$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft File: TAYxLToLHGP1R9TWRXxM1a9xQ80.mft (raw, json) Hash identifier: s082FB0Ok8+QdZO4tVN0rb0iJ6qaH6srZktZ3TP8EhE= Subject key identifier: 51:2F:8F:09:19:D0:4A:FB:6A:F1:82:3D:3C:AF:F2:48:B2:5F:5C:E3 Authority key identifier: 4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD Certificate issuer: /CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Certificate serial: 0457 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft Manifest number: 0453 Signing time: Fri 25 Jul 2025 00:36:40 +0000 Manifest this update: Fri 25 Jul 2025 00:36:40 +0000 Manifest next update: Fri 01 Aug 2025 00:36:40 +0000 Files and hashes: 1: TAYxLToLHGP1R9TWRXxM1a9xQ80.crl (hash: tJUGw4a9/qhumbhGoav1e3YtW4s+2BnznWVRWZKAq7U=) 2: 09C2A1645A3511ED8F0A3087C4F9AE02.roa (hash: RiGNiFnNAoJRKUyYrUN1wLZV9I9idQnh7FmtgNq/Suc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 00:36:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1111 (0x457) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Validity Not Before: Jul 25 00:36:40 2025 GMT Not After : Aug 1 00:36:40 2025 GMT Subject: CN=6882d198-260c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e5:94:b8:0f:84:67:8f:c4:55:34:a9:59:1c: c9:69:d4:27:f6:61:cc:88:f3:64:3f:d8:c7:53:01: f7:5a:97:b8:69:ba:da:34:78:1e:f6:21:79:f2:fd: 1b:fb:d2:58:04:f5:bb:93:98:4d:fa:d6:27:9f:9c: 24:1c:6b:0b:71:52:da:d4:67:42:25:ff:f4:d2:95: e9:4b:2b:96:ac:66:d2:10:a2:cb:b9:00:f6:51:ac: ea:54:53:4a:d0:6a:17:23:64:11:ee:a3:3c:4a:3b: c6:1f:d4:18:cb:bc:ca:c8:72:31:65:0a:3f:21:7b: 88:c3:bb:9e:26:3d:a6:ca:d9:ae:56:bc:dd:23:d3: eb:41:da:f1:63:53:41:6c:73:ba:c8:37:b9:c3:7e: 37:34:e6:6b:9d:9f:40:84:67:da:d2:92:bd:df:df: 20:ab:9c:1c:6a:8d:78:1d:68:e8:3d:ee:73:b7:c5: 32:57:aa:cb:84:fc:23:ce:e5:cf:4e:b4:34:d6:a2: 43:8f:9d:c7:55:48:b0:dd:a4:3a:3a:a5:f2:3d:ef: b6:60:fb:75:c7:c3:ce:66:e8:3d:95:69:5c:46:91: 59:34:c5:18:db:b6:c1:8b:5c:b6:99:e4:b5:3d:9a: 1c:85:c7:b5:1b:67:ec:d1:61:01:56:75:16:b5:4e: d3:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:2F:8F:09:19:D0:4A:FB:6A:F1:82:3D:3C:AF:F2:48:B2:5F:5C:E3 X509v3 Authority Key Identifier: keyid:4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:29:16:76:11:2a:17:69:d5:56:da:7c:ab:b8:ce:df:3e:9a: 50:75:10:0d:50:f8:ba:5e:02:9c:29:05:95:2f:44:8b:00:40: 2f:e8:20:53:75:fb:69:fd:0b:3e:7a:d1:25:e2:57:d0:46:22: 29:63:8a:3c:cd:6d:f3:cf:9e:10:91:64:fd:1d:8f:25:c6:5a: 75:8c:73:9d:c3:47:da:7a:89:0b:43:0d:3c:b7:4d:73:59:b6: 72:eb:99:e8:ab:22:8b:37:61:8c:8e:4f:58:d5:34:e9:75:23: 73:7c:55:91:31:5b:9c:0f:86:33:e9:47:13:a5:df:b5:29:a8: 58:fb:ce:c4:c7:6b:57:17:9f:3b:e7:1d:6a:62:a6:7a:39:4e: 9d:53:ba:c8:e1:13:31:d7:6d:30:1c:87:ea:ed:98:d9:e8:12: 0a:a2:87:53:0e:e3:50:da:c9:3f:b4:0c:5b:5e:21:54:7e:aa: 5d:fe:27:ff:37:02:d5:71:71:09:05:4c:0a:74:47:5a:7f:b2: 61:4c:a0:98:08:19:9c:3a:af:e9:a3:cd:15:18:17:52:27:d1: 60:3c:25:a8:6c:c6:98:84:3a:5b:3e:bd:3b:f4:08:7c:45:32: c5:d1:ba:65:a3:60:91:df:1c:d2:b6:8a:9c:c8:25:ba:aa:8f: 03:86:2a:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDRDMDYzMTJEM0EwQjFDNjNGNTQ3RDRENjQ1N0M0Q0Q1 QUY3MTQzQ0QwHhcNMjUwNzI1MDAzNjQwWhcNMjUwODAxMDAzNjQwWjAYMRYwFAYD VQQDEw02ODgyZDE5OC0yNjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5uWUuA+EZ4/EVTSpWRzJadQn9mHMiPNkP9jHUwH3Wpe4abraNHge9iF58v0b +9JYBPW7k5hN+tYnn5wkHGsLcVLa1GdCJf/00pXpSyuWrGbSEKLLuQD2UazqVFNK 0GoXI2QR7qM8SjvGH9QYy7zKyHIxZQo/IXuIw7ueJj2mytmuVrzdI9PrQdrxY1NB bHO6yDe5w343NOZrnZ9AhGfa0pK9398gq5wcao14HWjoPe5zt8UyV6rLhPwjzuXP TrQ01qJDj53HVUiw3aQ6OqXyPe+2YPt1x8POZug9lWlcRpFZNMUY27bBi1y2meS1 PZochce1G2fs0WEBVnUWtU7TbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEvjwkZ 0Er7avGCPTyv8kiyX1zjMB8GA1UdIwQYMBaAFEwGMS06Cxxj9UfU1kV8TNWvcUPN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9CNTA1NDY1MjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhHUDFSOVRXUlh4TTFhOXhR ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBWXhMVG9MSEdQMVI5VFdSWHhNMWE5eFE4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9CNTA1NDY1MjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhH UDFSOVRXUlh4TTFhOXhRODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAKRZ2ESoXadVW2nyruM7fPppQdRANUPi6XgKcKQWVL0SLAEAv6CBT dftp/Qs+etEl4lfQRiIpY4o8zW3zz54QkWT9HY8lxlp1jHOdw0faeokLQw08t01z WbZy65noqyKLN2GMjk9Y1TTpdSNzfFWRMVucD4Yz6UcTpd+1KahY+87Ex2tXF587 5x1qYqZ6OU6dU7rI4RMx120wHIfq7ZjZ6BIKoodTDuNQ2sk/tAxbXiFUfqpd/if/ NwLVcXEJBUwKdEdaf7JhTKCYCBmcOq/po80VGBdSJ9FgPCWobMaYhDpbPr079Ah8 RTLF0bplo2CR3xzStoqcyCW6qo8Dhiqq -----END CERTIFICATE-----Generated at Fri Jul 25 07:04:16 2025 by rpki-client