$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft File: TvuTtJvxulYAjfxgYItSFq7JmsY.mft (raw, json) Hash identifier: icKhjxFHYwQt57ciz8uPN7S4LjrgHO7sZ3jPiRudpgQ= Subject key identifier: 59:15:DD:DF:FC:DB:99:D5:A5:5D:2C:59:38:82:31:A4:F5:B6:B8:1A Authority key identifier: 4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 Certificate issuer: /CN=A91B8070/serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft Manifest number: 45 Signing time: Sat 09 Aug 2025 07:58:57 +0000 Manifest this update: Sat 09 Aug 2025 07:58:56 +0000 Manifest next update: Sat 16 Aug 2025 07:58:56 +0000 Files and hashes: 1: TvuTtJvxulYAjfxgYItSFq7JmsY.crl (hash: sDDyxhrWeFSt32A6V8Je96eM5QPhFd7RJ6z3pynbTxM=) 2: AB942EE0607C11F0A8F5A261C4F9AE02.roa (hash: Ib7XrV2UdhfMc2uSkqN8sJc2pYT7HHMtYcCkEQkD9OY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8070, serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Validity Not Before: Aug 9 07:58:56 2025 GMT Not After : Aug 16 07:58:56 2025 GMT Subject: CN=6896ffc0-b1c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f0:31:37:a6:84:66:ed:2d:d5:ae:c9:c7:35: 43:24:76:43:0b:0e:59:e3:1b:22:e5:35:10:cc:58: 73:c2:18:a9:52:32:2a:ae:6d:5e:3f:99:0e:6c:6d: 92:cf:0d:ef:c4:4f:61:74:a5:15:15:f4:0f:c4:e6: 91:da:01:7e:27:41:5a:ef:19:6a:5f:0e:57:74:f5: 81:6c:70:e1:f8:a6:70:52:2e:df:54:0b:eb:e5:46: c0:a1:05:2d:00:0e:0b:26:62:ef:98:2e:3a:d8:53: 4d:fd:15:a9:ab:da:38:d5:3e:98:d0:a4:f1:37:8e: 7c:5f:a9:e5:6d:ef:71:c0:f7:95:aa:09:55:6d:b3: b0:5f:c9:6d:de:b6:08:3f:4e:9e:50:84:cf:5d:3d: e4:41:8b:5c:7b:db:88:dd:63:8e:9c:a1:06:94:61: 79:e5:00:94:7f:82:3d:5a:75:96:2c:1a:cf:5e:39: 3c:bf:ad:3c:bd:39:ec:79:8a:74:22:43:8b:4a:a6: 9a:44:e0:96:68:cd:09:c0:d5:68:8a:6c:cd:7e:3e: 3c:6e:ba:fb:a0:54:df:f8:79:c9:e6:14:de:01:90: 99:73:82:bb:51:de:0d:98:71:cc:b9:f9:9b:70:d4: 61:d4:f6:ee:1a:99:75:18:77:18:33:69:e7:9d:0f: e1:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:15:DD:DF:FC:DB:99:D5:A5:5D:2C:59:38:82:31:A4:F5:B6:B8:1A X509v3 Authority Key Identifier: keyid:4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:2e:13:22:79:02:75:ea:7a:54:90:14:ca:4b:8c:6a:93:08: 41:eb:61:58:5a:cc:11:c6:c1:9a:db:41:28:31:23:15:10:04: 24:00:bf:ee:21:c5:a6:0d:8b:cd:9f:6c:25:5e:35:b0:90:f9: 0a:0e:6f:05:27:d5:3d:93:db:3d:46:fd:77:20:35:20:c4:51: 38:35:73:40:b9:87:03:b2:89:d3:f8:37:8c:f4:53:58:6a:4a: c7:2f:23:82:dd:f4:88:4e:d4:4f:d8:4f:e9:d7:39:e2:a3:38: 6c:2e:93:d1:93:69:e9:f8:ed:ac:6f:10:db:8a:04:ff:7e:eb: 9d:39:d6:3b:74:1f:51:f7:e9:25:8a:29:79:c2:92:cc:2b:95: 65:a5:74:06:38:06:64:f2:ec:aa:d4:27:f1:17:9b:52:ea:9b: 18:b1:20:cf:4d:04:74:ec:c4:38:bf:a1:05:b9:2d:05:3b:4c: 81:68:c0:18:3f:75:9c:c1:df:1a:d7:b4:28:f9:e4:a7:75:3a: 90:11:a4:df:a0:e7:6e:f7:d7:69:d1:90:6d:b8:10:6a:da:12: fa:5d:ef:21:37:a3:b0:fc:b0:8a:2b:b5:7b:9b:d3:31:4d:53: ad:f0:de:ba:ea:4f:ba:e7:b1:71:87:c7:56:82:76:36:d8:ce: 91:36:22:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC ODA3MDExMC8GA1UEBRMoNEVGQjkzQjQ5QkYxQkE1NjAwOERGQzYwNjA4QjUyMTZB RUM5OUFDNjAeFw0yNTA4MDkwNzU4NTZaFw0yNTA4MTYwNzU4NTZaMBgxFjAUBgNV BAMTDTY4OTZmZmMwLWIxYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDS8DE3poRm7S3VrsnHNUMkdkMLDlnjGyLlNRDMWHPCGKlSMiqubV4/mQ5sbZLP De/ET2F0pRUV9A/E5pHaAX4nQVrvGWpfDld09YFscOH4pnBSLt9UC+vlRsChBS0A DgsmYu+YLjrYU039Famr2jjVPpjQpPE3jnxfqeVt73HA95WqCVVts7BfyW3etgg/ Tp5QhM9dPeRBi1x724jdY46coQaUYXnlAJR/gj1adZYsGs9eOTy/rTy9Oex5inQi Q4tKpppE4JZozQnA1WiKbM1+PjxuuvugVN/4ecnmFN4BkJlzgrtR3g2Yccy5+Ztw 1GHU9u4amXUYdxgzaeedD+G3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWRXd3/zb mdWlXSxZOIIxpPW2uBowHwYDVR0jBBgwFoAUTvuTtJvxulYAjfxgYItSFq7JmsYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4MDcwL0FFMzY0Njk2MTM4 NDExRjBCQzVGNDU0N0M0RjlBRTAyL1R2dVR0SnZ4dWxZQWpmeGdZSXRTRnE3Sm1z WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVHZ1VHRKdnh1bFlBamZ4Z1lJdFNGcTdKbXNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 MDcwL0FFMzY0Njk2MTM4NDExRjBCQzVGNDU0N0M0RjlBRTAyL1R2dVR0SnZ4dWxZ QWpmeGdZSXRTRnE3Sm1zWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ4uEyJ5AnXqelSQFMpLjGqTCEHrYVhazBHGwZrbQSgxIxUQBCQAv+4h xaYNi82fbCVeNbCQ+QoObwUn1T2T2z1G/XcgNSDEUTg1c0C5hwOyidP4N4z0U1hq SscvI4Ld9IhO1E/YT+nXOeKjOGwuk9GTaen47axvENuKBP9+65051jt0H1H36SWK KXnCkswrlWWldAY4BmTy7KrUJ/EXm1LqmxixIM9NBHTsxDi/oQW5LQU7TIFowBg/ dZzB3xrXtCj55Kd1OpARpN+g527312nRkG24EGraEvpd7yE3o7D8sIortXub0zFN U63w3rrqT7rnsXGHx1aCdjbYzpE2Ih4= -----END CERTIFICATE-----Generated at Sun Aug 10 10:44:39 2025 by rpki-client