$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft File: TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft (raw, json) Hash identifier: bRAWQFVuoNtlJosClMFmgQjUqqNol6dDfGatLvEFPM8= Subject key identifier: 86:9D:6A:5F:2F:44:7F:6F:EF:2B:0B:C4:51:41:B4:BB:C6:58:60:BD Authority key identifier: 4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D Certificate issuer: /CN=A91C31B7/serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft Manifest number: D6 Signing time: Sat 19 Jul 2025 05:47:00 +0000 Manifest this update: Sat 19 Jul 2025 05:46:59 +0000 Manifest next update: Sat 26 Jul 2025 05:46:59 +0000 Files and hashes: 1: TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl (hash: CYyPLDPrTgYMSuTtmYjznVms2JqG54KVAuOVy6JogoA=) 2: 1FC3B0DE1E6F11EFB392D937C4F9AE02.roa (hash: ymGuQNubHZmih1/MlsNM4UjPPYjnvk5QIBxrno55/zE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31B7, serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Validity Not Before: Jul 19 05:46:59 2025 GMT Not After : Jul 26 05:46:59 2025 GMT Subject: CN=687b3154-c2d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a1:04:e0:ac:a8:c3:c3:96:d0:c2:04:a7:a4: c7:b4:49:55:4c:03:08:8a:90:f2:d7:ef:26:8a:92: 2f:18:b8:f7:11:14:86:9c:60:8c:f2:1e:f9:9b:89: e7:9d:7b:90:1d:34:52:b7:c9:69:00:c0:a7:0d:3a: 31:57:2c:31:4f:22:7d:0a:ad:71:b7:71:05:41:3f: 82:ab:fb:fe:b6:d8:00:5b:a6:4c:ca:aa:34:df:ba: 85:17:2e:13:a4:1a:ac:1e:0a:16:b1:03:dc:8b:54: a8:0f:5f:f0:7d:80:2f:2c:aa:e3:c2:ec:f2:34:b4: 2a:20:29:16:9d:c0:34:14:34:55:a3:00:17:5b:e8: 00:18:fe:af:83:16:53:fb:ee:cb:9f:10:ff:70:1d: da:c7:0f:02:ae:08:63:e1:98:2e:e3:c0:94:bf:34: 98:e9:ba:68:af:9e:73:52:42:d1:00:d0:87:16:1c: 36:78:52:ac:ba:fe:eb:a3:d6:d4:4b:11:bb:e2:b3: 83:8e:87:2f:a0:e9:0c:72:33:c8:08:e1:67:a3:90: 4e:a2:c0:e6:d3:c1:d5:88:b0:12:5c:96:ed:83:fc: f5:2a:23:88:9e:b8:0d:f7:06:51:be:e3:d6:cf:0a: 72:82:7a:f2:ee:cf:d7:5f:ab:eb:1d:97:4f:4d:67: 29:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:9D:6A:5F:2F:44:7F:6F:EF:2B:0B:C4:51:41:B4:BB:C6:58:60:BD X509v3 Authority Key Identifier: keyid:4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:a9:20:e9:e8:9a:c6:40:ac:dc:2d:1a:86:50:89:20:11:28: 7c:4f:3c:bc:07:58:02:a9:d4:22:c3:73:61:bb:f2:99:32:b8: a0:0e:fa:77:1b:71:6e:19:5c:26:7f:9f:a9:37:22:ad:5f:6a: e3:92:02:68:2c:6e:b9:d7:ee:77:28:5b:51:b6:0d:c3:29:f6: fe:bd:7f:76:1d:b3:41:86:82:60:6b:72:1a:91:4a:4d:b4:76: 3a:85:b7:cb:4a:f4:cd:2a:65:47:f7:86:c2:ad:a4:4e:c5:ff: 4e:27:a1:fb:3e:bd:1f:44:a6:b0:48:b5:4c:35:0f:cc:bb:04: 5a:cc:2f:4c:74:68:21:16:13:75:d4:32:c9:88:d5:16:03:14: 08:6f:14:7b:e8:5e:63:68:2e:08:fc:90:7d:17:a6:2a:11:e2: ea:1d:16:1d:2e:ef:f2:47:5b:88:cf:41:d9:9f:06:89:be:05: 1a:75:b7:fb:ae:18:8b:6f:9e:b1:a6:95:4c:db:c7:4c:53:ce: 07:b7:21:83:27:04:d4:5e:61:00:5c:90:9d:6d:d2:30:f6:ea: 7f:96:f8:6b:d9:9d:93:76:a2:35:30:3b:c8:34:f6:fe:33:4b: 92:10:a0:42:38:25:1e:8e:ae:ef:bb:44:c8:c2:3c:ad:2a:b3: 16:e0:00:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQjcxMTAvBgNVBAUTKDRDMzM5Q0FCRkM4MEE1RjQxOURGMzNERkIwNjg4NUMx QzM0ODhCMkQwHhcNMjUwNzE5MDU0NjU5WhcNMjUwNzI2MDU0NjU5WjAYMRYwFAYD VQQDEw02ODdiMzE1NC1jMmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaEE4Kyow8OW0MIEp6THtElVTAMIipDy1+8mipIvGLj3ERSGnGCM8h75m4nn nXuQHTRSt8lpAMCnDToxVywxTyJ9Cq1xt3EFQT+Cq/v+ttgAW6ZMyqo037qFFy4T pBqsHgoWsQPci1SoD1/wfYAvLKrjwuzyNLQqICkWncA0FDRVowAXW+gAGP6vgxZT ++7LnxD/cB3axw8Crghj4Zgu48CUvzSY6bpor55zUkLRANCHFhw2eFKsuv7ro9bU SxG74rODjocvoOkMcjPICOFno5BOosDm08HViLASXJbtg/z1KiOInrgN9wZRvuPW zwpygnry7s/XX6vrHZdPTWcpoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIadal8v RH9v7ysLxFFBtLvGWGC9MB8GA1UdIwQYMBaAFEwznKv8gKX0Gd8z37BohcHDSIst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFCNy9GMkE1NzMyRTFF NkIxMUVGQUMwRTkxNEVDNEY5QUUwMi9URE9jcV95QXBmUVozelBmc0dpRndjTklp eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RET2NxX3lBcGZRWjN6UGZzR2lGd2NOSWl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzFCNy9GMkE1NzMyRTFFNkIxMUVGQUMwRTkxNEVDNEY5QUUwMi9URE9jcV95QXBm UVozelBmc0dpRndjTklpeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMqSDp6JrGQKzcLRqGUIkgESh8Tzy8B1gCqdQiw3Nhu/KZMrigDvp3 G3FuGVwmf5+pNyKtX2rjkgJoLG651+53KFtRtg3DKfb+vX92HbNBhoJga3IakUpN tHY6hbfLSvTNKmVH94bCraROxf9OJ6H7Pr0fRKawSLVMNQ/MuwRazC9MdGghFhN1 1DLJiNUWAxQIbxR76F5jaC4I/JB9F6YqEeLqHRYdLu/yR1uIz0HZnwaJvgUadbf7 rhiLb56xppVM28dMU84HtyGDJwTUXmEAXJCdbdIw9up/lvhr2Z2TdqI1MDvINPb+ M0uSEKBCOCUejq7vu0TIwjytKrMW4AC1 -----END CERTIFICATE-----Generated at Mon Jul 21 02:07:47 2025 by rpki-client