$ rpki-client -vvf rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft File: TzFe71rLLtp6NynnnhNZkMAecHQ.mft (raw, json) Hash identifier: nMFPbWZ5c1OHGDdgkwh/krgtAw5Xhu70GiXyvtoKG8E= Subject key identifier: CD:C6:BB:1E:AF:D3:27:E0:CC:E4:A4:16:90:7E:F2:0B:BD:68:83:28 Authority key identifier: 4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 Certificate issuer: /CN=A91957C9/serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Certificate serial: 0E3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft Manifest number: 0E2E Signing time: Fri 08 Aug 2025 18:00:08 +0000 Manifest this update: Fri 08 Aug 2025 18:00:08 +0000 Manifest next update: Fri 15 Aug 2025 18:00:08 +0000 Files and hashes: 1: TzFe71rLLtp6NynnnhNZkMAecHQ.crl (hash: elIgLTrdY7icsMIWSHJIPSB6isyxkoJeWGdGta7U/Yc=) 2: B55EC19EAC2B11E996F6E511C4F9AE02.roa (hash: Kmbnqjt+FsbQjmxP1orKor9zYnpCPWPxfhoKQqbWYu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3642 (0xe3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957C9, serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Validity Not Before: Aug 8 18:00:08 2025 GMT Not After : Aug 15 18:00:08 2025 GMT Subject: CN=68963b28-8c11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c5:63:11:37:1d:1e:37:42:cb:57:5d:2c:44: 8b:96:a6:43:66:fc:e1:cd:72:a2:a7:37:d0:8d:00: e0:9e:03:35:e5:e1:03:53:8e:59:57:15:b7:8a:c2: 90:0a:85:be:17:95:a5:6c:79:d6:70:d3:ab:b4:50: af:fe:75:a1:a0:86:ce:2a:e9:c4:ca:d0:42:02:9e: 1b:32:72:5c:f9:92:2f:8c:b4:0b:3d:a5:b5:72:23: 45:e5:18:e8:78:d7:b8:33:46:dd:87:f2:10:0d:de: fe:f5:25:9d:74:ad:83:1a:44:6e:56:e4:bc:a9:de: 5d:e0:47:cf:09:84:bc:31:b6:7e:9e:6c:56:58:0d: 32:34:30:ff:c5:a4:a4:09:de:d1:00:e9:c8:c2:a5: c0:9b:2e:f2:71:16:ec:36:c7:7c:39:5c:80:52:98: 9c:ca:5f:da:7e:26:b9:0d:eb:1c:d5:75:5d:23:77: 12:a4:60:79:44:93:8b:47:39:7e:a3:47:d7:c8:9c: 55:45:43:04:a0:db:a4:2b:ba:25:9d:38:e9:bd:c6: 28:4a:64:8a:f6:12:68:f5:f5:2b:6a:e3:ac:c3:f1: e2:12:8b:c4:f7:e2:94:ac:4b:e1:20:08:38:a6:4e: 46:0a:24:00:42:76:77:2d:c8:f8:72:29:2c:20:6c: 5d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C6:BB:1E:AF:D3:27:E0:CC:E4:A4:16:90:7E:F2:0B:BD:68:83:28 X509v3 Authority Key Identifier: keyid:4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:f2:56:18:80:c7:96:a3:40:f5:29:5d:21:1e:3c:71:a4:8b: 0b:6f:6b:91:4b:ae:2f:cd:bb:06:21:07:41:b7:57:2e:34:46: e5:85:bf:64:01:a3:4b:68:08:7c:1c:61:f5:a2:11:a0:a8:e2: ac:6d:85:4f:f4:8c:3d:ad:0d:7f:95:5e:3a:37:c6:4b:c0:12: 0b:24:24:85:a4:3c:61:3d:b0:68:ca:cf:cf:32:12:48:07:05: b5:8c:94:3d:a2:1a:3c:2f:40:33:64:60:e4:da:b8:0c:d5:08: e1:bc:30:65:ea:85:09:1a:0e:90:35:cc:c9:e2:7a:bf:73:de: 02:f9:de:15:2d:78:ef:c2:53:4c:c2:60:b2:05:28:6b:2b:27: d3:07:95:63:28:0a:ba:d5:43:e4:c3:a4:fd:1b:98:a3:f2:f0: f2:7e:e3:0c:d9:50:08:fb:ab:8d:b7:66:a0:06:9a:07:eb:3e: f2:c8:c9:21:2e:54:f8:df:e5:51:bb:58:ca:4e:0a:d0:bd:4c: 18:41:18:8c:3a:de:67:1c:81:cf:8d:69:76:18:4a:4f:c5:56: 49:19:5c:6e:77:71:c1:07:1c:10:65:66:47:3c:83:07:6d:bb: 72:ab:88:b0:25:0c:14:22:e1:7d:ca:95:29:67:9f:6c:8d:e5: 22:04:11:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3QzkxMTAvBgNVBAUTKDRGMzE1RUVGNUFDQjJFREE3QTM3MjlFNzlFMTM1OTkw QzAxRTcwNzQwHhcNMjUwODA4MTgwMDA4WhcNMjUwODE1MTgwMDA4WjAYMRYwFAYD VQQDEw02ODk2M2IyOC04YzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsVjETcdHjdCy1ddLESLlqZDZvzhzXKipzfQjQDgngM15eEDU45ZVxW3isKQ CoW+F5WlbHnWcNOrtFCv/nWhoIbOKunEytBCAp4bMnJc+ZIvjLQLPaW1ciNF5Rjo eNe4M0bdh/IQDd7+9SWddK2DGkRuVuS8qd5d4EfPCYS8MbZ+nmxWWA0yNDD/xaSk Cd7RAOnIwqXAmy7ycRbsNsd8OVyAUpicyl/afia5Desc1XVdI3cSpGB5RJOLRzl+ o0fXyJxVRUMEoNukK7olnTjpvcYoSmSK9hJo9fUrauOsw/HiEovE9+KUrEvhIAg4 pk5GCiQAQnZ3Lcj4ciksIGxd4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3Gux6v 0yfgzOSkFpB+8gu9aIMoMB8GA1UdIwQYMBaAFE8xXu9ayy7aejcp554TWZDAHnB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdDOS9DMzU5RTc1RUFD MTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0cDZOeW5ubmhOWmtNQWVj SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R6RmU3MXJMTHRwNk55bm5uaE5aa01BZWNIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdDOS9DMzU5RTc1RUFDMTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0 cDZOeW5ubmhOWmtNQWVjSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ8lYYgMeWo0D1KV0hHjxxpIsLb2uRS64vzbsGIQdBt1cuNEblhb9k AaNLaAh8HGH1ohGgqOKsbYVP9Iw9rQ1/lV46N8ZLwBILJCSFpDxhPbBoys/PMhJI BwW1jJQ9oho8L0AzZGDk2rgM1QjhvDBl6oUJGg6QNczJ4nq/c94C+d4VLXjvwlNM wmCyBShrKyfTB5VjKAq61UPkw6T9G5ij8vDyfuMM2VAI+6uNt2agBpoH6z7yyMkh LlT43+VRu1jKTgrQvUwYQRiMOt5nHIHPjWl2GEpPxVZJGVxud3HBBxwQZWZHPIMH bbtyq4iwJQwUIuF9ypUpZ59sjeUiBBFo -----END CERTIFICATE-----Generated at Sun Aug 10 03:54:02 2025 by rpki-client