$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft File: tnJ-39N9HiwXXBCBGh04qirGyJw.mft (raw, json) Hash identifier: ji1hY3EFQ0i+rRjm9Ni/ZZLXUSi5r8jzBhVDIKyZGCg= Subject key identifier: 12:B2:3C:99:3F:A6:A2:99:0D:CD:40:94:46:F2:10:6D:EF:51:65:28 Authority key identifier: B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C Certificate issuer: /CN=A91BD3D2/serialNumber=B6727EDFD37D1E2C175C10811A1D38AA2AC6C89C Certificate serial: 0147 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft Manifest number: 0140 Signing time: Sat 29 Mar 2025 03:50:54 +0000 Manifest this update: Sat 29 Mar 2025 03:50:54 +0000 Manifest next update: Sat 05 Apr 2025 03:50:54 +0000 Files and hashes: 1: tnJ-39N9HiwXXBCBGh04qirGyJw.crl (hash: W6RsvpJu6MpKttLhWT8d6CD/w9FO4XAqV1BA5Wz7Bus=) 2: 862D5B3A2C8611EEB04B7B66C4F9AE02.roa (hash: jrfajkzWNlsvAr6jtiSvKXf4OLBkBX1A+geXt7uM8x0=) 3: 207C8A52AC7611EEB465AF75C4F9AE02.roa (hash: +GUMZ5o/lvCUeZO5ZgqvBFTkw2qo7eiNgyfsBcjsr/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD3D2 Validity Not Before: Mar 29 03:50:54 2025 GMT Not After : Apr 5 03:50:54 2025 GMT Subject: CN=67e76e1e-240e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:dc:4c:6b:5a:3e:bb:e2:b1:3f:4e:7f:e2:10: 8c:7f:c6:c9:8f:27:87:3f:3d:da:63:da:7f:46:ec: 9c:84:61:78:b7:14:5e:63:40:f4:67:b2:d0:bd:a7: 6f:82:a0:3d:3b:61:d7:e7:d0:93:c1:1d:10:88:8f: 17:70:a0:29:76:9e:aa:97:23:84:e8:23:97:6c:b2: e5:b4:01:82:67:c6:93:9c:44:fa:7a:c7:f8:e4:e8: 89:9b:03:f2:8e:b0:1c:16:c2:ed:09:f4:8e:b9:14: 6d:95:d2:1a:b5:06:d6:cf:22:36:cc:da:b6:00:69: 48:88:09:e0:96:d3:33:8b:ff:85:44:aa:2e:1d:ba: 32:22:18:33:fe:f4:60:64:80:b1:09:6b:33:53:08: cf:01:1e:27:5c:ac:96:f0:1b:9e:5d:79:9c:2f:02: 56:83:c3:80:08:b8:1b:36:d8:6a:83:4d:7f:19:1c: dc:37:20:a4:de:80:66:87:62:10:a9:15:c9:55:a1: 84:b8:63:f9:f5:c8:a7:9a:75:9b:86:29:61:79:67: fc:54:1f:1c:14:4f:ab:68:a6:38:81:6e:f5:e2:9c: 37:da:82:ef:0e:23:a5:0b:7a:e5:26:9b:0f:9e:80: ed:29:43:37:75:71:09:a3:ab:ca:5b:42:a5:27:c7: bc:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B2:3C:99:3F:A6:A2:99:0D:CD:40:94:46:F2:10:6D:EF:51:65:28 X509v3 Authority Key Identifier: keyid:B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:05:08:01:d2:4c:6c:60:f1:b4:ff:fc:08:c3:fe:b9:94:f5: 86:ec:a0:2d:f3:a8:89:27:d0:b4:91:6a:c8:d4:76:ad:8f:ce: e9:fb:64:a2:10:92:44:91:8a:b2:3d:07:ea:d4:53:46:c9:f1: 3f:7a:97:2a:f8:c9:1f:11:f8:13:a9:1a:9c:2b:b8:1e:39:92: 48:d4:3f:97:d0:34:f7:7c:c0:59:87:7e:86:83:a8:99:e2:1c: 92:16:ba:6d:f9:4c:8c:d2:11:5f:2a:68:88:fb:be:cb:87:4e: d3:50:8b:b4:ad:fc:b1:97:b3:00:23:49:c6:2b:33:1f:77:e4: cd:0f:0d:39:a9:90:e9:b4:78:bf:6a:34:06:fd:02:13:ad:9c: 2d:b1:20:ca:15:ce:fa:ec:56:43:4a:74:0e:7c:40:d1:69:9b: f7:c1:0f:21:ec:11:ee:fe:8c:70:6c:40:2c:a8:32:71:b6:23: 47:db:30:15:84:38:f6:f7:fa:75:75:b6:2c:02:be:55:9f:fa: 72:e2:fd:c1:c1:fe:3d:56:e0:c5:91:bb:a4:72:19:11:db:b4: 7f:af:bd:5d:1b:ca:77:27:33:d3:10:37:ff:c6:1c:4b:f7:95: c4:34:3b:55:e6:1e:bf:5e:89:34:eb:30:44:72:f9:40:88:12: 4d:60:8e:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQzRDIxMTAvBgNVBAUTKEI2NzI3RURGRDM3RDFFMkMxNzVDMTA4MTFBMUQzOEFB MkFDNkM4OUMwHhcNMjUwMzI5MDM1MDU0WhcNMjUwNDA1MDM1MDU0WjAYMRYwFAYD VQQDEw02N2U3NmUxZS0yNDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstxMa1o+u+KxP05/4hCMf8bJjyeHPz3aY9p/RuychGF4txReY0D0Z7LQvadv gqA9O2HX59CTwR0QiI8XcKApdp6qlyOE6COXbLLltAGCZ8aTnET6esf45OiJmwPy jrAcFsLtCfSOuRRtldIatQbWzyI2zNq2AGlIiAngltMzi/+FRKouHboyIhgz/vRg ZICxCWszUwjPAR4nXKyW8BueXXmcLwJWg8OACLgbNthqg01/GRzcNyCk3oBmh2IQ qRXJVaGEuGP59cinmnWbhilheWf8VB8cFE+raKY4gW714pw32oLvDiOlC3rlJpsP noDtKUM3dXEJo6vKW0KlJ8e83QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKyPJk/ pqKZDc1AlEbyEG3vUWUoMB8GA1UdIwQYMBaAFLZyft/TfR4sF1wQgRodOKoqxsic MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDNEMi80MkMxRDhGODJD ODYxMUVFQTlCNzRGNDNDNEY5QUUwMi90bkotMzlOOUhpd1hYQkNCR2gwNHFpckd5 SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RuSi0zOU45SGl3WFhCQ0JHaDA0cWlyR3lKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDNEMi80MkMxRDhGODJDODYxMUVFQTlCNzRGNDNDNEY5QUUwMi90bkotMzlOOUhp d1hYQkNCR2gwNHFpckd5SncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYBQgB0kxsYPG0//wIw/65lPWG7KAt86iJJ9C0kWrI1Hatj87p+2Si EJJEkYqyPQfq1FNGyfE/epcq+MkfEfgTqRqcK7geOZJI1D+X0DT3fMBZh36Gg6iZ 4hySFrpt+UyM0hFfKmiI+77Lh07TUIu0rfyxl7MAI0nGKzMfd+TNDw05qZDptHi/ ajQG/QITrZwtsSDKFc767FZDSnQOfEDRaZv3wQ8h7BHu/oxwbEAsqDJxtiNH2zAV hDj29/p1dbYsAr5Vn/py4v3Bwf49VuDFkbukchkR27R/r71dG8p3JzPTEDf/xhxL 95XENDtV5h6/Xok06zBEcvlAiBJNYI6C -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:12 2025 by rpki-client