$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: sV7yyvdD6cCXM4Frt0vuSftMV62ridWxdeXWUff56PA= Subject key identifier: A3:C1:E7:F5:1F:6D:EC:19:B1:9A:FF:FF:B8:75:F1:B9:41:55:9F:54 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 018E Signing time: Mon 21 Apr 2025 02:38:44 +0000 Manifest this update: Mon 21 Apr 2025 02:38:44 +0000 Manifest next update: Mon 28 Apr 2025 02:38:44 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: CarDxPDUUgV+Sh0zgIpHPIoS7xidAt+/4NzkuaeMI6o=) 2: 7D22B44E249D11EFAC24EF6CC4F9AE02.roa (hash: 5+9jJwjzRyNYN2O27C0xkTXdTv27eYHF2xhj3n4/zw8=) 3: 9772767EB69A11EFBEB6CE0CC4F9AE02.roa (hash: OTItAaxPPemMiPzq6xmShyEDu1glCIdZDgb+Zo6pNyA=) 4: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: H7vSiuNaTY/QVhx1Z+0HnkEM6Adv1NWsmVcvR+Op02o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 02:38:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: Apr 21 02:38:44 2025 GMT Not After : Apr 28 02:38:44 2025 GMT Subject: CN=6805afb4-91dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:26:b3:19:90:c8:ed:b8:44:67:2f:17:f5:92: 16:2d:18:0f:07:6d:aa:27:6b:a3:2a:4c:f2:e9:51: d0:18:53:59:3c:7a:e9:2c:87:6c:39:6f:f6:68:9d: 25:5a:bc:b7:14:68:d2:cf:05:b0:af:e4:09:6a:31: 64:57:d9:86:41:85:17:8c:d0:fe:44:71:33:ba:bd: 2d:63:aa:ad:89:a4:84:61:0e:5b:fc:07:d6:4e:bd: c8:eb:77:28:99:4e:b3:4f:c4:d4:15:24:2b:40:a0: 96:9d:de:7b:7f:9c:de:35:a2:3a:17:95:59:da:7a: 73:8c:1e:a7:e0:7a:93:2c:47:e7:53:9c:4a:c4:bb: a5:87:70:f3:92:b6:bc:1d:87:e4:dc:12:0e:39:21: 44:34:fc:f6:d1:96:f9:6a:09:45:1b:68:32:60:48: fc:16:4d:a0:98:4b:16:db:dd:e4:a6:78:db:23:12: 6c:84:de:67:26:b3:1e:4c:19:07:3f:9a:c1:9f:f3: ac:04:4c:0c:bb:e0:84:3b:1f:a9:24:75:cb:db:15: 1c:da:ac:42:6c:16:d3:f9:f6:95:e3:d0:3e:fd:79: 8d:20:03:5e:b8:b5:3d:67:e2:7d:13:88:83:07:b8: 66:3a:3e:32:0b:3c:f1:8e:a5:85:a6:54:3f:9d:49: ae:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C1:E7:F5:1F:6D:EC:19:B1:9A:FF:FF:B8:75:F1:B9:41:55:9F:54 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:91:80:38:b8:bf:14:38:8c:7d:a4:24:24:22:00:e8:0d:37: 2b:c6:25:1c:16:90:5b:73:42:c4:8f:c7:5f:da:8d:38:52:99: a4:0b:38:65:f2:b7:30:2f:c2:c2:00:e1:21:3e:48:17:42:9a: 2c:a5:b7:ef:4e:e3:02:f2:ef:e7:32:74:69:81:53:95:66:4e: 52:cd:e5:ca:58:12:b7:ee:dd:ae:bb:c9:8d:00:44:05:7a:9e: 0e:fc:f3:13:9d:6e:aa:66:7e:94:bd:52:63:d3:f4:b4:9c:f1: 61:8c:01:6a:95:60:6b:7d:de:6d:03:0f:09:77:c4:46:c5:0e: 44:22:7d:2a:35:ac:9e:d9:55:04:c5:1b:e2:26:c0:77:3f:18: d6:5b:1e:61:99:0e:d8:e5:c8:d0:93:bd:15:51:f6:f1:fe:dd: fb:dc:a6:dd:a5:9b:c4:85:80:1b:e3:a9:74:69:c0:13:31:86: 24:58:40:f8:e8:21:48:52:00:59:6a:3e:10:f7:5b:36:da:a6: 11:89:6b:98:80:f9:dc:4c:50:e6:ed:cf:d6:6c:4d:f9:53:7e: 94:f5:00:47:7e:4e:90:7b:fd:b3:c6:31:60:80:f7:c9:05:50: 58:dd:d3:94:4d:7f:32:89:e2:bd:3d:94:76:c1:a4:52:13:f9: 0e:96:6b:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjUwNDIxMDIzODQ0WhcNMjUwNDI4MDIzODQ0WjAYMRYwFAYD VQQDEw02ODA1YWZiNC05MWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yazGZDI7bhEZy8X9ZIWLRgPB22qJ2ujKkzy6VHQGFNZPHrpLIdsOW/2aJ0l Wry3FGjSzwWwr+QJajFkV9mGQYUXjND+RHEzur0tY6qtiaSEYQ5b/AfWTr3I63co mU6zT8TUFSQrQKCWnd57f5zeNaI6F5VZ2npzjB6n4HqTLEfnU5xKxLulh3Dzkra8 HYfk3BIOOSFENPz20Zb5aglFG2gyYEj8Fk2gmEsW293kpnjbIxJshN5nJrMeTBkH P5rBn/OsBEwMu+CEOx+pJHXL2xUc2qxCbBbT+faV49A+/XmNIANeuLU9Z+J9E4iD B7hmOj4yCzzxjqWFplQ/nUmujQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPB5/Uf bewZsZr//7h18blBVZ9UMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgkYA4uL8UOIx9pCQkIgDoDTcrxiUcFpBbc0LEj8df2o04UpmkCzhl 8rcwL8LCAOEhPkgXQpospbfvTuMC8u/nMnRpgVOVZk5SzeXKWBK37t2uu8mNAEQF ep4O/PMTnW6qZn6UvVJj0/S0nPFhjAFqlWBrfd5tAw8Jd8RGxQ5EIn0qNaye2VUE xRviJsB3PxjWWx5hmQ7Y5cjQk70VUfbx/t373KbdpZvEhYAb46l0acATMYYkWED4 6CFIUgBZaj4Q91s22qYRiWuYgPncTFDm7c/WbE35U36U9QBHfk6Qe/2zxjFggPfJ BVBY3dOUTX8yieK9PZR2waRSE/kOlmvo -----END CERTIFICATE-----Generated at Mon Apr 21 16:55:50 2025 by rpki-client