$ rpki-client -vvf rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft File: TzFe71rLLtp6NynnnhNZkMAecHQ.mft (raw, json) Hash identifier: mri8IxhTyaXvNLE/QJEB2S9MGGRxFjAsl2rupCN2JZo= Subject key identifier: 76:51:B7:16:2B:6F:79:BF:BB:C8:52:70:DB:A2:82:B1:0F:7E:05:05 Authority key identifier: 4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 Certificate issuer: /CN=A91957C9/serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Certificate serial: 0E1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft Manifest number: 0E10 Signing time: Sat 14 Jun 2025 17:43:38 +0000 Manifest this update: Sat 14 Jun 2025 17:43:38 +0000 Manifest next update: Sat 21 Jun 2025 17:43:38 +0000 Files and hashes: 1: TzFe71rLLtp6NynnnhNZkMAecHQ.crl (hash: SvpJBKxUdrgTrZ91OwBEWEe3L2ciTD+V8Pe6uvEJfsw=) 2: B55EC19EAC2B11E996F6E511C4F9AE02.roa (hash: IPMEsK43QEDeAXz8+s8RcYoTW9W3k8flG+M7sbwxamA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:43:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3611 (0xe1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957C9, serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Validity Not Before: Jun 14 17:43:38 2025 GMT Not After : Jun 21 17:43:38 2025 GMT Subject: CN=684db4ca-bd1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:6c:9e:0b:54:6d:d9:e6:83:df:b8:0f:0d:9c: 88:1f:a4:fc:1a:3a:11:df:b2:35:77:0b:ae:9c:0c: b9:aa:d7:81:e7:5b:8c:65:a9:cb:e0:92:7a:70:ee: c2:50:85:80:31:7d:52:3a:ef:f5:b3:fd:54:4c:1c: a9:46:40:22:40:7e:fc:73:0c:b6:9a:ff:42:a6:81: 0d:13:65:c0:48:b0:1b:c7:ad:31:df:16:fc:40:12: 20:7c:88:c3:72:1c:b8:fa:39:0d:83:b3:65:6b:c9: df:cf:65:24:92:0e:fd:1a:fe:ee:37:83:9f:be:c4: c6:9a:b6:fc:3a:69:19:aa:95:d0:05:81:c8:f7:0a: de:f1:c9:c8:60:86:34:07:d5:cb:c5:4a:c2:99:74: 10:8c:d2:4d:77:9e:98:4f:c1:96:27:a8:7b:5b:96: 0f:f6:45:f4:7f:33:bd:93:a0:43:02:2e:44:6c:2c: 2a:c1:b2:47:f0:47:29:e9:52:f2:32:77:9a:5e:be: 03:e6:aa:c9:ea:df:6a:90:3c:3c:8c:c7:6f:11:7d: 45:f6:8d:b9:ee:5d:60:82:e3:68:5c:97:9a:ec:9b: bd:57:f7:d2:99:98:b1:36:8e:18:85:70:ed:5f:6a: e4:f3:88:3c:92:40:28:39:f1:b0:83:a3:b6:5e:79: c7:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:51:B7:16:2B:6F:79:BF:BB:C8:52:70:DB:A2:82:B1:0F:7E:05:05 X509v3 Authority Key Identifier: keyid:4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:17:4a:cf:bb:91:83:f1:fd:8f:fe:3e:62:2b:5e:33:26:13: 35:75:73:c7:16:04:bc:e6:a0:ef:41:c7:de:92:8c:dc:94:bd: 5f:d0:59:d2:96:38:52:73:ac:e3:75:50:85:41:0e:c9:0e:f8: cb:d1:13:9e:5b:00:d7:8b:e4:bd:30:6c:54:12:2d:85:23:83: 32:9c:f5:f0:e5:41:87:67:6d:1b:1c:b2:0f:cd:3a:4b:e4:02: 89:46:a3:bf:24:a2:43:bd:4e:e9:4b:3a:5a:25:a1:bd:c7:30: 7f:80:d1:b3:c9:ce:87:7e:b5:14:4b:94:c4:99:9d:4b:72:d2: 5a:3d:2f:c2:5d:e6:79:c2:4c:9f:d7:f5:2b:66:8f:84:68:83: a6:47:85:96:0a:e0:6d:5c:97:2f:04:11:01:be:ea:8b:68:29: e8:25:4e:21:03:5b:5c:9c:68:d1:8d:df:0d:87:2c:40:3c:c5: 46:05:fa:25:87:fa:9c:3b:12:6b:7f:06:10:6e:f3:02:bd:02: 4f:19:f7:8c:f0:42:85:63:75:85:53:d7:4e:d8:fb:0c:fa:68: 71:95:86:6c:12:fa:da:a8:d7:fe:5f:f7:10:7a:b7:b1:07:dc: 19:ec:39:a2:de:b8:3e:df:06:d2:2f:aa:01:97:41:01:c2:ce: 1c:ce:b0:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3QzkxMTAvBgNVBAUTKDRGMzE1RUVGNUFDQjJFREE3QTM3MjlFNzlFMTM1OTkw QzAxRTcwNzQwHhcNMjUwNjE0MTc0MzM4WhcNMjUwNjIxMTc0MzM4WjAYMRYwFAYD VQQDEw02ODRkYjRjYS1iZDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlWyeC1Rt2eaD37gPDZyIH6T8GjoR37I1dwuunAy5qteB51uMZanL4JJ6cO7C UIWAMX1SOu/1s/1UTBypRkAiQH78cwy2mv9CpoENE2XASLAbx60x3xb8QBIgfIjD chy4+jkNg7Nla8nfz2Ukkg79Gv7uN4OfvsTGmrb8OmkZqpXQBYHI9wre8cnIYIY0 B9XLxUrCmXQQjNJNd56YT8GWJ6h7W5YP9kX0fzO9k6BDAi5EbCwqwbJH8Ecp6VLy MneaXr4D5qrJ6t9qkDw8jMdvEX1F9o257l1gguNoXJea7Ju9V/fSmZixNo4YhXDt X2rk84g8kkAoOfGwg6O2XnnHkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZRtxYr b3m/u8hScNuigrEPfgUFMB8GA1UdIwQYMBaAFE8xXu9ayy7aejcp554TWZDAHnB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdDOS9DMzU5RTc1RUFD MTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0cDZOeW5ubmhOWmtNQWVj SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R6RmU3MXJMTHRwNk55bm5uaE5aa01BZWNIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdDOS9DMzU5RTc1RUFDMTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0 cDZOeW5ubmhOWmtNQWVjSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1F0rPu5GD8f2P/j5iK14zJhM1dXPHFgS85qDvQcfekozclL1f0FnS ljhSc6zjdVCFQQ7JDvjL0ROeWwDXi+S9MGxUEi2FI4MynPXw5UGHZ20bHLIPzTpL 5AKJRqO/JKJDvU7pSzpaJaG9xzB/gNGzyc6HfrUUS5TEmZ1LctJaPS/CXeZ5wkyf 1/UrZo+EaIOmR4WWCuBtXJcvBBEBvuqLaCnoJU4hA1tcnGjRjd8NhyxAPMVGBfol h/qcOxJrfwYQbvMCvQJPGfeM8EKFY3WFU9dO2PsM+mhxlYZsEvraqNf+X/cQerex B9wZ7Dmi3rg+3wbSL6oBl0EBws4czrCW -----END CERTIFICATE-----Generated at Sun Jun 15 08:47:07 2025 by rpki-client