$ rpki-client -vvf rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft File: TbOy41mbZG6fMK90pYxmePrx0rc.mft (raw, json) Hash identifier: FJyeTqOGWOGxQArWcD7LCYibzXX1B8+aXZjGBUvrfaE= Subject key identifier: 48:A7:62:13:E7:94:08:4E:1F:50:20:F4:66:FA:4A:C4:5C:0F:DC:DD Authority key identifier: 4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 Certificate issuer: /CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft Manifest number: BF Signing time: Tue 03 Jun 2025 05:38:15 +0000 Manifest this update: Tue 03 Jun 2025 05:38:15 +0000 Manifest next update: Tue 10 Jun 2025 05:38:15 +0000 Files and hashes: 1: TbOy41mbZG6fMK90pYxmePrx0rc.crl (hash: BOyDoc2ieH8amQcGli43/qznCt3vCOtbhtMA9qkH/Ok=) 2: 206DB948214F11EFAB245D49C4F9AE02.roa (hash: gxFq4TGudmApxCmCB48V39AuCdBYRdeV/qO3X4yaetA=) 3: F2A90F6A86AE11EF999DAD2FC4F9AE02.roa (hash: ophTAyTavYYvv+S2dKtdeyoYjEN6drMlrbOrhmzxr1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91698EC, serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Validity Not Before: Jun 3 05:38:15 2025 GMT Not After : Jun 10 05:38:15 2025 GMT Subject: CN=683e8a47-efcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:17:a4:83:12:3b:79:2e:e5:ed:1c:fb:2b:db: 10:0f:1b:54:8e:3a:e6:4a:28:ce:4a:da:54:dd:6a: 19:06:69:82:fe:80:9b:c7:06:8b:fa:5d:07:4f:24: 9c:b7:37:e9:12:0b:bd:17:3e:40:53:76:93:61:29: 77:de:91:6e:40:1e:49:7a:03:1d:74:19:7f:10:07: 67:9d:b8:80:02:75:3c:90:93:76:5f:99:a7:70:ec: e2:0b:32:c9:72:5b:a3:b5:dd:c1:54:d5:7b:ed:cb: a1:7b:e0:79:66:f5:1b:e5:02:6b:c6:b2:32:8b:f4: d2:57:6e:e0:1f:ab:01:c3:6a:8f:0a:56:89:66:f3: 79:69:5b:75:aa:c9:32:08:eb:78:6a:8e:b1:6c:ba: 2f:c1:55:74:6b:85:c1:32:8b:9d:10:7d:f5:91:05: 81:5f:91:57:b6:7f:17:ea:19:c0:7e:a8:93:70:23: 85:ad:26:8d:5c:c4:a7:2b:39:5a:d9:32:66:eb:0f: 37:12:9d:0b:6e:35:bb:75:b8:e8:c6:96:b1:46:c0: 33:7c:b1:7c:40:f5:16:5c:68:cc:7e:f6:58:80:47: 4c:05:10:67:4e:24:34:6d:c4:33:67:e4:27:04:29: 03:28:3a:b9:1c:60:2c:d9:0d:62:88:87:fe:cc:63: 73:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:A7:62:13:E7:94:08:4E:1F:50:20:F4:66:FA:4A:C4:5C:0F:DC:DD X509v3 Authority Key Identifier: keyid:4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:60:35:21:4b:93:59:cd:be:2e:b3:b9:c0:3f:f9:84:5a:58: 89:ae:7c:63:16:04:5f:5d:f6:7f:6a:a9:be:43:c2:c8:e9:07: b0:68:4d:4d:12:a9:c0:ef:40:e7:c9:9a:4b:dd:ac:07:48:84: 50:f3:d0:dc:b3:76:df:f6:ae:28:cb:cc:d2:ff:be:92:16:1a: e3:ab:bc:b4:5e:73:bd:5c:6e:21:90:57:d2:a6:97:b2:a6:2d: d6:11:88:3d:db:ec:8e:d5:09:2c:bd:77:e9:c0:7a:f7:81:8e: b3:e4:c8:10:de:1b:4a:7b:bc:f0:1f:23:20:ca:0a:c6:2a:21: a2:b2:c0:19:f9:d0:60:19:a5:6e:8f:78:2f:6d:a0:8b:2e:b7: 43:25:72:84:2a:8c:f9:0b:c7:5a:81:50:01:30:fd:79:e8:00: 34:2e:23:72:62:73:9e:52:94:f8:9f:be:1d:40:8f:e0:62:79: d5:a7:e6:e8:65:0a:d3:3c:94:b5:01:2c:91:06:93:39:a9:b4: d8:c8:2a:93:bb:b9:f0:8d:a3:47:4d:f8:f0:d0:10:da:95:78: e6:fc:66:bc:94:c7:89:13:a4:e9:48:8b:87:a7:39:f7:b2:5b: 8c:4b:b0:e0:b3:d2:93:e1:54:89:4b:35:69:49:bb:fe:79:ee: 02:1c:38:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk4RUMxMTAvBgNVBAUTKDREQjNCMkUzNTk5QjY0NkU5RjMwQUY3NEE1OEM2Njc4 RkFGMUQyQjcwHhcNMjUwNjAzMDUzODE1WhcNMjUwNjEwMDUzODE1WjAYMRYwFAYD VQQDEw02ODNlOGE0Ny1lZmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhekgxI7eS7l7Rz7K9sQDxtUjjrmSijOStpU3WoZBmmC/oCbxwaL+l0HTySc tzfpEgu9Fz5AU3aTYSl33pFuQB5JegMddBl/EAdnnbiAAnU8kJN2X5mncOziCzLJ clujtd3BVNV77cuhe+B5ZvUb5QJrxrIyi/TSV27gH6sBw2qPClaJZvN5aVt1qsky COt4ao6xbLovwVV0a4XBMoudEH31kQWBX5FXtn8X6hnAfqiTcCOFrSaNXMSnKzla 2TJm6w83Ep0LbjW7dbjoxpaxRsAzfLF8QPUWXGjMfvZYgEdMBRBnTiQ0bcQzZ+Qn BCkDKDq5HGAs2Q1iiIf+zGNzzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEinYhPn lAhOH1Ag9Gb6SsRcD9zdMB8GA1UdIwQYMBaAFE2zsuNZm2RunzCvdKWMZnj68dK3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OThFQy8zQThGODQxMDIx NDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpHNmZNSzkwcFl4bWVQcngw cmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RiT3k0MW1iWkc2Zk1LOTBwWXhtZVByeDByYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OThFQy8zQThGODQxMDIxNDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpH NmZNSzkwcFl4bWVQcngwcmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFYDUhS5NZzb4us7nAP/mEWliJrnxjFgRfXfZ/aqm+Q8LI6QewaE1N EqnA70DnyZpL3awHSIRQ89Dcs3bf9q4oy8zS/76SFhrjq7y0XnO9XG4hkFfSppey pi3WEYg92+yO1QksvXfpwHr3gY6z5MgQ3htKe7zwHyMgygrGKiGissAZ+dBgGaVu j3gvbaCLLrdDJXKEKoz5C8dagVABMP156AA0LiNyYnOeUpT4n74dQI/gYnnVp+bo ZQrTPJS1ASyRBpM5qbTYyCqTu7nwjaNHTfjw0BDalXjm/Ga8lMeJE6TpSIuHpzn3 sluMS7Dgs9KT4VSJSzVpSbv+ee4CHDiv -----END CERTIFICATE-----Generated at Tue Jun 3 23:41:44 2025 by rpki-client