$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.mft File: TLUe6HyCLo5ssFQoTLB-TPJPkhs.mft (raw, json) Hash identifier: 2NHkMDg1NomM8/tPRdi0V2ePs/S1O+j0iT76b1w2SFM= Subject key identifier: 32:D1:17:E8:0F:2C:A5:6C:C9:BE:C6:A3:83:7F:B4:2E:3F:53:77:98 Authority key identifier: 4C:B5:1E:E8:7C:82:2E:8E:6C:B0:54:28:4C:B0:7E:4C:F2:4F:92:1B Certificate issuer: /CN=A91D0FCB/serialNumber=4CB51EE87C822E8E6CB054284CB07E4CF24F921B Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLUe6HyCLo5ssFQoTLB-TPJPkhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.mft Manifest number: 63 Signing time: Fri 11 Apr 2025 06:11:37 +0000 Manifest this update: Fri 11 Apr 2025 06:11:36 +0000 Manifest next update: Fri 18 Apr 2025 06:11:36 +0000 Files and hashes: 1: TLUe6HyCLo5ssFQoTLB-TPJPkhs.crl (hash: VmyIXojsmh3EK+56u/hF3CgyoIDSu9ObgCW/AhUJHBU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.crl rsync://rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLUe6HyCLo5ssFQoTLB-TPJPkhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 06:11:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0FCB, serialNumber=4CB51EE87C822E8E6CB054284CB07E4CF24F921B Validity Not Before: Apr 11 06:11:36 2025 GMT Not After : Apr 18 06:11:36 2025 GMT Subject: CN=67f8b298-843e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:93:72:1e:8f:47:1b:4c:95:72:91:4b:2a:b5: 54:4e:7c:33:f4:d6:01:e8:ef:47:b9:f9:0d:23:1f: 51:b6:84:8b:a8:6e:ed:8e:39:ef:60:66:bf:d3:58: 34:bc:32:6f:f2:8e:ea:1d:12:67:30:66:30:69:65: 3a:c4:cc:b1:37:fa:e9:35:a7:47:7b:48:03:d8:98: 79:11:6f:94:5e:15:e6:43:6c:3c:c1:75:e2:50:6c: a9:f4:e7:49:05:67:15:96:be:b0:7d:52:26:88:06: de:fd:52:d6:35:cb:9b:b0:74:c3:c2:e4:c5:b1:b2: 15:80:4c:0c:55:7e:8d:b6:9e:35:78:dc:5b:53:71: 13:99:a8:d8:6d:5f:e5:cf:91:b8:6d:bf:76:fc:82: b2:ba:6c:37:21:9d:cf:7b:25:9d:26:c5:b8:e1:e9: a8:29:5c:8a:22:a8:26:42:0a:20:ea:29:c1:df:f6: cc:53:07:20:09:0f:82:43:7c:30:11:ba:39:14:10: ac:b7:cb:32:a5:cc:11:13:95:c0:c2:a1:95:8e:9b: 80:e6:d8:e0:99:b3:4e:d5:f1:44:da:4b:64:65:82: 8d:33:09:7b:be:91:e9:d1:65:92:dd:21:0a:f6:5a: 9f:21:eb:a0:2f:6c:7d:62:49:19:88:f5:aa:dc:56: e7:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D1:17:E8:0F:2C:A5:6C:C9:BE:C6:A3:83:7F:B4:2E:3F:53:77:98 X509v3 Authority Key Identifier: keyid:4C:B5:1E:E8:7C:82:2E:8E:6C:B0:54:28:4C:B0:7E:4C:F2:4F:92:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLUe6HyCLo5ssFQoTLB-TPJPkhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:49:20:02:e1:26:5e:4f:da:7a:80:ec:7f:1a:33:73:97:7d: 98:6c:ac:33:f6:39:01:55:9d:35:8a:fd:e6:2c:e5:a8:90:62: dd:65:d6:70:5b:f1:5f:cd:0d:66:8b:6d:3a:84:14:bd:42:04: 02:40:be:2f:bb:db:85:dc:ba:d6:57:1a:4b:7f:b9:c2:53:8a: 91:88:d7:8d:1d:1f:64:23:a7:53:ff:2c:85:a0:fe:cf:54:90: 11:9b:16:d1:1d:2e:f1:99:b7:2d:7e:6b:fb:49:0f:91:15:82: 4e:8c:50:a0:f8:d6:b3:6c:b1:d2:54:71:8d:04:a8:fa:aa:e2: 08:1c:54:53:ed:17:42:1a:6c:9f:43:52:02:65:cc:f8:fd:93: db:ee:07:3d:7b:bc:b5:92:98:bb:38:c9:fe:90:b6:90:79:f1: 6d:3c:12:9c:7b:e9:a0:fd:da:7e:35:ea:26:e8:2a:05:04:99: 07:be:35:c5:2c:8c:3d:d5:39:48:21:9a:bf:b4:f6:0b:c0:04: 7c:48:3c:cc:47:fb:a2:8e:56:1a:fe:aa:0e:8d:12:ac:01:53: a1:98:2f:f8:44:9d:dd:b9:28:b4:8d:6f:5c:85:a0:54:e2:b6: 81:37:df:ff:6e:d1:02:bb:fd:3c:c4:6b:b6:5f:29:b0:cf:fe: 1f:d5:69:d9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEZDQjExMC8GA1UEBRMoNENCNTFFRTg3QzgyMkU4RTZDQjA1NDI4NENCMDdFNENG MjRGOTIxQjAeFw0yNTA0MTEwNjExMzZaFw0yNTA0MTgwNjExMzZaMBgxFjAUBgNV BAMTDTY3ZjhiMjk4LTg0M2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOk3Iej0cbTJVykUsqtVROfDP01gHo70e5+Q0jH1G2hIuobu2OOe9gZr/TWDS8 Mm/yjuodEmcwZjBpZTrEzLE3+uk1p0d7SAPYmHkRb5ReFeZDbDzBdeJQbKn050kF ZxWWvrB9UiaIBt79UtY1y5uwdMPC5MWxshWATAxVfo22njV43FtTcROZqNhtX+XP kbhtv3b8grK6bDchnc97JZ0mxbjh6agpXIoiqCZCCiDqKcHf9sxTByAJD4JDfDAR ujkUEKy3yzKlzBETlcDCoZWOm4Dm2OCZs07V8UTaS2Rlgo0zCXu+kenRZZLdIQr2 Wp8h66AvbH1iSRmI9arcVudLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMtEX6A8s pWzJvsajg3+0Lj9Td5gwHwYDVR0jBBgwFoAUTLUe6HyCLo5ssFQoTLB+TPJPkhsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwRkNCLzkyREZGQzc4ODE2 OTExRUY4MjEzRkIwQ0M0RjlBRTAyL1RMVWU2SHlDTG81c3NGUW9UTEItVFBKUGto cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVExVZTZIeUNMbzVzc0ZRb1RMQi1UUEpQa2hzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw RkNCLzkyREZGQzc4ODE2OTExRUY4MjEzRkIwQ0M0RjlBRTAyL1RMVWU2SHlDTG81 c3NGUW9UTEItVFBKUGtocy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGtJIALhJl5P2nqA7H8aM3OXfZhsrDP2OQFVnTWK/eYs5aiQYt1l1nBb 8V/NDWaLbTqEFL1CBAJAvi+724XcutZXGkt/ucJTipGI140dH2Qjp1P/LIWg/s9U kBGbFtEdLvGZty1+a/tJD5EVgk6MUKD41rNssdJUcY0EqPqq4ggcVFPtF0IabJ9D UgJlzPj9k9vuBz17vLWSmLs4yf6QtpB58W08Epx76aD92n416iboKgUEmQe+NcUs jD3VOUghmr+09gvABHxIPMxH+6KOVhr+qg6NEqwBU6GYL/hEnd25KLSNb1yFoFTi toE33/9u0QK7/TzEa7ZfKbDP/h/Vadk= -----END CERTIFICATE-----Generated at Sat Apr 12 21:50:24 2025 by rpki-client