$ rpki-client -vvf rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft File: TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft (raw, json) Hash identifier: RTmDhbpnzM+gfBJXNk5BpdybyEGyZhfwMwRknb3nobY= Subject key identifier: 58:46:5F:70:93:03:05:0B:21:5C:E7:FF:9F:68:33:3E:DD:34:9F:47 Authority key identifier: 4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 Certificate issuer: /CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft Manifest number: 0152 Signing time: Sat 05 Apr 2025 03:34:34 +0000 Manifest this update: Sat 05 Apr 2025 03:34:33 +0000 Manifest next update: Sat 12 Apr 2025 03:34:33 +0000 Files and hashes: 1: TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl (hash: 15y1QMbmxFOcQjCizYPFo8K6il0kFz6GQw2sgNWQCao=) 2: 5EAB725014A211EEA889E832C4F9AE02.roa (hash: mX0oS42d4Afnuz1c6BL0lN1MWESAc87z/AqUedcAt4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D271 Validity Not Before: Apr 5 03:34:33 2025 GMT Not After : Apr 12 03:34:33 2025 GMT Subject: CN=67f0a4ca-e2da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f0:4e:ae:cf:a0:33:61:c6:8c:c4:66:85:4d: 3a:56:79:cc:f4:82:68:0f:99:cd:12:f3:94:a4:b7: 09:77:45:ff:1d:0d:52:3a:3c:75:69:bc:19:8a:0e: 17:9d:b2:30:a3:61:cc:e7:a7:72:53:f2:4b:75:0d: 92:4a:29:40:39:8d:46:1c:b0:ee:dd:f2:5c:b0:a1: 62:5a:53:cf:f3:44:07:1c:e5:64:02:01:72:5e:e7: b0:dc:8c:e1:ad:03:da:c6:bd:ef:b4:46:41:cf:7f: 96:26:00:64:2d:22:be:73:8c:18:13:10:6b:e1:87: 5e:75:85:2d:0d:35:b7:f8:69:54:2d:4f:37:b7:17: 77:54:04:07:8e:47:be:5f:97:d0:83:e5:ff:73:b8: f5:c8:97:a3:c4:84:fa:38:31:af:a6:36:e9:0e:90: ca:3e:cb:52:4f:d6:5b:4e:e5:d3:84:0b:47:4a:5c: f5:22:b7:5a:14:1d:42:eb:52:e2:66:63:c2:f3:34: 48:6c:35:03:4f:61:2a:10:ed:05:60:67:c9:1b:d6: e0:0d:77:ed:a6:4b:d8:95:fa:63:6f:c6:c6:ae:2a: 9c:9a:6e:00:26:14:0b:34:2f:0f:e1:4c:4c:79:6b: 9e:3e:71:b6:4c:f3:7e:39:16:5f:32:04:1f:45:35: 72:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:46:5F:70:93:03:05:0B:21:5C:E7:FF:9F:68:33:3E:DD:34:9F:47 X509v3 Authority Key Identifier: keyid:4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:8c:bd:ba:78:b6:68:f3:a8:f8:94:ba:3b:03:76:fb:f4:52: 02:ec:04:98:d6:57:8b:1b:40:aa:bf:70:62:10:ab:fb:ff:ab: 2a:0b:c7:85:c5:e2:16:21:72:73:34:0c:75:57:f9:9d:a6:c0: 87:b3:48:d2:a0:1b:b4:d6:5a:bf:95:b7:ad:8e:e9:cc:93:62: ea:db:38:3a:44:15:5f:05:5f:90:9e:58:b2:45:34:25:22:e0: 40:75:17:13:0a:9a:8e:9b:9c:f7:5a:39:c1:ef:d8:b5:04:19: 37:5d:a9:56:64:ac:06:e2:86:cb:19:28:5e:70:e8:ab:28:8f: 04:b8:28:16:f5:3f:65:9a:b2:bc:8c:88:34:8d:4d:12:91:df: f5:62:c0:e6:b0:7f:90:ca:c9:75:72:3a:db:4c:6f:1e:8c:ee: dc:1e:58:4c:bc:32:b3:85:ef:55:10:63:43:52:c8:b7:28:52: 84:17:d1:91:68:fa:be:ab:16:b8:2d:ec:f6:09:00:87:0e:9d: d9:eb:39:37:eb:d5:6b:78:8b:56:bd:25:4c:5c:6c:bb:d4:11: 13:ec:a5:87:50:e5:9c:9d:76:d2:4d:24:01:92:82:c5:8f:cc: 0d:e3:1c:d8:e6:b8:55:63:19:f9:6b:b1:f7:28:00:c0:98:1c: 43:6b:b6:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNzExMTAvBgNVBAUTKDRDRUVFRTZEMzY2M0MxM0ZEODJFOTMxREFDNjlGMTcw NDZGQzk5QjMwHhcNMjUwNDA1MDMzNDMzWhcNMjUwNDEyMDMzNDMzWjAYMRYwFAYD VQQDEw02N2YwYTRjYS1lMmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvBOrs+gM2HGjMRmhU06VnnM9IJoD5nNEvOUpLcJd0X/HQ1SOjx1abwZig4X nbIwo2HM56dyU/JLdQ2SSilAOY1GHLDu3fJcsKFiWlPP80QHHOVkAgFyXuew3Izh rQPaxr3vtEZBz3+WJgBkLSK+c4wYExBr4YdedYUtDTW3+GlULU83txd3VAQHjke+ X5fQg+X/c7j1yJejxIT6ODGvpjbpDpDKPstST9ZbTuXThAtHSlz1IrdaFB1C61Li ZmPC8zRIbDUDT2EqEO0FYGfJG9bgDXftpkvYlfpjb8bGriqcmm4AJhQLNC8P4UxM eWuePnG2TPN+ORZfMgQfRTVy8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFhGX3CT AwULIVzn/59oMz7dNJ9HMB8GA1UdIwQYMBaAFEzu7m02Y8E/2C6THaxp8XBG/Jmz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI3MS8yODE0RjBERTEx QjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandUX1lMcE1kckdueGNFYjht Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RPN3ViVFpqd1RfWUxwTWRyR254Y0ViOG1iTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI3MS8yODE0RjBERTExQjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandU X1lMcE1kckdueGNFYjhtYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCjL26eLZo86j4lLo7A3b79FIC7ASY1leLG0Cqv3BiEKv7/6sqC8eF xeIWIXJzNAx1V/mdpsCHs0jSoBu01lq/lbetjunMk2Lq2zg6RBVfBV+QnliyRTQl IuBAdRcTCpqOm5z3WjnB79i1BBk3XalWZKwG4obLGShecOirKI8EuCgW9T9lmrK8 jIg0jU0Skd/1YsDmsH+Qysl1cjrbTG8ejO7cHlhMvDKzhe9VEGNDUsi3KFKEF9GR aPq+qxa4Lez2CQCHDp3Z6zk369VreItWvSVMXGy71BET7KWHUOWcnXbSTSQBkoLF j8wN4xzY5rhVYxn5a7H3KADAmBxDa7ao -----END CERTIFICATE-----Generated at Sat Apr 5 22:59:25 2025 by rpki-client