$ rpki-client -vvf rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft File: TCISGt-uP1dSgBZRUcP9MOOq_QE.mft (raw, json) Hash identifier: MQzE0QT73aSlTXq7gmfELDmTuD912Hwmt7c7xMFC74g= Subject key identifier: B9:C2:AA:6B:71:A7:CA:1E:C5:51:52:61:E5:16:E5:DE:52:6C:50:02 Authority key identifier: 4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 Certificate issuer: /CN=A91466E8/serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft Manifest number: 3A Signing time: Sun 15 Jun 2025 06:38:09 +0000 Manifest this update: Sun 15 Jun 2025 06:38:08 +0000 Manifest next update: Sun 22 Jun 2025 06:38:08 +0000 Files and hashes: 1: TCISGt-uP1dSgBZRUcP9MOOq_QE.crl (hash: Tz5IwNwc+7Z2K4i7q+YqW0Xo4wWjZpSU4doZR45o5mE=) 2: 02640B0CF97911EF99F9BE80C4F9AE02.roa (hash: cI8Rp+uDdJ361Bt2iDuipm5XRt6w/fm/O6/Pc4tHNDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91466E8, serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Validity Not Before: Jun 15 06:38:08 2025 GMT Not After : Jun 22 06:38:08 2025 GMT Subject: CN=684e6a50-c210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2f:7c:ba:e5:92:6b:f1:03:f9:54:5d:d5:19: de:02:8f:db:04:f8:7d:0d:4e:36:7c:c8:27:4a:98: f2:34:b2:5f:bd:36:31:7d:1c:60:22:61:b7:11:28: a9:85:a5:07:bb:62:8f:57:f1:b9:f1:5e:25:42:37: 20:ee:96:e1:f8:91:bb:6f:e8:33:63:36:e1:54:ad: 1d:50:b6:59:c6:27:03:35:43:17:cb:7d:d9:69:ec: 86:92:1f:9e:d2:91:59:e3:34:b9:09:bc:fb:52:85: 82:b8:17:18:18:1e:13:e0:eb:32:48:dc:47:d9:33: cc:c8:3c:aa:a5:5a:34:40:7e:b9:34:e3:7f:ad:11: df:83:da:75:42:b5:66:74:44:0f:04:9a:48:f5:f7: b9:f6:06:10:b4:fe:cf:9f:70:ca:8f:cc:3c:21:70: 82:9f:e7:5c:0d:ba:1b:1a:be:0d:93:83:30:f3:bc: ba:cb:8d:e1:3f:9f:6a:88:6f:6b:f0:bd:8a:71:6c: 80:11:2f:67:1c:b3:0f:57:34:b5:03:56:b1:d8:6f: ba:c1:ab:d4:be:46:a8:f0:4b:19:99:11:4b:6c:96: 0f:a8:fb:f9:20:36:54:d9:30:1b:68:70:c8:51:92: c2:40:80:0e:a0:d2:af:f6:59:1b:b3:70:59:3e:14: 48:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:C2:AA:6B:71:A7:CA:1E:C5:51:52:61:E5:16:E5:DE:52:6C:50:02 X509v3 Authority Key Identifier: keyid:4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:68:23:76:3b:e2:fe:9a:e3:23:58:5a:0c:c7:60:18:db:b7: 20:a6:f8:de:2e:b8:8a:d6:ca:e8:c3:05:2d:5f:84:66:a1:17: 15:8a:87:00:cc:57:ae:13:b1:94:bd:d5:2b:a0:28:f7:bf:ed: 97:88:70:89:37:ca:a3:4f:0d:5b:64:a6:a3:36:84:83:28:85: e1:48:d2:09:10:76:68:6d:fa:6e:83:3c:21:04:b4:1b:01:15: 2a:d0:8d:d5:85:70:1d:08:ea:49:42:67:d2:39:7a:f5:f6:b5: 46:41:4b:dc:b5:11:75:06:9c:02:16:cf:60:0e:97:4f:de:69: 41:52:94:93:0d:8c:2e:92:cf:b5:47:1a:5b:ce:27:91:87:29: 56:70:0c:52:0a:f6:ba:69:fb:a9:bf:a8:03:0d:03:4c:cf:46: 19:b9:88:8a:5d:1c:44:59:66:57:87:36:8c:b0:fd:05:e1:42: 63:81:f9:d8:9c:4e:93:8f:ca:3b:5b:85:f4:1b:1b:be:64:42: 3c:77:12:c9:c8:cc:79:47:44:0d:7b:1d:7a:77:45:8d:89:5a: 83:2e:6f:15:c6:67:d5:66:2c:17:0f:47:a6:78:d8:d0:99:c0: eb:f5:01:73:11:db:05:ef:f7:1d:89:df:aa:90:4c:4e:ef:89: eb:23:98:a9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NjZFODExMC8GA1UEBRMoNEMyMjEyMUFERkFFM0Y1NzUyODAxNjUxNTFDM0ZEMzBF M0FBRkQwMTAeFw0yNTA2MTUwNjM4MDhaFw0yNTA2MjIwNjM4MDhaMBgxFjAUBgNV BAMTDTY4NGU2YTUwLWMyMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeL3y65ZJr8QP5VF3VGd4Cj9sE+H0NTjZ8yCdKmPI0sl+9NjF9HGAiYbcRKKmF pQe7Yo9X8bnxXiVCNyDuluH4kbtv6DNjNuFUrR1QtlnGJwM1QxfLfdlp7IaSH57S kVnjNLkJvPtShYK4FxgYHhPg6zJI3EfZM8zIPKqlWjRAfrk043+tEd+D2nVCtWZ0 RA8Emkj197n2BhC0/s+fcMqPzDwhcIKf51wNuhsavg2TgzDzvLrLjeE/n2qIb2vw vYpxbIARL2ccsw9XNLUDVrHYb7rBq9S+RqjwSxmZEUtslg+o+/kgNlTZMBtocMhR ksJAgA6g0q/2WRuzcFk+FEi7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUucKqa3Gn yh7FUVJh5Rbl3lJsUAIwHwYDVR0jBBgwFoAUTCISGt+uP1dSgBZRUcP9MOOq/QEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2NkU4L0Q4Mzg4RDM0RjNG QzExRUY5MjZDRTYzMEM0RjlBRTAyL1RDSVNHdC11UDFkU2dCWlJVY1A5TU9PcV9R RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVENJU0d0LXVQMWRTZ0JaUlVjUDlNT09xX1FFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2 NkU4L0Q4Mzg4RDM0RjNGQzExRUY5MjZDRTYzMEM0RjlBRTAyL1RDSVNHdC11UDFk U2dCWlJVY1A5TU9PcV9RRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABNoI3Y74v6a4yNYWgzHYBjbtyCm+N4uuIrWyujDBS1fhGahFxWKhwDM V64TsZS91SugKPe/7ZeIcIk3yqNPDVtkpqM2hIMoheFI0gkQdmht+m6DPCEEtBsB FSrQjdWFcB0I6klCZ9I5evX2tUZBS9y1EXUGnAIWz2AOl0/eaUFSlJMNjC6Sz7VH GlvOJ5GHKVZwDFIK9rpp+6m/qAMNA0zPRhm5iIpdHERZZleHNoyw/QXhQmOB+dic TpOPyjtbhfQbG75kQjx3EsnIzHlHRA17HXp3RY2JWoMubxXGZ9VmLBcPR6Z42NCZ wOv1AXMR2wXv9x2J36qQTE7viesjmKk= -----END CERTIFICATE-----Generated at Sun Jun 15 09:40:33 2025 by rpki-client