$ rpki-client -vvf rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft File: Tcfii1RvKgtTjozfgy2aofN8yOQ.mft (raw, json) Hash identifier: MNsbT4hy7ATwa/ctlhj1rLMLDMRKcLnX8Ww+nyY3Qos= Subject key identifier: 05:F0:50:83:EA:F6:CC:EC:ED:F3:AD:20:95:05:61:17:77:D2:43:22 Authority key identifier: 4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 Certificate issuer: /CN=A91423C1/serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft Manifest number: 59 Signing time: Mon 21 Apr 2025 03:53:44 +0000 Manifest this update: Mon 21 Apr 2025 03:53:43 +0000 Manifest next update: Mon 28 Apr 2025 03:53:43 +0000 Files and hashes: 1: Tcfii1RvKgtTjozfgy2aofN8yOQ.crl (hash: duwjD1KYnyUNTcETMHGikHE8uReaPgW6bsj+YrJbQMI=) 2: D31DA3FAE55311EFA195DC68C4F9AE02.roa (hash: GYS8k9UwWROEU4CPy3zJZbjxwuE5OSbNBFEHxATP3jE=) 3: 1BF014320D5411F09D0E1A4CC4F9AE02.roa (hash: qtTlSykZWAQtBUB9Rat4VpmkVXZoqWdqikbCdbZliz0=) 4: 3E9ACB6EE29611EFAE82780AC4F9AE02.roa (hash: wyEjofnc8ole0121WyuEbUERePWJfuYpn1FXolEHMnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 03:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423C1, serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4 Validity Not Before: Apr 21 03:53:43 2025 GMT Not After : Apr 28 03:53:43 2025 GMT Subject: CN=6805c147-47f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0d:83:65:97:27:78:f7:d2:a2:e8:b8:f0:19: b3:35:c5:7d:15:37:82:aa:a7:29:de:b1:94:67:b7: fc:20:19:8f:2d:66:3f:90:82:ee:fe:7a:bf:a8:56: 5a:9e:f7:3b:ac:0b:d8:e2:67:5e:10:bc:f1:b1:2e: d6:1f:10:82:3f:c6:8d:4d:f8:a7:83:e1:88:04:09: 45:57:e0:56:4b:62:10:44:97:49:d3:26:61:5f:1a: ab:62:89:82:01:d6:18:2d:5f:91:8f:c0:88:f1:c0: 03:f1:cd:bc:8e:2c:5d:4b:9b:e8:5a:5a:cd:16:63: 8c:6a:b0:2c:e4:43:3d:ff:a8:54:37:60:e1:a6:92: 05:b1:7a:ea:41:cb:6e:d6:cb:48:d8:36:1c:ce:aa: 56:28:6a:01:e3:2e:cd:5e:ea:e3:1b:95:ba:70:cb: 26:1e:df:90:cc:20:21:29:ad:25:fb:89:9c:7e:51: 6f:be:8c:15:62:d0:aa:3e:a8:30:f1:1b:b6:81:e9: 4f:18:13:95:02:a3:d4:d4:a7:1f:22:0b:6e:16:14: cd:ee:2f:08:27:fa:27:4b:4a:60:c0:0e:0f:f6:15: f1:03:f4:de:e4:d1:38:18:e2:ad:78:01:7d:33:d5: 4d:78:3a:be:4a:fa:f7:6d:c2:22:e1:f9:f6:d4:a8: 07:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:F0:50:83:EA:F6:CC:EC:ED:F3:AD:20:95:05:61:17:77:D2:43:22 X509v3 Authority Key Identifier: keyid:4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:7d:be:e6:bf:c1:6b:e8:d3:9b:50:5e:4f:13:fe:f2:63:12: 62:22:96:41:90:df:ca:f2:af:a4:de:a3:3b:d1:1d:ea:66:ca: 6e:a7:62:29:a8:69:2a:a4:17:5f:51:ec:35:05:68:5b:5f:9b: 9e:00:e3:73:bc:5f:9e:1c:6e:c1:35:37:c6:54:34:3d:18:2e: b7:42:07:c6:67:37:e0:04:b1:bd:f9:f1:b9:96:6f:c2:23:ec: 30:c2:da:af:22:3e:29:df:cf:7a:ab:37:e0:1d:ea:95:26:9e: 24:7b:0a:c1:ff:3c:01:a7:cc:de:10:45:56:ba:77:21:50:43: 29:35:de:80:9c:72:bd:57:ad:31:2e:3a:cd:86:5d:69:bc:c9: 87:ba:63:31:be:10:3a:1c:38:86:7f:53:64:42:65:f4:86:7e: e2:1f:51:d3:a3:40:e3:71:b7:0b:a5:03:87:e5:c9:72:b3:71: 67:a0:a9:73:b1:86:cb:a2:41:18:b0:dc:17:9d:da:87:29:91: 9d:8e:b1:a2:3b:a4:ff:32:a6:28:ca:86:f4:7a:6f:08:71:9d: 2c:e8:dd:71:b9:d1:58:b1:36:c8:97:33:18:c3:ec:47:90:d8: 1e:3b:b9:9c:06:bc:63:3b:a9:20:bc:e0:2b:1d:30:aa:e8:02: 79:bb:f1:ba -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjNDMTExMC8GA1UEBRMoNERDN0UyOEI1NDZGMkEwQjUzOEU4Q0RGODMyRDlBQTFG MzdDQzhFNDAeFw0yNTA0MjEwMzUzNDNaFw0yNTA0MjgwMzUzNDNaMBgxFjAUBgNV BAMTDTY4MDVjMTQ3LTQ3ZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmDYNllyd499Ki6LjwGbM1xX0VN4KqpynesZRnt/wgGY8tZj+Qgu7+er+oVlqe 9zusC9jiZ14QvPGxLtYfEII/xo1N+KeD4YgECUVX4FZLYhBEl0nTJmFfGqtiiYIB 1hgtX5GPwIjxwAPxzbyOLF1Lm+haWs0WY4xqsCzkQz3/qFQ3YOGmkgWxeupBy27W y0jYNhzOqlYoagHjLs1e6uMblbpwyyYe35DMICEprSX7iZx+UW++jBVi0Ko+qDDx G7aB6U8YE5UCo9TUpx8iC24WFM3uLwgn+idLSmDADg/2FfED9N7k0TgY4q14AX0z 1U14Or5K+vdtwiLh+fbUqAdRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBfBQg+r2 zOzt860glQVhF3fSQyIwHwYDVR0jBBgwFoAUTcfii1RvKgtTjozfgy2aofN8yOQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyM0MxL0QwMzIwRUY4QkY0 RjExRUZCQ0Y2ODk0NEM0RjlBRTAyL1RjZmlpMVJ2S2d0VGpvemZneTJhb2ZOOHlP US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVGNmaWkxUnZLZ3RUam96Zmd5MmFvZk44eU9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy M0MxL0QwMzIwRUY4QkY0RjExRUZCQ0Y2ODk0NEM0RjlBRTAyL1RjZmlpMVJ2S2d0 VGpvemZneTJhb2ZOOHlPUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF99vua/wWvo05tQXk8T/vJjEmIilkGQ38ryr6TeozvRHepmym6nYimo aSqkF19R7DUFaFtfm54A43O8X54cbsE1N8ZUND0YLrdCB8ZnN+AEsb358bmWb8Ij 7DDC2q8iPinfz3qrN+Ad6pUmniR7CsH/PAGnzN4QRVa6dyFQQyk13oCccr1XrTEu Os2GXWm8yYe6YzG+EDocOIZ/U2RCZfSGfuIfUdOjQONxtwulA4flyXKzcWegqXOx hsuiQRiw3Bed2ocpkZ2OsaI7pP8ypijKhvR6bwhxnSzo3XG50VixNsiXMxjD7EeQ 2B47uZwGvGM7qSC84CsdMKroAnm78bo= -----END CERTIFICATE-----Generated at Tue Apr 22 23:08:35 2025 by rpki-client