$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: dpJdhW7YZSHXnmeVPfzBftUKztnZwvgRCyvQiORMWfk= Subject key identifier: C9:AC:77:06:E9:E1:E4:53:A0:3A:FB:68:47:0F:B2:C9:83:CB:DC:31 Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: 3F Signing time: Fri 05 Sep 2025 07:57:32 +0000 Manifest this update: Fri 05 Sep 2025 07:57:32 +0000 Manifest next update: Fri 12 Sep 2025 07:57:32 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: K0EePHNF4NsDq6dHTJekYyM/mK9bUH1scvD7PM+c3Gs=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: R5e5Pbe0gCRILBx2wr55E5wPwG2ILhIOGtJI6e+r29g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:57:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Sep 5 07:57:32 2025 GMT Not After : Sep 12 07:57:32 2025 GMT Subject: CN=68ba97ec-3470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a9:c6:7f:2b:f9:a2:ad:ca:6c:94:34:7b:c1: eb:a9:e4:db:f8:da:62:40:c0:1d:e3:c8:3c:fc:04: 12:8c:20:43:03:05:67:68:43:cb:cb:a4:50:49:94: c4:ff:22:74:5c:f4:03:fa:35:ed:32:95:1a:c5:eb: 60:95:17:ba:74:b4:e5:44:0a:c7:c6:79:36:b4:74: 35:d8:98:02:5d:3e:df:4e:c6:49:27:70:ff:d9:b1: aa:e5:fe:4c:5f:52:1e:13:3a:7a:15:00:17:0e:5a: c1:37:b9:95:fd:9c:26:c3:f9:a8:30:d2:a8:71:52: ae:f8:1c:13:e6:38:d8:be:a7:43:41:f2:80:35:e1: b3:74:07:c2:eb:77:9c:ad:8b:ef:c1:19:62:98:70: d8:57:c8:c1:4e:3b:68:2a:a1:92:f5:c5:41:1d:a1: be:2e:72:da:fe:89:bb:3d:72:b7:6e:56:cd:c2:5b: 32:98:14:22:31:28:58:be:03:68:aa:f1:70:a0:9b: 16:05:65:3d:68:b5:ee:ae:a2:ad:cc:70:f4:c2:4e: 3e:f3:f6:d1:e4:ba:38:70:64:a4:d8:cb:08:8a:2d: 3f:31:2c:7b:73:35:0c:37:8b:5c:0f:51:b1:66:b0: 14:f1:91:3e:b6:6f:d5:91:82:1b:c0:78:f1:93:a4: 03:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:AC:77:06:E9:E1:E4:53:A0:3A:FB:68:47:0F:B2:C9:83:CB:DC:31 X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:87:96:cb:d1:f8:2e:b7:75:a6:2a:4c:ae:37:89:7a:a3:e6: 48:0d:f3:cf:7c:89:0f:4a:d2:26:23:9d:20:7e:b5:1a:c9:00: 7a:ab:d5:b5:fe:5a:62:62:b5:be:4e:bd:af:26:99:04:96:d5: 0a:ce:45:c5:e2:d5:eb:d2:02:8a:62:e0:d3:ce:1c:06:7a:1e: a5:e0:0b:81:58:aa:8f:61:9e:21:6d:36:09:36:18:e5:24:66: 39:c9:50:65:9a:57:b2:0e:f3:87:8f:89:45:69:5b:02:61:6f: 16:44:12:e0:13:9d:be:9b:9d:7c:5e:ad:db:03:60:0d:11:d4: 99:c1:ab:26:00:0f:9b:19:39:03:4a:f0:44:15:bd:1b:7f:35: 7a:c0:ef:81:33:5e:ea:a6:3d:69:ec:b1:7c:76:2d:a9:bf:00: d5:25:75:81:89:cf:4e:60:a3:41:f8:5c:99:74:2b:e4:02:dc: 83:69:81:cb:28:f5:ff:2c:29:28:60:74:46:32:65:f4:59:08: 5f:9c:bf:ed:b5:8d:35:a5:dc:f6:b5:00:b9:14:8f:ba:37:19: 12:50:52:e7:8b:50:b9:6f:c9:b3:10:90:38:77:f5:59:b1:45: 3a:c6:4b:8e:04:6e:43:68:d8:4a:d8:7b:0e:b6:02:9f:02:34: d2:9e:98:a7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0RDQjExMC8GA1UEBRMoQjU0RjhBRDFDRUNBQzEzNkZDQUY0NzkyRUJGRDAwRTY4 RUExRDM2ODAeFw0yNTA5MDUwNzU3MzJaFw0yNTA5MTIwNzU3MzJaMBgxFjAUBgNV BAMTDTY4YmE5N2VjLTM0NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIqcZ/K/mircpslDR7weup5Nv42mJAwB3jyDz8BBKMIEMDBWdoQ8vLpFBJlMT/ InRc9AP6Ne0ylRrF62CVF7p0tOVECsfGeTa0dDXYmAJdPt9OxkkncP/Zsarl/kxf Uh4TOnoVABcOWsE3uZX9nCbD+agw0qhxUq74HBPmONi+p0NB8oA14bN0B8Lrd5yt i+/BGWKYcNhXyMFOO2gqoZL1xUEdob4uctr+ibs9crduVs3CWzKYFCIxKFi+A2iq 8XCgmxYFZT1ote6uoq3McPTCTj7z9tHkujhwZKTYywiKLT8xLHtzNQw3i1wPUbFm sBTxkT62b9WRghvAePGTpAPLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyax3Bunh 5FOgOvtoRw+yyYPL3DEwHwYDVR0jBBgwFoAUtU+K0c7KwTb8r0eS6/0A5o6h02gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3RENCL0Y4M0FDNDk0Mjk0 NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdFUtSzBjN0t3VGI4cjBlUzZfMEE1bzZoMDJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 RENCL0Y4M0FDNDk0Mjk0NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1Ri OHIwZVM2XzBBNW82aDAyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKGHlsvR+C63daYqTK43iXqj5kgN8898iQ9K0iYjnSB+tRrJAHqr1bX+ WmJitb5Ova8mmQSW1QrORcXi1evSAopi4NPOHAZ6HqXgC4FYqo9hniFtNgk2GOUk ZjnJUGWaV7IO84ePiUVpWwJhbxZEEuATnb6bnXxerdsDYA0R1JnBqyYAD5sZOQNK 8EQVvRt/NXrA74EzXuqmPWnssXx2Lam/ANUldYGJz05go0H4XJl0K+QC3INpgcso 9f8sKShgdEYyZfRZCF+cv+21jTWl3Pa1ALkUj7o3GRJQUueLULlvybMQkDh39Vmx RTrGS44EbkNo2ErYew62Ap8CNNKemKc= -----END CERTIFICATE-----Generated at Sat Sep 6 21:12:15 2025 by rpki-client