$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft File: TAYxLToLHGP1R9TWRXxM1a9xQ80.mft (raw, json) Hash identifier: I7PlUelxi33jPHJ/X7hnAImnDZpCUI35+NoCQwEaxHg= Subject key identifier: 03:5E:26:C8:F9:CD:BD:57:1C:B4:16:03:B5:8D:1E:82:3F:1E:5E:73 Authority key identifier: 4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD Certificate issuer: /CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Certificate serial: 045F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft Manifest number: 045B Signing time: Sat 09 Aug 2025 00:43:01 +0000 Manifest this update: Sat 09 Aug 2025 00:43:00 +0000 Manifest next update: Sat 16 Aug 2025 00:43:00 +0000 Files and hashes: 1: TAYxLToLHGP1R9TWRXxM1a9xQ80.crl (hash: bsOAgwgBcqaUWIV0Ku6fY9J8Q3szCpyPpXaWGtWlL5w=) 2: 09C2A1645A3511ED8F0A3087C4F9AE02.roa (hash: RiGNiFnNAoJRKUyYrUN1wLZV9I9idQnh7FmtgNq/Suc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1119 (0x45f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Validity Not Before: Aug 9 00:43:00 2025 GMT Not After : Aug 16 00:43:00 2025 GMT Subject: CN=68969995-028c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f1:48:a6:e3:19:7a:ea:0e:6e:76:5f:ba:63: 7a:e5:1f:ff:ae:26:a8:a5:97:1c:58:df:c4:d6:08: 95:10:80:c5:b0:58:5f:6c:5b:17:af:30:19:76:35: db:4c:21:d8:0e:29:99:78:8e:86:1f:c6:cf:16:c2: 91:c1:4e:b8:0a:f4:61:74:55:e7:20:cc:99:a8:89: 15:ce:38:02:a2:6d:21:d2:16:d2:78:5b:04:c9:f9: 37:d0:09:53:93:4d:16:55:28:34:ac:17:45:f7:c7: 75:d2:98:38:00:df:81:f7:c6:42:7c:d4:58:ed:2a: 24:fb:02:05:44:37:65:e7:cd:53:c0:d3:40:5a:8e: 81:a2:e0:b8:a9:d1:fc:34:11:95:e4:a0:43:3f:8c: 70:41:3d:aa:d4:5e:0c:ce:37:a0:6d:a3:32:f7:11: 40:d1:3d:3d:f7:68:54:51:94:7f:40:ac:4a:40:9b: 2c:d6:be:84:d7:30:19:62:b7:88:18:dd:ee:b2:c6: ab:99:b8:5c:e3:27:8c:89:01:f6:13:15:83:2d:2d: f8:be:df:2c:7f:e7:07:8a:00:71:01:48:27:7e:82: df:36:a1:a8:6c:fd:bb:10:1b:cb:3b:21:d3:77:65: 0d:ab:7f:71:0d:50:d1:96:8c:53:fa:22:08:b9:42: 9f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:5E:26:C8:F9:CD:BD:57:1C:B4:16:03:B5:8D:1E:82:3F:1E:5E:73 X509v3 Authority Key Identifier: keyid:4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:3b:4a:c4:e2:d9:1b:8e:dd:0c:64:bb:bd:8d:8d:dc:da:dc: 7d:3c:d2:a8:12:77:ca:32:9b:4b:c3:a5:8d:0e:c3:52:32:af: 45:e3:ad:61:d0:ce:d6:56:78:a0:20:5d:54:20:ad:96:55:2f: 4a:5f:56:43:f9:6f:ab:e6:04:29:bc:5c:da:45:40:02:9c:4a: aa:18:48:f5:2e:cd:38:02:d0:1f:6e:ac:3c:34:e1:a3:03:d9: f2:53:d0:60:79:fc:f8:df:55:ef:86:b9:a2:9d:c4:60:f8:64: 13:f2:9a:4d:3e:00:93:71:a8:a6:b5:5e:cc:e0:0a:b5:21:73: 3e:34:84:86:19:46:ad:d1:39:0a:e4:f7:df:e9:bd:37:90:58: 3a:59:a3:9d:11:83:be:67:53:04:80:f0:9b:90:56:73:f4:1e: 30:a2:39:89:4e:53:f8:cd:dd:de:5f:14:75:fb:92:46:0e:d8: 93:ef:72:83:6c:08:d9:df:47:03:bf:ca:00:42:c5:e5:6d:15: 3d:11:78:e8:87:69:fe:30:db:b9:d1:a9:d9:75:44:36:e2:6f: 8b:1b:66:78:9a:35:69:ae:30:c9:4d:f4:61:ab:fe:0d:a8:eb: cc:39:20:80:bf:13:dd:20:f2:84:14:82:8a:e3:b8:3f:60:41: 95:3a:73:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDRDMDYzMTJEM0EwQjFDNjNGNTQ3RDRENjQ1N0M0Q0Q1 QUY3MTQzQ0QwHhcNMjUwODA5MDA0MzAwWhcNMjUwODE2MDA0MzAwWjAYMRYwFAYD VQQDEw02ODk2OTk5NS0wMjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPFIpuMZeuoObnZfumN65R//riaopZccWN/E1giVEIDFsFhfbFsXrzAZdjXb TCHYDimZeI6GH8bPFsKRwU64CvRhdFXnIMyZqIkVzjgCom0h0hbSeFsEyfk30AlT k00WVSg0rBdF98d10pg4AN+B98ZCfNRY7Sok+wIFRDdl581TwNNAWo6BouC4qdH8 NBGV5KBDP4xwQT2q1F4MzjegbaMy9xFA0T0992hUUZR/QKxKQJss1r6E1zAZYreI GN3ussarmbhc4yeMiQH2ExWDLS34vt8sf+cHigBxAUgnfoLfNqGobP27EBvLOyHT d2UNq39xDVDRloxT+iIIuUKfHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANeJsj5 zb1XHLQWA7WNHoI/Hl5zMB8GA1UdIwQYMBaAFEwGMS06Cxxj9UfU1kV8TNWvcUPN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9CNTA1NDY1MjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhHUDFSOVRXUlh4TTFhOXhR ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBWXhMVG9MSEdQMVI5VFdSWHhNMWE5eFE4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9CNTA1NDY1MjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhH UDFSOVRXUlh4TTFhOXhRODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqO0rE4tkbjt0MZLu9jY3c2tx9PNKoEnfKMptLw6WNDsNSMq9F461h 0M7WVnigIF1UIK2WVS9KX1ZD+W+r5gQpvFzaRUACnEqqGEj1Ls04AtAfbqw8NOGj A9nyU9Bgefz431XvhrmincRg+GQT8ppNPgCTcaimtV7M4Aq1IXM+NISGGUat0TkK 5Pff6b03kFg6WaOdEYO+Z1MEgPCbkFZz9B4wojmJTlP4zd3eXxR1+5JGDtiT73KD bAjZ30cDv8oAQsXlbRU9EXjoh2n+MNu50anZdUQ24m+LG2Z4mjVprjDJTfRhq/4N qOvMOSCAvxPdIPKEFIKK47g/YEGVOnNa -----END CERTIFICATE-----Generated at Sat Aug 9 23:08:13 2025 by rpki-client