$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft File: tnJ-39N9HiwXXBCBGh04qirGyJw.mft (raw, json) Hash identifier: zy6zp6HMHl7v7XcLYlP/Zm7gSVETbBRhO8ird6zhRGs= Subject key identifier: A2:C5:17:20:75:3C:66:F0:40:4A:FF:35:9F:E3:D7:9C:74:CC:29:92 Authority key identifier: B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C Certificate issuer: /CN=A91BD3D2/serialNumber=B6727EDFD37D1E2C175C10811A1D38AA2AC6C89C Certificate serial: 0187 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft Manifest number: 017D Signing time: Mon 21 Jul 2025 03:49:59 +0000 Manifest this update: Mon 21 Jul 2025 03:49:59 +0000 Manifest next update: Mon 28 Jul 2025 03:49:59 +0000 Files and hashes: 1: tnJ-39N9HiwXXBCBGh04qirGyJw.crl (hash: 2Lbqaon0g9yaM0ejjoHA9nzyyimrLdo1xLzQJ1Grwng=) 2: 862D5B3A2C8611EEB04B7B66C4F9AE02.roa (hash: XO+ul7lF7sjvsPZ/wUsLZ1kf4agxiZYpp0ew7HMRh6M=) 3: 207C8A52AC7611EEB465AF75C4F9AE02.roa (hash: rk+SPflwPgB4vTfzwjF5uUSSjGvEoj32LpORFaq9djc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD3D2, serialNumber=B6727EDFD37D1E2C175C10811A1D38AA2AC6C89C Validity Not Before: Jul 21 03:49:59 2025 GMT Not After : Jul 28 03:49:59 2025 GMT Subject: CN=687db8e7-b048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b4:63:cb:23:8d:47:f6:59:af:db:52:b2:93: 52:8d:b1:bf:2a:ee:ea:a8:c6:e5:f9:57:13:77:a1: 3e:c7:fd:22:02:f6:04:d2:80:2b:51:ab:35:46:54: 51:fc:d8:b6:8b:ad:60:b2:f0:9f:27:1c:3e:dc:9d: 66:e0:97:69:52:70:a2:8f:2d:38:13:eb:f3:3c:da: 88:b2:48:84:58:e9:47:88:5a:15:90:5d:1a:47:6a: 5e:16:71:ac:73:61:4d:1c:ee:7f:46:8e:7b:ec:d0: 26:fb:14:73:0f:72:6b:dc:74:81:29:7f:2b:4d:24: 41:20:01:e9:d1:bf:f9:a7:33:29:da:4b:c6:ab:25: 8c:66:f5:79:d5:3c:21:d2:ef:17:b2:a3:e2:3c:4a: 8e:26:3e:dc:88:05:df:00:e0:8e:48:44:20:1c:56: bc:f5:e6:bd:12:d9:a8:6f:ea:40:56:ae:a9:eb:cb: fe:6e:ad:60:74:20:51:bb:98:1b:dd:ae:ed:4a:a9: 65:b8:cd:ab:18:f8:04:06:4b:8a:b6:9e:cf:56:6d: a2:d6:6e:42:9e:dd:72:8b:53:da:e0:73:70:66:92: ea:98:62:25:6f:ac:74:c4:52:e7:5d:c7:87:ed:d7: ee:bd:97:c0:f1:d8:91:d2:83:87:0e:27:28:9b:28: 5f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C5:17:20:75:3C:66:F0:40:4A:FF:35:9F:E3:D7:9C:74:CC:29:92 X509v3 Authority Key Identifier: keyid:B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:eb:21:12:8d:49:cd:42:9f:c4:97:64:f6:cd:c0:05:89:c5: bf:b3:0d:5d:48:39:4d:03:08:04:01:86:9d:30:d8:40:d3:31: 1b:5f:54:59:20:7c:c9:67:cd:9e:3d:45:d5:8d:dc:e2:dc:87: 6f:e5:70:34:a1:b0:8a:0a:f9:8b:18:28:b3:49:85:ef:12:07: 85:3e:1e:cc:25:ae:b3:cc:79:2e:a0:67:30:06:ae:d4:df:4e: ff:d7:da:c3:e5:ca:2b:3e:01:0f:e7:d5:8d:1b:63:65:d6:a7: e8:14:52:75:aa:56:b7:64:d6:f0:32:a3:7a:4a:78:78:0b:fc: de:d9:31:2e:8d:3b:d8:32:15:7f:4e:c2:33:e1:45:fb:f4:d7: 35:dc:1a:ac:8d:0f:28:f7:d0:01:09:ad:f8:a6:ba:47:03:d1: 3f:b0:d6:a9:06:cc:c6:44:81:7d:b5:1b:2c:5e:5a:c2:30:90: 35:e2:23:d4:70:c1:65:ed:5d:5d:c5:13:00:95:e2:11:0d:1b: c7:cc:a2:5a:61:e8:6e:c2:c1:fe:3e:03:f1:55:d8:64:1e:32: 64:5e:73:05:a2:22:ee:70:35:66:b1:1a:53:a6:a2:1f:88:06: ed:bd:e9:bc:1b:28:fc:e2:a1:c6:78:a5:08:8e:54:ae:3b:52: fc:9a:bd:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQzRDIxMTAvBgNVBAUTKEI2NzI3RURGRDM3RDFFMkMxNzVDMTA4MTFBMUQzOEFB MkFDNkM4OUMwHhcNMjUwNzIxMDM0OTU5WhcNMjUwNzI4MDM0OTU5WjAYMRYwFAYD VQQDEw02ODdkYjhlNy1iMDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurRjyyONR/ZZr9tSspNSjbG/Ku7qqMbl+VcTd6E+x/0iAvYE0oArUas1RlRR /Ni2i61gsvCfJxw+3J1m4JdpUnCijy04E+vzPNqIskiEWOlHiFoVkF0aR2peFnGs c2FNHO5/Ro577NAm+xRzD3Jr3HSBKX8rTSRBIAHp0b/5pzMp2kvGqyWMZvV51Twh 0u8XsqPiPEqOJj7ciAXfAOCOSEQgHFa89ea9Etmob+pAVq6p68v+bq1gdCBRu5gb 3a7tSqlluM2rGPgEBkuKtp7PVm2i1m5Cnt1yi1Pa4HNwZpLqmGIlb6x0xFLnXceH 7dfuvZfA8diR0oOHDicomyhfbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLFFyB1 PGbwQEr/NZ/j15x0zCmSMB8GA1UdIwQYMBaAFLZyft/TfR4sF1wQgRodOKoqxsic MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDNEMi80MkMxRDhGODJD ODYxMUVFQTlCNzRGNDNDNEY5QUUwMi90bkotMzlOOUhpd1hYQkNCR2gwNHFpckd5 SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RuSi0zOU45SGl3WFhCQ0JHaDA0cWlyR3lKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDNEMi80MkMxRDhGODJDODYxMUVFQTlCNzRGNDNDNEY5QUUwMi90bkotMzlOOUhp d1hYQkNCR2gwNHFpckd5SncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd6yESjUnNQp/El2T2zcAFicW/sw1dSDlNAwgEAYadMNhA0zEbX1RZ IHzJZ82ePUXVjdzi3Idv5XA0obCKCvmLGCizSYXvEgeFPh7MJa6zzHkuoGcwBq7U 307/19rD5corPgEP59WNG2Nl1qfoFFJ1qla3ZNbwMqN6Snh4C/ze2TEujTvYMhV/ TsIz4UX79Nc13BqsjQ8o99ABCa34prpHA9E/sNapBszGRIF9tRssXlrCMJA14iPU cMFl7V1dxRMAleIRDRvHzKJaYehuwsH+PgPxVdhkHjJkXnMFoiLucDVmsRpTpqIf iAbtvem8Gyj84qHGeKUIjlSuO1L8mr3B -----END CERTIFICATE-----Generated at Mon Jul 21 13:23:59 2025 by rpki-client