$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft File: TvuTtJvxulYAjfxgYItSFq7JmsY.mft (raw, json) Hash identifier: NT9XUtI5DxQ7f8Cqe1ZwWUV6laEECw5bRigUyHtu4CU= Subject key identifier: 6B:DB:9E:A4:8B:3F:3A:B3:E2:67:34:AF:2C:F2:03:4F:8B:DB:9C:40 Authority key identifier: 4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 Certificate issuer: /CN=A91B8070/serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft Manifest number: 24 Signing time: Fri 13 Jun 2025 06:43:59 +0000 Manifest this update: Fri 13 Jun 2025 06:43:59 +0000 Manifest next update: Fri 20 Jun 2025 06:43:59 +0000 Files and hashes: 1: TvuTtJvxulYAjfxgYItSFq7JmsY.crl (hash: /gGIoSNqV92VxrL+D1ukG8gzomISdEiYO1CXK+ZoPmc=) 2: 3AD6ED62138511F08BE72448C4F9AE02.roa (hash: 3S4RVGDMTvhO6vm0Gyvr7UAtQxMy4Fhc3zbaUVgynRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:43:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8070, serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Validity Not Before: Jun 13 06:43:59 2025 GMT Not After : Jun 20 06:43:59 2025 GMT Subject: CN=684bc8af-1171 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:26:04:ca:f9:50:36:17:78:af:a2:43:cc:5e: 51:b6:91:13:20:6f:60:9e:a3:ba:cd:07:b7:65:0b: ad:a8:32:60:6e:f2:60:f7:be:14:53:4b:a2:69:8e: e7:8f:53:70:32:8d:d5:17:18:9d:d1:c4:3b:ba:5b: a0:6a:43:4a:50:02:60:8c:c1:6e:50:91:aa:5e:cf: 0e:11:f0:1a:6f:97:02:3e:51:78:2a:2a:09:00:f6: 00:02:15:e6:31:ff:15:92:e6:fe:fb:e8:7c:f2:2f: 91:d1:35:89:2f:ac:ab:b8:09:67:f6:db:02:e1:36: 88:14:ab:bf:44:f9:9a:18:01:1e:44:e1:6f:b4:ca: fa:53:84:f8:cb:b3:e6:1c:d2:17:0c:2e:f8:35:04: 18:9e:0d:03:7a:46:ae:d1:51:3e:f8:55:18:f5:32: 38:c0:88:59:59:64:75:c1:e1:ae:2b:17:34:13:e3: a4:7c:da:19:95:48:fc:e2:64:87:0b:38:00:20:ee: 6a:cb:53:1d:7c:5f:19:2f:64:69:4f:e7:3e:d5:6f: cd:ab:d0:af:d2:58:52:b2:45:8b:dc:7e:e3:43:27: 8b:4a:ee:7d:97:96:97:7b:d5:99:6b:7a:49:4d:5f: 38:39:7a:c5:30:9c:c1:e4:f8:a7:47:e0:2a:c5:2b: d9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:DB:9E:A4:8B:3F:3A:B3:E2:67:34:AF:2C:F2:03:4F:8B:DB:9C:40 X509v3 Authority Key Identifier: keyid:4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:57:56:eb:72:0a:ab:7d:0f:cd:67:ed:77:c6:bd:98:72:8c: 1c:df:27:6c:67:8a:44:7c:af:01:e6:23:d7:55:e6:0d:0d:6e: 60:5d:a6:09:ad:3b:fa:98:cf:62:42:8b:47:93:2c:be:75:bb: 53:39:e4:45:c4:11:4e:1b:ad:a2:2a:b4:3f:e1:19:de:bc:c6: 47:2f:12:ba:15:48:5b:9f:ae:49:93:e5:98:85:d4:77:ce:19: af:43:1c:11:ec:97:02:ac:f0:bf:70:bc:4c:2b:a2:52:4e:ec: ee:be:87:b3:90:66:ca:8d:e8:6f:1a:5f:30:1c:81:ab:37:93: 08:03:76:f8:1a:57:0d:c5:87:ed:50:92:cf:a8:52:d5:e2:9d: 38:44:38:ac:96:9b:1d:4f:fd:f3:ac:c0:3a:7d:b6:16:87:8c: a9:ae:f3:07:36:78:b4:fb:bf:aa:e5:d4:be:4f:10:ed:1d:69: 7d:24:79:f1:87:5f:46:d6:40:3e:b6:61:22:7b:c6:71:02:c9: f1:f9:34:75:c0:77:02:bf:86:42:05:03:f9:86:23:ec:1e:24: 78:d3:a1:ae:76:2a:a5:78:94:c3:c4:f7:bd:f2:c7:d3:d5:1b: 68:83:05:20:1a:89:2d:44:0f:98:5b:e3:72:95:ae:07:d6:37: 61:18:4b:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC ODA3MDExMC8GA1UEBRMoNEVGQjkzQjQ5QkYxQkE1NjAwOERGQzYwNjA4QjUyMTZB RUM5OUFDNjAeFw0yNTA2MTMwNjQzNTlaFw0yNTA2MjAwNjQzNTlaMBgxFjAUBgNV BAMTDTY4NGJjOGFmLTExNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2JgTK+VA2F3ivokPMXlG2kRMgb2Ceo7rNB7dlC62oMmBu8mD3vhRTS6JpjueP U3AyjdUXGJ3RxDu6W6BqQ0pQAmCMwW5Qkapezw4R8BpvlwI+UXgqKgkA9gACFeYx /xWS5v776HzyL5HRNYkvrKu4CWf22wLhNogUq79E+ZoYAR5E4W+0yvpThPjLs+Yc 0hcMLvg1BBieDQN6Rq7RUT74VRj1MjjAiFlZZHXB4a4rFzQT46R82hmVSPziZIcL OAAg7mrLUx18XxkvZGlP5z7Vb82r0K/SWFKyRYvcfuNDJ4tK7n2Xlpd71ZlreklN Xzg5esUwnMHk+KdH4CrFK9njAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUa9uepIs/ OrPiZzSvLPIDT4vbnEAwHwYDVR0jBBgwFoAUTvuTtJvxulYAjfxgYItSFq7JmsYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4MDcwL0FFMzY0Njk2MTM4 NDExRjBCQzVGNDU0N0M0RjlBRTAyL1R2dVR0SnZ4dWxZQWpmeGdZSXRTRnE3Sm1z WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVHZ1VHRKdnh1bFlBamZ4Z1lJdFNGcTdKbXNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 MDcwL0FFMzY0Njk2MTM4NDExRjBCQzVGNDU0N0M0RjlBRTAyL1R2dVR0SnZ4dWxZ QWpmeGdZSXRTRnE3Sm1zWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIBXVutyCqt9D81n7XfGvZhyjBzfJ2xnikR8rwHmI9dV5g0NbmBdpgmt O/qYz2JCi0eTLL51u1M55EXEEU4braIqtD/hGd68xkcvEroVSFufrkmT5ZiF1HfO Ga9DHBHslwKs8L9wvEwrolJO7O6+h7OQZsqN6G8aXzAcgas3kwgDdvgaVw3Fh+1Q ks+oUtXinThEOKyWmx1P/fOswDp9thaHjKmu8wc2eLT7v6rl1L5PEO0daX0kefGH X0bWQD62YSJ7xnECyfH5NHXAdwK/hkIFA/mGI+weJHjToa52KqV4lMPE973yx9PV G2iDBSAaiS1ED5hb43KVrgfWN2EYS4c= -----END CERTIFICATE-----Generated at Sun Jun 15 08:47:39 2025 by rpki-client