$ rpki-client -vvf rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft File: TUTi91KilQtrVSjAaZsUkOdXd0Q.mft (raw, json) Hash identifier: CiH/egy5geFBWymH2/RLYF/e/TYR+bl0jrEBoBRYENc= Subject key identifier: D9:6B:7D:57:9C:FE:5B:4B:64:DF:31:39:C6:9E:DB:5A:52:B4:B0:94 Authority key identifier: 4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 Certificate issuer: /CN=A91D15A4/serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Certificate serial: 0F6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft Manifest number: 0F60 Signing time: Tue 12 Aug 2025 17:42:20 +0000 Manifest this update: Tue 12 Aug 2025 17:42:20 +0000 Manifest next update: Tue 19 Aug 2025 17:42:20 +0000 Files and hashes: 1: TUTi91KilQtrVSjAaZsUkOdXd0Q.crl (hash: U5Wf3CTTYPPQSsNxCYfkvNj2LXHrtNwi4pp+3/5UeVU=) 2: 3D371C5C708F11E9B105E92CC4F9AE02.roa (hash: YkmY4q4YSypbm13HUH++xACjilqSAUGjIIEq3zMyNH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 17:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3946 (0xf6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D15A4, serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Validity Not Before: Aug 12 17:42:20 2025 GMT Not After : Aug 19 17:42:20 2025 GMT Subject: CN=689b7cfc-b5f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:61:4e:64:37:e9:7f:39:a7:f6:ec:42:53:36: 30:5f:7b:77:88:8f:92:d1:57:e3:e8:04:1c:12:61: cc:30:6b:7a:60:61:38:6a:39:f1:da:3a:78:5a:4e: 6c:2e:fa:86:e8:49:60:d9:40:39:47:e7:67:16:3a: d2:31:e3:59:d5:37:35:60:bf:48:a4:0d:2d:44:0b: b8:ca:d0:33:74:de:ef:b5:9a:4b:43:ca:32:8e:f1: 2c:01:a7:96:c1:c7:7d:df:db:79:54:0a:5c:21:7a: d8:95:37:0a:c5:1a:cf:f6:58:b2:15:2d:4f:0b:07: af:c2:86:35:58:83:a0:1c:b0:5c:24:20:5a:39:e8: 9f:da:53:2c:e8:bc:cc:2d:ea:d7:e9:24:1a:3b:ad: 20:e3:a9:67:a6:11:1e:70:0b:7c:cf:d8:2f:84:65: ad:09:fa:31:52:70:39:ec:ad:a7:49:4e:e3:6a:b8: 4a:62:db:ec:05:e2:08:97:8a:72:a0:12:65:c0:0c: 1e:7a:3d:84:f0:c0:c1:fc:cb:6d:a4:76:8c:e5:0b: 7c:69:84:d9:09:17:34:df:8f:39:d5:9f:dd:7a:9d: 65:22:92:45:b0:c3:54:f5:0b:a1:18:3a:22:94:71: 34:8d:b6:cf:b6:a3:0b:42:91:23:15:03:12:f6:63: 82:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:6B:7D:57:9C:FE:5B:4B:64:DF:31:39:C6:9E:DB:5A:52:B4:B0:94 X509v3 Authority Key Identifier: keyid:4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:fa:96:56:b4:40:c1:e6:c0:d3:0a:6c:37:50:8c:ea:64:a1: 01:b7:88:63:6c:10:9b:ec:9e:32:d7:0f:f1:42:9c:34:9c:0a: 17:0f:09:1a:8e:b0:b4:13:44:c4:03:a4:dd:dc:8a:af:35:68: 7b:38:de:50:bd:a5:b6:78:6f:53:fe:50:64:bf:20:59:cb:1d: 6f:b5:99:cf:11:a4:48:22:5e:96:23:88:04:7e:be:88:3f:46: 4a:0d:b7:06:a6:37:c7:94:ad:1c:db:97:09:18:6d:49:8f:b8: 8d:7a:88:4e:de:e2:ad:20:49:b1:6c:35:6d:c9:77:4a:f5:d6: db:e6:e4:7f:64:27:ef:57:7b:53:27:f3:60:e5:41:ff:64:18: 92:35:7b:b0:e9:00:c4:97:46:d9:c3:cf:d9:51:c5:33:ae:f4: 6b:c0:af:e3:1d:0e:7f:e1:72:b0:9f:de:c4:e6:c2:fd:37:e8: d0:3b:9f:56:c2:e1:52:1f:59:0f:7d:df:45:0f:76:58:96:20: ad:23:64:0a:0c:01:87:e6:f0:1a:b5:3e:e5:dd:17:70:e4:21: 15:25:a6:a2:0d:08:74:4a:36:42:bb:91:67:10:5c:f0:c5:74: de:88:f5:60:8b:60:2c:99:9e:b9:56:12:31:88:06:41:00:aa: 5f:83:ed:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE1QTQxMTAvBgNVBAUTKDRENDRFMkY3NTJBMjk1MEI2QjU1MjhDMDY5OUIxNDkw RTc1Nzc3NDQwHhcNMjUwODEyMTc0MjIwWhcNMjUwODE5MTc0MjIwWjAYMRYwFAYD VQQDEw02ODliN2NmYy1iNWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmFOZDfpfzmn9uxCUzYwX3t3iI+S0Vfj6AQcEmHMMGt6YGE4ajnx2jp4Wk5s LvqG6Elg2UA5R+dnFjrSMeNZ1Tc1YL9IpA0tRAu4ytAzdN7vtZpLQ8oyjvEsAaeW wcd939t5VApcIXrYlTcKxRrP9liyFS1PCwevwoY1WIOgHLBcJCBaOeif2lMs6LzM LerX6SQaO60g46lnphEecAt8z9gvhGWtCfoxUnA57K2nSU7jarhKYtvsBeIIl4py oBJlwAweej2E8MDB/MttpHaM5Qt8aYTZCRc034851Z/dep1lIpJFsMNU9QuhGDoi lHE0jbbPtqMLQpEjFQMS9mOCOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNlrfVec /ltLZN8xOcae21pStLCUMB8GA1UdIwQYMBaAFE1E4vdSopULa1UowGmbFJDnV3dE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTVBNC9CMzRFNkQ1MDcw OEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxRdHJWU2pBYVpzVWtPZFhk MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RVVGk5MUtpbFF0clZTakFhWnNVa09kWGQwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTVBNC9CMzRFNkQ1MDcwOEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxR dHJWU2pBYVpzVWtPZFhkMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB+pZWtEDB5sDTCmw3UIzqZKEBt4hjbBCb7J4y1w/xQpw0nAoXDwka jrC0E0TEA6Td3IqvNWh7ON5QvaW2eG9T/lBkvyBZyx1vtZnPEaRIIl6WI4gEfr6I P0ZKDbcGpjfHlK0c25cJGG1Jj7iNeohO3uKtIEmxbDVtyXdK9dbb5uR/ZCfvV3tT J/Ng5UH/ZBiSNXuw6QDEl0bZw8/ZUcUzrvRrwK/jHQ5/4XKwn97E5sL9N+jQO59W wuFSH1kPfd9FD3ZYliCtI2QKDAGH5vAatT7l3Rdw5CEVJaaiDQh0SjZCu5FnEFzw xXTeiPVgi2AsmZ65VhIxiAZBAKpfg+3g -----END CERTIFICATE-----Generated at Wed Aug 13 00:30:26 2025 by rpki-client