$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: kbbdcJNsqcEB/2T9UX5FVDbm3oLfBaXgE2Y/hslWsjQ= Subject key identifier: FA:9D:60:61:BA:95:4F:67:DA:3A:44:EB:CE:15:65:18:ED:EB:A3:F7 Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: 26 Signing time: Sat 19 Jul 2025 08:02:06 +0000 Manifest this update: Sat 19 Jul 2025 08:02:05 +0000 Manifest next update: Sat 26 Jul 2025 08:02:05 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: N/d0FaK6MKx1SCIJ4wajUJ7YfM3bEnzxMaUsq7S1ZgU=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: R5e5Pbe0gCRILBx2wr55E5wPwG2ILhIOGtJI6e+r29g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Jul 19 08:02:05 2025 GMT Not After : Jul 26 08:02:05 2025 GMT Subject: CN=687b50fd-632b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:22:99:53:82:77:48:1f:0b:de:61:87:49:4d: 4f:cb:43:83:03:51:d5:b2:7e:87:80:58:04:18:83: 28:8c:39:11:f5:1a:94:d3:2a:f4:07:16:c6:3c:4d: 59:46:ba:a6:85:9d:c4:e3:d7:76:c5:07:94:15:3a: 9f:46:2c:85:56:c3:d6:ed:ce:b5:21:fd:39:46:fb: 12:de:00:80:13:56:c8:d2:79:c2:9c:f7:e9:27:2d: 11:c6:4f:08:f4:4d:43:62:0f:8e:65:e1:a4:3e:66: 1c:30:02:9b:6a:f6:e4:89:4c:41:d1:80:8a:dc:10: bb:4a:a6:5f:3b:34:26:3d:25:fb:4a:49:87:2a:4c: bc:68:a4:3a:88:d7:3e:aa:5e:9a:9a:02:03:84:6f: 05:51:69:9f:92:36:82:bd:e7:15:23:c3:4d:46:95: b9:eb:a6:28:9d:7d:74:3f:6b:22:fe:a6:e6:72:18: c8:e0:78:af:2d:8e:35:27:4c:92:2b:e3:8f:ad:9a: 9d:1d:6d:66:e3:01:91:c5:0d:6f:25:b8:5d:86:11: b3:93:31:23:ec:de:98:eb:68:9b:e8:f8:07:81:4a: 40:74:ee:89:6b:cf:e3:7f:88:42:2a:8b:03:55:e9: 53:c9:4f:05:38:ac:ca:6b:41:17:13:02:c3:af:7f: 92:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:9D:60:61:BA:95:4F:67:DA:3A:44:EB:CE:15:65:18:ED:EB:A3:F7 X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:6d:33:e6:eb:76:bb:5c:9f:18:6a:05:56:c7:d8:d9:1c:c2: 0f:0d:3f:ce:7d:c7:89:95:51:23:7b:9a:d3:71:4d:71:6f:70: f7:27:7c:4b:21:13:a4:68:f5:4a:b1:6b:12:62:93:f5:1b:3a: 53:81:2c:8e:ec:69:de:69:3c:d4:fe:81:4d:3e:bb:3a:66:0a: 02:34:8d:9e:25:f8:e7:77:cd:f8:54:22:7b:df:3d:08:43:fd: 11:f0:38:6c:7e:22:e6:60:0f:eb:8c:a8:1e:d9:1c:c2:98:0a: a6:84:67:2a:5e:8b:8f:00:47:a2:08:0b:e9:9c:ef:da:3b:41: 1b:ca:fc:a6:e7:2d:4c:5a:1e:90:e5:d8:12:f0:6b:a9:56:ec: 96:a1:26:0d:c0:db:e9:91:24:3c:31:f6:e8:ab:3c:cc:ed:52: 45:90:23:a7:ea:7a:ea:5c:90:d7:41:7b:d4:c8:45:0c:e7:b3: c8:fc:b5:2b:2a:4f:7d:98:cc:39:8c:17:6d:cc:39:9d:06:54: 57:7e:b0:c0:68:54:30:cc:f5:e9:c0:2a:ad:ff:9b:57:bc:56: bb:79:72:72:9b:fb:ef:6e:f6:a3:a4:e1:f6:f5:db:8b:1b:f6: 52:c2:f4:fc:89:70:15:7d:25:86:aa:11:06:50:94:db:69:07: 33:57:3b:b4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0RDQjExMC8GA1UEBRMoQjU0RjhBRDFDRUNBQzEzNkZDQUY0NzkyRUJGRDAwRTY4 RUExRDM2ODAeFw0yNTA3MTkwODAyMDVaFw0yNTA3MjYwODAyMDVaMBgxFjAUBgNV BAMTDTY4N2I1MGZkLTYzMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgIplTgndIHwveYYdJTU/LQ4MDUdWyfoeAWAQYgyiMORH1GpTTKvQHFsY8TVlG uqaFncTj13bFB5QVOp9GLIVWw9btzrUh/TlG+xLeAIATVsjSecKc9+knLRHGTwj0 TUNiD45l4aQ+ZhwwAptq9uSJTEHRgIrcELtKpl87NCY9JftKSYcqTLxopDqI1z6q XpqaAgOEbwVRaZ+SNoK95xUjw01GlbnrpiidfXQ/ayL+puZyGMjgeK8tjjUnTJIr 44+tmp0dbWbjAZHFDW8luF2GEbOTMSPs3pjraJvo+AeBSkB07olrz+N/iEIqiwNV 6VPJTwU4rMprQRcTAsOvf5IZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+p1gYbqV T2faOkTrzhVlGO3ro/cwHwYDVR0jBBgwFoAUtU+K0c7KwTb8r0eS6/0A5o6h02gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3RENCL0Y4M0FDNDk0Mjk0 NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdFUtSzBjN0t3VGI4cjBlUzZfMEE1bzZoMDJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 RENCL0Y4M0FDNDk0Mjk0NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1Ri OHIwZVM2XzBBNW82aDAyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACBtM+brdrtcnxhqBVbH2Nkcwg8NP859x4mVUSN7mtNxTXFvcPcnfEsh E6Ro9UqxaxJik/UbOlOBLI7sad5pPNT+gU0+uzpmCgI0jZ4l+Od3zfhUInvfPQhD /RHwOGx+IuZgD+uMqB7ZHMKYCqaEZypei48AR6IIC+mc79o7QRvK/KbnLUxaHpDl 2BLwa6lW7JahJg3A2+mRJDwx9uirPMztUkWQI6fqeupckNdBe9TIRQzns8j8tSsq T32YzDmMF23MOZ0GVFd+sMBoVDDM9enAKq3/m1e8Vrt5cnKb++9u9qOk4fb124sb 9lLC9PyJcBV9JYaqEQZQlNtpBzNXO7Q= -----END CERTIFICATE-----Generated at Sun Jul 20 18:44:18 2025 by rpki-client