$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft File: TAYxLToLHGP1R9TWRXxM1a9xQ80.mft (raw, json) Hash identifier: j5p5ltTTi9I21rspYbKBY8YPXOJZS8ob0/CyruW0hOM= Subject key identifier: 0D:BD:8A:D9:D4:10:9A:88:15:A3:38:49:33:E5:EE:4F:94:BB:BC:8B Authority key identifier: 4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD Certificate issuer: /CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Certificate serial: 0423 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft Manifest number: 041F Signing time: Fri 11 Apr 2025 00:21:27 +0000 Manifest this update: Fri 11 Apr 2025 00:21:26 +0000 Manifest next update: Fri 18 Apr 2025 00:21:26 +0000 Files and hashes: 1: TAYxLToLHGP1R9TWRXxM1a9xQ80.crl (hash: 6TFrQJqTA5xjDihbAE/Ax1J98N9D4odoSIq2W40OAMg=) 2: 09C2A1645A3511ED8F0A3087C4F9AE02.roa (hash: RiGNiFnNAoJRKUyYrUN1wLZV9I9idQnh7FmtgNq/Suc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 00:21:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1059 (0x423) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Validity Not Before: Apr 11 00:21:26 2025 GMT Not After : Apr 18 00:21:26 2025 GMT Subject: CN=67f86087-55e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5e:8a:21:59:6e:68:5b:de:73:9f:de:25:6f: bb:18:31:d0:77:d2:37:c1:f1:27:86:ed:cc:45:f8: c8:7d:ef:aa:e5:e5:65:43:d1:11:10:75:97:08:63: 1b:30:08:cb:04:00:75:e4:1b:bb:ed:c1:06:ea:be: 0b:f0:8e:9e:df:4e:47:ae:0a:e4:e9:b0:46:30:e7: c2:58:cf:c2:ee:a6:09:24:80:17:7f:ea:1d:2a:a9: 1b:4e:59:c8:16:ea:2e:47:15:f2:9f:5c:20:a1:18: ae:fb:7b:6a:d3:e2:51:20:88:3b:a4:6c:0b:c3:52: b6:db:44:62:7c:7a:b0:af:4b:4a:46:55:59:06:9f: ac:9a:08:46:cb:cd:b1:12:1b:7e:d9:51:c1:15:80: 9f:c4:8d:f5:ae:b7:05:b0:66:f6:75:e0:16:4b:49: 7b:dc:47:f6:06:02:ee:5d:03:90:34:f6:ee:ca:07: cb:00:95:b3:c6:c3:01:c8:6e:ab:4f:19:29:71:78: 8b:8c:22:29:12:94:ca:b9:99:58:30:31:ac:c6:2c: a5:76:c7:f0:06:f5:cc:42:d3:f0:64:20:8a:06:42: a9:fe:b3:3f:ce:c2:78:a5:69:ea:2c:13:9c:ff:f4: 2e:05:52:2a:0d:b2:9b:7b:ea:27:76:9c:7b:53:5e: 8d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:BD:8A:D9:D4:10:9A:88:15:A3:38:49:33:E5:EE:4F:94:BB:BC:8B X509v3 Authority Key Identifier: keyid:4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:d6:e8:b4:82:44:35:a9:0c:f2:c1:d7:f5:4c:83:77:d1:ee: ca:d7:20:df:35:c2:d2:99:c5:a8:54:6d:b7:66:1f:ff:de:fc: 01:a5:4e:b5:df:21:2e:25:94:d9:ab:df:6c:79:b3:d7:78:f9: 7d:6d:68:bc:8c:f0:d1:e5:6e:ee:d4:47:8c:7e:45:03:4d:34: ce:3c:79:ae:f0:a7:0f:7b:0f:c1:f2:9f:1e:8c:94:43:e5:f9: 9e:05:22:5a:c5:50:3c:b1:08:e6:70:51:32:89:d7:42:ec:42: 95:a6:61:7c:38:ed:b8:d6:cf:70:49:93:13:58:54:07:70:0f: d0:e8:02:06:b6:98:2b:27:a9:5d:df:e0:1b:91:3d:3b:96:44: d1:60:7b:8a:2b:cc:ff:46:00:b6:28:30:a1:12:67:0a:72:96: ad:75:7c:eb:43:e6:26:1e:fb:50:94:cb:46:d3:38:bb:73:ec: 0a:e5:18:23:9f:ad:af:cf:c2:c5:11:7a:b2:42:00:26:61:35: e8:a2:1f:46:76:40:54:b8:7f:4d:0c:70:55:84:a6:6b:02:7f: fb:16:03:64:11:c6:3a:e8:09:3e:99:7c:78:9d:42:4f:bb:d9: a6:5a:d7:d8:ca:26:e2:ec:5a:66:6f:11:79:b9:80:a7:d9:84: 21:07:fc:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDRDMDYzMTJEM0EwQjFDNjNGNTQ3RDRENjQ1N0M0Q0Q1 QUY3MTQzQ0QwHhcNMjUwNDExMDAyMTI2WhcNMjUwNDE4MDAyMTI2WjAYMRYwFAYD VQQDEw02N2Y4NjA4Ny01NWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArl6KIVluaFvec5/eJW+7GDHQd9I3wfEnhu3MRfjIfe+q5eVlQ9EREHWXCGMb MAjLBAB15Bu77cEG6r4L8I6e305Hrgrk6bBGMOfCWM/C7qYJJIAXf+odKqkbTlnI FuouRxXyn1wgoRiu+3tq0+JRIIg7pGwLw1K220RifHqwr0tKRlVZBp+smghGy82x Eht+2VHBFYCfxI31rrcFsGb2deAWS0l73Ef2BgLuXQOQNPbuygfLAJWzxsMByG6r TxkpcXiLjCIpEpTKuZlYMDGsxiyldsfwBvXMQtPwZCCKBkKp/rM/zsJ4pWnqLBOc //QuBVIqDbKbe+ondpx7U16NpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA29itnU EJqIFaM4STPl7k+Uu7yLMB8GA1UdIwQYMBaAFEwGMS06Cxxj9UfU1kV8TNWvcUPN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9CNTA1NDY1MjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhHUDFSOVRXUlh4TTFhOXhR ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBWXhMVG9MSEdQMVI5VFdSWHhNMWE5eFE4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9CNTA1NDY1MjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhH UDFSOVRXUlh4TTFhOXhRODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP1ui0gkQ1qQzywdf1TIN30e7K1yDfNcLSmcWoVG23Zh//3vwBpU61 3yEuJZTZq99sebPXePl9bWi8jPDR5W7u1EeMfkUDTTTOPHmu8KcPew/B8p8ejJRD 5fmeBSJaxVA8sQjmcFEyiddC7EKVpmF8OO241s9wSZMTWFQHcA/Q6AIGtpgrJ6ld 3+AbkT07lkTRYHuKK8z/RgC2KDChEmcKcpatdXzrQ+YmHvtQlMtG0zi7c+wK5Rgj n62vz8LFEXqyQgAmYTXooh9GdkBUuH9NDHBVhKZrAn/7FgNkEcY66Ak+mXx4nUJP u9mmWtfYyibi7FpmbxF5uYCn2YQhB/x8 -----END CERTIFICATE-----Generated at Sat Apr 12 17:47:57 2025 by rpki-client