$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft File: TH2sISA9rkFsH87q_FVlcgIiCKE.mft (raw, json) Hash identifier: Kmn86AqIZ3GB8+IfvR0wrP8Rd6BCqPZJil0TrkT0NyQ= Subject key identifier: 4C:F7:6A:49:20:D1:46:EE:71:04:85:5C:E4:7D:D6:18:0D:12:07:1B Authority key identifier: 4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 Certificate issuer: /CN=A91C0CD5/serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft Manifest number: 0191 Signing time: Tue 05 Aug 2025 04:00:35 +0000 Manifest this update: Tue 05 Aug 2025 04:00:34 +0000 Manifest next update: Tue 12 Aug 2025 04:00:34 +0000 Files and hashes: 1: TH2sISA9rkFsH87q_FVlcgIiCKE.crl (hash: L4AVsNI2Z0dVLNHy9xEjUE15Vz2qux/7ZhK8PiodBpU=) 2: 6EB972341D6011EEB28A4323C4F9AE02.roa (hash: bQCg19K5xN+p4d0M6W+H8xOlCOrAN5+b0tebovRRHFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 04:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0CD5, serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Validity Not Before: Aug 5 04:00:34 2025 GMT Not After : Aug 12 04:00:34 2025 GMT Subject: CN=689181e3-c82a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:aa:38:48:10:16:ff:a3:1b:b7:95:dc:03:83: eb:cd:75:59:d6:db:14:3f:59:cd:46:c5:0f:c2:66: 29:b2:c7:c8:4b:ed:79:2f:45:64:0e:96:fe:14:b5: 75:aa:26:86:ad:4f:eb:73:56:05:26:76:27:c0:90: c0:00:fc:b3:aa:aa:b4:c5:0c:3b:7f:c1:a0:3a:44: 05:ed:18:c2:da:0d:9a:c9:2a:63:c9:d0:1e:5c:b3: db:a1:cc:24:74:aa:a5:c6:7e:b9:cb:cb:49:0b:dd: 1e:c3:c5:c5:dc:71:39:da:57:c0:4e:95:68:d8:99: a3:17:d8:2d:6b:a0:d7:03:b5:7e:02:b3:eb:f7:b1: 6a:05:67:87:ab:d0:44:a6:5e:4c:87:f1:67:00:ba: 0c:14:0f:1e:4d:aa:36:e5:24:57:aa:3e:7c:8b:3f: 7d:cf:09:0a:fc:56:d7:75:c5:ff:cd:af:19:e5:af: 3f:d2:a4:69:96:06:36:85:80:e9:87:90:8f:18:a5: 86:3a:f1:b6:ab:66:fc:79:4e:51:23:de:d4:00:c5: 9f:6d:a2:4c:ad:d5:b6:d2:5d:32:35:fe:02:52:e5: a1:aa:ab:60:c9:e4:9d:13:9d:7f:b5:9d:91:66:31: 4f:56:94:c8:54:98:1a:e3:79:de:a0:4f:7c:96:f1: 30:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:F7:6A:49:20:D1:46:EE:71:04:85:5C:E4:7D:D6:18:0D:12:07:1B X509v3 Authority Key Identifier: keyid:4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:94:97:a1:d6:e0:e6:6a:f8:a9:4a:65:94:e9:70:46:23:c5: 82:67:57:3d:6b:e8:37:58:c6:12:c5:4a:17:cb:09:14:0d:9d: 28:44:2f:f1:6b:88:b7:df:e2:bf:77:57:9b:24:bb:23:1b:63: ed:c1:b9:ed:59:71:37:2e:5a:a4:06:0a:e1:e0:cb:6e:bd:2d: c3:92:bb:8c:6d:73:d1:c0:49:a6:57:b2:ff:ea:c9:6a:df:c5: fa:d6:c3:a7:8f:e8:07:fb:a4:58:5b:9c:1d:9d:ba:09:af:19: 4c:84:37:fd:3f:19:0d:c2:1a:f1:75:cb:93:dd:64:02:ed:ee: 92:b2:2d:56:2a:39:9b:da:3c:f7:69:97:80:4b:a8:ac:22:54: 53:e7:8f:d6:ba:78:41:ed:6b:bc:76:1e:0f:54:5a:e5:5e:5e: b7:a3:97:c1:be:a5:2b:54:77:83:24:20:3e:46:94:97:03:b6: 88:cd:19:50:9d:0e:45:2a:fb:b8:c2:10:30:9c:a1:cb:23:01: 6e:87:9b:82:fd:92:bf:21:52:1b:aa:e2:ba:66:31:a0:c0:6b: 4b:4b:bb:10:b1:37:3f:16:06:45:50:e7:01:44:5f:c1:a1:ba: b0:52:ef:4f:96:29:ba:60:63:2c:21:5e:97:eb:02:2b:c8:00: 70:ee:ec:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDRDUxMTAvBgNVBAUTKDRDN0RBQzIxMjAzREFFNDE2QzFGQ0VFQUZDNTU2NTcy MDIyMjA4QTEwHhcNMjUwODA1MDQwMDM0WhcNMjUwODEyMDQwMDM0WjAYMRYwFAYD VQQDEw02ODkxODFlMy1jODJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5qo4SBAW/6Mbt5XcA4PrzXVZ1tsUP1nNRsUPwmYpssfIS+15L0VkDpb+FLV1 qiaGrU/rc1YFJnYnwJDAAPyzqqq0xQw7f8GgOkQF7RjC2g2aySpjydAeXLPbocwk dKqlxn65y8tJC90ew8XF3HE52lfATpVo2JmjF9gta6DXA7V+ArPr97FqBWeHq9BE pl5Mh/FnALoMFA8eTao25SRXqj58iz99zwkK/FbXdcX/za8Z5a8/0qRplgY2hYDp h5CPGKWGOvG2q2b8eU5RI97UAMWfbaJMrdW20l0yNf4CUuWhqqtgyeSdE51/tZ2R ZjFPVpTIVJga43neoE98lvEwMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEz3akkg 0UbucQSFXOR91hgNEgcbMB8GA1UdIwQYMBaAFEx9rCEgPa5BbB/O6vxVZXICIgih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMENENS9DRDJCNEI0NDFE MEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJrRnNIODdxX0ZWbGNnSWlD S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RIMnNJU0E5cmtGc0g4N3FfRlZsY2dJaUNLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MENENS9DRDJCNEI0NDFEMEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJr RnNIODdxX0ZWbGNnSWlDS0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQlJeh1uDmavipSmWU6XBGI8WCZ1c9a+g3WMYSxUoXywkUDZ0oRC/x a4i33+K/d1ebJLsjG2PtwbntWXE3LlqkBgrh4MtuvS3DkruMbXPRwEmmV7L/6slq 38X61sOnj+gH+6RYW5wdnboJrxlMhDf9PxkNwhrxdcuT3WQC7e6Ssi1WKjmb2jz3 aZeAS6isIlRT54/WunhB7Wu8dh4PVFrlXl63o5fBvqUrVHeDJCA+RpSXA7aIzRlQ nQ5FKvu4whAwnKHLIwFuh5uC/ZK/IVIbquK6ZjGgwGtLS7sQsTc/FgZFUOcBRF/B obqwUu9Plim6YGMsIV6X6wIryABw7uy7 -----END CERTIFICATE-----Generated at Thu Aug 7 04:26:26 2025 by rpki-client