$ rpki-client -vvf rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft File: TUTi91KilQtrVSjAaZsUkOdXd0Q.mft (raw, json) Hash identifier: mp5VuF0rqNhXwxkj9gfA11zPqNaVrvekfXOB/S13WHk= Subject key identifier: 79:8E:2E:54:FA:CE:B2:CC:D9:91:F2:1E:EA:D3:17:C9:AE:74:3D:AD Authority key identifier: 4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 Certificate issuer: /CN=A91D15A4/serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Certificate serial: 0F47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft Manifest number: 0F3D Signing time: Wed 04 Jun 2025 17:36:02 +0000 Manifest this update: Wed 04 Jun 2025 17:36:01 +0000 Manifest next update: Wed 11 Jun 2025 17:36:01 +0000 Files and hashes: 1: TUTi91KilQtrVSjAaZsUkOdXd0Q.crl (hash: dzDcxLJVwrpEN63H8hJeac8EnuQggdPOMMZpZSMgnco=) 2: 3D371C5C708F11E9B105E92CC4F9AE02.roa (hash: YkmY4q4YSypbm13HUH++xACjilqSAUGjIIEq3zMyNH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 17:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3911 (0xf47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D15A4, serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Validity Not Before: Jun 4 17:36:01 2025 GMT Not After : Jun 11 17:36:01 2025 GMT Subject: CN=68408402-567e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:05:85:4e:52:87:4d:df:76:61:eb:38:cc:71: fb:00:53:63:4c:7b:33:02:fc:c4:bb:f9:c0:34:13: c2:b1:3f:ea:ec:98:6a:0d:60:39:90:77:ec:b4:dd: 72:5d:c5:b6:c5:21:73:95:3c:1a:e9:75:03:45:c0: 3e:2e:57:f1:90:22:d6:ff:80:24:3a:9f:c8:ff:24: 1d:f8:09:eb:26:86:35:7c:40:c9:6d:20:d9:07:38: 91:43:81:b3:86:82:00:2b:11:81:dc:98:34:99:7e: 08:29:07:66:41:2d:66:a5:2f:98:dd:1a:5e:43:f5: 67:bc:f8:4d:c9:5a:9c:ff:db:03:56:e1:24:c8:c9: 2b:ed:54:7e:c2:57:bb:c0:ae:d2:65:ed:e7:e3:98: 1e:cc:04:89:fe:a2:11:34:dc:ed:7a:06:92:a8:5f: 31:8d:ac:0c:c1:1e:b5:b3:82:8d:28:61:bc:dc:6e: 9d:f1:59:a5:82:08:cc:a0:d2:45:49:b2:46:eb:1a: 84:f6:7f:d2:d2:10:79:cc:79:8e:ee:d3:bd:72:74: b9:6a:30:97:e7:0a:9a:54:5b:ea:e3:d2:61:3e:99: f3:c2:c9:81:18:14:fd:72:2b:86:68:82:7e:32:88: 8c:e8:41:91:31:97:87:56:6f:35:01:80:d9:b5:68: ca:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:8E:2E:54:FA:CE:B2:CC:D9:91:F2:1E:EA:D3:17:C9:AE:74:3D:AD X509v3 Authority Key Identifier: keyid:4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:30:71:bf:43:90:d9:95:92:85:c9:dc:98:82:7d:26:2e:88: 71:b7:fa:62:a0:d4:e7:37:0e:d7:8a:bf:26:05:47:b3:76:5c: 0e:ff:ed:4d:f7:19:ac:fa:74:c6:e0:c6:11:ca:15:c7:9c:27: 9a:a7:e0:3a:a6:ee:0b:20:02:f3:b1:50:1c:d6:9a:0c:05:aa: f7:b2:28:cd:4e:02:b0:c8:1b:54:7e:51:69:65:56:54:a4:c6: 0f:4d:00:c2:e0:f6:9d:91:6c:fc:15:05:a3:1a:7f:96:57:e1: 11:c1:f1:2b:38:43:4f:47:f1:d3:17:fe:99:b5:eb:3b:3d:09: 41:e9:22:fc:0c:2a:da:ba:14:d0:52:e1:e5:be:58:29:06:7c: 69:c3:e3:24:76:21:37:9a:2c:eb:3e:37:62:35:0f:4b:3b:31: 3a:78:a6:a1:1c:9c:f9:3b:49:f6:dc:b7:72:ad:d2:96:95:5a: b2:24:71:bb:8a:90:1e:f0:5a:e8:0f:d5:9d:4c:b7:b3:64:7a: f6:c8:f8:6c:21:40:d3:11:20:37:52:e0:d1:01:48:22:9e:3f: b6:a9:af:7e:a3:71:6d:d0:94:1d:ae:8c:34:fb:34:6f:59:07: 69:14:a2:5c:0a:c8:80:50:10:dd:02:10:54:e1:97:c7:51:5d: bc:ac:b8:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE1QTQxMTAvBgNVBAUTKDRENDRFMkY3NTJBMjk1MEI2QjU1MjhDMDY5OUIxNDkw RTc1Nzc3NDQwHhcNMjUwNjA0MTczNjAxWhcNMjUwNjExMTczNjAxWjAYMRYwFAYD VQQDEw02ODQwODQwMi01NjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwWFTlKHTd92Yes4zHH7AFNjTHszAvzEu/nANBPCsT/q7JhqDWA5kHfstN1y XcW2xSFzlTwa6XUDRcA+LlfxkCLW/4AkOp/I/yQd+AnrJoY1fEDJbSDZBziRQ4Gz hoIAKxGB3Jg0mX4IKQdmQS1mpS+Y3RpeQ/VnvPhNyVqc/9sDVuEkyMkr7VR+wle7 wK7SZe3n45gezASJ/qIRNNztegaSqF8xjawMwR61s4KNKGG83G6d8VmlggjMoNJF SbJG6xqE9n/S0hB5zHmO7tO9cnS5ajCX5wqaVFvq49JhPpnzwsmBGBT9ciuGaIJ+ MoiM6EGRMZeHVm81AYDZtWjKowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmOLlT6 zrLM2ZHyHurTF8mudD2tMB8GA1UdIwQYMBaAFE1E4vdSopULa1UowGmbFJDnV3dE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTVBNC9CMzRFNkQ1MDcw OEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxRdHJWU2pBYVpzVWtPZFhk MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RVVGk5MUtpbFF0clZTakFhWnNVa09kWGQwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTVBNC9CMzRFNkQ1MDcwOEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxR dHJWU2pBYVpzVWtPZFhkMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLMHG/Q5DZlZKFydyYgn0mLohxt/pioNTnNw7Xir8mBUezdlwO/+1N 9xms+nTG4MYRyhXHnCeap+A6pu4LIALzsVAc1poMBar3sijNTgKwyBtUflFpZVZU pMYPTQDC4PadkWz8FQWjGn+WV+ERwfErOENPR/HTF/6Ztes7PQlB6SL8DCrauhTQ UuHlvlgpBnxpw+MkdiE3mizrPjdiNQ9LOzE6eKahHJz5O0n23LdyrdKWlVqyJHG7 ipAe8FroD9WdTLezZHr2yPhsIUDTESA3UuDRAUginj+2qa9+o3Ft0JQdrow0+zRv WQdpFKJcCsiAUBDdAhBU4ZfHUV28rLgz -----END CERTIFICATE-----Generated at Thu Jun 5 19:57:56 2025 by rpki-client