$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft File: tlTdX1sVILMlvAnEv0yt88r7NCk.mft (raw, json) Hash identifier: 4RCJxy5vCzb88g4Kpaw9Fa3Y/lbP1EMcvP5XUKdXjf8= Subject key identifier: E7:E1:5B:5B:EA:51:1E:3C:0B:88:1C:61:3B:81:C2:F4:C8:4E:D0:B0 Authority key identifier: B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 Certificate issuer: /CN=A91E3B25/serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Certificate serial: 0925 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft Manifest number: 1FF7 Signing time: Tue 22 Jul 2025 16:47:48 +0000 Manifest this update: Tue 22 Jul 2025 16:47:47 +0000 Manifest next update: Tue 29 Jul 2025 16:47:47 +0000 Files and hashes: 1: tlTdX1sVILMlvAnEv0yt88r7NCk.crl (hash: vXl8KmxvxCeOsa+ejioH4Afj2HGH2CiG0630teWk/lI=) 2: 3D13A01EA9AB11EAA4DBEA5EC4F9AE02.roa (hash: Lmn08n30AiKaOdta7GpDKIWNdyU/iej42lU+unei0xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 16:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2341 (0x925) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B25, serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Validity Not Before: Jul 22 16:47:47 2025 GMT Not After : Jul 29 16:47:47 2025 GMT Subject: CN=687fc0b4-5956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:32:bd:8f:a2:58:3f:22:cb:d3:6c:cd:2c:d3: e9:93:95:68:b3:e2:8c:c6:63:15:13:3d:3c:81:8a: 73:fe:01:0a:78:dd:17:64:bd:25:6c:fd:54:c9:6b: ec:d4:48:f9:38:02:a2:15:67:78:80:3d:71:3c:2b: 7a:4d:47:a9:94:24:1c:b4:56:30:3c:8b:d7:c4:ed: 2f:4e:8d:47:cb:4e:d2:f1:ad:2e:65:9e:9d:2e:2f: 07:0c:d1:ad:97:82:2b:03:6b:91:b5:8f:4a:c0:e2: 10:31:71:05:79:2b:b8:63:21:78:3d:b8:cb:26:8b: 4c:c5:43:11:00:9a:a9:35:0e:b4:dd:c4:11:e0:60: c7:62:59:3e:39:b5:02:64:8e:db:f4:e1:d9:81:48: d7:12:ce:09:3f:3b:cd:26:93:04:d6:0c:c9:e9:bc: 6e:48:db:54:22:9a:f6:f0:69:11:d4:46:ce:7a:7c: 08:37:25:a7:4c:c4:bd:55:6e:ce:8a:12:a2:1a:4a: c1:7f:6a:7a:f8:54:e7:ec:d2:bf:1b:ac:f5:e6:a9: a0:a1:d9:0f:25:27:b6:5d:7c:cf:d0:cf:6e:5b:5d: 30:14:e8:46:50:d1:68:cc:b3:08:6b:30:00:53:5f: 34:23:10:34:3c:24:b4:2b:29:e8:9b:21:1e:9e:c4: c9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E1:5B:5B:EA:51:1E:3C:0B:88:1C:61:3B:81:C2:F4:C8:4E:D0:B0 X509v3 Authority Key Identifier: keyid:B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:b3:8c:4e:7b:fd:83:fc:f3:5b:87:7b:7a:4b:e6:47:f8:ea: bf:f8:29:0c:03:40:e6:92:0e:06:bd:73:04:83:2c:51:73:b3: 1b:62:3e:cf:04:26:25:90:a9:15:99:16:e8:e6:04:e0:7b:1f: 0c:f8:18:bc:b5:1a:14:1c:65:1e:b9:e4:af:66:cc:44:7a:47: 33:9e:d7:1d:8e:15:70:e3:e1:9d:94:d0:61:28:df:48:37:bf: 64:00:50:7b:d7:c0:21:6a:0f:bc:75:6f:0b:7d:ff:54:f5:49: e9:58:74:ac:82:9d:0a:9a:75:32:b8:72:e6:aa:a1:cd:5a:d3: 51:22:4c:43:98:86:11:34:28:bc:d8:66:77:e6:23:e2:5c:39: 7a:cd:3c:10:4f:a5:e6:ae:11:00:5f:b8:1e:12:d0:99:27:11: 9a:5d:2a:db:74:c8:f0:51:9c:10:31:eb:fe:ef:d2:e4:e4:ae: cf:36:42:b0:f9:11:b3:fb:32:7f:e4:2f:20:dc:7e:7b:2f:4f: 43:0d:ea:52:08:c8:51:7a:91:e9:ba:48:c3:10:c1:d9:d7:75: 8f:70:15:2f:8c:01:f3:c0:78:f5:dd:30:ff:41:a7:53:e6:ba: b6:0b:25:0a:d3:b3:ae:a0:e0:51:6d:ef:7f:c4:e3:ca:12:dd: a1:e6:ba:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMjUxMTAvBgNVBAUTKEI2NTRERDVGNUIxNTIwQjMyNUJDMDlDNEJGNENBREYz Q0FGQjM0MjkwHhcNMjUwNzIyMTY0NzQ3WhcNMjUwNzI5MTY0NzQ3WjAYMRYwFAYD VQQDEw02ODdmYzBiNC01OTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzK9j6JYPyLL02zNLNPpk5Vos+KMxmMVEz08gYpz/gEKeN0XZL0lbP1UyWvs 1Ej5OAKiFWd4gD1xPCt6TUeplCQctFYwPIvXxO0vTo1Hy07S8a0uZZ6dLi8HDNGt l4IrA2uRtY9KwOIQMXEFeSu4YyF4PbjLJotMxUMRAJqpNQ603cQR4GDHYlk+ObUC ZI7b9OHZgUjXEs4JPzvNJpME1gzJ6bxuSNtUIpr28GkR1EbOenwINyWnTMS9VW7O ihKiGkrBf2p6+FTn7NK/G6z15qmgodkPJSe2XXzP0M9uW10wFOhGUNFozLMIazAA U180IxA0PCS0KynomyEensTJ8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfhW1vq UR48C4gcYTuBwvTITtCwMB8GA1UdIwQYMBaAFLZU3V9bFSCzJbwJxL9MrfPK+zQp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IyNS83RTg5MkNDMkY2 MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklMTWx2QW5FdjB5dDg4cjdO Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RsVGRYMXNWSUxNbHZBbkV2MHl0ODhyN05Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0IyNS83RTg5MkNDMkY2MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklM TWx2QW5FdjB5dDg4cjdOQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNs4xOe/2D/PNbh3t6S+ZH+Oq/+CkMA0Dmkg4GvXMEgyxRc7MbYj7P BCYlkKkVmRbo5gTgex8M+Bi8tRoUHGUeueSvZsxEekczntcdjhVw4+GdlNBhKN9I N79kAFB718Ahag+8dW8Lff9U9UnpWHSsgp0KmnUyuHLmqqHNWtNRIkxDmIYRNCi8 2GZ35iPiXDl6zTwQT6XmrhEAX7geEtCZJxGaXSrbdMjwUZwQMev+79Lk5K7PNkKw +RGz+zJ/5C8g3H57L09DDepSCMhRepHpukjDEMHZ13WPcBUvjAHzwHj13TD/QadT 5rq2CyUK07OuoOBRbe9/xOPKEt2h5rq0 -----END CERTIFICATE-----Generated at Thu Jul 24 04:59:19 2025 by rpki-client