$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.mft File: TLC5W0vcIzFPKD73OalqfGWMCmw.mft (raw, json) Hash identifier: Wo8csNSJ6qQ/fw95bkM2TL6M1r0avEnFUw93fZPSqxE= Subject key identifier: 4E:09:BF:88:EE:AA:FA:1C:02:16:FF:84:AD:03:CF:13:6B:55:74:9B Authority key identifier: 4C:B0:B9:5B:4B:DC:23:31:4F:28:3E:F7:39:A9:6A:7C:65:8C:0A:6C Certificate issuer: /CN=A911E660/serialNumber=4CB0B95B4BDC23314F283EF739A96A7C658C0A6C Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLC5W0vcIzFPKD73OalqfGWMCmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.mft Manifest number: 28 Signing time: Sat 29 Mar 2025 07:05:41 +0000 Manifest this update: Sat 29 Mar 2025 07:05:41 +0000 Manifest next update: Sat 05 Apr 2025 07:05:41 +0000 Files and hashes: 1: TLC5W0vcIzFPKD73OalqfGWMCmw.crl (hash: sz4GIOqLylFkIYP6PAnWQUSS+fpJi24XxJkMUVsWZvk=) 2: 4F39607ED24311EF919B6D12C4F9AE02.roa (hash: JjJCce1zF9qiD7rlQJmvV1gpbHE3mN8ttiQOSid+Fl4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.crl rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLC5W0vcIzFPKD73OalqfGWMCmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E660 Validity Not Before: Mar 29 07:05:41 2025 GMT Not After : Apr 5 07:05:41 2025 GMT Subject: CN=67e79bc5-3629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0c:2a:84:21:ec:59:20:f4:fc:9f:3f:31:ad: fe:ba:6e:58:2d:4a:59:12:a5:23:87:f5:78:a2:70: 25:ce:05:3f:4e:4f:2f:0b:21:17:1d:79:27:7e:f9: 66:50:f2:03:d4:e6:9b:ff:a7:92:d5:21:72:5c:e9: 2c:4d:17:ca:be:85:65:8e:65:d1:a4:b8:37:95:be: ba:29:61:c3:49:ac:a9:c3:4a:c3:df:7a:24:60:ff: 59:dc:d3:42:92:cb:1b:af:5d:57:1d:ec:d0:14:31: a9:36:47:da:fd:56:a8:2a:0f:30:8a:1a:5e:e6:a9: ec:49:f7:ce:e1:9c:19:2e:04:f1:c9:26:88:b0:16: f6:69:e1:a8:6f:fe:89:7c:73:e1:59:93:36:dd:b1: 37:91:99:a2:26:71:37:2f:74:28:c9:bc:05:93:f7: b7:a7:af:5e:2f:f8:6c:2c:5f:c9:d3:73:9a:80:bf: 8b:e7:d5:d1:e1:f3:d1:5a:1e:dd:5d:9e:77:24:13: d8:8e:b6:b4:c4:f5:69:83:b3:ae:b6:fc:7b:da:b7: 56:22:df:aa:77:1a:69:d5:51:b0:89:7e:51:c6:c3: f9:11:2b:63:b8:53:19:cc:96:50:b0:7e:f4:f5:47: 3e:2f:4e:aa:a0:5c:8f:41:13:06:05:b3:af:a4:d4: ee:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:09:BF:88:EE:AA:FA:1C:02:16:FF:84:AD:03:CF:13:6B:55:74:9B X509v3 Authority Key Identifier: keyid:4C:B0:B9:5B:4B:DC:23:31:4F:28:3E:F7:39:A9:6A:7C:65:8C:0A:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLC5W0vcIzFPKD73OalqfGWMCmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:2e:90:05:e7:68:52:ad:ef:6d:20:e3:1d:48:78:6c:6e:bf: 0c:e2:8f:50:09:63:d5:e6:27:e2:9c:a5:3c:60:d0:40:c2:ba: 76:96:d9:08:b0:9e:1e:5e:1f:93:44:4b:92:96:bd:0c:2d:7d: f3:cf:96:61:46:0b:e7:ad:16:5b:b1:87:8b:87:41:aa:e8:c9: a2:53:72:ff:f6:ef:de:e0:77:34:0a:7f:cc:a7:84:85:f3:2a: e3:46:d8:53:c5:02:a2:45:81:e5:ec:09:b2:35:2b:76:ca:56: 03:0b:95:9c:d7:ac:67:78:11:35:2a:2a:61:25:6e:64:bd:d0: cc:07:0d:17:74:61:75:f1:53:11:c4:cf:c9:56:38:80:0c:57: ed:c0:cc:be:e0:33:22:31:96:1e:6f:a5:09:a5:c7:72:a4:9b: 55:ed:f1:e4:3f:1e:c3:23:27:58:af:dd:eb:c0:4b:2e:ac:04: 6b:4c:ae:d5:f6:44:5e:66:e6:6e:1a:c5:9d:3c:b4:f4:4f:bc: d4:1c:ae:a2:fb:1b:96:11:8a:95:cf:b4:3c:d0:f1:fd:7c:02: 8c:15:de:ea:f9:92:1f:6e:77:07:9b:ad:1e:c7:2d:12:9f:cb: 2c:86:7f:ee:ca:12:36:f8:a3:f0:df:1c:04:9d:6a:11:94:15: 1b:dc:77:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTY2MDExMC8GA1UEBRMoNENCMEI5NUI0QkRDMjMzMTRGMjgzRUY3MzlBOTZBN0M2 NThDMEE2QzAeFw0yNTAzMjkwNzA1NDFaFw0yNTA0MDUwNzA1NDFaMBgxFjAUBgNV BAMTDTY3ZTc5YmM1LTM2MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLDCqEIexZIPT8nz8xrf66blgtSlkSpSOH9XiicCXOBT9OTy8LIRcdeSd++WZQ 8gPU5pv/p5LVIXJc6SxNF8q+hWWOZdGkuDeVvropYcNJrKnDSsPfeiRg/1nc00KS yxuvXVcd7NAUMak2R9r9VqgqDzCKGl7mqexJ987hnBkuBPHJJoiwFvZp4ahv/ol8 c+FZkzbdsTeRmaImcTcvdCjJvAWT97enr14v+GwsX8nTc5qAv4vn1dHh89FaHt1d nnckE9iOtrTE9WmDs662/Hvat1Yi36p3GmnVUbCJflHGw/kRK2O4UxnMllCwfvT1 Rz4vTqqgXI9BEwYFs6+k1O7dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTgm/iO6q +hwCFv+ErQPPE2tVdJswHwYDVR0jBBgwFoAUTLC5W0vcIzFPKD73OalqfGWMCmww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNjYwLzAxQzUyQTMwRDI0 MzExRUY4OEM1QkMxMUM0RjlBRTAyL1RMQzVXMHZjSXpGUEtENzNPYWxxZkdXTUNt dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVExDNVcwdmNJekZQS0Q3M09hbHFmR1dNQ213LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF NjYwLzAxQzUyQTMwRDI0MzExRUY4OEM1QkMxMUM0RjlBRTAyL1RMQzVXMHZjSXpG UEtENzNPYWxxZkdXTUNtdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA4ukAXnaFKt720g4x1IeGxuvwzij1AJY9XmJ+KcpTxg0EDCunaW2Qiw nh5eH5NES5KWvQwtffPPlmFGC+etFluxh4uHQaroyaJTcv/2797gdzQKf8ynhIXz KuNG2FPFAqJFgeXsCbI1K3bKVgMLlZzXrGd4ETUqKmElbmS90MwHDRd0YXXxUxHE z8lWOIAMV+3AzL7gMyIxlh5vpQmlx3Kkm1Xt8eQ/HsMjJ1iv3evASy6sBGtMrtX2 RF5m5m4axZ08tPRPvNQcrqL7G5YRipXPtDzQ8f18AowV3ur5kh9udwebrR7HLRKf yyyGf+7KEjb4o/DfHASdahGUFRvcd7U= -----END CERTIFICATE-----Generated at Fri Apr 4 21:54:10 2025 by rpki-client