$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft File: TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft (raw, json) Hash identifier: CUku5lZOzkSa5YhgGLHecmSgPMYuPm21S7bPdPjUgYg= Subject key identifier: E0:16:D3:94:ED:78:76:95:3B:BA:CB:4E:D1:CD:8C:D4:EC:68:C8:A6 Authority key identifier: 4C:DF:99:E7:07:F9:02:33:8E:14:D5:10:24:9A:96:25:BC:A0:FF:9D Certificate issuer: /CN=A91847A4/serialNumber=4CDF99E707F902338E14D510249A9625BCA0FF9D Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TN-Z5wf5AjOOFNUQJJqWJbyg_50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft Manifest number: 4B Signing time: Sat 09 Aug 2025 07:53:27 +0000 Manifest this update: Sat 09 Aug 2025 07:53:27 +0000 Manifest next update: Sat 16 Aug 2025 07:53:27 +0000 Files and hashes: 1: TN-Z5wf5AjOOFNUQJJqWJbyg_50.crl (hash: sxqXAsVGVKc8iv7vcXk9DMiTejZxUxW3nZlrF9YMg6c=) 2: 1201EAF6083911F0B43D9172C4F9AE02.roa (hash: uAnBgSZhSmrvFmkynr5ZDyN/xYOEHNfe2WWeRhfO1A8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.crl rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TN-Z5wf5AjOOFNUQJJqWJbyg_50.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A4, serialNumber=4CDF99E707F902338E14D510249A9625BCA0FF9D Validity Not Before: Aug 9 07:53:27 2025 GMT Not After : Aug 16 07:53:27 2025 GMT Subject: CN=6896fe77-5d81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5c:2d:5b:ea:b6:1b:b9:f1:66:8c:7e:64:bf: ef:92:58:65:64:6e:b8:e0:74:99:a3:be:f3:10:da: db:7d:06:db:8a:0d:a9:d3:de:aa:bb:42:b1:fb:40: e5:f1:d1:70:69:3b:2a:98:83:48:57:bc:f3:92:77: b7:c9:16:3e:de:00:68:46:6d:43:07:c4:37:8a:08: 92:b4:25:39:ce:8d:ec:71:a0:1c:1e:80:75:99:d0: 3e:9f:4a:02:6c:e9:4e:d6:7a:a4:17:c3:5c:84:f9: cc:6e:21:c5:7b:43:b9:d2:0f:0e:e6:12:9b:5d:59: b6:73:30:79:30:82:b2:17:65:ec:a2:b8:35:7c:6d: d7:ac:ac:9d:78:79:f4:b9:0b:ab:08:b9:d9:c0:b7: 89:a4:c3:9b:58:32:6d:1e:88:cc:f9:3f:18:17:03: 71:43:90:a3:9e:8a:f5:49:ff:3e:70:c9:51:6b:61: 98:1c:6c:15:2a:51:33:68:bf:55:03:03:56:01:12: 12:07:0c:b7:0f:83:49:e2:93:84:2e:ff:66:d0:c6: 60:78:06:6f:18:b1:b2:69:82:48:5c:d1:57:46:7f: 18:7e:13:6a:18:75:7a:56:29:18:cd:8e:38:a9:06: 68:57:f5:37:c3:78:d8:46:d3:67:96:d4:eb:49:18: 8d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:16:D3:94:ED:78:76:95:3B:BA:CB:4E:D1:CD:8C:D4:EC:68:C8:A6 X509v3 Authority Key Identifier: keyid:4C:DF:99:E7:07:F9:02:33:8E:14:D5:10:24:9A:96:25:BC:A0:FF:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TN-Z5wf5AjOOFNUQJJqWJbyg_50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:a3:f5:ce:f5:46:5b:c9:60:81:82:be:81:59:1f:db:d7:1d: 6b:fc:75:21:97:43:75:3b:06:f8:6c:5a:b9:3a:05:ec:27:9e: 52:45:f1:91:48:5f:44:c0:c4:21:70:e8:a4:39:ce:17:21:0b: 7e:e0:58:a6:68:c3:bf:e3:ee:36:c2:91:60:16:56:ee:7a:5a: 5e:86:66:27:72:cd:5a:ec:42:c0:c6:84:bf:7a:da:e6:7e:02: 74:4a:f2:4e:25:fd:ca:25:63:60:2a:3e:54:7a:7a:fc:63:97: 77:82:a0:be:b5:59:b0:47:70:d3:12:b0:88:4e:61:c4:45:03: 85:3a:8f:23:df:fd:07:cc:0d:2b:5f:59:b3:db:bd:0e:5b:44: 77:f5:f5:04:6f:e8:82:30:e8:18:7f:11:1b:a3:15:fe:a6:cc: 40:35:22:5d:6f:9c:ea:7f:d7:c0:ce:80:92:d2:71:61:0f:02: 06:68:b8:0c:20:ef:81:ba:d1:6a:4f:bd:61:6d:66:85:0d:7c: f5:86:da:55:5e:da:4d:4a:77:d7:21:05:4e:be:3f:c8:4a:b9: 65:ee:89:ff:93:d5:23:3b:c4:a4:79:c6:e5:d4:3d:46:bb:8a: b5:bc:20:f9:cd:cf:f2:52:69:da:6a:a6:24:7c:e6:d2:d8:17: db:26:07:99 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NDdBNDExMC8GA1UEBRMoNENERjk5RTcwN0Y5MDIzMzhFMTRENTEwMjQ5QTk2MjVC Q0EwRkY5RDAeFw0yNTA4MDkwNzUzMjdaFw0yNTA4MTYwNzUzMjdaMBgxFjAUBgNV BAMTDTY4OTZmZTc3LTVkODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTXC1b6rYbufFmjH5kv++SWGVkbrjgdJmjvvMQ2tt9BtuKDanT3qq7QrH7QOXx 0XBpOyqYg0hXvPOSd7fJFj7eAGhGbUMHxDeKCJK0JTnOjexxoBwegHWZ0D6fSgJs 6U7WeqQXw1yE+cxuIcV7Q7nSDw7mEptdWbZzMHkwgrIXZeyiuDV8bdesrJ14efS5 C6sIudnAt4mkw5tYMm0eiMz5PxgXA3FDkKOeivVJ/z5wyVFrYZgcbBUqUTNov1UD A1YBEhIHDLcPg0nik4Qu/2bQxmB4Bm8YsbJpgkhc0VdGfxh+E2oYdXpWKRjNjjip BmhX9TfDeNhG02eW1OtJGI2JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4BbTlO14 dpU7ustO0c2M1OxoyKYwHwYDVR0jBBgwFoAUTN+Z5wf5AjOOFNUQJJqWJbyg/50w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0N0E0L0YyOUVCMjBBMDdF MDExRjBCNjE4NTE2MkM0RjlBRTAyL1ROLVo1d2Y1QWpPT0ZOVVFKSnFXSmJ5Z181 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVE4tWjV3ZjVBak9PRk5VUUpKcVdKYnlnXzUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0 N0E0L0YyOUVCMjBBMDdFMDExRjBCNjE4NTE2MkM0RjlBRTAyL1ROLVo1d2Y1QWpP T0ZOVVFKSnFXSmJ5Z181MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI+j9c71RlvJYIGCvoFZH9vXHWv8dSGXQ3U7BvhsWrk6BewnnlJF8ZFI X0TAxCFw6KQ5zhchC37gWKZow7/j7jbCkWAWVu56Wl6GZidyzVrsQsDGhL962uZ+ AnRK8k4l/colY2AqPlR6evxjl3eCoL61WbBHcNMSsIhOYcRFA4U6jyPf/QfMDStf WbPbvQ5bRHf19QRv6IIw6Bh/ERujFf6mzEA1Il1vnOp/18DOgJLScWEPAgZouAwg 74G60WpPvWFtZoUNfPWG2lVe2k1Kd9chBU6+P8hKuWXuif+T1SM7xKR5xuXUPUa7 irW8IPnNz/JSadpqpiR85tLYF9smB5k= -----END CERTIFICATE-----Generated at Sun Aug 10 21:17:06 2025 by rpki-client