:51:6e:22: 59:bf:73:bc:50:36:f3:3c:dc:07:c9:1f:a0:f9:74:28:58:7b: 03:5a:26:43:71:d6:6b:c9:54:4b:2c:cc:67:36:76:9d:d5:cd: 91:42:39:41:d9:61:c9:b7:f2:66:5b:b7:ae:69:e9:9c:20:cd: 50:83:3c:5a:a2:f1:49:e4:61:35:2e:46:8d:1e:b2:0c:1d:04: e0:da:c6:16:7e:08:76:3c:43:fe:6c:c1:40:9b:1e:54:8d:49: fe:ce:e9:7e:3e:7e:0e:f3:1d:06:01:7d:52:bc:ee:25:86:d9: 84:1c:3f:a3:61:53:32:76:1a:18:67:89:1e:01:06:94:51:1a: 39:e7:d1:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDREMjc4OTUxRTJCRDhBRDI4NUI5NDBBOEVBOUU1N0Uz Nzk3MTFFNkIwHhcNMjUwNzE5MDExMzA2WhcNMjUwNzI2MDExMzA2WjAYMRYwFAYD VQQDEw02ODdhZjEyMi00NDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOEZfkXtxMBCD1NyGq4FGWZ77tzyHR5nuMECY8ie+nBtRV+gtZwnrRANgB6c grqh1/5NGVetCCrTpujB560ZvuGyAk0uJ6wq+NYsgr2WmDHKaJJNLZFxdV3I6Mc/ oooSqVH+lqypWaPoDEEFod1uRUayXJRA+1RA4EH2pSmOEwt45KU8eEY1xEHb7m5B dlJQ8gwYUsSdlm68CB3bLLkDuORB5qkti9Y015m3Oe9cwV5/jxQ1Re2ME+Sdale0 VALMOh+ML4nif2YqDiTBde3fMi/X1GNxTTVqJd5+laoeXmezflrCKDrOgJBa3SNx LrFlP5ni1WpHGeIbBUDabeoyewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIW6iobq zpT/Jxmavk4LSntbSaz2MB8GA1UdIwQYMBaAFE0niVHivYrShblAqOqeV+N5cR5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xNjYzN0MyRUE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0S0Z1VUNvNnA1WDQzbHhI bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1RTZUpVZUs5aXRLRnVVQ282cDVYNDNseEhtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xNjYzN0MyRUE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0 S0Z1VUNvNnA1WDQzbHhIbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/IVVnncPSlWzTAC2sx8FPNwW2gFYZownmcPjX5jAPvrFINYJU+0yv HROS/GEIJw3MBb+NKynj1MwDA/1KAUwdY3vAN2EEA1/8EoCx5OB6yCy/u+/42z5/ lWXJYAQOvuRnrBFPGgrxGQ5uCmD3FUI6em2vYUH9UgErQ8lRbiJZv3O8UDbzPNwH yR+g+XQoWHsDWiZDcdZryVRLLMxnNnad1c2RQjlB2WHJt/JmW7euaemcIM1Qgzxa ovFJ5GE1LkaNHrIMHQTg2sYWfgh2PEP+bMFAmx5UjUn+zul+Pn4O8x0GAX1SvO4l htmEHD+jYVMydhoYZ4keAQaUURo559H/ -----END CERTIFICATE-----Generated at Sun Jul 20 07:30:16 2025 by rpki-client