$ rpki-client -vvf rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft File: tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft (raw, json) Hash identifier: xAnj7EFlIvZVYL1+ceUQ6oCXsMA3V522h5lMkoX9M1Q= Subject key identifier: CD:11:96:47:D1:0B:70:25:80:4B:C3:56:B7:9B:FF:6D:EA:05:2B:33 Authority key identifier: B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05 Certificate issuer: /CN=A916A0AF/serialNumber=B66451F97188CAF8184D07C130A25D9576F8C105 Certificate serial: 0556 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft Manifest number: 0551 Signing time: Wed 16 Apr 2025 23:04:51 +0000 Manifest this update: Wed 16 Apr 2025 23:04:50 +0000 Manifest next update: Wed 23 Apr 2025 23:04:50 +0000 Files and hashes: 1: tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl (hash: gFGE/Z2gONSB1R7g0ClWCodFaSICUbV6F3QszP8UTMw=) 2: 529F69FCE5CA11EBB98C5577C4F9AE02.roa (hash: iGGEAjUC0++42POw1gb2SZmwmNS0zkkpPN27YBry/aI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 23:04:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1366 (0x556) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A0AF, serialNumber=B66451F97188CAF8184D07C130A25D9576F8C105 Validity Not Before: Apr 16 23:04:50 2025 GMT Not After : Apr 23 23:04:50 2025 GMT Subject: CN=68003793-09af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1c:c8:f6:65:16:4b:28:c2:cf:17:77:66:13: d0:60:2b:93:73:50:b3:3a:2b:39:e8:cd:fe:6e:69: 61:9e:b0:0d:45:4e:72:8d:ad:5f:b1:82:89:d3:8c: 66:cb:f3:6b:c5:a1:55:e7:6b:b2:31:6c:b7:ff:5a: 77:19:24:a5:f6:85:4e:dc:53:fe:55:94:df:62:4f: 78:c0:7b:4f:f7:2a:cf:06:ac:27:cf:6a:5e:73:dc: c7:99:29:b3:10:f4:6c:77:9d:ed:33:68:64:09:53: 2a:48:7e:a3:eb:0c:a8:b5:b3:80:a7:ee:11:94:2c: 2f:86:ae:42:1a:d9:ee:33:82:93:76:fb:88:67:d9: 20:44:39:b5:11:5e:5e:af:75:bd:ef:52:f9:a5:57: 1d:33:f8:d7:78:ab:b2:b1:85:15:5d:e1:3d:6c:89: 18:fc:b8:97:bd:e8:6e:20:7f:60:67:24:99:51:91: e3:d0:dd:00:cf:b4:57:3d:16:47:7a:fb:a6:1f:06: d6:fd:ec:01:41:ab:d6:24:a7:c9:6b:d5:46:90:e5: 9e:b6:34:38:c7:92:d8:d7:c5:95:a1:93:dd:73:aa: 8d:7b:e4:4b:76:6e:57:cc:dc:b0:43:43:7f:cd:74: bd:3a:68:5c:4f:f7:6d:26:f0:43:2e:41:40:96:90: 5a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:11:96:47:D1:0B:70:25:80:4B:C3:56:B7:9B:FF:6D:EA:05:2B:33 X509v3 Authority Key Identifier: keyid:B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:45:ce:ea:fe:5a:7d:d3:e2:5c:05:84:78:9d:b3:40:fe:25: f3:50:03:02:51:65:1b:5f:1c:15:87:08:4e:82:8f:51:0f:7e: 6a:2b:bc:16:3a:db:93:fd:aa:12:f6:80:32:43:ed:dc:7b:05: 59:8a:5a:c1:ee:c8:7e:c5:87:53:c7:2b:c4:65:4d:fe:6d:85: f2:9a:a8:2e:be:85:22:b7:c1:f0:5d:e4:96:50:6a:28:08:bb: 5a:97:63:bd:2d:b6:fa:64:12:c1:b0:60:6d:ee:55:56:37:ac: 8e:76:e6:45:d4:a0:0e:86:40:da:37:fa:13:f7:fd:11:13:df: 38:82:28:68:9d:95:0d:98:4c:9f:b6:d2:c9:83:dc:7f:d5:26: 85:ad:85:7c:fb:b6:1f:3c:42:30:6d:eb:3c:ed:89:20:0b:55: 22:45:80:3c:36:2f:99:55:3d:dd:19:12:eb:11:85:f5:f1:7b: 9d:a4:05:14:c3:39:db:17:f2:65:39:95:61:c1:f9:ef:81:80: 9b:50:52:ae:f8:88:9c:70:cf:cd:42:72:d1:ed:e2:9b:4a:ab: 04:6c:56:84:18:01:65:b8:7e:a5:34:bd:f0:a7:70:2f:7c:d2: 2e:41:7b:68:9f:8f:96:c8:9b:87:04:69:57:aa:58:2e:6e:20: 3c:6c:ae:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwQUYxMTAvBgNVBAUTKEI2NjQ1MUY5NzE4OENBRjgxODREMDdDMTMwQTI1RDk1 NzZGOEMxMDUwHhcNMjUwNDE2MjMwNDUwWhcNMjUwNDIzMjMwNDUwWjAYMRYwFAYD VQQDEw02ODAwMzc5My0wOWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BzI9mUWSyjCzxd3ZhPQYCuTc1CzOis56M3+bmlhnrANRU5yja1fsYKJ04xm y/NrxaFV52uyMWy3/1p3GSSl9oVO3FP+VZTfYk94wHtP9yrPBqwnz2pec9zHmSmz EPRsd53tM2hkCVMqSH6j6wyotbOAp+4RlCwvhq5CGtnuM4KTdvuIZ9kgRDm1EV5e r3W971L5pVcdM/jXeKuysYUVXeE9bIkY/LiXvehuIH9gZySZUZHj0N0Az7RXPRZH evumHwbW/ewBQavWJKfJa9VGkOWetjQ4x5LY18WVoZPdc6qNe+RLdm5XzNywQ0N/ zXS9OmhcT/dtJvBDLkFAlpBaaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM0RlkfR C3AlgEvDVreb/23qBSszMB8GA1UdIwQYMBaAFLZkUflxiMr4GE0HwTCiXZV2+MEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTBBRi9GRDY1QjREOEU0 QTYxMUVCQjk0QUE1NENDNEY5QUUwMi90bVJSLVhHSXl2Z1lUUWZCTUtKZGxYYjR3 UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RtUlItWEdJeXZnWVRRZkJNS0pkbFhiNHdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTBBRi9GRDY1QjREOEU0QTYxMUVCQjk0QUE1NENDNEY5QUUwMi90bVJSLVhHSXl2 Z1lUUWZCTUtKZGxYYjR3UVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6Rc7q/lp90+JcBYR4nbNA/iXzUAMCUWUbXxwVhwhOgo9RD35qK7wW OtuT/aoS9oAyQ+3cewVZilrB7sh+xYdTxyvEZU3+bYXymqguvoUit8HwXeSWUGoo CLtal2O9Lbb6ZBLBsGBt7lVWN6yOduZF1KAOhkDaN/oT9/0RE984gihonZUNmEyf ttLJg9x/1SaFrYV8+7YfPEIwbes87YkgC1UiRYA8Ni+ZVT3dGRLrEYX18XudpAUU wznbF/JlOZVhwfnvgYCbUFKu+IiccM/NQnLR7eKbSqsEbFaEGAFluH6lNL3wp3Av fNIuQXton4+WyJuHBGlXqlgubiA8bK41 -----END CERTIFICATE-----Generated at Fri Apr 18 17:21:59 2025 by rpki-client