$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft File: TSeJUeK9itKFuUCo6p5X43lxHms.mft (raw, json) Hash identifier: A8YJZrT41leA1GaNrlqrGyDcYugqt1h229Wk8vB0Hfs= Subject key identifier: 32:1B:8A:93:88:EF:EB:F9:5D:43:3D:CB:54:B4:4D:E8:18:B9:C9:ED Authority key identifier: 4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B Certificate issuer: /CN=A91342C5/serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Certificate serial: 0398 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft Manifest number: 0393 Signing time: Sat 21 Jun 2025 00:33:26 +0000 Manifest this update: Sat 21 Jun 2025 00:33:26 +0000 Manifest next update: Sat 28 Jun 2025 00:33:26 +0000 Files and hashes: 1: TSeJUeK9itKFuUCo6p5X43lxHms.crl (hash: imiDbxujFRzdOGKyzXfcdwr173ZwAaPlbcTiKwr8z5Y=) 2: E8E194B8A5CC11EC85A86A1FC4F9AE02.roa (hash: ypQGr8fcGrxnVWfQ2RrFsZZ4R7tmsDgEITmj6bx0ScA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 00:33:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 920 (0x398) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Validity Not Before: Jun 21 00:33:26 2025 GMT Not After : Jun 28 00:33:26 2025 GMT Subject: CN=6855fdd6-aed3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:14:6f:89:80:03:59:c3:13:5d:c3:c2:df:c8: 08:ad:5c:d6:bf:5f:b5:6e:70:56:1c:c8:88:6b:24: 65:77:79:30:02:ff:ea:d9:4a:95:59:8d:53:1b:42: 16:c9:26:81:f6:b0:e7:86:17:ae:e3:bf:a3:8c:95: 18:8e:ed:95:bd:fa:1e:ee:7f:5d:d8:18:53:22:17: 0a:b3:47:72:3f:7b:05:e8:a5:1e:a5:55:f0:a8:34: 1f:c8:6b:0b:d0:ee:41:e1:9d:b5:96:6c:1f:c7:45: a3:28:e4:40:f7:06:b9:85:ea:72:3d:b1:32:9d:ce: 6e:89:99:fe:1b:e8:a2:0f:5b:19:b3:8e:a0:d5:f7: 3e:7a:4d:5e:ba:38:79:81:5a:44:a8:aa:91:20:a2: 6f:8f:ef:f8:34:a5:fc:9e:47:06:88:c9:fb:61:4c: 14:55:1f:4b:1d:cc:66:5e:0d:55:75:7b:98:a4:4e: 65:23:1b:7c:e2:35:45:5a:6c:85:a0:5b:f8:15:c4: 5b:1e:90:18:0a:12:50:64:c4:39:e8:91:c8:68:1a: 78:08:81:b8:29:58:2c:e9:16:ed:d7:b4:92:ae:fe: c1:ae:d3:b4:79:a2:d3:4e:2c:fc:50:34:8b:d7:2d: 5a:07:9e:63:56:c6:7d:3c:c1:80:44:cc:33:a2:1d: fd:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1B:8A:93:88:EF:EB:F9:5D:43:3D:CB:54:B4:4D:E8:18:B9:C9:ED X509v3 Authority Key Identifier: keyid:4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:34:3f:96:05:bf:e1:72:f5:32:d6:9b:e0:3b:ba:eb:a1:f6: 50:fc:eb:2a:e5:94:f4:eb:97:af:b5:28:8e:eb:32:36:9b:95: 3b:73:d6:26:c0:3b:de:67:0e:99:fa:40:b0:e2:82:36:68:82: b7:e3:9e:40:ee:de:df:6b:44:b6:a3:d9:6f:6f:b2:e4:31:6f: dc:be:99:6b:c6:ad:7b:6a:ff:4c:b4:a1:ee:a4:ad:09:ef:ed: 36:38:20:52:a4:b0:14:c6:12:4c:8a:e4:f8:bf:53:b7:2b:24: e4:6f:79:ce:d4:e2:b7:54:79:4e:80:86:79:56:19:25:fe:7f: 06:f9:79:ee:a9:fb:84:ab:19:24:84:c8:01:5e:f8:72:fa:e5: 08:a1:55:26:0f:dc:13:e1:f2:a7:77:98:a7:94:fb:9e:50:82: 3b:0e:a4:d0:08:81:55:ff:45:fd:eb:56:af:34:12:69:1d:ca: e4:48:c9:9d:6f:25:65:fb:8e:e5:f5:c2:fb:5a:3d:b9:09:ba: 7d:85:9e:08:be:3b:7f:bd:59:a7:97:db:53:4b:1e:bc:14:71: 24:70:d9:2f:2d:d0:a7:c4:4d:43:05:cc:2c:9e:b8:26:8e:c0: 51:44:7d:ad:f5:ca:3c:28:98:09:8b:0b:e3:83:05:0a:91:08: 74:b0:27:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDREMjc4OTUxRTJCRDhBRDI4NUI5NDBBOEVBOUU1N0Uz Nzk3MTFFNkIwHhcNMjUwNjIxMDAzMzI2WhcNMjUwNjI4MDAzMzI2WjAYMRYwFAYD VQQDEw02ODU1ZmRkNi1hZWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BRviYADWcMTXcPC38gIrVzWv1+1bnBWHMiIayRld3kwAv/q2UqVWY1TG0IW ySaB9rDnhheu47+jjJUYju2Vvfoe7n9d2BhTIhcKs0dyP3sF6KUepVXwqDQfyGsL 0O5B4Z21lmwfx0WjKORA9wa5hepyPbEync5uiZn+G+iiD1sZs46g1fc+ek1eujh5 gVpEqKqRIKJvj+/4NKX8nkcGiMn7YUwUVR9LHcxmXg1VdXuYpE5lIxt84jVFWmyF oFv4FcRbHpAYChJQZMQ56JHIaBp4CIG4KVgs6Rbt17SSrv7BrtO0eaLTTiz8UDSL 1y1aB55jVsZ9PMGARMwzoh39MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIbipOI 7+v5XUM9y1S0TegYucntMB8GA1UdIwQYMBaAFE0niVHivYrShblAqOqeV+N5cR5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xNjYzN0MyRUE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0S0Z1VUNvNnA1WDQzbHhI bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1RTZUpVZUs5aXRLRnVVQ282cDVYNDNseEhtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xNjYzN0MyRUE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0 S0Z1VUNvNnA1WDQzbHhIbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3ND+WBb/hcvUy1pvgO7rrofZQ/Osq5ZT065evtSiO6zI2m5U7c9Ym wDveZw6Z+kCw4oI2aIK3455A7t7fa0S2o9lvb7LkMW/cvplrxq17av9MtKHupK0J 7+02OCBSpLAUxhJMiuT4v1O3KyTkb3nO1OK3VHlOgIZ5Vhkl/n8G+XnuqfuEqxkk hMgBXvhy+uUIoVUmD9wT4fKnd5inlPueUII7DqTQCIFV/0X961avNBJpHcrkSMmd byVl+47l9cL7Wj25Cbp9hZ4Ivjt/vVmnl9tTSx68FHEkcNkvLdCnxE1DBcwsnrgm jsBRRH2t9co8KJgJiwvjgwUKkQh0sCcE -----END CERTIFICATE-----Generated at Sat Jun 21 09:11:18 2025 by rpki-client