$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft File: TvuTtJvxulYAjfxgYItSFq7JmsY.mft (raw, json) Hash identifier: dqMk6DAx2cta3yzxUFGsqBP1+EymvimV0dYlqsmTzHY= Subject key identifier: F4:C0:03:F1:CA:51:83:FD:F1:0D:48:B9:16:27:72:E8:7A:C9:B3:43 Authority key identifier: 4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 Certificate issuer: /CN=A91B8070/serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft Manifest number: 3C Signing time: Wed 23 Jul 2025 07:57:01 +0000 Manifest this update: Wed 23 Jul 2025 07:57:01 +0000 Manifest next update: Wed 30 Jul 2025 07:57:01 +0000 Files and hashes: 1: TvuTtJvxulYAjfxgYItSFq7JmsY.crl (hash: fMDcnSNssrPxJr7FtIC8pC1VcgaI40VnfvTTi66vQz4=) 2: AB942EE0607C11F0A8F5A261C4F9AE02.roa (hash: Ib7XrV2UdhfMc2uSkqN8sJc2pYT7HHMtYcCkEQkD9OY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 07:57:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8070, serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Validity Not Before: Jul 23 07:57:01 2025 GMT Not After : Jul 30 07:57:01 2025 GMT Subject: CN=688095cd-6ea0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e0:5f:5a:f5:dd:ca:ed:60:f9:44:c8:bc:24: cd:1d:8e:7c:7d:07:ec:45:40:6c:e2:77:3b:42:19: bd:cf:ff:5f:f2:c5:eb:d7:e3:5b:98:55:6a:f5:7a: 6e:a3:80:72:16:36:18:54:35:a7:24:ba:18:1a:b8: 98:35:1e:1b:e9:ac:78:64:ee:fb:b1:c1:2f:28:cf: 37:6b:5e:76:5a:12:76:3c:10:98:ce:ef:7e:e4:2d: 6d:ce:d4:29:fb:4e:bc:46:95:4a:3c:08:ff:7b:d7: 83:60:ac:a9:fe:7a:9a:65:87:e2:9c:d6:13:9e:c7: dd:25:5a:31:00:d0:ce:25:4a:83:c4:70:ac:b9:73: 9a:00:d5:0a:59:d3:b6:2c:45:04:18:07:d0:c4:70: 0a:b6:68:4d:34:4d:fe:69:8d:69:e4:74:a7:cb:93: 8d:b8:f9:c6:aa:71:91:95:67:42:a1:8a:da:d4:69: 80:13:c0:a6:10:df:eb:90:ca:4f:4d:51:02:1e:a4: 89:95:18:cd:94:c2:23:ee:07:22:12:a9:46:28:d9: 7f:37:63:52:1f:9e:9d:56:1c:83:c4:65:27:e3:82: 9c:bc:da:aa:93:83:8d:c9:2b:cc:b3:b2:bb:1e:54: 27:ac:9c:0c:4b:05:ea:a7:a7:13:23:66:46:e0:f1: d2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C0:03:F1:CA:51:83:FD:F1:0D:48:B9:16:27:72:E8:7A:C9:B3:43 X509v3 Authority Key Identifier: keyid:4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:3a:7a:04:df:89:c3:29:9b:a9:41:66:74:d9:88:dd:d9:e7: db:73:85:d8:42:c5:a5:9f:65:ec:41:2d:c9:46:55:56:f8:09: b3:dc:ec:94:d5:be:65:f5:8d:0d:9d:af:9f:2c:da:0a:99:68: 19:fc:f4:34:dd:e3:fa:a2:97:dc:ed:c6:d0:46:22:db:c1:b0: ac:7d:5e:8f:33:c4:c9:f4:17:21:64:9f:0c:ff:ce:94:7e:26: 07:da:26:48:d9:cf:b7:be:3d:63:96:82:4e:bd:7e:bc:10:68: 99:13:eb:78:fa:06:33:cc:c9:d0:5b:c5:b5:8c:09:33:4a:b2: d8:63:47:97:0a:69:aa:ba:9c:66:ed:bc:47:d1:25:12:28:45: 3d:8c:c8:c0:15:98:73:da:f7:08:51:71:0c:5b:6d:be:e1:08: e5:cd:c1:cc:e0:5f:05:27:bf:0f:2d:99:02:96:bb:c0:c6:8f: 62:44:45:9b:e0:66:ad:eb:af:e2:31:2b:01:fb:01:87:5b:dc: 5b:95:4d:f1:52:f7:42:ae:9a:94:20:ec:68:3f:8b:c5:89:c3: 85:6a:9c:0b:97:61:c3:14:f3:09:89:8a:34:0d:5d:f0:03:19: 44:67:27:37:4c:4e:dd:82:df:5c:d3:38:e5:d2:be:40:2e:27: bb:64:e3:b3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC ODA3MDExMC8GA1UEBRMoNEVGQjkzQjQ5QkYxQkE1NjAwOERGQzYwNjA4QjUyMTZB RUM5OUFDNjAeFw0yNTA3MjMwNzU3MDFaFw0yNTA3MzAwNzU3MDFaMBgxFjAUBgNV BAMTDTY4ODA5NWNkLTZlYTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCq4F9a9d3K7WD5RMi8JM0djnx9B+xFQGzidztCGb3P/1/yxevX41uYVWr1em6j gHIWNhhUNackuhgauJg1HhvprHhk7vuxwS8ozzdrXnZaEnY8EJjO737kLW3O1Cn7 TrxGlUo8CP9714NgrKn+epplh+Kc1hOex90lWjEA0M4lSoPEcKy5c5oA1QpZ07Ys RQQYB9DEcAq2aE00Tf5pjWnkdKfLk424+caqcZGVZ0KhitrUaYATwKYQ3+uQyk9N UQIepImVGM2UwiPuByISqUYo2X83Y1Ifnp1WHIPEZSfjgpy82qqTg43JK8yzsrse VCesnAxLBeqnpxMjZkbg8dJdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9MAD8cpR g/3xDUi5Fidy6HrJs0MwHwYDVR0jBBgwFoAUTvuTtJvxulYAjfxgYItSFq7JmsYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4MDcwL0FFMzY0Njk2MTM4 NDExRjBCQzVGNDU0N0M0RjlBRTAyL1R2dVR0SnZ4dWxZQWpmeGdZSXRTRnE3Sm1z WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVHZ1VHRKdnh1bFlBamZ4Z1lJdFNGcTdKbXNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 MDcwL0FFMzY0Njk2MTM4NDExRjBCQzVGNDU0N0M0RjlBRTAyL1R2dVR0SnZ4dWxZ QWpmeGdZSXRTRnE3Sm1zWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFU6egTficMpm6lBZnTZiN3Z59tzhdhCxaWfZexBLclGVVb4CbPc7JTV vmX1jQ2dr58s2gqZaBn89DTd4/qil9ztxtBGItvBsKx9Xo8zxMn0FyFknwz/zpR+ JgfaJkjZz7e+PWOWgk69frwQaJkT63j6BjPMydBbxbWMCTNKsthjR5cKaaq6nGbt vEfRJRIoRT2MyMAVmHPa9whRcQxbbb7hCOXNwczgXwUnvw8tmQKWu8DGj2JERZvg Zq3rr+IxKwH7AYdb3FuVTfFS90KumpQg7Gg/i8WJw4VqnAuXYcMU8wmJijQNXfAD GURnJzdMTt2C31zTOOXSvkAuJ7tk47M= -----END CERTIFICATE-----Generated at Fri Jul 25 01:43:20 2025 by rpki-client