$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: fW5NxfJHaOP8zu7K56lqo7MkwblUTs2msN/zbtZLHs8= Subject key identifier: A2:E7:EF:B9:FF:FA:E9:B5:DD:B3:34:E3:8C:0E:D9:0B:BF:47:50:D7 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 01C3 Signing time: Wed 23 Jul 2025 03:25:16 +0000 Manifest this update: Wed 23 Jul 2025 03:25:15 +0000 Manifest next update: Wed 30 Jul 2025 03:25:15 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: e2LmV5Sv/7wII0hgWDHAOTtlBai+zpw6aogL+U/hl4E=) 2: 7D22B44E249D11EFAC24EF6CC4F9AE02.roa (hash: A2YwzeZCV7lXuESZaxuoNr3XCXQA1+q4ChTmE99OOZ8=) 3: 9772767EB69A11EFBEB6CE0CC4F9AE02.roa (hash: 7OwaJrudjWnecoz7BCK7kPXjzB+3R7tWJ8DmqplI2rk=) 4: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: Ah9DA9XDU6AgPBrVhyRA7IEj119ByF47rhFGR96tGKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 03:25:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: Jul 23 03:25:15 2025 GMT Not After : Jul 30 03:25:15 2025 GMT Subject: CN=6880561c-6b88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cb:64:21:d4:54:94:71:db:92:7b:57:31:34: 0f:1f:0f:86:a2:bb:28:2f:60:6b:69:97:03:eb:77: be:ca:ce:47:b1:16:70:0b:f7:bc:70:58:cc:37:80: 07:46:1d:91:04:37:0a:0e:7e:3f:44:ec:39:d7:8f: 89:76:f1:7d:d3:2f:2e:04:c6:6f:28:da:58:73:cb: 75:a2:1e:bc:3a:77:53:92:10:5d:79:3a:bd:b5:94: 9b:d1:f7:34:a5:83:6f:ad:29:5c:23:c6:58:56:93: 63:8b:3d:4b:43:64:c1:63:18:59:47:e4:29:f2:ac: 82:16:27:f7:0e:d6:65:b6:23:67:14:4f:4b:c6:8c: 48:c9:db:a2:11:bc:0d:e3:2c:d9:3a:cb:c8:db:f8: b1:21:4c:51:98:3b:15:aa:51:26:af:7b:36:0a:f4: 43:2a:0c:18:87:a1:fe:64:64:b3:75:dc:f9:e8:7d: 49:c5:2d:fa:40:53:66:30:fa:e3:fd:27:d8:1d:d1: c1:2b:d5:b8:24:b3:a1:38:8e:0b:90:5f:b4:be:19: 50:30:22:24:b1:04:3e:bd:33:2b:c3:16:94:b1:81: 80:90:fe:cd:4b:ea:d3:5e:71:26:13:61:98:cf:79: c5:24:c6:36:15:8f:a7:c9:de:56:0f:77:40:2b:b1: b0:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:E7:EF:B9:FF:FA:E9:B5:DD:B3:34:E3:8C:0E:D9:0B:BF:47:50:D7 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:cf:0e:1f:f2:2a:0f:f2:5a:44:5f:d0:84:a4:8d:d7:bb:b3: 81:91:ee:4b:11:fd:21:ed:8a:62:26:26:f1:d6:33:d0:ff:61: 08:b1:41:44:7a:0c:29:47:87:fd:b7:90:8d:3c:28:f3:75:34: 59:4b:14:ea:e0:b4:b7:df:9e:35:c1:07:ca:d0:ef:12:d1:3e: fc:2d:d3:b9:8e:23:49:99:b8:64:63:87:2c:65:d4:08:de:f4: e0:06:dc:e2:cf:8b:09:38:3a:54:23:7a:f7:49:8f:30:08:03: 4d:00:cf:a6:94:6d:9f:82:5c:4c:9a:14:04:55:19:39:06:a9: 44:0d:2a:f2:48:4f:0d:0d:c6:dd:0a:4f:95:63:9c:b7:70:45: a9:44:95:c8:5a:b2:c9:ae:ef:e2:e2:c8:7d:c3:f8:20:ad:6e: 40:c6:9f:19:23:41:cb:f2:a9:e4:da:16:ea:a7:14:96:f4:73: f0:25:32:5a:e5:1d:57:7d:e1:54:18:5c:8f:39:56:47:a9:0a: 44:63:db:15:10:89:a1:c0:86:ed:58:3f:3a:c7:d8:b5:b0:4b: 59:3b:9c:4c:a9:26:1f:7f:8c:d6:33:57:69:e0:8d:30:00:cf: f1:d7:db:a1:01:77:dc:e8:bb:a6:3f:17:91:34:29:7e:09:eb: 31:29:38:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjUwNzIzMDMyNTE1WhcNMjUwNzMwMDMyNTE1WjAYMRYwFAYD VQQDEw02ODgwNTYxYy02Yjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8tkIdRUlHHbkntXMTQPHw+GorsoL2BraZcD63e+ys5HsRZwC/e8cFjMN4AH Rh2RBDcKDn4/ROw514+JdvF90y8uBMZvKNpYc8t1oh68OndTkhBdeTq9tZSb0fc0 pYNvrSlcI8ZYVpNjiz1LQ2TBYxhZR+Qp8qyCFif3DtZltiNnFE9LxoxIyduiEbwN 4yzZOsvI2/ixIUxRmDsVqlEmr3s2CvRDKgwYh6H+ZGSzddz56H1JxS36QFNmMPrj /SfYHdHBK9W4JLOhOI4LkF+0vhlQMCIksQQ+vTMrwxaUsYGAkP7NS+rTXnEmE2GY z3nFJMY2FY+nyd5WD3dAK7GwmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLn77n/ +um13bM044wO2Qu/R1DXMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAszw4f8ioP8lpEX9CEpI3Xu7OBke5LEf0h7YpiJibx1jPQ/2EIsUFE egwpR4f9t5CNPCjzdTRZSxTq4LS33541wQfK0O8S0T78LdO5jiNJmbhkY4csZdQI 3vTgBtziz4sJODpUI3r3SY8wCANNAM+mlG2fglxMmhQEVRk5BqlEDSrySE8NDcbd Ck+VY5y3cEWpRJXIWrLJru/i4sh9w/ggrW5Axp8ZI0HL8qnk2hbqpxSW9HPwJTJa 5R1XfeFUGFyPOVZHqQpEY9sVEImhwIbtWD86x9i1sEtZO5xMqSYff4zWM1dp4I0w AM/x19uhAXfc6LumPxeRNCl+CesxKTiB -----END CERTIFICATE-----Generated at Wed Jul 23 12:49:20 2025 by rpki-client