$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft (raw, json) Hash identifier: P9yPdShpT+SzivAgjBly1g9U8OtlWQVhkdj8bXNIaHg= Subject key identifier: 76:C9:F2:32:8E:9C:2F:87:28:5B:8A:F6:16:9C:93:CF:F1:B5:14:A5 Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft Manifest number: 01DD Signing time: Tue 05 Aug 2025 03:11:45 +0000 Manifest this update: Tue 05 Aug 2025 03:11:44 +0000 Manifest next update: Tue 12 Aug 2025 03:11:44 +0000 Files and hashes: 1: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl (hash: iy48Zk0vN+ZsNWXH8P/ZLOOTDnGGiGwKTllOYrmv3eY=) 2: 66D00EB2449C11EE86105C41C4F9AE02.roa (hash: sFUlSAs686BHpBPHFZ6jJXEM4AvroBrl/QL/VRc6YMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 03:11:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D, serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: Aug 5 03:11:44 2025 GMT Not After : Aug 12 03:11:44 2025 GMT Subject: CN=68917671-9a98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:75:07:41:6f:41:cc:2b:4f:4c:68:7a:99:5c: db:04:07:c7:1f:8a:13:6d:95:f8:4c:b0:46:64:14: 2e:f1:1e:82:d3:9f:24:01:93:89:38:7a:b8:d5:5d: 38:ec:de:73:29:0d:dd:3c:71:ba:9d:2d:eb:fe:fb: a5:95:48:4a:67:59:57:eb:65:d0:fa:3f:0a:13:ee: fe:c0:8f:88:2a:48:05:4b:0d:00:be:de:77:eb:1d: 47:ae:db:4a:59:6c:a4:10:bc:e1:32:b3:b6:82:c3: 76:c2:e5:1b:f8:77:c7:4e:51:d8:fb:01:f5:c4:ab: 11:7e:0e:ac:c4:f4:e7:02:df:d7:65:1b:5f:ba:20: 16:af:e4:39:07:1c:62:6d:bf:c3:1e:e5:65:e0:dc: de:c6:b8:4c:0f:17:36:2e:94:de:d0:cf:e7:ab:70: 3f:e3:b4:26:4f:7c:52:67:a9:a2:b6:36:05:d6:e6: 5e:26:28:cd:5a:65:51:07:d4:d7:9a:1b:82:dd:aa: 8f:42:2c:74:d5:92:b6:ef:85:c2:10:35:58:46:13: ce:f5:0a:31:ad:f3:04:38:5d:9f:94:58:3d:3b:ac: 78:cf:f7:ab:8d:2b:02:d1:33:09:a6:aa:41:4d:94: 57:15:e2:57:0e:28:3c:e8:a7:17:42:3b:ae:72:cb: 5d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:C9:F2:32:8E:9C:2F:87:28:5B:8A:F6:16:9C:93:CF:F1:B5:14:A5 X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:38:da:77:05:2f:f8:fb:e0:4a:7c:e2:a1:70:26:7a:b3:a2: 69:a1:62:d2:6b:68:ec:89:02:35:f4:50:86:79:c6:f9:d4:cc: c2:31:25:a6:f1:c5:14:dc:80:a1:2b:70:05:4b:c8:39:12:bb: d2:5f:19:54:1e:a9:96:01:13:e0:9d:c3:16:4c:fd:99:87:5c: 24:0f:a6:31:10:07:2d:38:1e:d4:a1:8e:49:b5:2e:e9:96:c3: 3d:f3:1e:97:aa:8b:d0:7b:2c:e3:1d:95:52:c6:4f:31:8f:b0: cf:a9:73:f6:e6:20:fb:cf:01:3c:cc:94:5a:a7:87:62:6a:dc: cd:ef:99:eb:35:1e:1f:21:3f:c7:72:fa:4d:a2:9a:d1:40:0f: b5:ae:8e:d6:33:a7:c2:63:3b:47:99:6e:74:be:9b:04:5d:82: f0:f0:1e:c9:55:e8:ba:de:0c:cc:0e:50:28:84:68:24:32:f6: 7c:50:46:d5:35:e0:01:d1:ca:38:3b:8e:74:1c:87:13:dc:66: 17:ee:e0:e7:9d:c1:0e:69:84:6d:a5:59:11:4a:e0:2f:32:6e: 1f:b1:14:37:33:26:ba:bf:bc:f2:f8:a5:e5:48:2c:77:27:3e: e1:0a:18:67:60:ee:15:9e:be:c2:86:e6:6a:92:89:97:6d:f4: 84:fc:db:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjUwODA1MDMxMTQ0WhcNMjUwODEyMDMxMTQ0WjAYMRYwFAYD VQQDEw02ODkxNzY3MS05YTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXUHQW9BzCtPTGh6mVzbBAfHH4oTbZX4TLBGZBQu8R6C058kAZOJOHq41V04 7N5zKQ3dPHG6nS3r/vullUhKZ1lX62XQ+j8KE+7+wI+IKkgFSw0Avt536x1HrttK WWykELzhMrO2gsN2wuUb+HfHTlHY+wH1xKsRfg6sxPTnAt/XZRtfuiAWr+Q5Bxxi bb/DHuVl4NzexrhMDxc2LpTe0M/nq3A/47QmT3xSZ6mitjYF1uZeJijNWmVRB9TX mhuC3aqPQix01ZK274XCEDVYRhPO9QoxrfMEOF2flFg9O6x4z/erjSsC0TMJpqpB TZRXFeJXDig86KcXQjuucstdYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbJ8jKO nC+HKFuK9hack8/xtRSlMB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDY0RC8zNzA3ODZDODk5OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktU UTNFV1kxM2QwWmxDaTJqVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMONp3BS/4++BKfOKhcCZ6s6JpoWLSa2jsiQI19FCGecb51MzCMSWm 8cUU3IChK3AFS8g5ErvSXxlUHqmWARPgncMWTP2Zh1wkD6YxEActOB7UoY5JtS7p lsM98x6XqovQeyzjHZVSxk8xj7DPqXP25iD7zwE8zJRap4diatzN75nrNR4fIT/H cvpNoprRQA+1ro7WM6fCYztHmW50vpsEXYLw8B7JVei63gzMDlAohGgkMvZ8UEbV NeAB0co4O450HIcT3GYX7uDnncEOaYRtpVkRSuAvMm4fsRQ3Mya6v7zy+KXlSCx3 Jz7hChhnYO4Vnr7ChuZqkomXbfSE/Nvw -----END CERTIFICATE-----Generated at Thu Aug 7 04:42:38 2025 by rpki-client