$ rpki-client -vvf rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft File: mTXGObPDUdvtWyk5lPcvgUzPm6k.mft (raw, json) Hash identifier: f+Zx2HH6DAR6ip+jZS2KrwY4J9xEGaMcKYOwNxUuG7Q= Subject key identifier: 7A:B5:DF:AD:D9:8B:AA:88:89:4A:60:BA:98:50:07:B1:22:6A:7F:A2 Authority key identifier: 99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 Certificate issuer: /CN=A9195D93/serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Certificate serial: 2182 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft Manifest number: 216A Signing time: Fri 04 Apr 2025 15:58:07 +0000 Manifest this update: Fri 04 Apr 2025 15:58:06 +0000 Manifest next update: Fri 11 Apr 2025 15:58:06 +0000 Files and hashes: 1: mTXGObPDUdvtWyk5lPcvgUzPm6k.crl (hash: AIKtgNFPyNRDxzR1a+SWCmFQIvTDTDS6mBkyyO/tRZs=) 2: 5D2D29A2966D11EA96C50E81C4F9AE02.roa (hash: O+MHFL5HucSSSkSZxHxmzfF8b/+aFHUTT5vt1LsMrv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:58:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8578 (0x2182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195D93 Validity Not Before: Apr 4 15:58:06 2025 GMT Not After : Apr 11 15:58:06 2025 GMT Subject: CN=67f0018e-e1f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:43:5a:97:e8:9f:78:c6:df:71:16:bd:24:59: 05:f4:03:74:f5:a5:ee:3f:5d:76:48:2b:c8:25:39: 9c:90:a7:28:85:a8:5f:75:70:af:83:77:05:fe:d2: 4f:a2:74:89:d4:0a:3c:93:b9:67:87:08:57:29:f3: 32:c4:d4:a4:9d:5d:35:c3:e1:0f:38:51:36:9e:23: ca:c3:38:60:47:d5:92:7e:8d:33:e0:99:bd:32:94: 24:fb:ce:36:07:9b:66:f0:a6:af:ff:b0:92:8f:ca: 2e:b3:d4:e7:7b:99:ca:3f:b6:13:d2:52:94:4f:f7: 80:cf:90:12:5b:63:8a:c3:ab:36:52:fa:1a:ff:4c: d1:b0:62:79:68:ce:cf:40:90:cf:ea:21:60:17:60: b1:52:3a:6d:9b:95:bf:b4:da:09:43:9a:57:0e:21: e8:4f:5b:7c:86:ae:08:0d:e6:17:bb:fd:00:ec:b6: 78:48:4a:92:c2:e9:3d:7d:55:16:f1:0a:18:df:64: 29:36:0a:92:53:a0:8c:45:21:ad:d9:da:b5:c2:62: 2b:14:7b:1b:c6:39:80:a6:fc:69:57:85:99:7d:46: 2b:6c:64:5c:7e:b8:ca:a4:be:eb:d5:7c:60:26:09: 02:64:c5:e3:65:ce:c1:26:db:2e:ce:5e:71:73:8c: 7e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:B5:DF:AD:D9:8B:AA:88:89:4A:60:BA:98:50:07:B1:22:6A:7F:A2 X509v3 Authority Key Identifier: keyid:99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:5e:2d:da:7f:1f:80:2e:31:ce:8d:f6:ec:c4:0f:e8:6b:bc: 30:ce:52:af:9e:19:39:51:8a:9b:e5:1e:38:75:de:5c:7e:29: 6e:34:41:79:b2:88:c6:e4:26:e9:9c:f1:35:cc:c1:38:20:61: 5f:47:f2:c4:74:e9:7c:7f:f4:51:93:99:52:53:44:f5:ec:56: c9:32:d3:9f:33:9a:46:0b:eb:43:89:51:27:e4:32:84:f7:2b: 6c:f3:01:b7:0a:a3:38:09:0b:40:f3:8a:23:97:84:25:7f:2b: 77:bf:c2:14:89:49:c5:9b:33:2a:9b:ef:09:93:7a:ad:c6:5e: a6:5f:10:b3:94:1a:16:62:64:ac:8e:4e:88:f9:32:85:00:5f: 1f:f3:6d:a2:cb:9d:3e:70:35:33:c7:01:37:fa:62:bd:12:d6: 77:22:a5:44:22:11:dc:38:ce:39:ee:b9:86:e1:d7:2d:01:67: 5e:61:ab:ca:20:37:eb:71:65:3a:37:aa:8a:45:d5:59:3d:4a: 6a:64:34:45:6b:aa:48:8d:e5:76:bc:2a:de:e8:5f:d8:81:17: 17:5d:17:5a:5e:02:10:27:a8:c7:44:44:db:1e:b1:5f:2c:f3: d5:84:91:04:98:c3:62:31:7b:ac:5d:3a:0f:32:99:b6:81:68: b9:dd:95:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVEOTMxMTAvBgNVBAUTKDk5MzVDNjM5QjNDMzUxREJFRDVCMjkzOTk0RjcyRjgx NENDRjlCQTkwHhcNMjUwNDA0MTU1ODA2WhcNMjUwNDExMTU1ODA2WjAYMRYwFAYD VQQDEw02N2YwMDE4ZS1lMWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUNal+ifeMbfcRa9JFkF9AN09aXuP112SCvIJTmckKcohahfdXCvg3cF/tJP onSJ1Ao8k7lnhwhXKfMyxNSknV01w+EPOFE2niPKwzhgR9WSfo0z4Jm9MpQk+842 B5tm8Kav/7CSj8ous9Tne5nKP7YT0lKUT/eAz5ASW2OKw6s2Uvoa/0zRsGJ5aM7P QJDP6iFgF2CxUjptm5W/tNoJQ5pXDiHoT1t8hq4IDeYXu/0A7LZ4SEqSwuk9fVUW 8QoY32QpNgqSU6CMRSGt2dq1wmIrFHsbxjmApvxpV4WZfUYrbGRcfrjKpL7r1Xxg JgkCZMXjZc7BJtsuzl5xc4x+5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHq1363Z i6qIiUpguphQB7Eian+iMB8GA1UdIwQYMBaAFJk1xjmzw1Hb7VspOZT3L4FMz5up MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUQ5My81QzEwQTgxMERD NUQxMUU1QjMyNTQ1MkVDNEY5QUUwMi9tVFhHT2JQRFVkdnRXeWs1bFBjdmdVelBt NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21UWEdPYlBEVWR2dFd5azVsUGN2Z1V6UG02ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUQ5My81QzEwQTgxMERDNUQxMUU1QjMyNTQ1MkVDNEY5QUUwMi9tVFhHT2JQRFVk dnRXeWs1bFBjdmdVelBtNmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZXi3afx+ALjHOjfbsxA/oa7wwzlKvnhk5UYqb5R44dd5cfiluNEF5 sojG5CbpnPE1zME4IGFfR/LEdOl8f/RRk5lSU0T17FbJMtOfM5pGC+tDiVEn5DKE 9yts8wG3CqM4CQtA84ojl4Qlfyt3v8IUiUnFmzMqm+8Jk3qtxl6mXxCzlBoWYmSs jk6I+TKFAF8f822iy50+cDUzxwE3+mK9EtZ3IqVEIhHcOM457rmG4dctAWdeYavK IDfrcWU6N6qKRdVZPUpqZDRFa6pIjeV2vCre6F/YgRcXXRdaXgIQJ6jHRETbHrFf LPPVhJEEmMNiMXusXToPMpm2gWi53ZVv -----END CERTIFICATE-----Generated at Fri Apr 4 22:27:07 2025 by rpki-client