$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft File: TT_EcGT06hvcqym55lsx103iZOA.mft (raw, json) Hash identifier: bIHClDDNQPW4rcdwujA3dF8ILTgY4Gt25GO8jtMDF2U= Subject key identifier: B1:D2:88:58:30:6B:23:DC:FD:3C:ED:AC:B5:78:4F:19:69:78:57:B0 Authority key identifier: 4D:3F:C4:70:64:F4:EA:1B:DC:AB:29:B9:E6:5B:31:D7:4D:E2:64:E0 Certificate issuer: /CN=A91AFAAC/serialNumber=4D3FC47064F4EA1BDCAB29B9E65B31D74DE264E0 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft Manifest number: 1F Signing time: Sat 19 Jul 2025 08:08:22 +0000 Manifest this update: Sat 19 Jul 2025 08:08:22 +0000 Manifest next update: Sat 26 Jul 2025 08:08:22 +0000 Files and hashes: 1: TT_EcGT06hvcqym55lsx103iZOA.crl (hash: NfpaCkTQ9VdeQIB6v5WuKgSHjZAUf8ZofNPxWoQdwwg=) 2: 40F5D9E6354B11F0A873F14DC4F9AE02.roa (hash: Cosb+eMZxQ3sCZz6h4y2hYsraDJKDCIgjZyVYBFmpVk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.crl rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:08:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFAAC, serialNumber=4D3FC47064F4EA1BDCAB29B9E65B31D74DE264E0 Validity Not Before: Jul 19 08:08:22 2025 GMT Not After : Jul 26 08:08:22 2025 GMT Subject: CN=687b5276-5716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:be:de:4a:10:fd:98:e7:71:97:d0:74:5a:80: 4c:67:2a:d2:2b:d2:ca:13:e0:d2:39:97:fd:6c:3d: 02:9f:9c:5a:5c:0c:a6:5a:22:2c:5a:54:7b:5f:c5: 74:6c:2e:0c:74:f9:42:03:f5:0b:4d:f2:4a:d0:a2: 3c:28:f4:e9:7b:bf:34:e8:0f:28:d4:57:6f:2a:35: 29:ed:df:2a:49:99:21:46:b7:4f:54:b0:05:74:5b: bc:ec:37:d7:ae:a4:6e:8a:16:03:3a:1d:ec:fd:9f: 93:64:c2:5d:55:3f:3a:a7:98:4a:80:75:9b:b4:7a: 84:b5:98:0b:40:8e:9e:72:38:f0:15:de:17:90:6f: 1a:cc:0f:54:c7:1e:c4:01:80:92:6e:ea:13:ad:87: ce:2c:16:b0:b3:7f:6a:a4:04:96:f6:d4:f4:67:30: 29:8e:b8:0b:cc:cf:e7:3b:8f:d8:49:6a:ed:69:d2: f3:a6:0b:e9:7d:75:35:a0:b6:80:18:16:03:72:34: 11:3b:f3:28:4f:87:03:b5:21:7d:70:38:8d:45:00: a9:f5:cd:e4:3d:03:66:ac:aa:66:a1:bf:34:48:65: 8f:97:83:f8:d1:12:70:72:e7:b6:f3:37:b9:88:96: f5:c2:17:43:f1:fc:a0:80:96:2b:3a:96:96:3f:38: 32:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:D2:88:58:30:6B:23:DC:FD:3C:ED:AC:B5:78:4F:19:69:78:57:B0 X509v3 Authority Key Identifier: keyid:4D:3F:C4:70:64:F4:EA:1B:DC:AB:29:B9:E6:5B:31:D7:4D:E2:64:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:9b:ea:7c:0a:60:6a:d4:c9:b9:7d:48:cb:5e:30:cd:68:d2: 8c:98:ad:62:b8:5e:7a:a2:5c:fc:9b:47:04:ce:2c:7d:87:49: 66:df:b4:3c:36:4e:b4:0e:99:ba:8a:51:e2:05:ca:69:e8:e2: 8d:65:e0:b9:a0:fd:e8:a9:88:2d:28:55:37:97:4b:1a:23:f9: 16:66:3d:ee:25:81:d7:c5:37:55:55:e2:b0:eb:8e:9f:df:9b: 82:51:29:82:98:1d:04:f4:46:34:ae:5e:80:ba:f3:67:5e:c5: ec:f4:67:9e:87:4e:6a:5d:0b:19:71:ef:49:3c:e3:5d:85:bd: df:d0:6a:aa:c9:10:a3:29:8b:4e:5e:2e:af:ab:74:0f:5a:4e: c9:db:85:95:45:59:ec:81:84:3c:de:21:db:91:b5:c9:12:01: ad:3c:1f:54:f6:63:09:34:2d:e6:5c:31:93:2c:42:ba:21:7a: e7:c7:8b:17:a5:f3:5c:b3:07:ff:e3:ec:48:60:2f:7a:60:5d: 88:b0:cb:9f:5e:fe:2d:d7:af:e6:c7:74:cb:e4:cf:89:67:d3: f7:a0:15:66:07:8e:fc:7a:97:35:75:33:63:2c:f0:ad:d9:df: 2a:b0:a2:be:9a:8c:fa:97:18:96:2f:51:63:75:8d:62:60:0e: 10:16:51:12 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RkFBQzExMC8GA1UEBRMoNEQzRkM0NzA2NEY0RUExQkRDQUIyOUI5RTY1QjMxRDc0 REUyNjRFMDAeFw0yNTA3MTkwODA4MjJaFw0yNTA3MjYwODA4MjJaMBgxFjAUBgNV BAMTDTY4N2I1Mjc2LTU3MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmvt5KEP2Y53GX0HRagExnKtIr0soT4NI5l/1sPQKfnFpcDKZaIixaVHtfxXRs Lgx0+UID9QtN8krQojwo9Ol7vzToDyjUV28qNSnt3ypJmSFGt09UsAV0W7zsN9eu pG6KFgM6Hez9n5Nkwl1VPzqnmEqAdZu0eoS1mAtAjp5yOPAV3heQbxrMD1THHsQB gJJu6hOth84sFrCzf2qkBJb21PRnMCmOuAvMz+c7j9hJau1p0vOmC+l9dTWgtoAY FgNyNBE78yhPhwO1IX1wOI1FAKn1zeQ9A2asqmahvzRIZY+Xg/jREnBy57bzN7mI lvXCF0Px/KCAlis6lpY/ODLxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsdKIWDBr I9z9PO2stXhPGWl4V7AwHwYDVR0jBBgwFoAUTT/EcGT06hvcqym55lsx103iZOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGQUFDLzRBRjBDOTJBMzU0 QTExRjBCQTc2NkU0Q0M0RjlBRTAyL1RUX0VjR1QwNmh2Y3F5bTU1bHN4MTAzaVpP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVFRfRWNHVDA2aHZjcXltNTVsc3gxMDNpWk9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFG QUFDLzRBRjBDOTJBMzU0QTExRjBCQTc2NkU0Q0M0RjlBRTAyL1RUX0VjR1QwNmh2 Y3F5bTU1bHN4MTAzaVpPQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEeb6nwKYGrUybl9SMteMM1o0oyYrWK4XnqiXPybRwTOLH2HSWbftDw2 TrQOmbqKUeIFymno4o1l4Lmg/eipiC0oVTeXSxoj+RZmPe4lgdfFN1VV4rDrjp/f m4JRKYKYHQT0RjSuXoC682dexez0Z56HTmpdCxlx70k8412Fvd/QaqrJEKMpi05e Lq+rdA9aTsnbhZVFWeyBhDzeIduRtckSAa08H1T2Ywk0LeZcMZMsQroheufHixel 81yzB//j7EhgL3pgXYiwy59e/i3Xr+bHdMvkz4ln0/egFWYHjvx6lzV1M2Ms8K3Z 3yqwor6ajPqXGJYvUWN1jWJgDhAWURI= -----END CERTIFICATE-----Generated at Sun Jul 20 20:19:45 2025 by rpki-client