$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft File: tgQSzpgJwQxn3eq7oOM1462k_hA.mft (raw, json) Hash identifier: Vl5F6zrCESdWYIhrGfk07MSt3qdece47hLQtdQaDJH0= Subject key identifier: 2A:32:1A:B2:6B:E0:53:60:B8:B2:36:BB:49:91:A6:17:C7:5B:72:BC Authority key identifier: B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10 Certificate issuer: /CN=A91BF306/serialNumber=B60412CE9809C10C67DDEABBA0E335E3ADA4FE10 Certificate serial: 0113 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft Manifest number: 0111 Signing time: Sat 05 Apr 2025 04:14:57 +0000 Manifest this update: Sat 05 Apr 2025 04:14:56 +0000 Manifest next update: Sat 12 Apr 2025 04:14:56 +0000 Files and hashes: 1: tgQSzpgJwQxn3eq7oOM1462k_hA.crl (hash: qmw38ArTuwaME5i5z6Y+GD6Ef851Khz71tuBYyq0rjk=) 2: 3CED465E8E0811EE8450D961C4F9AE02.roa (hash: f/jpE5cHuMY3Uawe+lXgAaJQ4nT2A65yBQRPGfiONwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF306 Validity Not Before: Apr 5 04:14:56 2025 GMT Not After : Apr 12 04:14:56 2025 GMT Subject: CN=67f0ae40-0def Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:31:16:7d:b9:a3:59:fc:0c:fb:44:af:70:fc: 6b:3d:2c:1c:70:60:76:32:96:4d:ca:16:d6:e8:55: 6c:26:ba:0b:75:50:59:19:4f:b4:95:0e:e1:d4:5f: 4c:78:24:eb:66:86:00:64:8e:1b:86:0e:8e:73:c3: 28:a5:fc:57:77:38:66:90:20:52:f3:ce:0a:db:54: 81:d8:99:a1:45:ed:7f:2d:a9:e2:39:a4:5b:65:80: 6c:c1:9c:b0:d7:f9:42:32:b8:6b:9e:7f:6b:1f:95: 56:02:9e:ed:3d:59:07:7a:b0:23:d0:36:dd:2d:a0: 5f:e8:e8:85:6a:53:df:15:69:0e:8f:5a:25:15:77: d6:9f:e4:92:28:a1:95:6c:c8:7e:2a:af:36:ff:43: 5e:2f:94:21:4f:7e:88:fa:09:e8:12:6a:a9:d3:e7: 96:67:6e:74:16:02:98:da:c9:67:49:2a:27:19:d3: 92:7e:4c:6b:06:53:cf:52:50:ac:8d:09:88:a1:96: 24:a6:b1:9e:5c:fc:db:b2:53:97:0e:77:92:55:f1: 7c:c1:b3:71:43:6e:40:21:39:f9:59:b4:24:c2:f7: ba:56:10:a1:25:90:e7:53:f8:02:9e:12:fa:1f:ac: a2:85:13:93:4a:c2:07:c4:4b:0e:c8:63:08:f1:11: a3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:32:1A:B2:6B:E0:53:60:B8:B2:36:BB:49:91:A6:17:C7:5B:72:BC X509v3 Authority Key Identifier: keyid:B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:8e:9d:92:5b:cd:01:0b:00:5f:b0:b9:19:fe:c7:78:4d:ba: e2:6a:6d:56:0e:ae:94:d6:f8:39:20:32:e6:0c:fa:7f:ef:05: 17:5e:fe:e2:79:71:b8:5c:32:26:30:b1:b5:d1:27:45:77:8f: d2:5e:e6:9d:c4:66:e5:cf:56:fd:fc:2f:6a:47:28:e2:38:4e: b9:74:3e:ca:92:14:00:85:c0:a0:96:1f:a0:32:46:b1:09:d8: fd:35:14:74:03:d7:55:e2:aa:3b:a9:69:ce:28:9a:ae:99:4e: 3e:58:b7:45:b9:5e:a5:9b:bb:39:bc:bb:2e:76:90:f3:92:77: 18:a4:8e:34:2b:a1:9f:50:a3:ff:c2:be:b8:08:57:27:b0:9d: 13:0c:a2:19:63:bd:21:9d:9a:00:9a:a3:3e:51:af:c7:ee:f6: 28:f3:ed:80:7a:a2:b8:05:88:a9:af:56:8a:ed:e6:07:ea:02: 5e:b7:4a:b0:d1:5c:db:63:5b:4d:58:31:e4:f9:2b:1b:02:7d: 89:16:6b:b9:f0:db:86:ed:ef:17:48:98:ba:4b:cd:0c:73:80: 73:c7:06:37:a7:e8:59:e7:58:08:28:54:08:70:49:7f:29:83: a7:55:05:a6:57:a8:19:a7:f3:13:82:d6:84:62:a7:61:f1:6c: d4:a1:1c:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYzMDYxMTAvBgNVBAUTKEI2MDQxMkNFOTgwOUMxMEM2N0RERUFCQkEwRTMzNUUz QURBNEZFMTAwHhcNMjUwNDA1MDQxNDU2WhcNMjUwNDEyMDQxNDU2WjAYMRYwFAYD VQQDEw02N2YwYWU0MC0wZGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnDEWfbmjWfwM+0SvcPxrPSwccGB2MpZNyhbW6FVsJroLdVBZGU+0lQ7h1F9M eCTrZoYAZI4bhg6Oc8MopfxXdzhmkCBS884K21SB2JmhRe1/LaniOaRbZYBswZyw 1/lCMrhrnn9rH5VWAp7tPVkHerAj0DbdLaBf6OiFalPfFWkOj1olFXfWn+SSKKGV bMh+Kq82/0NeL5QhT36I+gnoEmqp0+eWZ250FgKY2slnSSonGdOSfkxrBlPPUlCs jQmIoZYkprGeXPzbslOXDneSVfF8wbNxQ25AITn5WbQkwve6VhChJZDnU/gCnhL6 H6yihROTSsIHxEsOyGMI8RGjIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCoyGrJr 4FNguLI2u0mRphfHW3K8MB8GA1UdIwQYMBaAFLYEEs6YCcEMZ93qu6DjNeOtpP4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjMwNi8xNzE3OTIwRTcx NkIxMUVFQjE2NzMyNzdDNEY5QUUwMi90Z1FTenBnSndReG4zZXE3b09NMTQ2Mmtf aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnUVN6cGdKd1F4bjNlcTdvT00xNDYya19oQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjMwNi8xNzE3OTIwRTcxNkIxMUVFQjE2NzMyNzdDNEY5QUUwMi90Z1FTenBnSndR eG4zZXE3b09NMTQ2MmtfaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASjp2SW80BCwBfsLkZ/sd4Tbriam1WDq6U1vg5IDLmDPp/7wUXXv7i eXG4XDImMLG10SdFd4/SXuadxGblz1b9/C9qRyjiOE65dD7KkhQAhcCglh+gMkax Cdj9NRR0A9dV4qo7qWnOKJqumU4+WLdFuV6lm7s5vLsudpDzkncYpI40K6GfUKP/ wr64CFcnsJ0TDKIZY70hnZoAmqM+Ua/H7vYo8+2AeqK4BYipr1aK7eYH6gJet0qw 0VzbY1tNWDHk+SsbAn2JFmu58NuG7e8XSJi6S80Mc4BzxwY3p+hZ51gIKFQIcEl/ KYOnVQWmV6gZp/MTgtaEYqdh8WzUoRwl -----END CERTIFICATE-----Generated at Sat Apr 5 22:17:19 2025 by rpki-client