$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft File: TSeJUeK9itKFuUCo6p5X43lxHms.mft (raw, json) Hash identifier: ee0J68eRmlcdWF9xLhquTN7VugcqlJlIrBawiM0kIYo= Subject key identifier: 2B:A6:DA:CC:FB:F4:C6:FA:90:07:3B:AF:5C:E8:96:56:62:C8:5D:7A Authority key identifier: 4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B Certificate issuer: /CN=A91342C5/serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Certificate serial: 03B2 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft Manifest number: 03AD Signing time: Mon 11 Aug 2025 00:57:17 +0000 Manifest this update: Mon 11 Aug 2025 00:57:17 +0000 Manifest next update: Mon 18 Aug 2025 00:57:17 +0000 Files and hashes: 1: TSeJUeK9itKFuUCo6p5X43lxHms.crl (hash: sGTkIs/ja5dl8jtsxqS8oiTCGkLzV61so9c8kw2mCs4=) 2: E8E194B8A5CC11EC85A86A1FC4F9AE02.roa (hash: ypQGr8fcGrxnVWfQ2RrFsZZ4R7tmsDgEITmj6bx0ScA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 946 (0x3b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Validity Not Before: Aug 11 00:57:17 2025 GMT Not After : Aug 18 00:57:17 2025 GMT Subject: CN=68993fed-2163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f6:9e:c4:43:09:0d:9d:27:68:af:ad:74:ce: 1d:6e:51:07:3b:aa:93:82:77:b1:4c:ac:a0:c9:e8: f5:29:b9:25:ea:58:ba:63:93:61:6c:94:71:09:0d: e5:d9:d2:4e:e0:ce:61:13:7e:73:2a:5e:75:72:37: 5f:38:94:f4:c8:37:fa:d4:e0:ad:00:9a:19:7e:c1: 4c:c3:c8:28:8e:2e:40:0d:7e:9a:86:93:fc:c5:81: d5:3e:3a:5f:95:aa:cf:90:6b:a6:91:dc:70:e0:69: 94:b5:94:47:1d:77:8e:9e:87:fb:7d:70:6b:a2:f4: f8:98:09:42:3d:d4:40:24:72:48:9b:08:28:80:c6: 8f:2e:b3:59:ae:a5:a0:89:38:d3:81:c6:d2:84:69: bd:fd:a3:a8:0c:1d:7d:a9:0c:30:b6:00:47:eb:ac: 63:42:e7:2f:3f:94:95:ae:07:0f:f1:eb:9c:49:b4: 0e:38:72:f1:1f:88:a5:56:49:70:10:3a:d3:b9:6f: 7b:36:67:3a:35:f1:d7:32:83:26:b4:fc:9f:3f:6a: 45:25:c8:ff:46:90:b4:01:c7:27:0e:04:05:80:40: d3:b7:3f:60:3a:ab:f2:d2:d1:c1:a2:07:a2:d3:83: 2f:a4:a2:b8:a3:89:b6:e7:f2:30:6d:be:d7:c0:71: a4:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A6:DA:CC:FB:F4:C6:FA:90:07:3B:AF:5C:E8:96:56:62:C8:5D:7A X509v3 Authority Key Identifier: keyid:4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:d8:63:05:d5:bc:ee:29:62:d2:a3:0e:fb:05:58:e4:55:ab: 1d:22:9c:8a:86:c2:e8:c8:af:4a:0a:f3:fc:f4:6c:44:6d:f0: cc:a6:40:26:6b:0d:6b:dd:85:d4:fa:a4:4d:9b:89:9c:a0:bf: 6c:b6:2a:27:44:06:1b:e8:b5:c8:b4:40:3e:59:c6:98:68:74: 5a:ff:a0:3c:f1:16:28:03:64:cd:ea:c1:26:92:20:d1:00:98: a5:48:74:e1:c0:3c:96:7d:62:3f:1c:f6:66:d6:2a:34:b3:62: 44:32:49:95:71:64:ca:bc:44:77:e2:4f:5c:a6:00:a3:4b:2c: 3f:5a:59:75:fe:d2:7a:a5:71:75:91:3c:99:5d:de:cf:e5:7a: 65:4c:d7:48:3f:f9:a6:b0:06:33:88:c0:8d:4f:d6:00:50:3a: b1:b5:08:5b:d1:58:77:fc:0f:50:e1:9b:79:71:cf:7f:87:b2: 6f:dc:4d:d5:4a:c5:db:5c:0d:99:53:b4:b8:2e:e3:88:94:09: 4f:76:77:bc:5f:57:e6:75:fb:bf:df:0c:db:07:e4:ec:4c:5d: de:c0:3c:e8:4e:7e:cc:9e:4d:9d:de:03:e2:e5:41:4e:68:ba: 07:a8:08:1e:53:cb:70:19:eb:86:0e:19:71:f6:47:3c:7f:38: 5d:db:8a:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDREMjc4OTUxRTJCRDhBRDI4NUI5NDBBOEVBOUU1N0Uz Nzk3MTFFNkIwHhcNMjUwODExMDA1NzE3WhcNMjUwODE4MDA1NzE3WjAYMRYwFAYD VQQDEw02ODk5M2ZlZC0yMTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfaexEMJDZ0naK+tdM4dblEHO6qTgnexTKygyej1Kbkl6li6Y5NhbJRxCQ3l 2dJO4M5hE35zKl51cjdfOJT0yDf61OCtAJoZfsFMw8goji5ADX6ahpP8xYHVPjpf larPkGumkdxw4GmUtZRHHXeOnof7fXBrovT4mAlCPdRAJHJImwgogMaPLrNZrqWg iTjTgcbShGm9/aOoDB19qQwwtgBH66xjQucvP5SVrgcP8eucSbQOOHLxH4ilVklw EDrTuW97Nmc6NfHXMoMmtPyfP2pFJcj/RpC0AccnDgQFgEDTtz9gOqvy0tHBogei 04MvpKK4o4m25/Iwbb7XwHGkwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCum2sz7 9Mb6kAc7r1zollZiyF16MB8GA1UdIwQYMBaAFE0niVHivYrShblAqOqeV+N5cR5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xNjYzN0MyRUE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0S0Z1VUNvNnA1WDQzbHhI bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1RTZUpVZUs5aXRLRnVVQ282cDVYNDNseEhtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xNjYzN0MyRUE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0 S0Z1VUNvNnA1WDQzbHhIbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR2GMF1bzuKWLSow77BVjkVasdIpyKhsLoyK9KCvP89GxEbfDMpkAm aw1r3YXU+qRNm4mcoL9stionRAYb6LXItEA+WcaYaHRa/6A88RYoA2TN6sEmkiDR AJilSHThwDyWfWI/HPZm1io0s2JEMkmVcWTKvER34k9cpgCjSyw/Wll1/tJ6pXF1 kTyZXd7P5XplTNdIP/mmsAYziMCNT9YAUDqxtQhb0Vh3/A9Q4Zt5cc9/h7Jv3E3V SsXbXA2ZU7S4LuOIlAlPdne8X1fmdfu/3wzbB+TsTF3ewDzoTn7Mnk2d3gPi5UFO aLoHqAgeU8twGeuGDhlx9kc8fzhd24qH -----END CERTIFICATE-----Generated at Mon Aug 11 04:05:43 2025 by rpki-client