$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft File: TnVPewjIAAZ84HEJetOUaJDao2U.mft (raw, json) Hash identifier: kD20gfHcoD3g9YCSOWhQRP200AZ7kZwBzkZt0J9iqWE= Subject key identifier: C2:6A:52:20:F4:82:36:88:4F:B9:0E:50:D4:D5:89:78:3C:D5:95:CA Authority key identifier: 4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 Certificate issuer: /CN=A91F4B3F/serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft Manifest number: 014B Signing time: Tue 17 Jun 2025 03:16:42 +0000 Manifest this update: Tue 17 Jun 2025 03:16:41 +0000 Manifest next update: Tue 24 Jun 2025 03:16:41 +0000 Files and hashes: 1: TnVPewjIAAZ84HEJetOUaJDao2U.crl (hash: CZWXDxCRJ6+5fjQsPNzx7q0XXqG+r5Ic9TjAYBeZLrc=) 2: D875D57EF30611EEAFFC0C66C4F9AE02.roa (hash: DsVxbJQBFvHguy7znDHJZ9CR2UmTMow8V9P9QuFVJ9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:16:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4B3F, serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Validity Not Before: Jun 17 03:16:41 2025 GMT Not After : Jun 24 03:16:41 2025 GMT Subject: CN=6850de19-94b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6f:78:2f:7f:c8:51:09:83:41:6a:37:94:9b: e1:90:8e:09:ff:eb:ff:ca:6b:af:82:73:36:f3:d7: 95:89:d0:ce:2b:95:c0:81:1a:6f:c1:cb:b4:23:97: f6:49:b0:70:b2:27:45:13:14:32:7c:95:09:1d:94: 60:0d:4c:91:ce:d3:54:24:9a:ea:84:2b:0b:49:06: bd:42:b4:4e:0e:a4:8b:48:1d:46:d3:5c:b2:ee:00: b0:c1:3c:e4:dc:29:75:8d:2d:f2:2c:67:6b:c6:dc: 44:81:54:1f:39:41:e5:8f:b4:20:67:a7:bb:a2:d8: a1:91:67:27:9f:be:f7:78:33:2f:4e:53:2a:e8:de: a3:27:b9:06:59:bb:87:5b:04:6d:93:a2:4b:5e:fd: 8a:36:de:5a:b4:97:ac:c6:3d:37:0c:6a:1d:c5:22: 0f:ec:9a:8e:48:49:67:1b:33:63:9d:91:7e:8f:bd: d3:ba:8d:f3:63:30:1f:f5:ee:dc:4a:e2:ee:46:3e: f5:f0:9a:19:98:f4:61:eb:f3:18:3c:3d:46:72:3f: 93:22:df:10:55:0b:e2:24:29:c3:71:49:32:d7:8c: 71:fc:36:b0:23:81:34:37:a6:8d:5a:cf:03:0a:4b: d5:54:5d:d5:ee:5a:0d:48:c4:2f:5d:57:6e:55:ba: bf:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:6A:52:20:F4:82:36:88:4F:B9:0E:50:D4:D5:89:78:3C:D5:95:CA X509v3 Authority Key Identifier: keyid:4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:d5:e2:bd:5b:08:20:9a:6a:d3:56:3b:6f:ca:20:63:18:a3: 03:89:90:79:45:f2:cf:9b:15:a3:a4:7f:37:49:bd:b8:82:c8: 3a:dd:de:3f:95:10:da:1f:f9:00:74:60:97:03:39:e1:91:1f: 5f:d8:8f:ff:28:8d:f3:e3:2d:e6:84:03:f0:24:ca:d0:75:a0: 8d:3d:97:bd:fc:8c:a5:54:ed:8d:69:53:84:35:78:0c:06:e4: 4c:40:58:a6:cb:ac:6c:c7:06:bb:d1:1d:81:63:49:e7:fa:ab: c6:d1:df:92:09:e5:95:fc:12:ce:d0:4c:5a:46:4e:8e:37:95: 14:0a:ea:34:a3:c5:b1:5a:1b:ab:33:37:59:07:b1:c8:5e:a6: 6e:9d:b6:37:35:7f:f9:db:7d:2a:f9:44:68:f3:e7:ff:0d:08: ce:08:79:f9:34:5f:30:e2:f7:03:aa:39:ba:a4:91:e2:e1:c4: e5:e7:97:d9:ac:1d:c9:7d:9f:03:4e:b1:95:86:94:fb:c1:0b: be:d0:d4:b4:ff:5a:8d:06:50:ff:98:a1:5e:f1:d2:35:95:4a: 02:87:01:87:4a:b4:a8:ee:8e:b8:ce:30:08:06:ab:a2:a4:9f: 63:29:76:b7:38:3d:79:d3:c4:20:6a:d9:e2:bd:03:cf:f6:79: bf:62:c2:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCM0YxMTAvBgNVBAUTKDRFNzU0RjdCMDhDODAwMDY3Q0UwNzEwOTdBRDM5NDY4 OTBEQUEzNjUwHhcNMjUwNjE3MDMxNjQxWhcNMjUwNjI0MDMxNjQxWjAYMRYwFAYD VQQDEw02ODUwZGUxOS05NGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqG94L3/IUQmDQWo3lJvhkI4J/+v/ymuvgnM289eVidDOK5XAgRpvwcu0I5f2 SbBwsidFExQyfJUJHZRgDUyRztNUJJrqhCsLSQa9QrRODqSLSB1G01yy7gCwwTzk 3Cl1jS3yLGdrxtxEgVQfOUHlj7QgZ6e7otihkWcnn773eDMvTlMq6N6jJ7kGWbuH WwRtk6JLXv2KNt5atJesxj03DGodxSIP7JqOSElnGzNjnZF+j73Tuo3zYzAf9e7c SuLuRj718JoZmPRh6/MYPD1Gcj+TIt8QVQviJCnDcUky14xx/DawI4E0N6aNWs8D CkvVVF3V7loNSMQvXVduVbq/4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJqUiD0 gjaIT7kOUNTViXg81ZXKMB8GA1UdIwQYMBaAFE51T3sIyAAGfOBxCXrTlGiQ2qNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEIzRi8xQ0RGODdFNDUx NjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFBWjg0SEVKZXRPVWFKRGFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RuVlBld2pJQUFaODRIRUpldE9VYUpEYW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEIzRi8xQ0RGODdFNDUxNjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFB Wjg0SEVKZXRPVWFKRGFvMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk1eK9WwggmmrTVjtvyiBjGKMDiZB5RfLPmxWjpH83Sb24gsg63d4/ lRDaH/kAdGCXAznhkR9f2I//KI3z4y3mhAPwJMrQdaCNPZe9/IylVO2NaVOENXgM BuRMQFimy6xsxwa70R2BY0nn+qvG0d+SCeWV/BLO0ExaRk6ON5UUCuo0o8WxWhur MzdZB7HIXqZunbY3NX/5230q+URo8+f/DQjOCHn5NF8w4vcDqjm6pJHi4cTl55fZ rB3JfZ8DTrGVhpT7wQu+0NS0/1qNBlD/mKFe8dI1lUoChwGHSrSo7o64zjAIBqui pJ9jKXa3OD1508QgatnivQPP9nm/YsIa -----END CERTIFICATE-----Generated at Thu Jun 19 02:58:39 2025 by rpki-client