$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft File: TIHwGTocVyRFf1LgThHyUnPm_uA.mft (raw, json) Hash identifier: SkxP/NNu5bQiNPLe7ELDCAWlIXy+wZf8RZemrTYcoyA= Subject key identifier: D4:02:F3:39:36:01:8A:CE:2A:40:05:A9:8F:3A:1C:CD:E6:0C:53:BD Authority key identifier: 4C:81:F0:19:3A:1C:57:24:45:7F:52:E0:4E:11:F2:52:73:E6:FE:E0 Certificate issuer: /CN=A91A5533/serialNumber=4C81F0193A1C5724457F52E04E11F25273E6FEE0 Certificate serial: 0BFC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft Manifest number: 0BF5 Signing time: Mon 04 Aug 2025 18:59:52 +0000 Manifest this update: Mon 04 Aug 2025 18:59:51 +0000 Manifest next update: Mon 11 Aug 2025 18:59:51 +0000 Files and hashes: 1: TIHwGTocVyRFf1LgThHyUnPm_uA.crl (hash: I7rvVBTiWZipHnPK3FxZcyK0b5r1gwnJHNOQjh9zUKk=) 2: 637A6FCC1AEE11EAAEFD5871C4F9AE02.roa (hash: fuEIOJZ2g7nFL90Iih/ZQree35PAM4VcWuWuu09soDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.crl rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 18:59:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3068 (0xbfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5533, serialNumber=4C81F0193A1C5724457F52E04E11F25273E6FEE0 Validity Not Before: Aug 4 18:59:51 2025 GMT Not After : Aug 11 18:59:51 2025 GMT Subject: CN=68910327-90ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0c:b3:df:95:1b:81:87:73:fe:2d:e5:ec:18: 51:fb:bb:d2:12:4b:de:8e:63:77:d4:e4:00:4b:03: f0:73:1e:0f:7e:99:98:54:68:36:42:cd:21:e9:b6: 79:b6:74:80:13:8c:54:c4:71:b9:ae:50:f4:c5:23: a3:c7:f5:06:22:cf:1e:88:6f:23:bd:c7:ab:2b:2a: ad:ed:83:67:45:28:48:d8:9a:51:ad:f5:8e:72:72: 1e:c3:31:56:59:20:90:95:a7:9b:b5:e7:00:4e:16: 6b:b3:d5:95:2f:06:f7:51:6e:02:11:dc:e0:85:8a: c2:1f:77:d4:ac:65:93:5b:17:d7:69:35:74:68:18: 96:e7:9a:69:66:bd:71:ed:0c:53:22:0f:ce:41:7a: 0c:e3:bf:9f:1f:8c:a1:7a:ff:32:c7:9e:05:dc:d0: 50:13:7a:b4:32:df:c9:73:b0:b9:53:0d:6d:6d:32: 9b:f2:56:18:0b:77:7a:e2:c1:5a:68:b4:6f:ec:22: 2f:48:22:7d:a4:7d:60:14:2c:b3:de:5f:b5:d6:23: da:6d:0d:a8:f7:fe:e1:38:05:7a:ff:8f:1b:82:f9: 6c:5a:ee:28:45:1b:92:05:f7:88:35:5b:27:ef:18: 53:f4:cf:f2:b4:10:fb:f5:a5:07:6d:ed:e6:b4:95: ad:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:02:F3:39:36:01:8A:CE:2A:40:05:A9:8F:3A:1C:CD:E6:0C:53:BD X509v3 Authority Key Identifier: keyid:4C:81:F0:19:3A:1C:57:24:45:7F:52:E0:4E:11:F2:52:73:E6:FE:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:3f:4c:4b:9f:90:0d:bf:d6:11:88:56:ad:93:ce:cb:5c:4c: ad:67:23:46:fa:97:66:30:8d:e7:96:d7:1f:83:c3:c8:b7:b0: 29:a1:17:e5:bb:ce:17:db:b2:7a:a5:9c:c7:b1:0e:cd:63:25: b5:4c:bf:36:b8:14:d3:03:25:2d:1f:6d:08:4c:a0:1f:9e:77: 01:ab:03:dd:09:31:b2:67:29:d1:fd:d6:cf:af:06:16:fa:99: 1a:45:83:de:e4:cb:14:af:68:7e:48:60:48:2a:ce:46:fd:24: 08:59:6f:e5:90:d2:cc:f8:d3:37:72:9b:d6:dc:73:08:36:62: 05:34:51:26:a1:32:8b:31:61:4e:88:76:98:ce:20:f7:80:98: 70:42:f4:5a:bb:84:b2:f8:40:f4:1a:26:a8:ec:73:f5:34:80: 34:5e:5c:7a:e9:f1:95:87:6b:a6:48:06:31:8a:8c:0d:47:0d: c0:51:00:79:d2:45:a1:ac:ae:1c:44:d3:cc:de:16:56:51:9f: 3d:ed:e7:89:06:f6:3b:3f:bf:10:59:a9:e6:52:45:8f:d1:ba: 55:88:5f:1f:89:5d:dc:31:b8:d5:c7:d0:7e:fd:31:09:67:a0: b4:0f:02:ee:60:a0:ae:d4:68:24:89:ee:d4:74:8b:a0:c8:89: ba:06:b0:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1MzMxMTAvBgNVBAUTKDRDODFGMDE5M0ExQzU3MjQ0NTdGNTJFMDRFMTFGMjUy NzNFNkZFRTAwHhcNMjUwODA0MTg1OTUxWhcNMjUwODExMTg1OTUxWjAYMRYwFAYD VQQDEw02ODkxMDMyNy05MGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgyz35UbgYdz/i3l7BhR+7vSEkvejmN31OQASwPwcx4PfpmYVGg2Qs0h6bZ5 tnSAE4xUxHG5rlD0xSOjx/UGIs8eiG8jvcerKyqt7YNnRShI2JpRrfWOcnIewzFW WSCQlaebtecAThZrs9WVLwb3UW4CEdzghYrCH3fUrGWTWxfXaTV0aBiW55ppZr1x 7QxTIg/OQXoM47+fH4yhev8yx54F3NBQE3q0Mt/Jc7C5Uw1tbTKb8lYYC3d64sFa aLRv7CIvSCJ9pH1gFCyz3l+11iPabQ2o9/7hOAV6/48bgvlsWu4oRRuSBfeINVsn 7xhT9M/ytBD79aUHbe3mtJWtfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQC8zk2 AYrOKkAFqY86HM3mDFO9MB8GA1UdIwQYMBaAFEyB8Bk6HFckRX9S4E4R8lJz5v7g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTUzMy8wNjExNTFGMjFB NEUxMUVBOUUwOUNDODJDNEY5QUUwMi9USUh3R1RvY1Z5UkZmMUxnVGhIeVVuUG1f dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RJSHdHVG9jVnlSRmYxTGdUaEh5VW5QbV91QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTUzMy8wNjExNTFGMjFBNEUxMUVBOUUwOUNDODJDNEY5QUUwMi9USUh3R1RvY1Z5 UkZmMUxnVGhIeVVuUG1fdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuP0xLn5ANv9YRiFatk87LXEytZyNG+pdmMI3nltcfg8PIt7ApoRfl u84X27J6pZzHsQ7NYyW1TL82uBTTAyUtH20ITKAfnncBqwPdCTGyZynR/dbPrwYW +pkaRYPe5MsUr2h+SGBIKs5G/SQIWW/lkNLM+NM3cpvW3HMINmIFNFEmoTKLMWFO iHaYziD3gJhwQvRau4Sy+ED0Giao7HP1NIA0Xlx66fGVh2umSAYxiowNRw3AUQB5 0kWhrK4cRNPM3hZWUZ897eeJBvY7P78QWanmUkWP0bpViF8fiV3cMbjVx9B+/TEJ Z6C0DwLuYKCu1Ggkie7UdIugyIm6BrDW -----END CERTIFICATE-----Generated at Tue Aug 5 20:14:26 2025 by rpki-client