$ rpki-client -vvf rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft File: TiH1qoySjAtnV8A-VbClkjxOSKs.mft (raw, json) Hash identifier: g07NbvMNciw2dRjTHB9wNklleML0Fr/bTdZoJCkxNso= Subject key identifier: F0:AA:4A:81:04:B3:BB:96:04:CA:97:28:62:AE:53:7D:71:F4:AB:FC Authority key identifier: 4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB Certificate issuer: /CN=A9180D79/serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft Manifest number: 010F Signing time: Sat 29 Mar 2025 04:19:24 +0000 Manifest this update: Sat 29 Mar 2025 04:19:24 +0000 Manifest next update: Sat 05 Apr 2025 04:19:24 +0000 Files and hashes: 1: TiH1qoySjAtnV8A-VbClkjxOSKs.crl (hash: RjuGXEtZqp6PDNKYXkqdkvyhIHCAXnolspzvNf8kBo8=) 2: 25FE32B86D9D11EEB269D31CC4F9AE02.roa (hash: 7pdkVLQd2iDi4TqY7pImfsIqvgfxviEdh0IKPlLfG18=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:19:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180D79 Validity Not Before: Mar 29 04:19:24 2025 GMT Not After : Apr 5 04:19:24 2025 GMT Subject: CN=67e774cc-caec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:80:64:16:20:bc:48:09:b7:ed:fa:1f:d5:70: 35:d5:6d:6d:58:3f:cc:f0:c5:34:eb:ff:c8:5a:35: 26:7d:35:af:89:d6:88:9e:07:89:b8:82:a2:df:49: 86:45:a0:c9:a7:8a:72:08:54:f0:a9:2c:dc:d4:f6: 22:89:be:19:fe:95:b1:09:bf:27:cf:ef:61:b7:18: e4:7b:a0:05:11:c0:20:2a:4b:c8:d9:dc:34:4d:56: 12:72:5f:37:83:46:0b:47:36:da:af:6f:76:20:94: ea:f6:a2:25:c4:9e:b0:3f:7f:95:d4:7a:85:21:57: 96:27:35:9f:d4:c6:4b:d9:92:04:42:78:c5:97:e7: 74:08:81:2d:c6:d0:a2:d4:12:bb:7a:81:dd:81:14: 22:82:49:a3:23:9a:08:a1:d6:eb:17:9a:af:f9:9d: ba:97:ee:67:e0:e2:25:b1:ac:21:75:5b:ae:e9:bd: e4:9f:bd:7c:64:8a:9a:9a:46:f3:a0:87:d9:9e:2c: 08:8e:94:78:11:f6:ae:88:97:db:8c:4e:98:5d:3e: 93:fe:14:39:83:98:05:21:db:c8:85:c9:06:2a:a0: 1c:1d:e9:5c:df:64:03:42:e7:c8:3a:b4:3c:1f:02: d0:77:69:46:42:8c:0a:29:1d:0a:99:8c:72:70:30: be:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:AA:4A:81:04:B3:BB:96:04:CA:97:28:62:AE:53:7D:71:F4:AB:FC X509v3 Authority Key Identifier: keyid:4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:ad:93:cf:ba:82:d3:53:aa:9c:b5:04:f7:ab:04:d7:c4:ee: 39:39:2a:4a:a9:df:50:4e:1a:cb:47:24:92:68:64:14:0e:b7: 89:fa:60:5d:e3:5a:99:61:50:f8:42:fa:46:89:ca:06:e6:d6: 7c:9c:2d:88:77:06:fd:fa:bd:64:38:61:94:4e:42:79:67:d9: aa:94:81:06:ed:59:ed:3d:29:ed:5c:c1:fb:ef:69:11:9b:c8: fa:4a:11:73:9f:c9:8a:a6:ed:16:16:33:7d:74:d1:b2:7d:e0: 87:d3:94:5a:37:78:5b:9b:a1:94:b0:2a:5f:5e:1f:55:81:04: 71:bb:6c:27:6c:d1:fa:dc:8b:ef:49:98:15:c5:f3:01:18:2d: 4b:90:52:1b:f8:93:c6:d9:5f:6e:f7:30:d5:c6:38:71:f0:ee: a7:13:86:ac:09:34:e4:95:15:af:71:82:2d:bd:ad:de:08:a1: 9e:62:b0:56:26:e6:11:58:d4:46:d1:8e:3f:cd:4d:10:a3:9f: ee:a3:62:b4:fa:11:cd:16:1c:ef:42:89:f3:6e:54:a8:44:21: d2:ed:13:6f:5d:f1:b2:e2:71:27:d6:84:c8:82:ff:e3:bf:48: bb:1f:bd:69:ae:83:29:50:5b:95:43:d9:49:a8:bb:b1:6e:db: dd:7d:a8:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBENzkxMTAvBgNVBAUTKDRFMjFGNUFBOEM5MjhDMEI2NzU3QzAzRTU1QjBBNTky M0M0RTQ4QUIwHhcNMjUwMzI5MDQxOTI0WhcNMjUwNDA1MDQxOTI0WjAYMRYwFAYD VQQDEw02N2U3NzRjYy1jYWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YBkFiC8SAm37fof1XA11W1tWD/M8MU06//IWjUmfTWvidaIngeJuIKi30mG RaDJp4pyCFTwqSzc1PYiib4Z/pWxCb8nz+9htxjke6AFEcAgKkvI2dw0TVYScl83 g0YLRzbar292IJTq9qIlxJ6wP3+V1HqFIVeWJzWf1MZL2ZIEQnjFl+d0CIEtxtCi 1BK7eoHdgRQigkmjI5oIodbrF5qv+Z26l+5n4OIlsawhdVuu6b3kn718ZIqamkbz oIfZniwIjpR4EfauiJfbjE6YXT6T/hQ5g5gFIdvIhckGKqAcHelc32QDQufIOrQ8 HwLQd2lGQowKKR0KmYxycDC+mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCqSoEE s7uWBMqXKGKuU31x9Kv8MB8GA1UdIwQYMBaAFE4h9aqMkowLZ1fAPlWwpZI8Tkir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MEQ3OS9FMTgyMDhCQzZE OUMxMUVFQTAyQkJCMEVDNEY5QUUwMi9UaUgxcW95U2pBdG5WOEEtVmJDbGtqeE9T S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpSDFxb3lTakF0blY4QS1WYkNsa2p4T1NLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MEQ3OS9FMTgyMDhCQzZEOUMxMUVFQTAyQkJCMEVDNEY5QUUwMi9UaUgxcW95U2pB dG5WOEEtVmJDbGtqeE9TS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdrZPPuoLTU6qctQT3qwTXxO45OSpKqd9QThrLRySSaGQUDreJ+mBd 41qZYVD4QvpGicoG5tZ8nC2Idwb9+r1kOGGUTkJ5Z9mqlIEG7VntPSntXMH772kR m8j6ShFzn8mKpu0WFjN9dNGyfeCH05RaN3hbm6GUsCpfXh9VgQRxu2wnbNH63Ivv SZgVxfMBGC1LkFIb+JPG2V9u9zDVxjhx8O6nE4asCTTklRWvcYItva3eCKGeYrBW JuYRWNRG0Y4/zU0Qo5/uo2K0+hHNFhzvQonzblSoRCHS7RNvXfGy4nEn1oTIgv/j v0i7H71proMpUFuVQ9lJqLuxbtvdfajy -----END CERTIFICATE-----Generated at Fri Apr 4 22:02:01 2025 by rpki-client