$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft File: tpVKYo70-TShCnBay8uQbtYQSAw.mft (raw, json) Hash identifier: udpd3mcBz5gQfODDzQquui5bxZF1ZXAARYooDYi84Mo= Subject key identifier: 24:E1:8A:79:B1:AB:96:C2:1D:D0:10:EE:06:7B:6A:20:F0:EB:79:41 Authority key identifier: B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C Certificate issuer: /CN=A91DE43E/serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Certificate serial: 0BB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft Manifest number: 0BAA Signing time: Sun 24 Aug 2025 18:57:19 +0000 Manifest this update: Sun 24 Aug 2025 18:57:18 +0000 Manifest next update: Sun 31 Aug 2025 18:57:18 +0000 Files and hashes: 1: tpVKYo70-TShCnBay8uQbtYQSAw.crl (hash: Df2CqkCEoWp2JExFJv4d0sebymvnECD0pVNPlwi+ejQ=) 2: 5E117DC82AFC11EAB5FEC955C4F9AE02.roa (hash: FLXDHzghX+xgCtsrZgeGezVp6qrYExOvwRgCUG3oquw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:57:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2992 (0xbb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE43E, serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Validity Not Before: Aug 24 18:57:18 2025 GMT Not After : Aug 31 18:57:18 2025 GMT Subject: CN=68ab608e-86b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:24:7e:7a:23:53:7d:0b:10:c6:75:11:36:75: 35:96:80:43:1d:d9:65:49:04:2c:09:89:e4:3f:c7: f4:57:b0:60:7a:cc:cc:a4:0d:5f:d1:a0:7e:7d:f8: 72:3a:f9:51:7c:d2:78:8f:48:0f:46:22:0b:89:72: b2:26:7e:78:06:5f:b6:69:fa:64:6b:ad:26:a6:9b: f8:b3:3f:71:59:e1:c7:0e:ce:5e:e5:8b:23:27:91: 95:28:74:04:ef:09:8a:63:f1:0b:2d:62:ee:3e:9d: 44:0f:88:36:01:26:2d:a0:07:1e:18:8e:b0:93:87: 89:7f:18:1e:77:8d:63:e3:c5:a9:f2:1f:d7:72:1d: d8:d4:2a:b8:d2:32:20:d3:89:25:a1:29:b1:e7:8c: 95:df:01:70:38:38:bd:d4:4d:c5:5e:7e:bc:0a:c9: d7:d2:14:f1:f7:82:cc:8f:39:34:17:f7:2d:f5:c8: 33:fc:5c:fc:12:f7:16:27:fb:e0:10:d2:11:f8:68: 01:c4:0b:6c:30:c8:9d:b5:8c:14:d2:12:bd:81:bd: 90:fe:b7:4b:6f:f6:07:f1:46:4e:d3:cf:75:3a:ec: f8:4f:5b:ae:f1:49:68:63:a1:e6:75:e9:72:4f:d7: 71:cb:c9:a6:a2:17:99:f7:ca:0b:2c:88:fc:27:b8: da:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:E1:8A:79:B1:AB:96:C2:1D:D0:10:EE:06:7B:6A:20:F0:EB:79:41 X509v3 Authority Key Identifier: keyid:B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:f9:18:35:71:98:67:fe:93:7d:a2:69:4c:51:68:f7:54:44: a5:08:74:5a:59:cf:e5:a5:f8:ac:f6:b6:48:79:4c:d7:a9:88: c2:b3:21:2c:69:b4:de:5e:ed:45:9d:db:f5:24:de:fe:8e:0b: c8:89:9f:a4:68:72:e4:a5:6e:30:cb:e1:c0:82:e3:ba:05:bf: c6:90:30:71:7b:59:83:21:84:54:d6:0f:45:7c:a3:b6:1d:51: c9:94:dc:07:23:5e:05:82:04:c3:44:a1:09:2a:bc:ea:3b:37: 9b:fc:d4:9a:e2:6a:36:b4:60:91:dd:d5:ea:8a:55:f8:bc:b9: 82:58:2b:f8:70:1a:56:fe:5b:6d:31:99:17:57:6d:8a:90:4a: ef:d3:e2:3f:40:06:0a:8a:fe:cb:ac:22:0d:a0:78:95:2f:fc: 76:b4:43:d8:63:12:fa:e8:a6:46:82:68:55:83:64:50:00:bc: 09:b5:cc:d5:3d:4e:5e:82:2e:00:5b:e9:9e:eb:da:23:d7:d3: 20:cc:95:4a:02:d5:f5:9d:12:3b:44:66:ba:e3:1b:27:dd:1b: 06:f5:9c:7a:2d:ff:8b:bd:32:83:d4:6f:64:db:94:1b:d0:8e: af:77:89:05:1a:ec:0f:d2:ad:75:0f:76:81:4e:6c:e9:db:f6: 92:4c:aa:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0M0UxMTAvBgNVBAUTKEI2OTU0QTYyOEVGNEY5MzRBMTBBNzA1QUNCQ0I5MDZF RDYxMDQ4MEMwHhcNMjUwODI0MTg1NzE4WhcNMjUwODMxMTg1NzE4WjAYMRYwFAYD VQQDEw02OGFiNjA4ZS04NmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yR+eiNTfQsQxnURNnU1loBDHdllSQQsCYnkP8f0V7BgeszMpA1f0aB+ffhy OvlRfNJ4j0gPRiILiXKyJn54Bl+2afpka60mppv4sz9xWeHHDs5e5YsjJ5GVKHQE 7wmKY/ELLWLuPp1ED4g2ASYtoAceGI6wk4eJfxged41j48Wp8h/Xch3Y1Cq40jIg 04kloSmx54yV3wFwODi91E3FXn68CsnX0hTx94LMjzk0F/ct9cgz/Fz8EvcWJ/vg ENIR+GgBxAtsMMidtYwU0hK9gb2Q/rdLb/YH8UZO0891Ouz4T1uu8UloY6Hmdely T9dxy8mmoheZ98oLLIj8J7jayQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCThinmx q5bCHdAQ7gZ7aiDw63lBMB8GA1UdIwQYMBaAFLaVSmKO9Pk0oQpwWsvLkG7WEEgM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTQzRS9DQzAzRkJCODJB RkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1UU2hDbkJheTh1UWJ0WVFT QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RwVktZbzcwLVRTaENuQmF5OHVRYnRZUVNBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTQzRS9DQzAzRkJCODJBRkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1U U2hDbkJheTh1UWJ0WVFTQXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd+Rg1cZhn/pN9omlMUWj3VESlCHRaWc/lpfis9rZIeUzXqYjCsyEs abTeXu1Fndv1JN7+jgvIiZ+kaHLkpW4wy+HAguO6Bb/GkDBxe1mDIYRU1g9FfKO2 HVHJlNwHI14FggTDRKEJKrzqOzeb/NSa4mo2tGCR3dXqilX4vLmCWCv4cBpW/ltt MZkXV22KkErv0+I/QAYKiv7LrCINoHiVL/x2tEPYYxL66KZGgmhVg2RQALwJtczV PU5egi4AW+me69oj19MgzJVKAtX1nRI7RGa64xsn3RsG9Zx6Lf+LvTKD1G9k25Qb 0I6vd4kFGuwP0q11D3aBTmzp2/aSTKr2 -----END CERTIFICATE-----Generated at Sun Aug 24 22:07:04 2025 by rpki-client