$ rpki-client -vvf rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft File: TUTi91KilQtrVSjAaZsUkOdXd0Q.mft (raw, json) Hash identifier: 0E78ZKZYvd4KrTdtju43/LRHaZJo+9UA9Gn/BWP51/0= Subject key identifier: 8F:59:14:EC:72:5B:16:9E:1F:B9:2F:B9:E9:EF:B0:37:E6:2C:91:21 Authority key identifier: 4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 Certificate issuer: /CN=A91D15A4/serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Certificate serial: 0F4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft Manifest number: 0F42 Signing time: Sat 14 Jun 2025 17:31:35 +0000 Manifest this update: Sat 14 Jun 2025 17:31:35 +0000 Manifest next update: Sat 21 Jun 2025 17:31:35 +0000 Files and hashes: 1: TUTi91KilQtrVSjAaZsUkOdXd0Q.crl (hash: xXwXA9qpfwwkD5BVOg4kxBnp4Ic7Saf5djp/nrEqZkU=) 2: 3D371C5C708F11E9B105E92CC4F9AE02.roa (hash: YkmY4q4YSypbm13HUH++xACjilqSAUGjIIEq3zMyNH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3916 (0xf4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D15A4, serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Validity Not Before: Jun 14 17:31:35 2025 GMT Not After : Jun 21 17:31:35 2025 GMT Subject: CN=684db1f7-66a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:fd:d4:68:2b:27:f5:e3:e4:61:c6:ad:08:53: b0:a8:48:8c:eb:ec:e2:f5:a8:88:ed:8d:53:07:b7: 2f:40:a3:39:98:05:71:b2:25:2b:72:b7:02:dd:90: 98:55:0b:3f:7a:e6:77:9f:25:ce:0f:ef:42:ce:dd: cd:e7:dc:ea:0d:f4:25:ab:3f:e2:22:47:44:85:a4: 2c:fd:37:ed:e5:e2:21:7b:a7:4b:de:50:97:40:61: ab:97:14:2e:a2:28:ba:8a:15:5a:8a:74:40:92:a4: e8:60:cf:01:b1:99:5e:66:5c:6e:15:4f:fb:be:00: 5a:bf:cb:84:c5:63:43:62:af:2a:61:8d:2d:22:99: 1e:b4:38:f3:db:9f:1e:e2:fd:89:f8:2b:47:14:7d: 8d:2c:9b:fe:49:5f:b7:ec:41:a0:e2:94:ce:4a:de: f9:a8:a8:f6:1c:9f:6c:cb:0f:ca:8d:62:96:1a:b3: 56:92:65:b5:9f:56:07:7b:ef:f2:9c:20:4f:86:3f: b6:6b:a7:9c:0f:18:17:69:20:49:a9:97:ed:41:6f: 4b:dc:58:1e:da:ea:ad:7d:15:95:97:4e:1b:43:f2: 04:fb:a3:a2:99:17:76:a5:00:61:ad:db:8e:6a:e0: 90:05:20:63:37:34:09:8b:6f:11:00:b5:21:9e:2f: 77:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:59:14:EC:72:5B:16:9E:1F:B9:2F:B9:E9:EF:B0:37:E6:2C:91:21 X509v3 Authority Key Identifier: keyid:4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:59:b2:ad:8e:5c:db:99:a9:45:01:7f:f4:ec:83:f4:4a:34: b9:44:8c:3d:73:29:bc:ac:1e:bb:ff:27:27:93:fa:47:14:74: b3:fa:bb:02:9a:13:8e:9f:5c:73:ca:44:c9:65:aa:86:dd:42: f4:62:50:7f:ab:84:66:d6:64:3c:0f:08:71:53:e9:97:05:0e: a1:3e:33:e3:96:7b:e3:fd:f3:85:23:bb:2b:c5:1c:21:13:7b: 8a:c4:6d:d4:ee:83:ae:26:57:c0:34:2e:07:4c:7e:f6:c9:4c: 53:98:98:38:f1:c8:e6:4b:63:21:ff:56:f4:f3:40:8a:70:36: 9a:df:ee:45:17:6b:5f:a9:03:94:d6:64:b3:06:c9:6e:2d:c1: fa:c4:87:b5:12:f7:b4:c2:2f:b7:4e:da:52:94:5e:dd:7a:6f: f4:b8:2e:24:9f:c9:44:74:a0:d1:bf:e0:37:06:4c:00:f9:da: 60:7e:bb:89:05:e9:de:47:dd:f9:8c:99:f9:aa:f9:69:cd:70: 79:0f:7e:21:83:07:2e:4b:b2:e5:69:7a:5b:19:17:43:0a:c5: d9:fc:de:28:c9:bd:a1:6c:6b:14:61:56:62:a1:7c:1e:d2:7d: 5e:e8:10:55:cc:8e:c9:fb:71:ab:e4:4d:cd:8e:d4:43:b6:fb: 9b:82:40:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE1QTQxMTAvBgNVBAUTKDRENDRFMkY3NTJBMjk1MEI2QjU1MjhDMDY5OUIxNDkw RTc1Nzc3NDQwHhcNMjUwNjE0MTczMTM1WhcNMjUwNjIxMTczMTM1WjAYMRYwFAYD VQQDEw02ODRkYjFmNy02NmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApP3UaCsn9ePkYcatCFOwqEiM6+zi9aiI7Y1TB7cvQKM5mAVxsiUrcrcC3ZCY VQs/euZ3nyXOD+9Czt3N59zqDfQlqz/iIkdEhaQs/Tft5eIhe6dL3lCXQGGrlxQu oii6ihVainRAkqToYM8BsZleZlxuFU/7vgBav8uExWNDYq8qYY0tIpketDjz258e 4v2J+CtHFH2NLJv+SV+37EGg4pTOSt75qKj2HJ9syw/KjWKWGrNWkmW1n1YHe+/y nCBPhj+2a6ecDxgXaSBJqZftQW9L3Fge2uqtfRWVl04bQ/IE+6OimRd2pQBhrduO auCQBSBjNzQJi28RALUhni93WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9ZFOxy WxaeH7kvuenvsDfmLJEhMB8GA1UdIwQYMBaAFE1E4vdSopULa1UowGmbFJDnV3dE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTVBNC9CMzRFNkQ1MDcw OEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxRdHJWU2pBYVpzVWtPZFhk MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RVVGk5MUtpbFF0clZTakFhWnNVa09kWGQwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTVBNC9CMzRFNkQ1MDcwOEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxR dHJWU2pBYVpzVWtPZFhkMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkWbKtjlzbmalFAX/07IP0SjS5RIw9cym8rB67/ycnk/pHFHSz+rsC mhOOn1xzykTJZaqG3UL0YlB/q4Rm1mQ8DwhxU+mXBQ6hPjPjlnvj/fOFI7srxRwh E3uKxG3U7oOuJlfANC4HTH72yUxTmJg48cjmS2Mh/1b080CKcDaa3+5FF2tfqQOU 1mSzBsluLcH6xIe1Eve0wi+3TtpSlF7dem/0uC4kn8lEdKDRv+A3BkwA+dpgfruJ BeneR935jJn5qvlpzXB5D34hgwcuS7LlaXpbGRdDCsXZ/N4oyb2hbGsUYVZioXwe 0n1e6BBVzI7J+3Gr5E3NjtRDtvubgkAR -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:12 2025 by rpki-client