$ rpki-client -vvf rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.mft File: TC5icWMgr9SgFwBna-i_kmT0XkI.mft (raw, json) Hash identifier: QAL56DsDvEI+e93WlrPZV5xng2Q3fSGvtmyq2HHcsNI= Subject key identifier: F7:60:5E:B7:AB:82:33:36:23:80:1E:CE:A8:7B:7D:1E:EC:7B:05:98 Authority key identifier: 4C:2E:62:71:63:20:AF:D4:A0:17:00:67:6B:E8:BF:92:64:F4:5E:42 Certificate issuer: /CN=A91A10E4/serialNumber=4C2E62716320AFD4A01700676BE8BF9264F45E42 Certificate serial: 17EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TC5icWMgr9SgFwBna-i_kmT0XkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.mft Manifest number: 17E6 Signing time: Sun 20 Apr 2025 16:28:29 +0000 Manifest this update: Sun 20 Apr 2025 16:28:29 +0000 Manifest next update: Sun 27 Apr 2025 16:28:29 +0000 Files and hashes: 1: TC5icWMgr9SgFwBna-i_kmT0XkI.crl (hash: qm6Q5ujGed+UpRGChtWRnl93EXwjdJErSwwC1jepwgo=) 2: 221560BEAF3711E98F7FF448C4F9AE02.roa (hash: 10aXr/v+1/g6rLOfgsT16qisBW6bzI99/6nvUNzz75M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.crl rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TC5icWMgr9SgFwBna-i_kmT0XkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 16:28:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6127 (0x17ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A10E4, serialNumber=4C2E62716320AFD4A01700676BE8BF9264F45E42 Validity Not Before: Apr 20 16:28:29 2025 GMT Not After : Apr 27 16:28:29 2025 GMT Subject: CN=680520ad-6219 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:04:30:41:0b:bb:a5:06:cd:0b:4a:9c:66:a9: 23:82:f2:f0:19:64:3a:97:30:ac:e2:0f:88:54:0a: 30:cb:39:39:88:79:5f:25:50:1f:6b:a6:c0:05:3f: ed:86:2d:bb:1a:b7:b3:34:2b:2e:44:e2:01:8e:ab: a1:cb:53:79:70:97:5a:16:84:e4:3f:e0:32:ae:58: e3:96:79:a2:74:46:0c:29:7f:80:60:74:c3:fe:aa: 7d:91:98:5e:23:c3:1a:52:8f:d5:ec:cc:76:e5:36: 13:38:e7:b7:d7:81:d8:60:95:d1:71:5e:6e:04:cd: b6:b6:97:05:4f:ee:61:d3:23:61:15:76:5d:14:1e: 36:fd:b4:b0:10:0c:47:9d:8d:f4:be:75:6c:6b:0f: 88:82:8a:34:a2:c6:a1:99:b0:ba:91:22:86:4b:0d: 48:e2:4e:4c:de:af:4b:11:33:07:03:48:28:08:2c: 92:a8:07:b2:0a:2a:29:9d:f3:fd:12:a0:75:5c:c0: 99:3c:95:18:35:d9:64:ed:f4:fd:ca:54:25:83:c1: aa:eb:94:a8:92:41:f0:db:4a:f1:6a:93:fe:9e:66: 7b:74:0f:1a:82:3f:bb:6b:72:5a:9f:a4:ef:3b:0e: 56:a6:b9:ac:f8:e9:39:bf:a4:14:35:53:f2:41:23: 63:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:60:5E:B7:AB:82:33:36:23:80:1E:CE:A8:7B:7D:1E:EC:7B:05:98 X509v3 Authority Key Identifier: keyid:4C:2E:62:71:63:20:AF:D4:A0:17:00:67:6B:E8:BF:92:64:F4:5E:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TC5icWMgr9SgFwBna-i_kmT0XkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:a9:33:13:58:ad:ef:f5:1c:c9:9e:bf:40:41:53:c5:e8:e5: 6b:59:7c:32:27:41:93:d2:f8:c1:1b:5a:8e:f5:15:69:74:37: aa:52:eb:11:1f:cf:28:5e:5d:06:70:73:00:d7:4c:94:1c:c6: 0b:e9:dc:93:31:7f:82:2a:88:6f:52:a7:ca:61:31:55:1b:1d: 61:38:c6:56:71:49:b4:2c:10:3f:76:bf:f1:16:58:f3:25:9d: 48:43:d3:5f:73:6e:c0:2a:f8:48:ba:9f:fd:6b:ea:0a:78:19: 62:06:0a:e2:3c:89:d8:68:dd:e8:01:a2:d8:0a:83:80:ff:98: ab:3e:0c:2b:9c:31:9d:ea:bd:6f:c0:db:c3:d0:ab:a1:06:e1: f3:7e:cb:b0:4e:91:99:ad:e3:2f:7e:a4:48:87:c3:3e:ad:6a: 87:9b:71:01:53:a2:88:5f:34:3d:10:ca:85:41:0d:c6:d7:56: 96:49:09:60:ee:c6:d2:df:d3:9f:d9:a6:99:c5:e7:10:26:ca: bb:84:e6:a5:86:ec:2f:83:0b:46:c1:2c:5a:d1:4f:3a:f0:07: 8a:89:1c:e2:1c:89:37:00:23:c5:a7:24:fb:38:bb:fd:8e:47: 13:e4:b2:29:86:aa:f0:56:4b:cc:96:b4:3b:93:f2:22:c1:0b: f6:0e:35:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEwRTQxMTAvBgNVBAUTKDRDMkU2MjcxNjMyMEFGRDRBMDE3MDA2NzZCRThCRjky NjRGNDVFNDIwHhcNMjUwNDIwMTYyODI5WhcNMjUwNDI3MTYyODI5WjAYMRYwFAYD VQQDEw02ODA1MjBhZC02MjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wQwQQu7pQbNC0qcZqkjgvLwGWQ6lzCs4g+IVAowyzk5iHlfJVAfa6bABT/t hi27GrezNCsuROIBjquhy1N5cJdaFoTkP+AyrljjlnmidEYMKX+AYHTD/qp9kZhe I8MaUo/V7Mx25TYTOOe314HYYJXRcV5uBM22tpcFT+5h0yNhFXZdFB42/bSwEAxH nY30vnVsaw+Igoo0osahmbC6kSKGSw1I4k5M3q9LETMHA0goCCySqAeyCiopnfP9 EqB1XMCZPJUYNdlk7fT9ylQlg8Gq65SokkHw20rxapP+nmZ7dA8agj+7a3Jan6Tv Ow5Wprms+Ok5v6QUNVPyQSNjzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdgXrer gjM2I4Aezqh7fR7sewWYMB8GA1UdIwQYMBaAFEwuYnFjIK/UoBcAZ2vov5Jk9F5C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTBFNC80NDk4NjhGQ0I4 ODUxMUU3QTQ4Mjg5MUFDNEY5QUUwMi9UQzVpY1dNZ3I5U2dGd0JuYS1pX2ttVDBY a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDNWljV01ncjlTZ0Z3Qm5hLWlfa21UMFhrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTBFNC80NDk4NjhGQ0I4ODUxMUU3QTQ4Mjg5MUFDNEY5QUUwMi9UQzVpY1dNZ3I5 U2dGd0JuYS1pX2ttVDBYa0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKqTMTWK3v9RzJnr9AQVPF6OVrWXwyJ0GT0vjBG1qO9RVpdDeqUusR H88oXl0GcHMA10yUHMYL6dyTMX+CKohvUqfKYTFVGx1hOMZWcUm0LBA/dr/xFljz JZ1IQ9Nfc27AKvhIup/9a+oKeBliBgriPInYaN3oAaLYCoOA/5irPgwrnDGd6r1v wNvD0KuhBuHzfsuwTpGZreMvfqRIh8M+rWqHm3EBU6KIXzQ9EMqFQQ3G11aWSQlg 7sbS39Of2aaZxecQJsq7hOalhuwvgwtGwSxa0U868AeKiRziHIk3ACPFpyT7OLv9 jkcT5LIphqrwVkvMlrQ7k/IiwQv2DjWj -----END CERTIFICATE-----Generated at Mon Apr 21 03:30:36 2025 by rpki-client