$ rpki-client -vvf rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft File: tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft (raw, json) Hash identifier: K1xCKf0zZxlFXX4W3Yse96MsSSATFwX5WNsaDyN7x/c= Subject key identifier: E3:45:70:DB:76:47:72:C9:18:AC:5D:29:11:99:A3:7E:55:56:60:29 Authority key identifier: B5:D9:55:97:7A:DA:46:83:AC:5B:59:C2:58:18:B4:43:81:C2:4F:E6 Certificate issuer: /CN=A911A4F7/serialNumber=B5D955977ADA4683AC5B59C25818B44381C24FE6 Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft Manifest number: 83 Signing time: Sat 21 Jun 2025 05:39:05 +0000 Manifest this update: Sat 21 Jun 2025 05:39:04 +0000 Manifest next update: Sat 28 Jun 2025 05:39:04 +0000 Files and hashes: 1: tdlVl3raRoOsW1nCWBi0Q4HCT-Y.crl (hash: kjDPQOaHfJke6E0+rfHAXO6hume3a3L0VRp971tvJGk=) 2: F17DA0FE85FC11EFBD7A485FC4F9AE02.roa (hash: H6cM4D6HiFEzXOD3BJphw2tquQW1HD/n9sWWwx2nQbg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.crl rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 05:39:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A4F7, serialNumber=B5D955977ADA4683AC5B59C25818B44381C24FE6 Validity Not Before: Jun 21 05:39:04 2025 GMT Not After : Jun 28 05:39:04 2025 GMT Subject: CN=68564578-921f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:21:70:02:8b:24:af:38:46:13:da:06:92:ee: 7d:a1:bb:c2:9e:9c:4e:6c:18:e8:9e:52:3d:31:0a: b3:b0:4a:a0:4b:70:da:6e:e2:6b:61:ae:05:f7:f4: b0:a6:4d:62:88:9f:6d:23:18:bd:1d:0f:db:bf:01: ca:78:cb:73:4c:11:a1:74:82:26:cf:72:b9:0d:88: ab:da:fe:b2:ad:17:9f:7c:f8:ff:79:de:53:5e:01: 71:18:c4:11:72:c4:b5:a6:26:86:df:a8:43:26:8a: 96:ac:9d:50:65:7d:82:ef:88:78:eb:c9:6c:2d:03: bd:f1:9f:00:bc:9f:eb:a6:75:f9:f6:48:8a:52:f7: 1e:c8:49:4b:5e:37:c4:3f:cc:d5:aa:bf:f4:86:c9: 55:27:04:ed:6a:d8:91:e6:b6:65:a9:fa:b7:4a:13: d3:fa:26:be:72:a1:d7:29:6d:01:df:78:06:e1:75: 5e:46:a5:b6:a5:fd:00:4d:fc:4c:ba:90:5a:85:7d: 06:dd:d3:66:ae:ed:7e:6f:84:b7:08:c6:df:04:9b: 84:4b:2a:be:e8:74:64:39:a9:bb:7d:91:8a:26:48: 15:43:cf:d7:b7:a0:4e:f7:95:f3:3c:31:ca:f5:4b: 83:c2:27:f3:8d:ff:ac:f3:2f:e9:a5:f7:ed:34:ca: 4f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:45:70:DB:76:47:72:C9:18:AC:5D:29:11:99:A3:7E:55:56:60:29 X509v3 Authority Key Identifier: keyid:B5:D9:55:97:7A:DA:46:83:AC:5B:59:C2:58:18:B4:43:81:C2:4F:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:6e:d4:1f:c2:d4:f3:09:3b:f9:35:d9:7a:88:bd:6a:3d:7d: 68:e5:43:e5:06:04:f7:61:c3:67:46:2c:87:8f:eb:8f:5a:e5: 3f:4f:14:f6:cc:e6:f7:65:0f:70:08:18:b5:92:c9:68:1e:15: 8f:c3:7d:55:97:96:aa:c6:3d:3b:d7:e2:db:15:81:d0:a0:58: 1c:90:ca:2e:5f:40:e7:76:20:35:7b:12:6e:db:c3:9e:1a:86: 95:78:2d:62:1d:f7:84:0a:45:54:e2:9d:b0:a6:8d:47:6d:68: 00:a7:e7:b4:59:65:73:e1:09:4a:1b:05:bf:e8:29:00:3d:a1: a2:13:d2:6e:8c:42:92:26:14:6d:6f:52:1c:41:5c:3d:6e:c7: 2a:6d:01:07:6f:a8:c2:b9:dc:9f:41:43:e1:1b:bb:ed:29:80: 4a:fa:90:27:7f:e4:6b:16:7d:27:87:ee:33:c3:cd:98:54:ea: 32:e3:37:27:38:f1:42:51:73:c5:33:8c:45:67:45:43:5f:6f: 5a:f1:1d:fd:ae:f3:ae:d1:c0:3c:a1:81:99:88:b5:f9:3f:78: 60:df:38:12:d0:64:a6:4f:2b:ef:f5:23:21:cf:d3:80:70:dd: b3:d0:e2:5b:14:40:c0:f2:8a:c5:2c:d6:df:93:5b:70:7b:aa: 12:31:d7:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE0RjcxMTAvBgNVBAUTKEI1RDk1NTk3N0FEQTQ2ODNBQzVCNTlDMjU4MThCNDQz ODFDMjRGRTYwHhcNMjUwNjIxMDUzOTA0WhcNMjUwNjI4MDUzOTA0WjAYMRYwFAYD VQQDEw02ODU2NDU3OC05MjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSFwAoskrzhGE9oGku59obvCnpxObBjonlI9MQqzsEqgS3DabuJrYa4F9/Sw pk1iiJ9tIxi9HQ/bvwHKeMtzTBGhdIImz3K5DYir2v6yrReffPj/ed5TXgFxGMQR csS1piaG36hDJoqWrJ1QZX2C74h468lsLQO98Z8AvJ/rpnX59kiKUvceyElLXjfE P8zVqr/0hslVJwTtatiR5rZlqfq3ShPT+ia+cqHXKW0B33gG4XVeRqW2pf0ATfxM upBahX0G3dNmru1+b4S3CMbfBJuESyq+6HRkOam7fZGKJkgVQ8/Xt6BO95XzPDHK 9UuDwifzjf+s8y/ppfftNMpPywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONFcNt2 R3LJGKxdKRGZo35VVmApMB8GA1UdIwQYMBaAFLXZVZd62kaDrFtZwlgYtEOBwk/m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTRGNy85QTU4QzM4QTg1 RkMxMUVGQkMyMTBGNUVDNEY5QUUwMi90ZGxWbDNyYVJvT3NXMW5DV0JpMFE0SENU LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RkbFZsM3JhUm9Pc1cxbkNXQmkwUTRIQ1QtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTRGNy85QTU4QzM4QTg1RkMxMUVGQkMyMTBGNUVDNEY5QUUwMi90ZGxWbDNyYVJv T3NXMW5DV0JpMFE0SENULVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMbtQfwtTzCTv5Ndl6iL1qPX1o5UPlBgT3YcNnRiyHj+uPWuU/TxT2 zOb3ZQ9wCBi1ksloHhWPw31Vl5aqxj071+LbFYHQoFgckMouX0DndiA1exJu28Oe GoaVeC1iHfeECkVU4p2wpo1HbWgAp+e0WWVz4QlKGwW/6CkAPaGiE9JujEKSJhRt b1IcQVw9bscqbQEHb6jCudyfQUPhG7vtKYBK+pAnf+RrFn0nh+4zw82YVOoy4zcn OPFCUXPFM4xFZ0VDX29a8R39rvOu0cA8oYGZiLX5P3hg3zgS0GSmTyvv9SMhz9OA cN2z0OJbFEDA8orFLNbfk1twe6oSMdeP -----END CERTIFICATE-----Generated at Sun Jun 22 04:50:42 2025 by rpki-client