$ rpki-client -vvf rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft File: TZCQh73foVBeK7oD8gYRLq7_sRs.mft (raw, json) Hash identifier: J+TckRVz3ci/Gs1lzPt1/4VFt2+KeA+3Z4I2h+YTbZM= Subject key identifier: C3:4D:AD:1E:D6:2C:5F:FD:6B:43:89:E5:A6:9F:28:43:C3:50:81:B5 Authority key identifier: 4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B Certificate issuer: /CN=A91D200F/serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Certificate serial: 018B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft Manifest number: 017E Signing time: Tue 17 Jun 2025 02:53:37 +0000 Manifest this update: Tue 17 Jun 2025 02:53:36 +0000 Manifest next update: Tue 24 Jun 2025 02:53:36 +0000 Files and hashes: 1: TZCQh73foVBeK7oD8gYRLq7_sRs.crl (hash: mUmT5IzQXFEC/geg7vv0k6AC30crdoPEZaj+Et/eZk4=) 2: D71B60EC2B5911EE81C7542FC4F9AE02.roa (hash: wndMS9TntxEIvOO1y5ThBewHzkdYkTNV8U/orVegQT4=) 3: 039807B286B511EFAF868C6EC4F9AE02.roa (hash: mvlfednBP8hH+VJF+N7b5lj86+gAiaBFLJ6OGfwQefA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:53:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D200F, serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Validity Not Before: Jun 17 02:53:36 2025 GMT Not After : Jun 24 02:53:36 2025 GMT Subject: CN=6850d8b0-d859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1e:94:db:51:ef:cf:cc:fd:3f:83:9f:e3:cb: 2d:17:10:c5:62:85:52:26:19:93:4b:d6:5e:9f:32: c4:ba:23:a5:18:bb:a0:da:99:63:b4:dc:d6:51:48: 93:e9:23:33:22:d3:c4:08:7f:56:ea:c9:59:ea:7d: 37:64:c7:91:eb:29:ea:1f:10:cc:fa:ad:b1:2a:1d: 9c:02:4e:c2:c9:3d:5e:85:3a:cd:d8:36:7a:31:a5: a1:8e:42:01:c2:55:34:81:7c:9d:eb:a4:73:30:7b: 2d:2e:0c:a3:0b:7e:f1:e3:b2:5e:c3:46:c8:00:e5: 7e:33:ef:d5:8a:e3:9d:a7:e8:76:00:e9:dd:0c:3a: 20:f0:70:cc:c1:e2:56:b6:bc:8b:72:e2:91:1d:e1: 55:34:11:c0:e1:b3:07:5f:a7:a6:a8:16:d5:ef:56: 6f:9d:9e:29:e2:9f:ea:17:6e:e0:3d:7a:a1:27:cb: af:bb:3c:a0:c2:7e:55:cf:23:16:f6:f5:4f:de:06: c1:f8:24:7d:92:39:5e:9a:0d:b5:13:eb:f4:58:18: d3:c9:74:01:08:89:4f:76:18:37:a7:90:58:4c:50: 27:eb:57:32:7f:88:73:03:fd:4a:ae:11:ba:97:a5: 15:f8:65:a0:b0:85:80:f4:12:97:59:60:9f:8b:66: 99:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:4D:AD:1E:D6:2C:5F:FD:6B:43:89:E5:A6:9F:28:43:C3:50:81:B5 X509v3 Authority Key Identifier: keyid:4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:5b:26:73:ff:5a:d8:72:7b:69:c0:aa:5b:5b:d0:1a:77:ef: 71:59:64:86:a5:a1:0e:28:f4:3e:35:8b:e8:51:e9:24:98:42: 5b:fb:6b:4d:e4:da:cc:b8:ce:1a:dc:fc:03:c6:ad:1a:8d:8d: 34:cf:c7:9d:1b:ca:0c:4d:c9:65:f7:77:b4:f4:c0:07:fe:3e: 5f:e3:ad:ef:4c:e1:21:5d:86:e2:71:5d:c6:69:f4:7e:43:68: 13:f9:3b:5e:c4:97:b6:25:a5:ca:f3:57:27:73:c2:be:d7:a1: 9f:24:d8:29:7b:a1:08:ed:40:ce:2e:c9:01:6b:13:58:2f:c2: ec:1d:39:3e:99:6d:8e:d8:5b:08:c7:69:f8:e1:7c:32:13:fa: ca:c5:94:1b:ee:24:ae:ea:6f:3e:b5:ba:08:45:c2:12:63:38: ea:ad:2d:98:95:e6:50:98:d4:1c:a8:2f:da:eb:aa:f9:26:55: 17:ac:a9:b9:c7:97:d3:2c:13:4f:42:41:e3:aa:dc:86:9d:cf: a7:ad:e0:6a:35:00:e7:8a:0d:21:f3:5c:18:ad:a1:fd:04:6f: af:cd:09:0d:c5:45:f0:c9:e5:5f:80:11:8b:d1:fc:57:06:a2: d1:1a:55:3e:02:d8:4b:8a:8e:8f:27:8e:80:f2:64:7a:7e:5d: d0:6e:eb:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIwMEYxMTAvBgNVBAUTKDREOTA5MDg3QkRERkExNTA1RTJCQkEwM0YyMDYxMTJF QUVGRkIxMUIwHhcNMjUwNjE3MDI1MzM2WhcNMjUwNjI0MDI1MzM2WjAYMRYwFAYD VQQDEw02ODUwZDhiMC1kODU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnh6U21Hvz8z9P4Of48stFxDFYoVSJhmTS9ZenzLEuiOlGLug2pljtNzWUUiT 6SMzItPECH9W6slZ6n03ZMeR6ynqHxDM+q2xKh2cAk7CyT1ehTrN2DZ6MaWhjkIB wlU0gXyd66RzMHstLgyjC37x47Jew0bIAOV+M+/ViuOdp+h2AOndDDog8HDMweJW tryLcuKRHeFVNBHA4bMHX6emqBbV71ZvnZ4p4p/qF27gPXqhJ8uvuzygwn5VzyMW 9vVP3gbB+CR9kjlemg21E+v0WBjTyXQBCIlPdhg3p5BYTFAn61cyf4hzA/1KrhG6 l6UV+GWgsIWA9BKXWWCfi2aZ6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMNNrR7W LF/9a0OJ5aafKEPDUIG1MB8GA1UdIwQYMBaAFE2QkIe936FQXiu6A/IGES6u/7Eb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjAwRi8yNTc4NzQwMjE2 NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9WQmVLN29EOGdZUkxxN19z UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQ1FoNzNmb1ZCZUs3b0Q4Z1lSTHE3X3NScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjAwRi8yNTc4NzQwMjE2NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9W QmVLN29EOGdZUkxxN19zUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8WyZz/1rYcntpwKpbW9Aad+9xWWSGpaEOKPQ+NYvoUekkmEJb+2tN 5NrMuM4a3PwDxq0ajY00z8edG8oMTcll93e09MAH/j5f463vTOEhXYbicV3GafR+ Q2gT+TtexJe2JaXK81cnc8K+16GfJNgpe6EI7UDOLskBaxNYL8LsHTk+mW2O2FsI x2n44XwyE/rKxZQb7iSu6m8+tboIRcISYzjqrS2YleZQmNQcqC/a66r5JlUXrKm5 x5fTLBNPQkHjqtyGnc+nreBqNQDnig0h81wYraH9BG+vzQkNxUXwyeVfgBGL0fxX BqLRGlU+AthLio6PJ46A8mR6fl3Qbusx -----END CERTIFICATE-----Generated at Tue Jun 17 16:53:06 2025 by rpki-client