$ rpki-client -vvf rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft File: TUTi91KilQtrVSjAaZsUkOdXd0Q.mft (raw, json) Hash identifier: J2cBK3c3QTzs1GhKu/6oFKCt14te7ItB+b1mgcvkdjE= Subject key identifier: 47:B6:5A:DC:FA:1F:7D:58:BF:D8:3F:F4:48:ED:33:47:09:5F:2C:F5 Authority key identifier: 4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 Certificate issuer: /CN=A91D15A4/serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Certificate serial: 0F70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft Manifest number: 0F66 Signing time: Sun 24 Aug 2025 17:32:49 +0000 Manifest this update: Sun 24 Aug 2025 17:32:48 +0000 Manifest next update: Sun 31 Aug 2025 17:32:48 +0000 Files and hashes: 1: TUTi91KilQtrVSjAaZsUkOdXd0Q.crl (hash: wDkVM8Ptsvf2SJ2ztmWdOjx158IyPw6o7ah51jk6VKE=) 2: 3D371C5C708F11E9B105E92CC4F9AE02.roa (hash: YkmY4q4YSypbm13HUH++xACjilqSAUGjIIEq3zMyNH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3952 (0xf70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D15A4, serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Validity Not Before: Aug 24 17:32:48 2025 GMT Not After : Aug 31 17:32:48 2025 GMT Subject: CN=68ab4cc1-7a7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7c:56:39:22:ac:f4:15:d6:29:ad:dc:55:15: 89:a3:a1:f6:7b:74:0f:e4:ec:29:05:c5:8f:db:d3: 27:1c:74:89:99:b6:c0:4c:c3:85:01:c1:a0:06:cc: 25:04:c7:9e:a1:41:ef:c3:e3:29:1a:72:90:0f:c4: 9c:30:9b:64:df:41:55:54:76:67:af:48:9c:e4:b0: 92:2e:ca:52:e1:5c:8e:21:30:e0:0d:88:bc:be:f4: d8:20:ea:df:25:9c:3d:21:59:05:86:d7:06:b4:d0: e7:3f:7d:2c:e1:a3:74:26:2c:63:f4:99:36:f2:ae: 1b:ca:2c:5a:35:67:62:58:4b:c2:4c:a6:14:a5:75: 79:d2:88:dc:9a:e7:75:8e:f7:c3:eb:5f:b0:af:b0: de:13:a9:58:50:92:81:28:77:78:25:63:ed:b8:61: bc:87:28:9d:ed:88:2f:03:fd:e2:54:01:61:ef:24: 52:e6:6f:d0:aa:49:e5:ba:c6:a6:b4:fb:7f:07:c3: b1:0f:05:8b:91:60:c6:db:56:3d:8c:4f:1f:e0:40: da:fa:05:97:b4:3a:99:e7:6a:cf:ae:0b:24:db:2d: b8:0b:05:ed:42:ee:f5:c2:f9:61:78:6a:c8:ac:0c: a2:ca:e7:4c:85:8f:8f:fd:1c:90:78:07:8a:22:9d: 91:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:B6:5A:DC:FA:1F:7D:58:BF:D8:3F:F4:48:ED:33:47:09:5F:2C:F5 X509v3 Authority Key Identifier: keyid:4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:a7:d4:5b:13:d1:9f:b6:c8:d4:f3:15:1b:c9:6a:d7:d4:94: bd:1b:e0:6f:f0:e5:34:fe:42:71:f4:01:4d:e7:46:c9:97:d0: 79:73:8d:5e:07:c0:8a:61:fe:76:c9:2d:98:be:a1:4c:2f:90: 95:02:18:c1:14:28:a7:dd:c5:9b:28:c4:cb:75:62:0a:1f:89: a2:e7:0e:a8:41:8f:11:4c:3a:0a:7b:f6:ce:8e:06:00:89:be: 0f:9b:6e:a2:7b:d6:e2:85:8f:e2:21:59:30:46:93:11:f1:78: 1d:95:c0:52:07:a5:8e:0f:cc:a4:7b:13:9a:8e:24:45:6a:d9: 24:77:81:15:80:86:d8:2a:fc:14:b4:52:c9:39:de:92:0e:64: ec:88:04:d7:ca:22:a2:10:36:8b:a6:2d:bf:7d:7a:27:01:be: 16:cb:f2:57:54:66:a5:db:d3:b8:71:56:79:0b:83:ec:73:75: 87:cf:1c:2d:1e:7a:54:99:d9:18:6b:0a:ba:5b:b4:9d:e6:f1: c1:ef:12:94:d7:0f:ab:95:6f:f6:fa:65:48:70:a3:09:f3:a5: 51:77:4b:e9:33:98:36:a2:7a:07:bb:93:3e:85:ca:5c:e7:3e: 14:8d:65:f0:2c:45:ae:4e:f9:9a:a3:df:2c:52:89:37:6c:e9: 6a:a8:cb:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE1QTQxMTAvBgNVBAUTKDRENDRFMkY3NTJBMjk1MEI2QjU1MjhDMDY5OUIxNDkw RTc1Nzc3NDQwHhcNMjUwODI0MTczMjQ4WhcNMjUwODMxMTczMjQ4WjAYMRYwFAYD VQQDEw02OGFiNGNjMS03YTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHxWOSKs9BXWKa3cVRWJo6H2e3QP5OwpBcWP29MnHHSJmbbATMOFAcGgBswl BMeeoUHvw+MpGnKQD8ScMJtk30FVVHZnr0ic5LCSLspS4VyOITDgDYi8vvTYIOrf JZw9IVkFhtcGtNDnP30s4aN0Jixj9Jk28q4byixaNWdiWEvCTKYUpXV50ojcmud1 jvfD61+wr7DeE6lYUJKBKHd4JWPtuGG8hyid7YgvA/3iVAFh7yRS5m/Qqknlusam tPt/B8OxDwWLkWDG21Y9jE8f4EDa+gWXtDqZ52rPrgsk2y24CwXtQu71wvlheGrI rAyiyudMhY+P/RyQeAeKIp2RmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEe2Wtz6 H31Yv9g/9EjtM0cJXyz1MB8GA1UdIwQYMBaAFE1E4vdSopULa1UowGmbFJDnV3dE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTVBNC9CMzRFNkQ1MDcw OEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxRdHJWU2pBYVpzVWtPZFhk MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RVVGk5MUtpbFF0clZTakFhWnNVa09kWGQwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTVBNC9CMzRFNkQ1MDcwOEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxR dHJWU2pBYVpzVWtPZFhkMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMp9RbE9GftsjU8xUbyWrX1JS9G+Bv8OU0/kJx9AFN50bJl9B5c41e B8CKYf52yS2YvqFML5CVAhjBFCin3cWbKMTLdWIKH4mi5w6oQY8RTDoKe/bOjgYA ib4Pm26ie9bihY/iIVkwRpMR8XgdlcBSB6WOD8ykexOajiRFatkkd4EVgIbYKvwU tFLJOd6SDmTsiATXyiKiEDaLpi2/fXonAb4Wy/JXVGal29O4cVZ5C4Psc3WHzxwt HnpUmdkYawq6W7Sd5vHB7xKU1w+rlW/2+mVIcKMJ86VRd0vpM5g2onoHu5M+hcpc 5z4UjWXwLEWuTvmao98sUok3bOlqqMtw -----END CERTIFICATE-----Generated at Sun Aug 24 22:18:35 2025 by rpki-client