$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft File: tlTdX1sVILMlvAnEv0yt88r7NCk.mft (raw, json) Hash identifier: PxuhLGXJ2zq7oPtMyP6wOwS6XjSjcqbgNWDUTvFsBD4= Subject key identifier: AB:9B:67:0C:71:20:5A:D8:8D:A0:2F:57:85:4E:15:71:D4:45:07:0C Authority key identifier: B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 Certificate issuer: /CN=A91E3B25/serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Certificate serial: 0926 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft Manifest number: 1FF9 Signing time: Thu 24 Jul 2025 16:46:27 +0000 Manifest this update: Thu 24 Jul 2025 16:46:26 +0000 Manifest next update: Thu 31 Jul 2025 16:46:26 +0000 Files and hashes: 1: tlTdX1sVILMlvAnEv0yt88r7NCk.crl (hash: Rt074i5nHh/COM6raMX+DyX3hO8Br7wxTiAuVoTxpQg=) 2: 3D13A01EA9AB11EAA4DBEA5EC4F9AE02.roa (hash: Lmn08n30AiKaOdta7GpDKIWNdyU/iej42lU+unei0xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 16:46:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2342 (0x926) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B25, serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Validity Not Before: Jul 24 16:46:26 2025 GMT Not After : Jul 31 16:46:26 2025 GMT Subject: CN=68826362-ddda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:71:76:02:72:cf:5f:ad:2c:ce:2d:61:0f:04: cd:40:44:1f:38:3d:db:7b:f3:ed:f9:2f:f7:1a:a5: bf:7a:96:c3:27:0f:bd:df:d0:0a:61:04:66:d0:f6: d1:c1:c4:52:d5:92:0b:5e:2b:a5:ad:7c:2b:54:0f: 95:c3:01:ca:b2:b5:a8:8e:a6:63:08:d6:e2:d8:12: f9:fa:7f:1f:92:ea:64:67:86:2a:ca:56:40:0a:af: 24:69:75:09:0f:2b:05:db:36:bc:92:4b:d8:18:df: 00:b0:29:56:54:4b:28:13:79:83:f9:27:79:20:3b: 6d:74:4e:09:21:15:f9:65:05:09:33:6c:52:2f:b7: cb:35:d5:91:32:91:07:36:62:f7:de:83:42:40:a8: 2c:90:95:42:2d:a2:97:d5:a1:81:ae:05:9b:50:3c: d2:5c:56:89:fe:e0:67:4d:b2:6c:39:b1:b7:6b:a2: 33:a4:86:82:12:5d:0a:5b:64:3b:82:6d:fc:20:63: fe:0c:08:1e:4c:03:e4:6f:21:9a:64:5e:7f:2d:12: 34:e7:23:59:18:f9:51:47:96:e5:23:dc:87:c4:6e: 4d:99:4b:a0:f6:73:27:0d:03:23:7f:8c:a1:80:2c: e5:34:17:31:e6:58:ad:3c:be:93:ed:29:df:1e:b7: e6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:9B:67:0C:71:20:5A:D8:8D:A0:2F:57:85:4E:15:71:D4:45:07:0C X509v3 Authority Key Identifier: keyid:B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:48:ae:56:67:5d:01:ab:d9:15:fa:90:a2:82:f5:15:1e:06: e2:8d:90:10:b3:1b:34:c6:d3:9d:5a:72:ef:45:f2:f5:96:d2: 34:1c:3e:98:18:c0:a2:62:51:4d:cd:66:2f:e6:dc:6a:37:79: f9:23:00:2d:56:36:fa:cf:ad:ad:dc:87:a9:c2:7d:3b:f3:cd: da:3f:3f:84:b1:3f:b2:9c:a6:44:a5:e2:f6:57:15:45:20:3c: b8:60:c5:81:e9:1f:67:21:1b:cc:9f:fd:63:ca:30:3d:ea:d4: 7c:3e:9a:60:99:4d:9d:ce:86:71:83:f2:a9:fc:61:31:f7:68: 9c:ca:f0:ce:56:34:43:1a:5a:c0:5d:53:ea:3e:f6:03:ea:e7: 40:52:f6:6e:0d:5c:04:80:f5:1b:2c:f2:16:ce:2f:9e:69:98: ab:a7:a1:3b:91:f2:cd:32:aa:e5:b1:f6:52:80:80:7c:25:2b: 42:c1:69:10:90:90:4c:1b:ff:63:64:aa:ae:90:75:14:7e:5b: 14:3a:68:e1:2c:e7:fd:1b:bb:99:a5:1e:86:a4:21:ce:0e:77: 21:b9:32:36:ec:44:a5:ae:22:f7:11:df:cd:59:bc:69:c8:64: c7:2a:06:0b:95:45:1f:97:c8:f2:d3:8e:c7:28:2b:35:3c:df: ec:ee:41:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMjUxMTAvBgNVBAUTKEI2NTRERDVGNUIxNTIwQjMyNUJDMDlDNEJGNENBREYz Q0FGQjM0MjkwHhcNMjUwNzI0MTY0NjI2WhcNMjUwNzMxMTY0NjI2WjAYMRYwFAYD VQQDEw02ODgyNjM2Mi1kZGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13F2AnLPX60szi1hDwTNQEQfOD3be/Pt+S/3GqW/epbDJw+939AKYQRm0PbR wcRS1ZILXiulrXwrVA+VwwHKsrWojqZjCNbi2BL5+n8fkupkZ4YqylZACq8kaXUJ DysF2za8kkvYGN8AsClWVEsoE3mD+Sd5IDttdE4JIRX5ZQUJM2xSL7fLNdWRMpEH NmL33oNCQKgskJVCLaKX1aGBrgWbUDzSXFaJ/uBnTbJsObG3a6IzpIaCEl0KW2Q7 gm38IGP+DAgeTAPkbyGaZF5/LRI05yNZGPlRR5blI9yHxG5NmUug9nMnDQMjf4yh gCzlNBcx5litPL6T7SnfHrfmMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKubZwxx IFrYjaAvV4VOFXHURQcMMB8GA1UdIwQYMBaAFLZU3V9bFSCzJbwJxL9MrfPK+zQp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IyNS83RTg5MkNDMkY2 MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklMTWx2QW5FdjB5dDg4cjdO Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RsVGRYMXNWSUxNbHZBbkV2MHl0ODhyN05Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0IyNS83RTg5MkNDMkY2MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklM TWx2QW5FdjB5dDg4cjdOQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFSK5WZ10Bq9kV+pCigvUVHgbijZAQsxs0xtOdWnLvRfL1ltI0HD6Y GMCiYlFNzWYv5txqN3n5IwAtVjb6z62t3Iepwn07883aPz+EsT+ynKZEpeL2VxVF IDy4YMWB6R9nIRvMn/1jyjA96tR8PppgmU2dzoZxg/Kp/GEx92icyvDOVjRDGlrA XVPqPvYD6udAUvZuDVwEgPUbLPIWzi+eaZirp6E7kfLNMqrlsfZSgIB8JStCwWkQ kJBMG/9jZKqukHUUflsUOmjhLOf9G7uZpR6GpCHODnchuTI27ESlriL3Ed/NWbxp yGTHKgYLlUUfl8jy047HKCs1PN/s7kGJ -----END CERTIFICATE-----Generated at Fri Jul 25 06:30:28 2025 by rpki-client