$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft File: TIHwGTocVyRFf1LgThHyUnPm_uA.mft (raw, json) Hash identifier: WUGiR0Htt/ObLzHHrY5GOvkP8vVM1l2UnKahesX3NBo= Subject key identifier: F7:D4:A6:FA:79:F0:35:BD:24:8D:63:FB:E6:99:18:F9:DC:B9:EF:90 Authority key identifier: 4C:81:F0:19:3A:1C:57:24:45:7F:52:E0:4E:11:F2:52:73:E6:FE:E0 Certificate issuer: /CN=A91A5533/serialNumber=4C81F0193A1C5724457F52E04E11F25273E6FEE0 Certificate serial: 0BE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft Manifest number: 0BDA Signing time: Thu 12 Jun 2025 18:38:28 +0000 Manifest this update: Thu 12 Jun 2025 18:38:27 +0000 Manifest next update: Thu 19 Jun 2025 18:38:27 +0000 Files and hashes: 1: TIHwGTocVyRFf1LgThHyUnPm_uA.crl (hash: Cqxap/HgBWFll+rQSuUsbsx7c2wieEsZ3wcuNPusihg=) 2: 637A6FCC1AEE11EAAEFD5871C4F9AE02.roa (hash: fuEIOJZ2g7nFL90Iih/ZQree35PAM4VcWuWuu09soDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.crl rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3041 (0xbe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5533, serialNumber=4C81F0193A1C5724457F52E04E11F25273E6FEE0 Validity Not Before: Jun 12 18:38:27 2025 GMT Not After : Jun 19 18:38:27 2025 GMT Subject: CN=684b1ea4-fc60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b8:16:bf:05:22:34:91:5b:25:54:bb:d1:9d: fc:41:75:31:2f:8a:96:84:65:d8:a9:12:06:7e:b3: a0:2b:37:93:14:71:6c:91:e1:c6:12:c8:0f:69:f5: 86:6f:a7:9b:72:d1:8b:66:7a:b5:d9:62:25:55:f7: c9:31:8f:b8:66:5a:c7:83:9a:a3:59:5d:ad:4d:45: 64:0b:61:e5:96:d2:52:82:53:6c:3a:8a:11:8e:74: 41:f1:4a:11:66:66:e9:d2:30:b2:fd:92:70:fe:e7: 35:b3:de:38:a5:ad:96:cb:21:b9:5a:68:4c:d3:6d: 28:24:fe:81:d2:34:3b:5b:7b:fd:ac:98:7b:47:00: ca:e1:5f:72:07:9a:0d:6e:a4:01:5c:80:5b:ee:cc: b6:2c:ea:2e:2e:10:24:1a:91:39:27:e0:0e:26:b8: dd:8b:74:cf:78:5d:23:9d:9a:6b:34:ff:0a:7e:6c: af:fb:0a:63:d6:c6:7c:0d:f0:32:4a:28:e6:4d:7b: a2:e0:26:87:44:3f:17:36:6c:b0:34:ba:35:ae:49: c2:53:db:6d:b8:45:dd:e8:5c:a1:14:68:8b:f3:04: 5e:bf:19:1d:c3:da:34:6e:46:f7:a8:70:26:d4:8f: d9:81:47:47:a3:e8:e4:90:e8:7b:d4:29:40:7c:4f: 36:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D4:A6:FA:79:F0:35:BD:24:8D:63:FB:E6:99:18:F9:DC:B9:EF:90 X509v3 Authority Key Identifier: keyid:4C:81:F0:19:3A:1C:57:24:45:7F:52:E0:4E:11:F2:52:73:E6:FE:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:b5:50:76:c0:35:11:be:ee:f5:eb:0e:4f:5f:78:d1:41:64: 52:61:9b:d0:12:9a:da:51:c7:c4:a8:25:b9:d7:e4:c1:90:be: 51:9a:9c:fa:48:fa:12:ac:1a:ab:ee:d6:af:62:67:4c:07:6e: 00:ca:e2:a1:a1:2f:3a:fa:ff:9c:7e:cc:d9:10:ff:db:60:98: 0c:4c:51:04:9f:33:3e:c3:a9:3a:c9:3a:5c:c6:db:9e:f6:b7: 7b:ad:ca:e6:e7:c2:fc:a3:26:14:7c:fb:a5:a5:7d:0c:64:3a: 8b:e5:31:f5:e0:94:e1:ac:48:0c:8f:27:59:77:7e:48:e8:36: bf:77:66:d0:81:77:f2:3a:95:66:d5:e8:8b:bb:e8:0d:a9:9e: 20:a8:31:20:84:fb:ec:e2:53:2f:70:76:af:d2:b6:54:74:41: 2d:a6:a6:16:a9:5c:8c:74:b5:57:16:1d:78:6c:b7:ea:38:f6: c0:86:c5:46:86:cd:64:a6:1d:e1:39:17:17:05:ab:e3:b1:14: f4:4e:b4:15:6a:b3:13:63:99:51:94:b9:fa:9c:21:94:0d:6a: 3e:37:5b:8b:65:81:f8:ba:00:cd:16:b7:28:a5:85:22:1e:66: 60:4a:21:fc:53:3d:11:34:eb:23:8b:e0:22:1c:af:a0:35:ca: a1:c5:d2:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1MzMxMTAvBgNVBAUTKDRDODFGMDE5M0ExQzU3MjQ0NTdGNTJFMDRFMTFGMjUy NzNFNkZFRTAwHhcNMjUwNjEyMTgzODI3WhcNMjUwNjE5MTgzODI3WjAYMRYwFAYD VQQDEw02ODRiMWVhNC1mYzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2LgWvwUiNJFbJVS70Z38QXUxL4qWhGXYqRIGfrOgKzeTFHFskeHGEsgPafWG b6ebctGLZnq12WIlVffJMY+4ZlrHg5qjWV2tTUVkC2HlltJSglNsOooRjnRB8UoR Zmbp0jCy/ZJw/uc1s944pa2WyyG5WmhM020oJP6B0jQ7W3v9rJh7RwDK4V9yB5oN bqQBXIBb7sy2LOouLhAkGpE5J+AOJrjdi3TPeF0jnZprNP8Kfmyv+wpj1sZ8DfAy SijmTXui4CaHRD8XNmywNLo1rknCU9ttuEXd6FyhFGiL8wRevxkdw9o0bkb3qHAm 1I/ZgUdHo+jkkOh71ClAfE82XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfUpvp5 8DW9JI1j++aZGPncue+QMB8GA1UdIwQYMBaAFEyB8Bk6HFckRX9S4E4R8lJz5v7g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTUzMy8wNjExNTFGMjFB NEUxMUVBOUUwOUNDODJDNEY5QUUwMi9USUh3R1RvY1Z5UkZmMUxnVGhIeVVuUG1f dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RJSHdHVG9jVnlSRmYxTGdUaEh5VW5QbV91QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTUzMy8wNjExNTFGMjFBNEUxMUVBOUUwOUNDODJDNEY5QUUwMi9USUh3R1RvY1Z5 UkZmMUxnVGhIeVVuUG1fdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5tVB2wDURvu716w5PX3jRQWRSYZvQEpraUcfEqCW51+TBkL5Rmpz6 SPoSrBqr7tavYmdMB24AyuKhoS86+v+cfszZEP/bYJgMTFEEnzM+w6k6yTpcxtue 9rd7rcrm58L8oyYUfPulpX0MZDqL5TH14JThrEgMjydZd35I6Da/d2bQgXfyOpVm 1eiLu+gNqZ4gqDEghPvs4lMvcHav0rZUdEEtpqYWqVyMdLVXFh14bLfqOPbAhsVG hs1kph3hORcXBavjsRT0TrQVarMTY5lRlLn6nCGUDWo+N1uLZYH4ugDNFrcopYUi HmZgSiH8Uz0RNOsji+AiHK+gNcqhxdJ7 -----END CERTIFICATE-----Generated at Sat Jun 14 18:42:33 2025 by rpki-client