$ rpki-client -vvf rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft File: TbOy41mbZG6fMK90pYxmePrx0rc.mft (raw, json) Hash identifier: EAJVcb1BNYVwfE9jRt42UY8XRbwiLEloDY9UYOxK7fM= Subject key identifier: 7C:93:6B:DE:8E:03:D4:49:95:B1:AA:90:87:13:3D:EA:56:0F:67:B2 Authority key identifier: 4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 Certificate issuer: /CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft Manifest number: D8 Signing time: Sat 19 Jul 2025 05:47:26 +0000 Manifest this update: Sat 19 Jul 2025 05:47:25 +0000 Manifest next update: Sat 26 Jul 2025 05:47:25 +0000 Files and hashes: 1: TbOy41mbZG6fMK90pYxmePrx0rc.crl (hash: jOuYmwuMebOhJSwmehf+Wth5pdcohadsTZEFOk+rRA0=) 2: 206DB948214F11EFAB245D49C4F9AE02.roa (hash: Eb8AfFxkY2lunIzmPfp9ZyHAYk+RBb0a8BG4v3YCxDc=) 3: F2A90F6A86AE11EF999DAD2FC4F9AE02.roa (hash: Bg47WQyQqPO6vhS9f39oGO32kv0x8D/332r6YxTMVPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:47:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91698EC, serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Validity Not Before: Jul 19 05:47:25 2025 GMT Not After : Jul 26 05:47:25 2025 GMT Subject: CN=687b316e-43a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4d:9e:e6:c7:df:0c:ee:1f:d7:fd:ac:70:c0: cc:e9:24:f7:e1:d0:b9:15:15:43:21:cf:b8:26:da: 49:6e:65:0d:e7:87:50:0f:c3:ce:3d:d6:50:eb:1a: c0:60:be:58:94:4f:36:47:45:40:65:c6:18:09:ec: df:72:7b:20:43:7f:b7:b6:6b:70:22:b7:11:8b:43: c7:3e:ca:ea:81:b0:91:31:27:16:32:83:ab:28:da: 39:66:78:91:4f:1e:b2:15:33:73:d1:a1:11:4c:2c: 89:56:35:65:2e:13:d5:11:93:42:a3:e7:4f:55:f1: 73:d0:a6:95:52:19:f8:4a:73:ff:3d:65:39:db:3a: fa:41:03:6d:2b:c2:1e:70:b6:c1:69:3d:7d:a1:4b: 9f:c9:08:7f:7d:7b:97:fe:be:69:1c:38:83:5d:0f: c1:4f:4a:96:71:21:6b:77:02:f6:61:b4:f0:83:90: b7:d6:44:4e:39:14:ad:0c:36:0f:83:1b:62:79:f2: a0:0f:f0:90:b1:d3:03:d2:d9:a6:14:14:29:f1:02: 2d:38:7c:58:6c:78:99:96:4d:19:b4:b9:5d:1e:e5: b8:84:0d:fd:9d:39:1d:ba:90:8a:6f:e7:d4:b9:74: b5:c0:ff:07:2a:7a:59:0b:62:2f:c0:5d:8d:a3:b3: f0:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:93:6B:DE:8E:03:D4:49:95:B1:AA:90:87:13:3D:EA:56:0F:67:B2 X509v3 Authority Key Identifier: keyid:4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:b5:88:8f:69:2e:29:7d:b6:34:4f:42:7f:e4:4c:1f:69:95: 32:d6:45:40:2d:ba:eb:f5:dd:ec:91:3b:0f:62:0c:f9:9f:40: 2c:34:d4:ef:de:ce:60:3e:e5:8b:b2:b1:8a:d7:9a:61:ba:86: 1a:71:5d:70:e2:70:f4:58:8d:d3:0e:c0:9b:f1:43:10:c1:d1: 9a:90:d9:40:4e:29:21:eb:2f:27:4e:79:4c:f6:d4:6c:3c:60: a7:c3:26:d6:79:73:53:1d:fb:68:85:e9:00:4f:54:2c:46:1b: 58:50:05:1a:48:2e:58:60:63:1e:55:64:e7:65:fc:85:16:38: d5:75:a6:01:cc:25:86:80:04:fb:7f:78:ce:2d:d8:fd:96:5b: 87:b1:b3:e9:25:61:49:32:06:48:77:1d:ef:01:75:9c:17:23: 30:a4:fe:3f:9b:71:81:5e:35:da:de:ef:97:98:0e:03:f9:b8: 72:9b:1c:b8:d8:e2:f6:d1:65:ad:90:ad:ee:3b:ad:87:7e:37: f1:32:5f:51:3e:95:8c:b5:2a:df:39:94:7f:44:1d:ab:cd:87: ba:4d:54:6d:50:92:d6:87:8b:15:88:a9:0b:87:cf:e3:b6:7e: 70:06:2f:69:6b:e1:26:fe:69:94:a1:65:53:6f:da:32:3a:f8: b8:68:fb:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk4RUMxMTAvBgNVBAUTKDREQjNCMkUzNTk5QjY0NkU5RjMwQUY3NEE1OEM2Njc4 RkFGMUQyQjcwHhcNMjUwNzE5MDU0NzI1WhcNMjUwNzI2MDU0NzI1WjAYMRYwFAYD VQQDEw02ODdiMzE2ZS00M2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvk2e5sffDO4f1/2scMDM6ST34dC5FRVDIc+4JtpJbmUN54dQD8POPdZQ6xrA YL5YlE82R0VAZcYYCezfcnsgQ3+3tmtwIrcRi0PHPsrqgbCRMScWMoOrKNo5ZniR Tx6yFTNz0aERTCyJVjVlLhPVEZNCo+dPVfFz0KaVUhn4SnP/PWU52zr6QQNtK8Ie cLbBaT19oUufyQh/fXuX/r5pHDiDXQ/BT0qWcSFrdwL2YbTwg5C31kROORStDDYP gxtiefKgD/CQsdMD0tmmFBQp8QItOHxYbHiZlk0ZtLldHuW4hA39nTkdupCKb+fU uXS1wP8HKnpZC2IvwF2No7PwUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHyTa96O A9RJlbGqkIcTPepWD2eyMB8GA1UdIwQYMBaAFE2zsuNZm2RunzCvdKWMZnj68dK3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OThFQy8zQThGODQxMDIx NDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpHNmZNSzkwcFl4bWVQcngw cmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RiT3k0MW1iWkc2Zk1LOTBwWXhtZVByeDByYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OThFQy8zQThGODQxMDIxNDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpH NmZNSzkwcFl4bWVQcngwcmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmtYiPaS4pfbY0T0J/5EwfaZUy1kVALbrr9d3skTsPYgz5n0AsNNTv 3s5gPuWLsrGK15phuoYacV1w4nD0WI3TDsCb8UMQwdGakNlATikh6y8nTnlM9tRs PGCnwybWeXNTHftohekAT1QsRhtYUAUaSC5YYGMeVWTnZfyFFjjVdaYBzCWGgAT7 f3jOLdj9lluHsbPpJWFJMgZIdx3vAXWcFyMwpP4/m3GBXjXa3u+XmA4D+bhymxy4 2OL20WWtkK3uO62HfjfxMl9RPpWMtSrfOZR/RB2rzYe6TVRtUJLWh4sViKkLh8/j tn5wBi9pa+Em/mmUoWVTb9oyOvi4aPum -----END CERTIFICATE-----Generated at Sun Jul 20 22:03:58 2025 by rpki-client