$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft File: TN7H1CHxboUWcqgSOd0Y_IweOVY.mft (raw, json) Hash identifier: I/Qyzx4YDbEsgRSxVe+IaEDNR2wjw48ErIsKfPaI5eQ= Subject key identifier: 77:79:25:9E:1C:F3:E4:00:E3:73:F2:F0:2E:3E:A1:88:DB:04:DB:C4 Authority key identifier: 4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 Certificate issuer: /CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Certificate serial: 04F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft Manifest number: 04EC Signing time: Wed 20 Aug 2025 23:49:03 +0000 Manifest this update: Wed 20 Aug 2025 23:49:02 +0000 Manifest next update: Wed 27 Aug 2025 23:49:02 +0000 Files and hashes: 1: TN7H1CHxboUWcqgSOd0Y_IweOVY.crl (hash: QVmcrYjzchgF7gpnEcySwrYrJe1zvN5ymgU/xXzQQfY=) 2: C54BA97E283311ECBE887F3BC4F9AE02.roa (hash: XOTWPX30EoXJqKV6109bwG+UksO95BBHigXDmFEItd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 23:49:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1264 (0x4f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0A62, serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Validity Not Before: Aug 20 23:49:02 2025 GMT Not After : Aug 27 23:49:02 2025 GMT Subject: CN=68a65eee-c77b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8f:7f:39:a9:1c:7d:a8:1b:fa:3e:10:18:96: a7:13:1e:40:1f:78:de:69:00:59:a7:82:09:e0:15: f7:bc:a9:46:02:82:c2:7c:a3:22:79:17:79:f6:0e: ef:ac:cc:f4:a6:bd:d8:31:6a:0b:4b:22:31:0c:a6: 61:ea:b0:44:a7:da:28:f2:f4:99:1a:14:b2:98:52: dc:b1:02:78:42:84:bc:f4:a3:3d:39:c4:da:57:53: 6b:c3:a4:28:ae:54:ed:d3:d2:4f:8d:c6:2b:c1:cf: b2:7d:06:1e:da:74:b1:5c:7f:f5:bc:25:94:1e:b6: c4:63:ce:73:02:4f:86:71:89:d6:14:c0:51:dc:27: 18:0b:87:84:a6:2c:6e:c3:49:de:27:46:b9:12:57: 4b:0b:f2:3c:e2:7a:51:d9:79:08:05:90:af:5e:66: e4:87:a3:ea:d5:4f:26:5a:dd:06:2c:7e:28:4c:06: ee:08:0a:52:6d:52:cd:29:93:58:00:c8:88:db:13: 9f:5c:63:49:44:80:5e:d3:10:0a:c3:90:9e:1b:04: b6:86:33:9d:20:0d:ac:0a:6d:76:da:98:22:69:24: a8:98:1c:b6:ae:1a:3b:de:00:a8:cc:a0:34:d2:6b: d4:2c:64:34:cf:8c:0a:4f:6c:b7:c4:a4:8c:1d:28: 64:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:79:25:9E:1C:F3:E4:00:E3:73:F2:F0:2E:3E:A1:88:DB:04:DB:C4 X509v3 Authority Key Identifier: keyid:4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:af:3f:97:3d:01:6f:25:7e:d0:8e:c2:c1:80:e8:58:01:57: 86:40:ff:7d:f5:25:cb:b9:fb:24:c0:60:1e:b9:1b:f9:27:8f: 7b:ce:f2:53:63:56:41:d7:7d:f0:c1:ca:d4:35:84:f9:0e:6d: 66:ca:53:26:59:ce:01:90:28:f5:37:0f:a8:9c:ce:b7:83:bc: 80:38:c8:bf:db:93:91:83:a9:2a:56:c0:14:b5:6e:c4:15:5e: da:01:a0:2f:f4:6c:2d:eb:40:2c:ea:b1:71:02:3d:4f:fb:80: dd:0a:01:44:b5:1f:d3:7b:86:0f:93:bb:5c:18:83:4a:7e:17: 74:c1:33:40:0b:d7:57:0e:9d:3f:d7:c9:92:9f:8a:84:ca:e2: 39:8d:e5:71:f0:ff:9f:13:2f:06:ce:9d:2f:1c:92:0f:a6:90: 95:db:b8:a5:2f:cf:34:6e:14:f8:a7:9e:47:88:1c:0b:9f:b0: 0b:a7:ed:81:99:c5:7d:a4:b0:b5:c7:35:98:d3:38:31:bf:a6: ad:76:fd:4b:0a:5e:24:9a:b4:f9:fc:ca:36:c1:7b:29:85:92: ad:ab:cc:92:4e:0e:ba:79:b1:5d:09:84:b8:fd:e4:6b:b8:a4: 49:7a:d1:8b:da:60:ae:9b:82:c3:10:27:b9:e0:44:62:29:35: 64:e8:94:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBBNjIxMTAvBgNVBAUTKDRDREVDN0Q0MjFGMTZFODUxNjcyQTgxMjM5REQxOEZD OEMxRTM5NTYwHhcNMjUwODIwMjM0OTAyWhcNMjUwODI3MjM0OTAyWjAYMRYwFAYD VQQDEw02OGE2NWVlZS1jNzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw49/Oakcfagb+j4QGJanEx5AH3jeaQBZp4IJ4BX3vKlGAoLCfKMieRd59g7v rMz0pr3YMWoLSyIxDKZh6rBEp9oo8vSZGhSymFLcsQJ4QoS89KM9OcTaV1Nrw6Qo rlTt09JPjcYrwc+yfQYe2nSxXH/1vCWUHrbEY85zAk+GcYnWFMBR3CcYC4eEpixu w0neJ0a5EldLC/I84npR2XkIBZCvXmbkh6Pq1U8mWt0GLH4oTAbuCApSbVLNKZNY AMiI2xOfXGNJRIBe0xAKw5CeGwS2hjOdIA2sCm122pgiaSSomBy2rho73gCozKA0 0mvULGQ0z4wKT2y3xKSMHShkowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHd5JZ4c 8+QA43Py8C4+oYjbBNvEMB8GA1UdIwQYMBaAFEzex9Qh8W6FFnKoEjndGPyMHjlW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEE2Mi8xRkE5NkRBMDI4 MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJvVVdjcWdTT2QwWV9Jd2VP VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RON0gxQ0h4Ym9VV2NxZ1NPZDBZX0l3ZU9WWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEE2Mi8xRkE5NkRBMDI4MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJv VVdjcWdTT2QwWV9Jd2VPVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMrz+XPQFvJX7QjsLBgOhYAVeGQP999SXLufskwGAeuRv5J497zvJT Y1ZB133wwcrUNYT5Dm1mylMmWc4BkCj1Nw+onM63g7yAOMi/25ORg6kqVsAUtW7E FV7aAaAv9Gwt60As6rFxAj1P+4DdCgFEtR/Te4YPk7tcGINKfhd0wTNAC9dXDp0/ 18mSn4qEyuI5jeVx8P+fEy8Gzp0vHJIPppCV27ilL880bhT4p55HiBwLn7ALp+2B mcV9pLC1xzWY0zgxv6atdv1LCl4kmrT5/Mo2wXsphZKtq8ySTg66ebFdCYS4/eRr uKRJetGL2mCum4LDECe54ERiKTVk6JRs -----END CERTIFICATE-----Generated at Fri Aug 22 16:34:01 2025 by rpki-client