$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft File: TN7H1CHxboUWcqgSOd0Y_IweOVY.mft (raw, json) Hash identifier: 168kTbHgADn42tf/3MDFAMTizXY0D8YHWck4ueVzPV4= Subject key identifier: 1C:8F:67:DB:6E:47:CF:DE:B2:F7:91:AB:5C:37:C9:0B:4F:87:D6:07 Authority key identifier: 4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 Certificate issuer: /CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Certificate serial: 04AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft Manifest number: 04AB Signing time: Sat 12 Apr 2025 23:33:03 +0000 Manifest this update: Sat 12 Apr 2025 23:33:02 +0000 Manifest next update: Sat 19 Apr 2025 23:33:02 +0000 Files and hashes: 1: TN7H1CHxboUWcqgSOd0Y_IweOVY.crl (hash: npf8D3OrG2QjynXNGmnKmzR7WEvqMls6StPOp4qoACQ=) 2: C54BA97E283311ECBE887F3BC4F9AE02.roa (hash: XOTWPX30EoXJqKV6109bwG+UksO95BBHigXDmFEItd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 23:33:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1199 (0x4af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0A62, serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Validity Not Before: Apr 12 23:33:02 2025 GMT Not After : Apr 19 23:33:02 2025 GMT Subject: CN=67faf82e-bd4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f1:bb:6c:4c:85:bf:58:c5:7c:28:19:ca:cf: 10:bc:67:5c:cc:05:95:54:90:84:22:9e:a1:e4:f0: 3d:d7:46:eb:70:42:fa:d4:5e:0d:eb:4e:26:b4:b0: a2:a1:38:91:a3:50:f6:26:70:b4:a8:1e:4f:ab:d5: 2e:0b:2e:1f:17:75:8b:a4:c1:8c:25:ee:3e:04:d6: 11:ec:42:d7:6f:96:54:62:64:a1:46:5a:d5:42:53: 17:e9:66:0a:4f:88:c9:8a:6a:ed:2d:5c:10:4c:81: ee:7f:76:e8:40:2a:e8:56:ed:5c:57:9b:fe:da:0f: 90:8c:de:f9:90:86:c8:87:5b:0d:ed:75:d1:b2:0f: b4:17:71:e3:05:6d:9a:b5:bc:a8:ac:61:5f:f0:03: 2c:ea:bd:3d:1b:34:2a:57:70:8f:f6:37:41:90:cf: 78:12:45:2b:3a:87:d5:0c:0c:da:28:63:c5:44:e3: a4:16:4c:9a:a3:c5:55:e7:3d:cf:c5:67:dd:0c:f0: 38:da:56:c8:59:d3:08:ae:17:18:07:d3:c8:68:9a: 80:96:42:1c:ee:d4:ea:8f:1b:02:a1:2b:16:36:e6: 5b:7a:22:1b:f7:71:f9:ce:1d:03:cf:0f:5d:b9:b9: 84:67:1a:13:de:d6:5a:c3:98:bc:ba:e4:e5:69:b1: 7c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:8F:67:DB:6E:47:CF:DE:B2:F7:91:AB:5C:37:C9:0B:4F:87:D6:07 X509v3 Authority Key Identifier: keyid:4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:53:e6:f7:66:2e:c0:00:c9:55:b3:1d:95:5f:34:08:7c:ea: c9:60:12:04:46:16:96:91:b6:a3:9e:b5:7a:04:d6:22:da:a8: 0b:b5:cc:8e:d3:02:39:1e:7e:da:98:2d:fd:65:79:8c:a6:03: d8:5a:33:06:2a:c0:51:97:9c:90:fd:62:89:bd:a8:9c:ad:2c: e6:e0:46:d2:02:e8:bc:2c:f4:3c:af:ba:bc:b5:d7:eb:c3:4d: ae:c9:eb:25:55:2c:fe:89:3c:9f:84:bc:4e:b3:16:3c:ef:76: ab:aa:09:06:fd:4c:aa:99:a4:14:67:80:85:21:29:a0:7b:b1: 1f:9e:de:42:c0:16:fe:77:e4:d7:31:f9:69:c9:99:d8:34:f7: cf:c7:5a:f7:dc:4f:b4:e4:64:80:89:48:74:0b:09:a0:74:ee: dc:d3:29:9a:14:8b:20:03:df:c9:63:de:a2:81:19:1f:5f:b7: ae:17:55:8d:e2:55:e8:96:6f:5b:73:0a:c6:97:4e:df:06:76: 49:ee:a1:da:1e:3d:bd:da:e0:ed:76:31:b2:db:0b:5c:87:47: cb:b1:9e:4b:7f:a3:61:a3:88:24:e2:aa:46:1b:87:e5:d6:c3: 53:b5:e6:0b:45:05:f5:de:06:81:d5:fe:5a:5d:00:9e:b1:39: 23:04:a6:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBBNjIxMTAvBgNVBAUTKDRDREVDN0Q0MjFGMTZFODUxNjcyQTgxMjM5REQxOEZD OEMxRTM5NTYwHhcNMjUwNDEyMjMzMzAyWhcNMjUwNDE5MjMzMzAyWjAYMRYwFAYD VQQDEw02N2ZhZjgyZS1iZDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fG7bEyFv1jFfCgZys8QvGdczAWVVJCEIp6h5PA910brcEL61F4N604mtLCi oTiRo1D2JnC0qB5Pq9UuCy4fF3WLpMGMJe4+BNYR7ELXb5ZUYmShRlrVQlMX6WYK T4jJimrtLVwQTIHuf3boQCroVu1cV5v+2g+QjN75kIbIh1sN7XXRsg+0F3HjBW2a tbyorGFf8AMs6r09GzQqV3CP9jdBkM94EkUrOofVDAzaKGPFROOkFkyao8VV5z3P xWfdDPA42lbIWdMIrhcYB9PIaJqAlkIc7tTqjxsCoSsWNuZbeiIb93H5zh0Dzw9d ubmEZxoT3tZaw5i8uuTlabF8kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFByPZ9tu R8/esveRq1w3yQtPh9YHMB8GA1UdIwQYMBaAFEzex9Qh8W6FFnKoEjndGPyMHjlW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEE2Mi8xRkE5NkRBMDI4 MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJvVVdjcWdTT2QwWV9Jd2VP VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RON0gxQ0h4Ym9VV2NxZ1NPZDBZX0l3ZU9WWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEE2Mi8xRkE5NkRBMDI4MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJv VVdjcWdTT2QwWV9Jd2VPVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxU+b3Zi7AAMlVsx2VXzQIfOrJYBIERhaWkbajnrV6BNYi2qgLtcyO 0wI5Hn7amC39ZXmMpgPYWjMGKsBRl5yQ/WKJvaicrSzm4EbSAui8LPQ8r7q8tdfr w02uyeslVSz+iTyfhLxOsxY873arqgkG/UyqmaQUZ4CFISmge7Efnt5CwBb+d+TX MflpyZnYNPfPx1r33E+05GSAiUh0CwmgdO7c0ymaFIsgA9/JY96igRkfX7euF1WN 4lXolm9bcwrGl07fBnZJ7qHaHj292uDtdjGy2wtch0fLsZ5Lf6Nho4gk4qpGG4fl 1sNTteYLRQX13gaB1f5aXQCesTkjBKbS -----END CERTIFICATE-----Generated at Sun Apr 13 02:34:43 2025 by rpki-client