$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.mft File: TLITKnI2puO1uWMMoDARSGMoVfc.mft (raw, json) Hash identifier: sz5Fo3QpNUA/rn/3rnbGKIV/7PLyIXb5NmBdVevSTPQ= Subject key identifier: 13:5E:DF:60:1D:81:EB:95:40:A6:CD:DF:04:0B:BC:EF:84:96:11:3C Authority key identifier: 4C:B2:13:2A:72:36:A6:E3:B5:B9:63:0C:A0:30:11:48:63:28:55:F7 Certificate issuer: /CN=A91F8F9B/serialNumber=4CB2132A7236A6E3B5B9630CA0301148632855F7 Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLITKnI2puO1uWMMoDARSGMoVfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.mft Manifest number: B5 Signing time: Thu 07 Aug 2025 06:32:57 +0000 Manifest this update: Thu 07 Aug 2025 06:32:56 +0000 Manifest next update: Thu 14 Aug 2025 06:32:56 +0000 Files and hashes: 1: TLITKnI2puO1uWMMoDARSGMoVfc.crl (hash: wZE394aRY35u87AM9esZoOhsB8glwrLsKTM7MdqFQbk=) 2: 71DBC7BE5DBF11EFB8714857C4F9AE02.roa (hash: jmXb0sPHquklWucQNPULW9k7ur2PuqaFZnebmPVFmaE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.crl rsync://rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLITKnI2puO1uWMMoDARSGMoVfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8F9B, serialNumber=4CB2132A7236A6E3B5B9630CA0301148632855F7 Validity Not Before: Aug 7 06:32:56 2025 GMT Not After : Aug 14 06:32:56 2025 GMT Subject: CN=68944899-3b8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:15:57:f5:06:cf:26:08:6a:a7:15:6f:fe:2a: f5:da:b4:82:0b:e3:8f:bb:3f:d4:ff:72:a8:1a:8f: bb:f0:8f:51:e6:b1:59:cc:d9:5f:a6:a0:3f:9b:00: 3b:55:55:c5:0e:83:a1:0d:10:16:13:6c:67:38:82: 36:ed:fd:eb:2c:d8:a3:31:0e:fe:60:b7:7c:ab:40: e9:26:03:c5:73:d3:e8:e0:f2:7d:ce:1a:2b:a1:53: b1:f1:4f:ff:e7:79:fb:a8:72:81:e7:f6:b5:d3:c6: 76:3e:12:1e:79:ea:e6:c5:1d:11:3d:57:a3:95:27: 58:08:79:ee:34:29:d3:68:3f:d0:19:10:1d:fe:6f: df:30:da:d1:7a:99:1c:da:5f:aa:ad:bd:28:d8:ec: 5a:8a:49:64:49:72:56:df:01:a1:b5:75:60:02:47: 69:8c:82:27:84:56:f7:34:a5:85:dc:a1:f2:ce:e7: 36:15:33:c9:68:49:c3:2c:d8:d5:81:48:35:20:f8: 1f:d8:3a:51:47:c4:f6:73:6c:2d:92:13:b3:b8:69: 74:98:7d:8c:5c:60:2f:7b:82:c9:d0:f2:e3:4a:54: fe:3a:11:ad:fe:18:fd:c0:8a:22:79:dd:81:9d:3a: 7c:90:fc:dd:cf:43:bb:71:9d:3d:0e:9f:a8:d2:b7: ca:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:5E:DF:60:1D:81:EB:95:40:A6:CD:DF:04:0B:BC:EF:84:96:11:3C X509v3 Authority Key Identifier: keyid:4C:B2:13:2A:72:36:A6:E3:B5:B9:63:0C:A0:30:11:48:63:28:55:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLITKnI2puO1uWMMoDARSGMoVfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:98:f4:39:5a:59:04:7b:ef:6b:b7:f1:7f:8d:31:1b:44:27: a6:f9:dc:09:74:af:df:42:32:bf:bf:38:11:4f:f2:5f:36:13: 6b:d1:5c:89:0b:59:50:e5:2f:62:fc:23:8b:92:f8:19:26:50: de:ed:c7:ea:a3:67:54:71:b9:cc:b3:dd:f3:4e:5f:05:bf:91: 50:63:ef:0d:04:41:3e:bd:de:49:49:75:32:41:23:71:85:3d: b2:30:f1:71:03:de:6d:22:c7:3c:4e:82:05:af:27:dc:5a:a8: 57:2a:eb:27:cc:64:ac:93:f6:be:a9:19:e7:08:a0:28:20:2e: fb:5c:90:78:e5:00:c6:04:f5:ae:0e:77:fb:51:ff:36:99:69: 86:b7:97:cf:e5:d1:f1:e6:4d:c5:9c:c3:d0:55:17:b7:4c:9f: 7d:ea:14:21:a4:bd:84:cb:d6:8a:8f:ba:43:e2:70:1c:69:a3: 99:73:b8:22:15:62:db:78:7e:7c:b2:ae:41:5f:a5:28:24:d8: e1:1b:da:8e:69:8b:77:90:1f:f7:98:94:07:0d:a1:dd:9a:85: a5:4b:97:f1:55:21:95:4a:9e:fb:42:d5:84:65:bb:67:cc:98: f1:52:5b:16:6c:1b:6f:17:02:ea:46:9e:7d:be:ae:f4:7c:44: f1:8d:b9:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhGOUIxMTAvBgNVBAUTKDRDQjIxMzJBNzIzNkE2RTNCNUI5NjMwQ0EwMzAxMTQ4 NjMyODU1RjcwHhcNMjUwODA3MDYzMjU2WhcNMjUwODE0MDYzMjU2WjAYMRYwFAYD VQQDEw02ODk0NDg5OS0zYjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxVX9QbPJghqpxVv/ir12rSCC+OPuz/U/3KoGo+78I9R5rFZzNlfpqA/mwA7 VVXFDoOhDRAWE2xnOII27f3rLNijMQ7+YLd8q0DpJgPFc9Po4PJ9zhoroVOx8U// 53n7qHKB5/a108Z2PhIeeermxR0RPVejlSdYCHnuNCnTaD/QGRAd/m/fMNrRepkc 2l+qrb0o2OxaiklkSXJW3wGhtXVgAkdpjIInhFb3NKWF3KHyzuc2FTPJaEnDLNjV gUg1IPgf2DpRR8T2c2wtkhOzuGl0mH2MXGAve4LJ0PLjSlT+OhGt/hj9wIoied2B nTp8kPzdz0O7cZ09Dp+o0rfKVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNe32Ad geuVQKbN3wQLvO+ElhE8MB8GA1UdIwQYMBaAFEyyEypyNqbjtbljDKAwEUhjKFX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEY5Qi8wMUVERUY5NjVE QkUxMUVGOEEwNkVENDBDNEY5QUUwMi9UTElUS25JMnB1TzF1V01Nb0RBUlNHTW9W ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RMSVRLbkkycHVPMXVXTU1vREFSU0dNb1ZmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEY5Qi8wMUVERUY5NjVEQkUxMUVGOEEwNkVENDBDNEY5QUUwMi9UTElUS25JMnB1 TzF1V01Nb0RBUlNHTW9WZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBImPQ5WlkEe+9rt/F/jTEbRCem+dwJdK/fQjK/vzgRT/JfNhNr0VyJ C1lQ5S9i/COLkvgZJlDe7cfqo2dUcbnMs93zTl8Fv5FQY+8NBEE+vd5JSXUyQSNx hT2yMPFxA95tIsc8ToIFryfcWqhXKusnzGSsk/a+qRnnCKAoIC77XJB45QDGBPWu Dnf7Uf82mWmGt5fP5dHx5k3FnMPQVRe3TJ996hQhpL2Ey9aKj7pD4nAcaaOZc7gi FWLbeH58sq5BX6UoJNjhG9qOaYt3kB/3mJQHDaHdmoWlS5fxVSGVSp77QtWEZbtn zJjxUlsWbBtvFwLqRp59vq70fETxjbnq -----END CERTIFICATE-----Generated at Sat Aug 9 01:16:29 2025 by rpki-client