$ rpki-client -vvf rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft File: TKAuwRGHSuDn0FVaJf8zAvkS64w.mft (raw, json) Hash identifier: PQ41CJbzgpZl98hxE2ssqxQlJjPQRCspWsK7jkO/dZE= Subject key identifier: 17:73:F2:B0:80:68:73:CA:7B:05:01:40:4E:CE:37:38:85:87:9A:A1 Authority key identifier: 4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C Certificate issuer: /CN=A915825D/serialNumber=4CA02EC111874AE0E7D0555A25FF3302F912EB8C Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft Manifest number: 4C Signing time: Sat 05 Apr 2025 06:37:37 +0000 Manifest this update: Sat 05 Apr 2025 06:37:37 +0000 Manifest next update: Sat 12 Apr 2025 06:37:37 +0000 Files and hashes: 1: TKAuwRGHSuDn0FVaJf8zAvkS64w.crl (hash: WtKzuO2M6monPqYAwudUVsuBAgWp9kjkvp0JNj0S2OQ=) 2: B2117FB0AA3E11EF87579E32C4F9AE02.roa (hash: 7kF38BKL9V3cym2zycV86CcHLcc8wmCLtlkW2XVaQq8=) 3: 109B1A6AC14F11EFAE8F4B0BC4F9AE02.roa (hash: O3Uz+KpRm5MoctoGRC1duD1BwfL9FN3BK/XdRP8CSp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915825D Validity Not Before: Apr 5 06:37:37 2025 GMT Not After : Apr 12 06:37:37 2025 GMT Subject: CN=67f0cfb1-9e3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3e:b9:ae:fd:f4:00:b7:e7:14:f1:23:c8:2f: 00:d0:87:c6:72:cf:44:24:ef:60:f5:12:78:36:41: 3c:21:44:56:aa:6d:ba:36:f5:b5:a0:ba:85:cf:6b: 56:b9:53:03:cf:52:e0:cc:cc:24:bb:45:69:0f:51: 4e:b5:04:79:4b:e5:af:bb:97:19:33:38:4c:8e:02: d1:0a:90:bb:ce:4f:89:f2:25:c5:a0:ff:64:75:85: 4c:2b:6b:71:18:65:67:37:fc:07:25:79:9e:84:b9: 07:15:b6:70:7e:4e:90:da:75:22:f6:67:b7:b2:c6: a4:07:08:49:6d:f5:c5:4f:a7:2b:c6:d3:37:c4:e3: 3c:57:ee:bd:0e:dd:91:e6:ca:82:5f:f8:a2:0f:55: 99:36:8c:8f:82:45:01:0b:27:8c:4e:48:40:48:03: 37:fe:8b:b9:97:85:19:9b:45:e3:42:46:40:44:78: 2f:a1:1f:c1:96:83:1d:9a:81:7e:13:88:8d:3c:88: 08:6f:6e:08:88:77:15:dc:94:35:73:f3:2d:cf:12: 0a:44:0e:1b:d8:8d:f5:71:f8:ac:e9:f3:5c:2e:22: 20:c2:45:74:01:a9:ea:c3:a1:00:a4:12:5c:03:b1: ce:dc:51:20:66:d2:43:2c:43:db:e5:c2:48:33:d4: 6e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:73:F2:B0:80:68:73:CA:7B:05:01:40:4E:CE:37:38:85:87:9A:A1 X509v3 Authority Key Identifier: keyid:4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:c7:24:80:48:19:83:54:c9:0e:e9:7e:f9:9f:78:ff:1f:82: 67:db:65:74:2a:22:2f:1e:ee:8e:79:b3:10:e8:99:ae:09:0e: 2b:f7:5e:b3:f2:0e:0d:2e:6d:f3:b0:ee:e2:54:ae:e3:31:41: 4b:ec:4d:d2:32:27:35:1f:33:cb:b0:bc:84:b7:b2:78:b2:2d: 3e:ba:c7:27:4e:b6:c3:22:98:9a:55:b9:4b:f9:20:5a:59:da: a1:03:bd:f9:25:25:1d:f4:b1:f0:27:89:9b:a3:6d:78:4f:6f: 3b:a0:7c:3b:1f:25:c1:8e:73:31:5b:16:40:0a:42:77:80:fb: a5:89:e9:51:d7:0e:23:e6:90:f5:88:e4:ed:a0:c5:14:4e:da: a9:39:02:37:29:e9:d9:3c:b5:ae:e9:12:d3:81:4f:90:6c:92: eb:5f:c5:ad:17:86:ae:6b:e7:f5:17:6f:25:12:8c:34:53:b0: de:fe:2c:94:66:6f:5c:ed:70:69:1e:77:02:74:88:f9:04:48: 53:7b:88:f3:a5:9f:ad:17:e3:1b:30:37:6d:cf:7b:37:14:d5: 12:6e:32:db:d9:8f:4a:a0:d0:23:f2:24:00:58:e6:1a:7e:d5: 97:9d:4e:90:da:f9:5b:cb:1e:0d:ac:96:40:f5:b4:60:80:60: 97:34:05:26 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODI1RDExMC8GA1UEBRMoNENBMDJFQzExMTg3NEFFMEU3RDA1NTVBMjVGRjMzMDJG OTEyRUI4QzAeFw0yNTA0MDUwNjM3MzdaFw0yNTA0MTIwNjM3MzdaMBgxFjAUBgNV BAMTDTY3ZjBjZmIxLTllM2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHPrmu/fQAt+cU8SPILwDQh8Zyz0Qk72D1Eng2QTwhRFaqbbo29bWguoXPa1a5 UwPPUuDMzCS7RWkPUU61BHlL5a+7lxkzOEyOAtEKkLvOT4nyJcWg/2R1hUwra3EY ZWc3/AcleZ6EuQcVtnB+TpDadSL2Z7eyxqQHCElt9cVPpyvG0zfE4zxX7r0O3ZHm yoJf+KIPVZk2jI+CRQELJ4xOSEBIAzf+i7mXhRmbReNCRkBEeC+hH8GWgx2agX4T iI08iAhvbgiIdxXclDVz8y3PEgpEDhvYjfVx+Kzp81wuIiDCRXQBqerDoQCkElwD sc7cUSBm0kMsQ9vlwkgz1G4LAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUF3PysIBo c8p7BQFATs43OIWHmqEwHwYDVR0jBBgwFoAUTKAuwRGHSuDn0FVaJf8zAvkS64ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4MjVEL0RENzFENTY4QTQ0 NjExRUY4RDU4QTYyNEM0RjlBRTAyL1RLQXV3UkdIU3VEbjBGVmFKZjh6QXZrUzY0 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVEtBdXdSR0hTdURuMEZWYUpmOHpBdmtTNjR3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 MjVEL0RENzFENTY4QTQ0NjExRUY4RDU4QTYyNEM0RjlBRTAyL1RLQXV3UkdIU3VE bjBGVmFKZjh6QXZrUzY0dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF7HJIBIGYNUyQ7pfvmfeP8fgmfbZXQqIi8e7o55sxDoma4JDiv3XrPy Dg0ubfOw7uJUruMxQUvsTdIyJzUfM8uwvIS3sniyLT66xydOtsMimJpVuUv5IFpZ 2qEDvfklJR30sfAniZujbXhPbzugfDsfJcGOczFbFkAKQneA+6WJ6VHXDiPmkPWI 5O2gxRRO2qk5Ajcp6dk8ta7pEtOBT5Bskutfxa0Xhq5r5/UXbyUSjDRTsN7+LJRm b1ztcGkedwJ0iPkESFN7iPOln60X4xswN23PezcU1RJuMtvZj0qg0CPyJABY5hp+ 1ZedTpDa+VvLHg2slkD1tGCAYJc0BSY= -----END CERTIFICATE-----Generated at Sat Apr 5 19:24:01 2025 by rpki-client